====================================== Sat, 05 Dec 2020 - Debian 10.7 released ====================================== ========================================================================= [Date: Sat, 05 Dec 2020 09:41:49 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: ata-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el ata-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el btrfs-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el btrfs-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el cdrom-core-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el cdrom-core-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el compress-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el compress-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el crc-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el crc-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el crypto-dm-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el crypto-dm-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el crypto-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el crypto-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el event-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el event-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el ext4-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el ext4-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el fancontrol-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el fancontrol-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el fat-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el fat-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el fb-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el fb-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el firewire-core-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el firewire-core-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el fuse-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el fuse-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el hypervisor-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el hypervisor-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el i2c-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el i2c-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el input-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el input-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el isofs-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el isofs-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el jfs-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el jfs-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el kernel-image-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el kernel-image-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el linux-headers-4.19.0-10-all-ppc64el | 4.19.132-1 | ppc64el linux-headers-4.19.0-10-powerpc64le | 4.19.132-1 | ppc64el linux-headers-4.19.0-12-all-ppc64el | 4.19.152-1 | ppc64el linux-headers-4.19.0-12-powerpc64le | 4.19.152-1 | ppc64el linux-image-4.19.0-10-powerpc64le | 4.19.132-1 | ppc64el linux-image-4.19.0-10-powerpc64le-dbg | 4.19.132-1 | ppc64el linux-image-4.19.0-12-powerpc64le | 4.19.152-1 | ppc64el linux-image-4.19.0-12-powerpc64le-dbg | 4.19.152-1 | ppc64el loop-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el loop-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el md-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el md-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el mouse-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el mouse-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el mtd-core-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el mtd-core-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el multipath-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el multipath-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el nbd-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el nbd-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el nic-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el nic-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el nic-shared-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el nic-shared-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el nic-usb-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el nic-usb-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el nic-wireless-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el nic-wireless-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el ppp-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el ppp-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el sata-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el sata-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el scsi-core-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el scsi-core-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el scsi-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el scsi-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el scsi-nic-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el scsi-nic-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el serial-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el serial-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el squashfs-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el squashfs-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el udf-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el udf-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el uinput-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el uinput-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el usb-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el usb-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el usb-serial-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el usb-serial-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el usb-storage-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el usb-storage-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el xfs-modules-4.19.0-10-powerpc64le-di | 4.19.132-1 | ppc64el xfs-modules-4.19.0-12-powerpc64le-di | 4.19.152-1 | ppc64el ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 05 Dec 2020 09:42:40 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: btrfs-modules-4.19.0-10-s390x-di | 4.19.132-1 | s390x btrfs-modules-4.19.0-12-s390x-di | 4.19.152-1 | s390x cdrom-core-modules-4.19.0-10-s390x-di | 4.19.132-1 | s390x cdrom-core-modules-4.19.0-12-s390x-di | 4.19.152-1 | s390x compress-modules-4.19.0-10-s390x-di | 4.19.132-1 | s390x compress-modules-4.19.0-12-s390x-di | 4.19.152-1 | s390x crc-modules-4.19.0-10-s390x-di | 4.19.132-1 | s390x crc-modules-4.19.0-12-s390x-di | 4.19.152-1 | s390x crypto-dm-modules-4.19.0-10-s390x-di | 4.19.132-1 | s390x crypto-dm-modules-4.19.0-12-s390x-di | 4.19.152-1 | s390x crypto-modules-4.19.0-10-s390x-di | 4.19.132-1 | s390x crypto-modules-4.19.0-12-s390x-di | 4.19.152-1 | s390x dasd-extra-modules-4.19.0-10-s390x-di | 4.19.132-1 | s390x dasd-extra-modules-4.19.0-12-s390x-di | 4.19.152-1 | s390x dasd-modules-4.19.0-10-s390x-di | 4.19.132-1 | s390x dasd-modules-4.19.0-12-s390x-di | 4.19.152-1 | s390x ext4-modules-4.19.0-10-s390x-di | 4.19.132-1 | s390x ext4-modules-4.19.0-12-s390x-di | 4.19.152-1 | s390x fat-modules-4.19.0-10-s390x-di | 4.19.132-1 | s390x fat-modules-4.19.0-12-s390x-di | 4.19.152-1 | s390x fuse-modules-4.19.0-10-s390x-di | 4.19.132-1 | s390x fuse-modules-4.19.0-12-s390x-di | 4.19.152-1 | s390x isofs-modules-4.19.0-10-s390x-di | 4.19.132-1 | s390x isofs-modules-4.19.0-12-s390x-di | 4.19.152-1 | s390x kernel-image-4.19.0-10-s390x-di | 4.19.132-1 | s390x kernel-image-4.19.0-12-s390x-di | 4.19.152-1 | s390x linux-headers-4.19.0-10-all-s390x | 4.19.132-1 | s390x linux-headers-4.19.0-10-s390x | 4.19.132-1 | s390x linux-headers-4.19.0-12-all-s390x | 4.19.152-1 | s390x linux-headers-4.19.0-12-s390x | 4.19.152-1 | s390x linux-image-4.19.0-10-s390x | 4.19.132-1 | s390x linux-image-4.19.0-10-s390x-dbg | 4.19.132-1 | s390x linux-image-4.19.0-12-s390x | 4.19.152-1 | s390x linux-image-4.19.0-12-s390x-dbg | 4.19.152-1 | s390x loop-modules-4.19.0-10-s390x-di | 4.19.132-1 | s390x loop-modules-4.19.0-12-s390x-di | 4.19.152-1 | s390x md-modules-4.19.0-10-s390x-di | 4.19.132-1 | s390x md-modules-4.19.0-12-s390x-di | 4.19.152-1 | s390x mtd-core-modules-4.19.0-10-s390x-di | 4.19.132-1 | s390x mtd-core-modules-4.19.0-12-s390x-di | 4.19.152-1 | s390x multipath-modules-4.19.0-10-s390x-di | 4.19.132-1 | s390x multipath-modules-4.19.0-12-s390x-di | 4.19.152-1 | s390x nbd-modules-4.19.0-10-s390x-di | 4.19.132-1 | s390x nbd-modules-4.19.0-12-s390x-di | 4.19.152-1 | s390x nic-modules-4.19.0-10-s390x-di | 4.19.132-1 | s390x nic-modules-4.19.0-12-s390x-di | 4.19.152-1 | s390x scsi-core-modules-4.19.0-10-s390x-di | 4.19.132-1 | s390x scsi-core-modules-4.19.0-12-s390x-di | 4.19.152-1 | s390x scsi-modules-4.19.0-10-s390x-di | 4.19.132-1 | s390x scsi-modules-4.19.0-12-s390x-di | 4.19.152-1 | s390x udf-modules-4.19.0-10-s390x-di | 4.19.132-1 | s390x udf-modules-4.19.0-12-s390x-di | 4.19.152-1 | s390x xfs-modules-4.19.0-10-s390x-di | 4.19.132-1 | s390x xfs-modules-4.19.0-12-s390x-di | 4.19.152-1 | s390x zlib-modules-4.19.0-10-s390x-di | 4.19.132-1 | s390x zlib-modules-4.19.0-12-s390x-di | 4.19.152-1 | s390x ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 05 Dec 2020 09:43:11 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-10-all | 4.19.132-1 | amd64, arm64, armel, armhf, i386, mips, mips64el, mipsel, ppc64el, s390x linux-headers-4.19.0-12-all | 4.19.152-1 | amd64, arm64, armel, armhf, i386, mips, mips64el, mipsel, ppc64el, s390x ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 05 Dec 2020 09:43:39 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-10-all-arm64 | 4.19.132-1 | arm64 linux-headers-4.19.0-10-arm64 | 4.19.132-1 | arm64 linux-headers-4.19.0-10-rt-arm64 | 4.19.132-1 | arm64 linux-headers-4.19.0-12-all-arm64 | 4.19.152-1 | arm64 linux-headers-4.19.0-12-arm64 | 4.19.152-1 | arm64 linux-headers-4.19.0-12-rt-arm64 | 4.19.152-1 | arm64 linux-image-4.19.0-10-arm64-dbg | 4.19.132-1 | arm64 linux-image-4.19.0-10-arm64-unsigned | 4.19.132-1 | arm64 linux-image-4.19.0-10-rt-arm64-dbg | 4.19.132-1 | arm64 linux-image-4.19.0-10-rt-arm64-unsigned | 4.19.132-1 | arm64 linux-image-4.19.0-12-arm64-dbg | 4.19.152-1 | arm64 linux-image-4.19.0-12-arm64-unsigned | 4.19.152-1 | arm64 linux-image-4.19.0-12-rt-arm64-dbg | 4.19.152-1 | arm64 linux-image-4.19.0-12-rt-arm64-unsigned | 4.19.152-1 | arm64 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 05 Dec 2020 09:45:04 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: btrfs-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel btrfs-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel cdrom-core-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel cdrom-core-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel compress-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel compress-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel crc-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel crc-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel crypto-dm-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel crypto-dm-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel crypto-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel crypto-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel event-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel event-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel ext4-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel ext4-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel fat-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel fat-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel fb-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel fb-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel fuse-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel fuse-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel input-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel input-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel ipv6-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel ipv6-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel isofs-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel isofs-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel jffs2-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel jffs2-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel jfs-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel jfs-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel kernel-image-4.19.0-10-marvell-di | 4.19.132-1 | armel kernel-image-4.19.0-12-marvell-di | 4.19.152-1 | armel leds-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel leds-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel linux-headers-4.19.0-10-all-armel | 4.19.132-1 | armel linux-headers-4.19.0-10-marvell | 4.19.132-1 | armel linux-headers-4.19.0-10-rpi | 4.19.132-1 | armel linux-headers-4.19.0-12-all-armel | 4.19.152-1 | armel linux-headers-4.19.0-12-marvell | 4.19.152-1 | armel linux-headers-4.19.0-12-rpi | 4.19.152-1 | armel linux-image-4.19.0-10-marvell | 4.19.132-1 | armel linux-image-4.19.0-10-marvell-dbg | 4.19.132-1 | armel linux-image-4.19.0-10-rpi | 4.19.132-1 | armel linux-image-4.19.0-10-rpi-dbg | 4.19.132-1 | armel linux-image-4.19.0-12-marvell | 4.19.152-1 | armel linux-image-4.19.0-12-marvell-dbg | 4.19.152-1 | armel linux-image-4.19.0-12-rpi | 4.19.152-1 | armel linux-image-4.19.0-12-rpi-dbg | 4.19.152-1 | armel loop-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel loop-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel md-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel md-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel minix-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel minix-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel mmc-core-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel mmc-core-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel mmc-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel mmc-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel mouse-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel mouse-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel mtd-core-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel mtd-core-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel mtd-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel mtd-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel multipath-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel multipath-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel nbd-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel nbd-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel nic-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel nic-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel nic-shared-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel nic-shared-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel nic-usb-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel nic-usb-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel ppp-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel ppp-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel sata-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel sata-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel scsi-core-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel scsi-core-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel squashfs-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel squashfs-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel udf-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel udf-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel uinput-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel uinput-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel usb-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel usb-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel usb-serial-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel usb-serial-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel usb-storage-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel usb-storage-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel zlib-modules-4.19.0-10-marvell-di | 4.19.132-1 | armel zlib-modules-4.19.0-12-marvell-di | 4.19.152-1 | armel ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 05 Dec 2020 09:45:58 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: ata-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf ata-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf btrfs-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf btrfs-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf cdrom-core-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf cdrom-core-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf compress-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf compress-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf crc-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf crc-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf crypto-dm-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf crypto-dm-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf crypto-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf crypto-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf efi-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf efi-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf event-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf event-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf ext4-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf ext4-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf fat-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf fat-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf fb-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf fb-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf fuse-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf fuse-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf i2c-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf i2c-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf input-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf input-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf isofs-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf isofs-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf jfs-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf jfs-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf kernel-image-4.19.0-10-armmp-di | 4.19.132-1 | armhf kernel-image-4.19.0-12-armmp-di | 4.19.152-1 | armhf leds-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf leds-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf linux-headers-4.19.0-10-all-armhf | 4.19.132-1 | armhf linux-headers-4.19.0-10-armmp | 4.19.132-1 | armhf linux-headers-4.19.0-10-armmp-lpae | 4.19.132-1 | armhf linux-headers-4.19.0-10-rt-armmp | 4.19.132-1 | armhf linux-headers-4.19.0-12-all-armhf | 4.19.152-1 | armhf linux-headers-4.19.0-12-armmp | 4.19.152-1 | armhf linux-headers-4.19.0-12-armmp-lpae | 4.19.152-1 | armhf linux-headers-4.19.0-12-rt-armmp | 4.19.152-1 | armhf linux-image-4.19.0-10-armmp | 4.19.132-1 | armhf linux-image-4.19.0-10-armmp-dbg | 4.19.132-1 | armhf linux-image-4.19.0-10-armmp-lpae | 4.19.132-1 | armhf linux-image-4.19.0-10-armmp-lpae-dbg | 4.19.132-1 | armhf linux-image-4.19.0-10-rt-armmp | 4.19.132-1 | armhf linux-image-4.19.0-10-rt-armmp-dbg | 4.19.132-1 | armhf linux-image-4.19.0-12-armmp | 4.19.152-1 | armhf linux-image-4.19.0-12-armmp-dbg | 4.19.152-1 | armhf linux-image-4.19.0-12-armmp-lpae | 4.19.152-1 | armhf linux-image-4.19.0-12-armmp-lpae-dbg | 4.19.152-1 | armhf linux-image-4.19.0-12-rt-armmp | 4.19.152-1 | armhf linux-image-4.19.0-12-rt-armmp-dbg | 4.19.152-1 | armhf loop-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf loop-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf md-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf md-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf mmc-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf mmc-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf mtd-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf mtd-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf multipath-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf multipath-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf nbd-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf nbd-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf nic-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf nic-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf nic-shared-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf nic-shared-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf nic-usb-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf nic-usb-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf nic-wireless-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf nic-wireless-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf pata-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf pata-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf ppp-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf ppp-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf sata-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf sata-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf scsi-core-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf scsi-core-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf scsi-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf scsi-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf scsi-nic-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf scsi-nic-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf squashfs-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf squashfs-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf udf-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf udf-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf uinput-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf uinput-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf usb-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf usb-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf usb-serial-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf usb-serial-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf usb-storage-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf usb-storage-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf zlib-modules-4.19.0-10-armmp-di | 4.19.132-1 | armhf zlib-modules-4.19.0-12-armmp-di | 4.19.152-1 | armhf ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 05 Dec 2020 09:46:22 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-10-686 | 4.19.132-1 | i386 linux-headers-4.19.0-10-686-pae | 4.19.132-1 | i386 linux-headers-4.19.0-10-all-i386 | 4.19.132-1 | i386 linux-headers-4.19.0-10-rt-686-pae | 4.19.132-1 | i386 linux-headers-4.19.0-12-686 | 4.19.152-1 | i386 linux-headers-4.19.0-12-686-pae | 4.19.152-1 | i386 linux-headers-4.19.0-12-all-i386 | 4.19.152-1 | i386 linux-headers-4.19.0-12-rt-686-pae | 4.19.152-1 | i386 linux-image-4.19.0-10-686-dbg | 4.19.132-1 | i386 linux-image-4.19.0-10-686-pae-dbg | 4.19.132-1 | i386 linux-image-4.19.0-10-686-pae-unsigned | 4.19.132-1 | i386 linux-image-4.19.0-10-686-unsigned | 4.19.132-1 | i386 linux-image-4.19.0-10-rt-686-pae-dbg | 4.19.132-1 | i386 linux-image-4.19.0-10-rt-686-pae-unsigned | 4.19.132-1 | i386 linux-image-4.19.0-12-686-dbg | 4.19.152-1 | i386 linux-image-4.19.0-12-686-pae-dbg | 4.19.152-1 | i386 linux-image-4.19.0-12-686-pae-unsigned | 4.19.152-1 | i386 linux-image-4.19.0-12-686-unsigned | 4.19.152-1 | i386 linux-image-4.19.0-12-rt-686-pae-dbg | 4.19.152-1 | i386 linux-image-4.19.0-12-rt-686-pae-unsigned | 4.19.152-1 | i386 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 05 Dec 2020 09:46:41 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-10-all-mips | 4.19.132-1 | mips linux-headers-4.19.0-12-all-mips | 4.19.152-1 | mips ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 05 Dec 2020 09:47:20 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: affs-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel affs-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel btrfs-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel btrfs-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel cdrom-core-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel cdrom-core-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel compress-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel compress-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel crc-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel crc-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel crypto-dm-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel crypto-dm-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel crypto-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel crypto-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel event-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel event-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel ext4-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel ext4-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel fat-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel fat-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel fuse-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel fuse-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel hfs-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel hfs-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel input-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel input-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel isofs-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel isofs-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel jfs-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel jfs-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel kernel-image-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel kernel-image-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel linux-headers-4.19.0-10-5kc-malta | 4.19.132-1 | mips, mips64el, mipsel linux-headers-4.19.0-10-octeon | 4.19.132-1 | mips, mips64el, mipsel linux-headers-4.19.0-12-5kc-malta | 4.19.152-1 | mips, mips64el, mipsel linux-headers-4.19.0-12-octeon | 4.19.152-1 | mips, mips64el, mipsel linux-image-4.19.0-10-5kc-malta | 4.19.132-1 | mips, mips64el, mipsel linux-image-4.19.0-10-5kc-malta-dbg | 4.19.132-1 | mips, mips64el, mipsel linux-image-4.19.0-10-octeon | 4.19.132-1 | mips, mips64el, mipsel linux-image-4.19.0-10-octeon-dbg | 4.19.132-1 | mips, mips64el, mipsel linux-image-4.19.0-12-5kc-malta | 4.19.152-1 | mips, mips64el, mipsel linux-image-4.19.0-12-5kc-malta-dbg | 4.19.152-1 | mips, mips64el, mipsel linux-image-4.19.0-12-octeon | 4.19.152-1 | mips, mips64el, mipsel linux-image-4.19.0-12-octeon-dbg | 4.19.152-1 | mips, mips64el, mipsel loop-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel loop-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel md-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel md-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel minix-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel minix-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel multipath-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel multipath-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel nbd-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel nbd-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel nic-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel nic-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel nic-shared-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel nic-shared-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel nic-usb-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel nic-usb-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel nic-wireless-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel nic-wireless-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel pata-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel pata-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel ppp-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel ppp-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel rtc-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel rtc-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel sata-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel sata-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel scsi-core-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel scsi-core-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel scsi-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel scsi-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel scsi-nic-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel scsi-nic-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel sound-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel sound-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel squashfs-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel squashfs-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel udf-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel udf-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel usb-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel usb-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel usb-serial-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel usb-serial-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel usb-storage-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel usb-storage-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel xfs-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel xfs-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel zlib-modules-4.19.0-10-octeon-di | 4.19.132-1 | mips, mips64el, mipsel zlib-modules-4.19.0-12-octeon-di | 4.19.152-1 | mips, mips64el, mipsel ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 05 Dec 2020 09:47:47 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: affs-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel affs-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel ata-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel ata-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel btrfs-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel btrfs-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel cdrom-core-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel cdrom-core-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel compress-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel compress-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel crc-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel crc-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel crypto-dm-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel crypto-dm-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel crypto-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel crypto-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel event-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel event-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel ext4-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel ext4-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel fat-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel fat-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel fb-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel fb-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel fuse-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel fuse-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel hfs-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel hfs-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel i2c-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel i2c-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel input-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel input-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel isofs-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel isofs-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel jfs-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel jfs-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel kernel-image-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel kernel-image-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel linux-headers-4.19.0-10-4kc-malta | 4.19.132-1 | mips, mipsel linux-headers-4.19.0-12-4kc-malta | 4.19.152-1 | mips, mipsel linux-image-4.19.0-10-4kc-malta | 4.19.132-1 | mips, mipsel linux-image-4.19.0-10-4kc-malta-dbg | 4.19.132-1 | mips, mipsel linux-image-4.19.0-12-4kc-malta | 4.19.152-1 | mips, mipsel linux-image-4.19.0-12-4kc-malta-dbg | 4.19.152-1 | mips, mipsel loop-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel loop-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel md-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel md-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel minix-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel minix-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel mmc-core-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel mmc-core-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel mmc-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel mmc-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel mouse-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel mouse-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel mtd-core-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel mtd-core-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel multipath-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel multipath-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel nbd-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel nbd-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel nic-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel nic-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel nic-shared-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel nic-shared-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel nic-usb-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel nic-usb-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel nic-wireless-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel nic-wireless-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel pata-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel pata-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel ppp-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel ppp-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel sata-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel sata-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel scsi-core-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel scsi-core-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel scsi-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel scsi-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel scsi-nic-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel scsi-nic-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel sound-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel sound-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel squashfs-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel squashfs-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel udf-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel udf-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel usb-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel usb-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel usb-serial-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel usb-serial-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel usb-storage-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel usb-storage-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel xfs-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel xfs-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel zlib-modules-4.19.0-10-4kc-malta-di | 4.19.132-1 | mips, mipsel zlib-modules-4.19.0-12-4kc-malta-di | 4.19.152-1 | mips, mipsel ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 05 Dec 2020 09:48:23 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: affs-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el affs-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el ata-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el ata-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el btrfs-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el btrfs-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el cdrom-core-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el cdrom-core-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el compress-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el compress-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el crc-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el crc-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el crypto-dm-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el crypto-dm-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el crypto-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el crypto-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el event-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el event-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el ext4-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el ext4-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el fat-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el fat-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el fb-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el fb-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el fuse-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el fuse-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el hfs-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el hfs-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el i2c-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el i2c-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el input-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el input-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el isofs-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el isofs-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el jfs-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el jfs-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el kernel-image-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el kernel-image-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el linux-headers-4.19.0-10-all-mips64el | 4.19.132-1 | mips64el linux-headers-4.19.0-12-all-mips64el | 4.19.152-1 | mips64el loop-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el loop-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el md-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el md-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el minix-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el minix-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el mmc-core-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el mmc-core-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el mmc-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el mmc-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el mouse-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el mouse-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el mtd-core-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el mtd-core-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el multipath-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el multipath-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el nbd-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el nbd-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el nic-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el nic-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el nic-shared-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el nic-shared-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el nic-usb-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el nic-usb-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el nic-wireless-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el nic-wireless-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el pata-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el pata-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el ppp-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el ppp-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el sata-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el sata-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el scsi-core-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el scsi-core-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el scsi-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el scsi-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el scsi-nic-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el scsi-nic-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el sound-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el sound-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el squashfs-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el squashfs-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el udf-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el udf-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el usb-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el usb-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el usb-serial-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el usb-serial-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el usb-storage-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el usb-storage-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el xfs-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el xfs-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el zlib-modules-4.19.0-10-5kc-malta-di | 4.19.132-1 | mips64el zlib-modules-4.19.0-12-5kc-malta-di | 4.19.152-1 | mips64el ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 05 Dec 2020 09:48:54 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: affs-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel affs-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel ata-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel ata-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel btrfs-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel btrfs-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel cdrom-core-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel cdrom-core-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel compress-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel compress-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel crc-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel crc-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel crypto-dm-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel crypto-dm-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel crypto-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel crypto-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel event-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel event-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel ext4-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel ext4-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel fat-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel fat-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel fb-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel fb-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel firewire-core-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel firewire-core-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel fuse-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel fuse-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel hfs-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel hfs-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel input-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel input-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel isofs-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel isofs-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel jfs-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel jfs-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel kernel-image-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel kernel-image-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel linux-headers-4.19.0-10-loongson-3 | 4.19.132-1 | mips64el, mipsel linux-headers-4.19.0-12-loongson-3 | 4.19.152-1 | mips64el, mipsel linux-image-4.19.0-10-loongson-3 | 4.19.132-1 | mips64el, mipsel linux-image-4.19.0-10-loongson-3-dbg | 4.19.132-1 | mips64el, mipsel linux-image-4.19.0-12-loongson-3 | 4.19.152-1 | mips64el, mipsel linux-image-4.19.0-12-loongson-3-dbg | 4.19.152-1 | mips64el, mipsel loop-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel loop-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel md-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel md-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel minix-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel minix-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel mtd-core-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel mtd-core-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel multipath-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel multipath-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel nbd-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel nbd-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel nfs-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel nfs-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel nic-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel nic-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel nic-shared-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel nic-shared-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel nic-usb-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel nic-usb-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel nic-wireless-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel nic-wireless-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel pata-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel pata-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel ppp-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel ppp-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel sata-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel sata-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel scsi-core-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel scsi-core-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel scsi-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel scsi-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel scsi-nic-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel scsi-nic-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel sound-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel sound-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel speakup-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel speakup-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel squashfs-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel squashfs-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel udf-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel udf-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel usb-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel usb-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel usb-serial-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel usb-serial-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel usb-storage-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel usb-storage-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel xfs-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel xfs-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel zlib-modules-4.19.0-10-loongson-3-di | 4.19.132-1 | mips64el, mipsel zlib-modules-4.19.0-12-loongson-3-di | 4.19.152-1 | mips64el, mipsel ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 05 Dec 2020 09:49:32 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: acpi-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 acpi-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 ata-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 ata-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 btrfs-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 btrfs-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 cdrom-core-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 cdrom-core-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 compress-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 compress-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 crc-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 crc-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 crypto-dm-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 crypto-dm-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 crypto-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 crypto-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 efi-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 efi-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 event-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 event-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 ext4-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 ext4-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 fat-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 fat-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 fb-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 fb-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 firewire-core-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 firewire-core-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 fuse-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 fuse-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 i2c-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 i2c-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 input-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 input-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 isofs-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 isofs-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 jfs-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 jfs-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 kernel-image-4.19.0-10-amd64-di | 4.19.132-1 | amd64 kernel-image-4.19.0-12-amd64-di | 4.19.152-1 | amd64 linux-image-4.19.0-10-amd64 | 4.19.132-1 | amd64 linux-image-4.19.0-10-cloud-amd64 | 4.19.132-1 | amd64 linux-image-4.19.0-10-rt-amd64 | 4.19.132-1 | amd64 linux-image-4.19.0-12-amd64 | 4.19.152-1 | amd64 linux-image-4.19.0-12-cloud-amd64 | 4.19.152-1 | amd64 linux-image-4.19.0-12-rt-amd64 | 4.19.152-1 | amd64 loop-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 loop-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 md-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 md-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 mmc-core-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 mmc-core-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 mmc-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 mmc-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 mouse-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 mouse-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 mtd-core-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 mtd-core-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 multipath-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 multipath-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 nbd-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 nbd-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 nic-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 nic-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 nic-pcmcia-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 nic-pcmcia-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 nic-shared-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 nic-shared-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 nic-usb-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 nic-usb-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 nic-wireless-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 nic-wireless-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 pata-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 pata-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 pcmcia-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 pcmcia-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 pcmcia-storage-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 pcmcia-storage-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 ppp-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 ppp-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 sata-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 sata-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 scsi-core-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 scsi-core-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 scsi-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 scsi-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 scsi-nic-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 scsi-nic-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 serial-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 serial-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 sound-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 sound-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 speakup-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 speakup-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 squashfs-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 squashfs-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 udf-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 udf-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 uinput-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 uinput-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 usb-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 usb-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 usb-serial-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 usb-serial-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 usb-storage-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 usb-storage-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 xfs-modules-4.19.0-10-amd64-di | 4.19.132-1 | amd64 xfs-modules-4.19.0-12-amd64-di | 4.19.152-1 | amd64 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux-signed-amd64) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 05 Dec 2020 09:50:19 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: ata-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 ata-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 btrfs-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 btrfs-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 cdrom-core-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 cdrom-core-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 compress-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 compress-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 crc-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 crc-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 crypto-dm-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 crypto-dm-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 crypto-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 crypto-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 efi-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 efi-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 event-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 event-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 ext4-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 ext4-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 fat-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 fat-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 fb-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 fb-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 fuse-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 fuse-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 i2c-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 i2c-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 input-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 input-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 isofs-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 isofs-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 jfs-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 jfs-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 kernel-image-4.19.0-10-arm64-di | 4.19.132-1 | arm64 kernel-image-4.19.0-12-arm64-di | 4.19.152-1 | arm64 leds-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 leds-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 linux-image-4.19.0-10-arm64 | 4.19.132-1 | arm64 linux-image-4.19.0-10-rt-arm64 | 4.19.132-1 | arm64 linux-image-4.19.0-12-arm64 | 4.19.152-1 | arm64 linux-image-4.19.0-12-rt-arm64 | 4.19.152-1 | arm64 loop-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 loop-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 md-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 md-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 mmc-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 mmc-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 mtd-core-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 mtd-core-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 multipath-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 multipath-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 nbd-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 nbd-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 nic-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 nic-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 nic-shared-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 nic-shared-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 nic-usb-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 nic-usb-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 nic-wireless-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 nic-wireless-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 ppp-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 ppp-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 sata-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 sata-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 scsi-core-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 scsi-core-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 scsi-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 scsi-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 scsi-nic-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 scsi-nic-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 squashfs-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 squashfs-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 udf-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 udf-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 uinput-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 uinput-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 usb-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 usb-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 usb-serial-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 usb-serial-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 usb-storage-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 usb-storage-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 xfs-modules-4.19.0-10-arm64-di | 4.19.132-1 | arm64 xfs-modules-4.19.0-12-arm64-di | 4.19.152-1 | arm64 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux-signed-arm64) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 05 Dec 2020 09:52:00 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: acpi-modules-4.19.0-10-686-di | 4.19.132-1 | i386 acpi-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 acpi-modules-4.19.0-12-686-di | 4.19.152-1 | i386 acpi-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 ata-modules-4.19.0-10-686-di | 4.19.132-1 | i386 ata-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 ata-modules-4.19.0-12-686-di | 4.19.152-1 | i386 ata-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 btrfs-modules-4.19.0-10-686-di | 4.19.132-1 | i386 btrfs-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 btrfs-modules-4.19.0-12-686-di | 4.19.152-1 | i386 btrfs-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 cdrom-core-modules-4.19.0-10-686-di | 4.19.132-1 | i386 cdrom-core-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 cdrom-core-modules-4.19.0-12-686-di | 4.19.152-1 | i386 cdrom-core-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 compress-modules-4.19.0-10-686-di | 4.19.132-1 | i386 compress-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 compress-modules-4.19.0-12-686-di | 4.19.152-1 | i386 compress-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 crc-modules-4.19.0-10-686-di | 4.19.132-1 | i386 crc-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 crc-modules-4.19.0-12-686-di | 4.19.152-1 | i386 crc-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 crypto-dm-modules-4.19.0-10-686-di | 4.19.132-1 | i386 crypto-dm-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 crypto-dm-modules-4.19.0-12-686-di | 4.19.152-1 | i386 crypto-dm-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 crypto-modules-4.19.0-10-686-di | 4.19.132-1 | i386 crypto-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 crypto-modules-4.19.0-12-686-di | 4.19.152-1 | i386 crypto-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 efi-modules-4.19.0-10-686-di | 4.19.132-1 | i386 efi-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 efi-modules-4.19.0-12-686-di | 4.19.152-1 | i386 efi-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 event-modules-4.19.0-10-686-di | 4.19.132-1 | i386 event-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 event-modules-4.19.0-12-686-di | 4.19.152-1 | i386 event-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 ext4-modules-4.19.0-10-686-di | 4.19.132-1 | i386 ext4-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 ext4-modules-4.19.0-12-686-di | 4.19.152-1 | i386 ext4-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 fat-modules-4.19.0-10-686-di | 4.19.132-1 | i386 fat-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 fat-modules-4.19.0-12-686-di | 4.19.152-1 | i386 fat-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 fb-modules-4.19.0-10-686-di | 4.19.132-1 | i386 fb-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 fb-modules-4.19.0-12-686-di | 4.19.152-1 | i386 fb-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 firewire-core-modules-4.19.0-10-686-di | 4.19.132-1 | i386 firewire-core-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 firewire-core-modules-4.19.0-12-686-di | 4.19.152-1 | i386 firewire-core-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 fuse-modules-4.19.0-10-686-di | 4.19.132-1 | i386 fuse-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 fuse-modules-4.19.0-12-686-di | 4.19.152-1 | i386 fuse-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 i2c-modules-4.19.0-10-686-di | 4.19.132-1 | i386 i2c-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 i2c-modules-4.19.0-12-686-di | 4.19.152-1 | i386 i2c-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 input-modules-4.19.0-10-686-di | 4.19.132-1 | i386 input-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 input-modules-4.19.0-12-686-di | 4.19.152-1 | i386 input-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 isofs-modules-4.19.0-10-686-di | 4.19.132-1 | i386 isofs-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 isofs-modules-4.19.0-12-686-di | 4.19.152-1 | i386 isofs-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 jfs-modules-4.19.0-10-686-di | 4.19.132-1 | i386 jfs-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 jfs-modules-4.19.0-12-686-di | 4.19.152-1 | i386 jfs-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 kernel-image-4.19.0-10-686-di | 4.19.132-1 | i386 kernel-image-4.19.0-10-686-pae-di | 4.19.132-1 | i386 kernel-image-4.19.0-12-686-di | 4.19.152-1 | i386 kernel-image-4.19.0-12-686-pae-di | 4.19.152-1 | i386 linux-image-4.19.0-10-686 | 4.19.132-1 | i386 linux-image-4.19.0-10-686-pae | 4.19.132-1 | i386 linux-image-4.19.0-10-rt-686-pae | 4.19.132-1 | i386 linux-image-4.19.0-12-686 | 4.19.152-1 | i386 linux-image-4.19.0-12-686-pae | 4.19.152-1 | i386 linux-image-4.19.0-12-rt-686-pae | 4.19.152-1 | i386 loop-modules-4.19.0-10-686-di | 4.19.132-1 | i386 loop-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 loop-modules-4.19.0-12-686-di | 4.19.152-1 | i386 loop-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 md-modules-4.19.0-10-686-di | 4.19.132-1 | i386 md-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 md-modules-4.19.0-12-686-di | 4.19.152-1 | i386 md-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 mmc-core-modules-4.19.0-10-686-di | 4.19.132-1 | i386 mmc-core-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 mmc-core-modules-4.19.0-12-686-di | 4.19.152-1 | i386 mmc-core-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 mmc-modules-4.19.0-10-686-di | 4.19.132-1 | i386 mmc-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 mmc-modules-4.19.0-12-686-di | 4.19.152-1 | i386 mmc-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 mouse-modules-4.19.0-10-686-di | 4.19.132-1 | i386 mouse-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 mouse-modules-4.19.0-12-686-di | 4.19.152-1 | i386 mouse-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 mtd-core-modules-4.19.0-10-686-di | 4.19.132-1 | i386 mtd-core-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 mtd-core-modules-4.19.0-12-686-di | 4.19.152-1 | i386 mtd-core-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 multipath-modules-4.19.0-10-686-di | 4.19.132-1 | i386 multipath-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 multipath-modules-4.19.0-12-686-di | 4.19.152-1 | i386 multipath-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 nbd-modules-4.19.0-10-686-di | 4.19.132-1 | i386 nbd-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 nbd-modules-4.19.0-12-686-di | 4.19.152-1 | i386 nbd-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 nic-modules-4.19.0-10-686-di | 4.19.132-1 | i386 nic-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 nic-modules-4.19.0-12-686-di | 4.19.152-1 | i386 nic-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 nic-pcmcia-modules-4.19.0-10-686-di | 4.19.132-1 | i386 nic-pcmcia-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 nic-pcmcia-modules-4.19.0-12-686-di | 4.19.152-1 | i386 nic-pcmcia-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 nic-shared-modules-4.19.0-10-686-di | 4.19.132-1 | i386 nic-shared-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 nic-shared-modules-4.19.0-12-686-di | 4.19.152-1 | i386 nic-shared-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 nic-usb-modules-4.19.0-10-686-di | 4.19.132-1 | i386 nic-usb-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 nic-usb-modules-4.19.0-12-686-di | 4.19.152-1 | i386 nic-usb-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 nic-wireless-modules-4.19.0-10-686-di | 4.19.132-1 | i386 nic-wireless-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 nic-wireless-modules-4.19.0-12-686-di | 4.19.152-1 | i386 nic-wireless-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 pata-modules-4.19.0-10-686-di | 4.19.132-1 | i386 pata-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 pata-modules-4.19.0-12-686-di | 4.19.152-1 | i386 pata-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 pcmcia-modules-4.19.0-10-686-di | 4.19.132-1 | i386 pcmcia-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 pcmcia-modules-4.19.0-12-686-di | 4.19.152-1 | i386 pcmcia-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 pcmcia-storage-modules-4.19.0-10-686-di | 4.19.132-1 | i386 pcmcia-storage-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 pcmcia-storage-modules-4.19.0-12-686-di | 4.19.152-1 | i386 pcmcia-storage-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 ppp-modules-4.19.0-10-686-di | 4.19.132-1 | i386 ppp-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 ppp-modules-4.19.0-12-686-di | 4.19.152-1 | i386 ppp-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 sata-modules-4.19.0-10-686-di | 4.19.132-1 | i386 sata-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 sata-modules-4.19.0-12-686-di | 4.19.152-1 | i386 sata-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 scsi-core-modules-4.19.0-10-686-di | 4.19.132-1 | i386 scsi-core-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 scsi-core-modules-4.19.0-12-686-di | 4.19.152-1 | i386 scsi-core-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 scsi-modules-4.19.0-10-686-di | 4.19.132-1 | i386 scsi-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 scsi-modules-4.19.0-12-686-di | 4.19.152-1 | i386 scsi-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 scsi-nic-modules-4.19.0-10-686-di | 4.19.132-1 | i386 scsi-nic-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 scsi-nic-modules-4.19.0-12-686-di | 4.19.152-1 | i386 scsi-nic-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 serial-modules-4.19.0-10-686-di | 4.19.132-1 | i386 serial-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 serial-modules-4.19.0-12-686-di | 4.19.152-1 | i386 serial-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 sound-modules-4.19.0-10-686-di | 4.19.132-1 | i386 sound-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 sound-modules-4.19.0-12-686-di | 4.19.152-1 | i386 sound-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 speakup-modules-4.19.0-10-686-di | 4.19.132-1 | i386 speakup-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 speakup-modules-4.19.0-12-686-di | 4.19.152-1 | i386 speakup-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 squashfs-modules-4.19.0-10-686-di | 4.19.132-1 | i386 squashfs-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 squashfs-modules-4.19.0-12-686-di | 4.19.152-1 | i386 squashfs-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 udf-modules-4.19.0-10-686-di | 4.19.132-1 | i386 udf-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 udf-modules-4.19.0-12-686-di | 4.19.152-1 | i386 udf-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 uinput-modules-4.19.0-10-686-di | 4.19.132-1 | i386 uinput-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 uinput-modules-4.19.0-12-686-di | 4.19.152-1 | i386 uinput-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 usb-modules-4.19.0-10-686-di | 4.19.132-1 | i386 usb-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 usb-modules-4.19.0-12-686-di | 4.19.152-1 | i386 usb-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 usb-serial-modules-4.19.0-10-686-di | 4.19.132-1 | i386 usb-serial-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 usb-serial-modules-4.19.0-12-686-di | 4.19.152-1 | i386 usb-serial-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 usb-storage-modules-4.19.0-10-686-di | 4.19.132-1 | i386 usb-storage-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 usb-storage-modules-4.19.0-12-686-di | 4.19.152-1 | i386 usb-storage-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 xfs-modules-4.19.0-10-686-di | 4.19.132-1 | i386 xfs-modules-4.19.0-10-686-pae-di | 4.19.132-1 | i386 xfs-modules-4.19.0-12-686-di | 4.19.152-1 | i386 xfs-modules-4.19.0-12-686-pae-di | 4.19.152-1 | i386 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux-signed-i386) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 05 Dec 2020 09:53:10 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-10-common | 4.19.132-1 | all linux-headers-4.19.0-10-common-rt | 4.19.132-1 | all linux-headers-4.19.0-12-common | 4.19.152-1 | all linux-headers-4.19.0-12-common-rt | 4.19.152-1 | all linux-support-4.19.0-10 | 4.19.132-1 | all linux-support-4.19.0-12 | 4.19.152-1 | all ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux - based on source metadata) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 05 Dec 2020 09:54:19 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-10-all-amd64 | 4.19.132-1 | amd64 linux-headers-4.19.0-10-amd64 | 4.19.132-1 | amd64 linux-headers-4.19.0-10-cloud-amd64 | 4.19.132-1 | amd64 linux-headers-4.19.0-10-rt-amd64 | 4.19.132-1 | amd64 linux-headers-4.19.0-12-all-amd64 | 4.19.152-1 | amd64 linux-headers-4.19.0-12-amd64 | 4.19.152-1 | amd64 linux-headers-4.19.0-12-cloud-amd64 | 4.19.152-1 | amd64 linux-headers-4.19.0-12-rt-amd64 | 4.19.152-1 | amd64 linux-image-4.19.0-10-amd64-dbg | 4.19.132-1 | amd64 linux-image-4.19.0-10-amd64-unsigned | 4.19.132-1 | amd64 linux-image-4.19.0-10-cloud-amd64-dbg | 4.19.132-1 | amd64 linux-image-4.19.0-10-cloud-amd64-unsigned | 4.19.132-1 | amd64 linux-image-4.19.0-10-rt-amd64-dbg | 4.19.132-1 | amd64 linux-image-4.19.0-10-rt-amd64-unsigned | 4.19.132-1 | amd64 linux-image-4.19.0-12-amd64-dbg | 4.19.152-1 | amd64 linux-image-4.19.0-12-amd64-unsigned | 4.19.152-1 | amd64 linux-image-4.19.0-12-cloud-amd64-dbg | 4.19.152-1 | amd64 linux-image-4.19.0-12-cloud-amd64-unsigned | 4.19.152-1 | amd64 linux-image-4.19.0-12-rt-amd64-dbg | 4.19.152-1 | amd64 linux-image-4.19.0-12-rt-amd64-unsigned | 4.19.152-1 | amd64 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 05 Dec 2020 09:54:35 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-10-all-mipsel | 4.19.132-1 | mipsel linux-headers-4.19.0-12-all-mipsel | 4.19.152-1 | mipsel ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 05 Dec 2020 10:00:37 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: chromium-ublock-origin | 1.22.2+dfsg-1~deb10u1 | all xul-ext-ublock-origin | 1.22.2+dfsg-1~deb10u1 | all ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by ublock-origin - based on source metadata) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 05 Dec 2020 09:31:10 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: nostalgy | 0.2.36-1.2 | source xul-ext-nostalgy | 0.2.36-1.2 | all Closed bugs: 972005 ------------------- Reason ------------------- RoQA; incompatible with newer Thunderbird versions ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 05 Dec 2020 09:31:39 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: sieve-extension | 0.3.0+dfsg-1 | source xul-ext-sieve | 0.3.0+dfsg-1 | all Closed bugs: 972007 ------------------- Reason ------------------- RoQA; incompatible with newer Thunderbird versions ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 05 Dec 2020 09:32:02 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: browser-plugin-freshplayer-pepperflash | 0.3.9-2 | amd64, arm64, armel, armhf, i386, mips, mips64el, mipsel, ppc64el, s390x freshplayerplugin | 0.3.9-2 | source Closed bugs: 974698 ------------------- Reason ------------------- RoQA; Obsolete, Unsupported by browsers, EOL upstream ---------------------------------------------- ========================================================================= base-files (10.3+deb10u7) buster; urgency=medium . * Change /etc/debian_version to 10.7, for Debian 10.7 point release. blueman (2.0.8-1+deb10u1) buster-security; urgency=medium . * Add patch to address CVE-2020-15238 and add libpolkit-agent-1-dev to build deps choose-mirror (2.99+deb10u2) buster; urgency=medium . * Update Mirrors.masterlist. codemirror-js (5.43.0-1+deb10u1) buster-security; urgency=high . * Backport patch from 5.58.2 for CVE-2020-7760 cups (2.2.10-6+deb10u4) buster; urgency=medium . * Backport upstream fix: - backend,scheduler/ipp.c: Fix 'printer-alert' invalid free (Closes: #961345) dav4tbsync (1.23-1~deb10u1) buster; urgency=medium . * [a7dd92d] Merge branch 'debian/sid' into debian/buster to work with Thunderbird 78.x * [0de401e] Correct path of file dav4tbsync (1.21-1) unstable; urgency=medium . * [6d81e6d] New upstream version 1.21 * [4029398] bumpd tb version to 78.3 and webext-tbsync to 2.18 dav4tbsync (1.21-1~deb10u1) buster; urgency=medium . * [dc48b60] Prepared for release: debian/changelog * [6db535b] Correct versioning vor release in buster: debian/changelog * [e79b91e] Prepared for release in buster (proposed-updates) * [7f0db57] Icon changed path dav4tbsync (1.16-1) unstable; urgency=medium . * prepared for unstable (Closes: #971770) + to fit compatibility with thunderbird 78.x * [67b1277] Added missing bug tracker to d/u/metadata dav4tbsync (1.16-1~exp1) experimental; urgency=medium . [ Mechtilde Stehmann ] * [2df0c43] New upstream version 1.15.5~beta * [be68ae5] adapted d/ to new version 1.15.5-beta . [ Carsten Schoenert ] * [c6f900a] d/gbp.conf: adding helper for git-buildpackage * [0ff72ed] New upstream version 1.16 * [cc1dba4] d/control: add new B-D on zip * [c3342df] d/copyright: update and reformat MIT license * [29f7431] d/rules: adjust build process to fit recent requirements * [743bf33] d/webext-dav4tbsync.links: updating sequencer to new requirement * [8e1b122] d/webext-dav4tbsync.install: adjust the *.xpi file only * [44baf78] d/webext-dav4tbsync.docs: drop not needesd LICENSE files dav4tbsync (1.16-1~deb10u1) buster; urgency=medium . * [bc487f4] Bumped to version 1.16 to fit compatibility + to thunderbird version 78.x (Closes:#971808) dav4tbsync (1.9-2~exp1) experimental; urgency=medium . * [1d04328] Changed maintainer email in d/control to avoid lintian warning * [276c091] Adapt for using TB >=76 dav4tbsync (1.9-1) unstable; urgency=medium . * [25b4ab5] New upstream version 1.9 debian-installer (20190702+deb10u7) buster; urgency=medium . [ Julien Cristau ] * Add grub2 to built-using (closes: #968998). . [ Cyril Brulebois ] * Bump Linux ABI to 4.19.0-13. debian-installer-netboot-images (20190702+deb10u7) buster; urgency=medium . * Update to 20190702+deb10u7, from buster-proposed-updates. distro-info-data (0.41+deb10u3) buster; urgency=medium . * Update data to 0.45: - Add Ubuntu 21.04, Hirsute Hippo. dpdk (18.11.10-1~deb10u2) buster; urgency=medium . * Backport patch to fix armhf build with NEON dpdk (18.11.10-1~deb10u1) buster; urgency=medium . * New upstream version 18.11.10 - Remote Code Execution in vhost_crypto (VM Escape) (CVE-2020-14374) - Time-of-check time-of-use vulnerabilities throughout (CVE-2020-14375) - Buffer overflow copying iv_data from guest to host (CVE-2020-14376) - write_back_data buffer over read (CVE-2020-14377) - Partial Denial of Service due to Integer Underflow (CVE-2020-14378) * New upstream version 18.11.9; For a list of changes see http://doc.dpdk.org/guides-18.11/rel_notes/release_18_11.html * Refresh patch to remove fuzz from 18.11.10 * Add rte_rawdev_dump to symbols file. It is not a new function, it was simply missing from the map file by mistake. eas4tbsync (1.20-1~deb10u1) buster; urgency=medium . * [60116af] Prepared for release: debian/changelog * [c67f390] Correct versioning for release in buster: debian/changelog * [1244201] Prepared for release in buster (proposed-updates) * [890f1ec] Icon changed path * [8c3444e] Improved d/copyright eas4tbsync (1.16-1) unstable; urgency=medium . * prepared for unstable (Closes: #971771) + to fit compatibility with thunderbird 78.x * [3f2710b] Added missing bug tracker to d/u/metadata eas4tbsync (1.16-1~exp1) experimental; urgency=medium . [ Mechtilde Stehmann ] * [1c2afd6] New upstream version 1.15.5~beta * UNRELEASED * [3564f2e] adapted d/ to new version 1.15.5-beta . [ Carsten Schoenert ] * [2f00b70] d/gbp.conf: adding helper for git-buildpackage * [f512c73] New upstream version 1.16 * [00cc0d6] d/control: add new B-D on zip * [685d0b7] d/copyright: update content, remove trailing whitespace * [ac56fb2] d/rules: adjust build process to fit recent requirements * [fb1fd87] d/webext-eas4tbsync.links: updating sequencer to new requirement * [0cf7043] d/webext-eas4tbsync.install: adjust the *.xpi file only * [64ac9ca] d/webext-eas4tbsync.docs: install README files dedicated eas4tbsync (1.16-1~deb10u1) buster; urgency=medium . * [b87d1b6] Bumped to version 1.16 to fit compatibility + to thunderbird version 78.x (Closes:#971809) eas4tbsync (1.14-2~exp1) experimental; urgency=medium . * [d5e4038] Adapt using TB>=76 eas4tbsync (1.14-1) unstable; urgency=medium . * [520424f] New upstream version 1.14 * [72f7bd0] Changed maintainer email in d/control to avoid lintian warning eas4tbsync (1.12-1) unstable; urgency=medium . * [a3311d7] New upstream version 1.12 edk2 (0~20181115.85588389-3+deb10u2) buster; urgency=medium . * Fix integer overflow in DxeImageVerificationHandler. (CVE-2019-14562) (Closes: #968819) - d/p/0001-SecurityPkg-DxeImageVerificationLib-extract-SecDataD.patch - d/p/0002-SecurityPkg-DxeImageVerificationLib-assign-WinCertif.patch - d/p/0003-SecurityPkg-DxeImageVerificationLib-catch-alignment-.patch efivar (37-2+deb10u1) buster; urgency=medium . * Backport important fixes from unstable: + fix uninitialized variable in parse_acpi_root, saving possible segfault. + Add support for nvme-fabrics and nvme-subsystem devices. Closes: #975417 enigmail (2:2.2.4-0.2~deb10u1) buster; urgency=medium . * Non-maintainer upload. * Rebuild for buster. * Don't run tests, the build dependency eslint is not in buster. enigmail (2:2.2.4-0.1) unstable; urgency=medium . * Non-maintainer upload . [ Gregor Riepl ] * new upstream release (Closes: #970111) * this version contains a migration wizard for converting existing enigmail configurations to the built-in openpgp support in thunderbird * it will no longer be maintained when thunderbird 78+ enters stable enigmail (2:2.1.6+ds1-1) unstable; urgency=medium . * new upstream release * drop patches already applied upstream * include more patches from upstream enigmail (2:2.1.5+ds1-1) unstable; urgency=medium . * new upstream release * drop patches already upstreamed * drop workaround for util/Preprocessor.py, since it is not used any longer * refresh patches * import bugfixes from upstream * fix parallel build * drop unnecessary debian/source/include-binaries * drop shlibs:Depends, since enigmail is now arch: all * standards-version: bump to 4.5.0 (no changes needed) enigmail (2:2.1.3+ds1-4) unstable; urgency=medium . * convert to python3 * convert unit tests to python3 as well * wrap-and-sort -ast espeak (1.48.04+dfsg-7+deb10u1) buster; urgency=medium . * patches/mbrola-fr4: Fix using espeak with mbrola-fr4 when mbrola-fr1 is not installed. fastd (18-3+deb10u1) buster; urgency=medium . * debian/patches: - Add 0001-receive-fix-buffer-leak-when-receiving-invalid-packe.patch, CVE-2020-27638: Fix DoS'able memory leak when receiving too many invalid packets (Closes: #972521) firefox-esr (78.5.0esr-1~deb10u1) buster-security; urgency=medium . * New upstream release. * Fixes for mfsa2020-51, also known as: CVE-2020-26951, CVE-2020-16012, CVE-2020-26953, CVE-2020-26956, CVE-2020-26958, CVE-2020-26959, CVE-2020-26960, CVE-2020-26961, CVE-2020-26965, CVE-2020-26968. firefox-esr (78.4.1esr-2) unstable; urgency=medium . * Cargo.lock, third_party/rust/proc-macro2, third_party/rust/syn: Update to fix FTBFS with rustc 1.47. bz#1663715. firefox-esr (78.4.1esr-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2020-49, also known as CVE-2020-26950. firefox-esr (78.4.1esr-1~deb10u1) buster-security; urgency=medium . * New upstream release. * Fixes for mfsa2020-49, also known as CVE-2020-26950. firefox-esr (78.4.0esr-2) unstable; urgency=medium . * debian/rules: Restore parts of debian/rules that were removed by mistake in 78.4.0esr-1, causing FTBFS on at least amd64. firefox-esr (78.4.0esr-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2020-46, also known as: CVE-2020-15969, CVE-2020-15683. . [Emilio Pozuelo Monfort] * debian/browser.bug-presubj.in, debian/control.in, debian/rules, debian/symbols.mk, debian/upstream.mk: Remove support for jessie. * debian/control.in, debian/rules: stretch: build with LLVM 7, 4.0 doesn't support -std=gnu++17. * debian/rules: - stretch: build with GCC 7 from gcc-mozilla. - Call python with -B when regenerating the control files, so as to not generate bytecode files. - Call debian/l10n/gen with C.UTF-8 as the locale, otherwise it fails in stretch when opening the iso-codes files. - stretch: don't set NASM on !x86. firefox-esr (78.4.0esr-1~deb10u2) buster-security; urgency=medium . * debian/rules: Restore parts of debian/rules that were removed by mistake in 78.4.0esr-1~deb10u1, causing FTBFS on at least amd64. firefox-esr (78.4.0esr-1~deb10u1) buster-security; urgency=medium . * New upstream release. * Fixes for mfsa2020-46, also known as: CVE-2020-15969, CVE-2020-15683. . [Emilio Pozuelo Monfort] * debian/browser.bug-presubj.in, debian/control.in, debian/rules, debian/symbols.mk, debian/upstream.mk: Remove support for jessie. * debian/control.in, debian/rules: stretch: build with LLVM 7, 4.0 doesn't support -std=gnu++17. * debian/rules: - stretch: build with GCC 7 from gcc-mozilla. - Call python with -B when regenerating the control files, so as to not generate bytecode files. - Call debian/l10n/gen with C.UTF-8 as the locale, otherwise it fails in stretch when opening the iso-codes files. - stretch: don't set NASM on !x86. . [Mike Hommey] * third-party/rust/authenticator/src/linux/ioctl_mips*.rs: Add missing bindings for mips*. firefox-esr (78.3.0esr-2) unstable; urgency=medium . * third-party/rust/authenticator/src/linux/ioctl_mips*.rs: Add missing bindings for mips*. firefox-esr (78.3.0esr-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2020-43, also known as: CVE-2020-15677, CVE-2020-15676, CVE-2020-15678, CVE-2020-15673. . * js/src/jit/mips-shared/CodeGenerator-mips-shared.cpp: Add CodeGenerator::visitWasmRegisterResult function. bz#1649655. * js/src/jit/none/MacroAssembler-none.h: Bump CodeAlignment to 8. bz#1666646. firefox-esr (78.3.0esr-1~deb10u1) buster-security; urgency=medium . * New upstream release. * Fixes for mfsa2020-43, also known as: CVE-2020-15677, CVE-2020-15676, CVE-2020-15678, CVE-2020-15673. . * js/src/jit/mips-shared/CodeGenerator-mips-shared.cpp: Add CodeGenerator::visitWasmRegisterResult function. bz#1649655. * js/src/jit/none/MacroAssembler-none.h: Bump CodeAlignment to 8. bz#1666646. * third-party/rust/authenticator/src/linux/ioctl_mips*.rs: Add missing bindings for mips*. . firefox-esr (78.2.0esr-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2020-32 and mfsa2020-38, also known as: CVE-2020-15652, CVE-2020-6514, CVE-2020-15655, CVE-2020-15653, CVE-2020-6463, CVE-2020-15656, CVE-2020-15658, CVE-2020-15654, CVE-2020-15659, CVE-2020-15664, CVE-2020-15670. . firefox (78.0.2-1) unstable; urgency=medium . * New upstream release. * Fix for mfsa2020-28. . firefox (78.0.1-1) unstable; urgency=medium . * New upstream release. . * debian/rules: - Replace --disable-ion with --disable-jit. - Don't generated the ICU data file for big-endian manually. . * js/src/jit/mips-shared/MacroAssembler-mips-shared-inl.h, js/src/jit/mips64/MacroAssembler-mips64-inl.h: Add branchTestSymbol and fallibleUnboxPtr. bz#1642265. * config/external/icu/data/*icudata*, config/external/icu/data/moz.build, js/moz.configure: Unify the includion of the ICU data file. bz#1650299. * config/external/icu/common/moz.build, config/external/icu/common/sources.mozbuild, config/external/icu/data/convert_icudata.py, config/external/icu/data/moz.build, config/external/icu/defs.mozbuild, config/external/icu/i18n/moz.build, config/external/icu/i18n/sources.mozbuild, config/external/icu/icupkg/moz.build, config/external/icu/icupkg/sources.mozbuild, config/external/icu/moz.build, config/external/icu/toolutil/moz.build, config/external/icu/toolutil/sources.mozbuild, config/recurse.mk, intl/icu_sources_data.py: Automatically convert the little-endian ICU data file for big-endian builds. . firefox (78.0-1) unstable; urgency=medium . * New upstream release * Fixes for mfsa2020-24, also known as: CVE-2020-12415, CVE-2020-12416, CVE-2020-12417, CVE-2020-12418, CVE-2020-12419, CVE-2020-12420, CVE-2020-12421, CVE-2020-12422, CVE-2020-12424, CVE-2020-12425, CVE-2020-12426. . * debian/control*: Bump nss build dependency. * debian/control*, debian/rules: Remove build dependency on python2.7. * debian/browser.mozconfig.in: Remove obsolete configure options. . * build/virtualenv_packages.txt: Don't install enum and enum34 virtualenv packages in python3 virtualenvs. bz#1632429. . firefox (77.0-1) unstable; urgency=medium . * New upstream release * Fixes for mfsa2020-20, also known as: CVE-2020-12399, CVE-2020-12405, CVE-2020-12406, CVE-2020-12407, CVE-2020-12408, CVE-2020-12409, CVE-2020-12410, CVE-2020-12411. . * debian/l10n/gen, debian/l10n_revs.py, debian/latest_nightly.py, debian/rules, debian/symbols.mk: Convert to python 3. * debian/control*: Bump nss and cbindgen build dependencies. * debian/rules: - Revert PKCS11 API change from 76.0.1-1 because the new API is now explicitly used by upstream code. - Stop passing -fno-schedule-insns2 -fno-lifetime-dse and -fno-delete-null-pointer-checks to GCC. . firefox (76.0.1-2) unstable; urgency=medium . * debian/browser.mozconfig.in: Allow addon sideload. Closes: #960084. * debian/control*: Bump nasm build dependency to 2.14. . firefox (76.0.1-1) unstable; urgency=medium . * New upstream release . * debian/rules: Force using old PKCS11 API when building against newer NSS releases. Closes: #960012. . firefox (76.0-2) unstable; urgency=medium . * Cargo.lock, third_party/rust/typenum/*: Upgrade typename to 1.12.0. bz#1635671. Fixes FTBFS on i386. . firefox (76.0-1) unstable; urgency=medium . * New upstream release * Fixes for mfsa2020-16, also known as: CVE-2020-12387, CVE-2020-6831, CVE-2020-12390, CVE-2020-12391, CVE-2020-12392, CVE-2020-12394, CVE-2020-12395, CVE-2020-12396. . * debian/control*: Bump nss build dependency. * debian/browser.install.in: Don't install blocklist.xml, it's not there anymore. . * config/recurse.mk: Don't depend on in-tree NSS/NSPR when building against system NSS/NSPR. bz#1634926. . firefox (75.0-2) unstable; urgency=medium . * build/moz.configure/util.configure: In configure, pass extra compiler flags after source path. Fixes FTBFS with --with-system-libvpx with gcc-9 >= 9-20190125-2. . firefox (75.0-1) unstable; urgency=medium . * New upstream release * Fixes for mfsa2020-12, also known as: CVE-2020-6821, CVE-2020-6822, CVE-2020-6823, CVE-2020-6824, CVE-2020-6825, CVE-2020-6826. . * debian/control*: Bump nss, rustc, cargo, cbindgen and nodejs build dependencies. * debian/control*, debian/rules: Build against libvpx >= 1.8. We used to build-conflicts with that version, but that's not necessary now that upstream needs that version. * debian/browser.install.in: Don't install .chk files, they aren't produced anymore. * debian/browser.install.in, debian/browser.mozconfig.in, debian/control*, debian/rules: Don't build against system sqlite. This is not supported anymore. . * python/mozbuild/mozbuild/nodeutil.py: Allow to build with older versions of nodejs 10. . firefox (74.0.1-1) unstable; urgency=medium . * New upstream release * Fixes for mfsa2020-11, also known as: CVE-2020-6819, CVE-2020-6820. . firefox (74.0-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2020-08, also known as: CVE-2020-6805, CVE-2020-6806, CVE-2020-6807, CVE-2020-6808, CVE-2020-6809, CVE-2020-6810, CVE-2020-6811, CVE-2019-20503, CVE-2020-6812, CVE-2020-6813, CVE-2020-6814, CVE-2020-6815. . * debian/rules: - Use the -o flag to redirect preprocessor output rather than shell redirection to work around bz#1621465. - Remove obj-*/.mozbuild on clean. * debian/control*: Bump nspr, nss, sqlite and cbindgen build dependencies. . * config/mozunit/mozunit/mozunit.py, python/mozbuild/mozbuild/action/langpack_manifest.py, python/mozbuild/mozbuild/jar.py, python/mozbuild/mozbuild/preprocessor.py, python/mozbuild/mozbuild/test/backend/test_build.py: Use io.open() rather than open() in mozbuild/preprocessor.py. bz#1613263. * dom/canvas/ClientWebGLContext.h, dom/canvas/WebGLContext.h: Fix build errors with -Werror=format-security with GCC. . firefox (73.0.1-1) unstable; urgency=medium . * New upstream release. . * gfx/2d/SwizzleNEON.cpp: Fix NEON compile error with gcc and RGB unpacking. bz#1610814. . firefox (73.0-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2020-05, also known as: CVE-2020-6796, CVE-2020-6798, CVE-2020-6800, CVE-2020-6801. . * debian/control*: Bump nss, rustc, cargo and cbindgen build dependencies. * debian/browser.install.in: Do not install now removed chrome.manifest and libnssdbm3.* files. . firefox (72.0.2-1) unstable; urgency=medium . * New upstream release. . firefox (72.0.1-1) unstable; urgency=medium . * New upstream release. * Fix for mfsa2020-03, also known as CVE-2019-17026. . firefox (72.0-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2020-01, also known as: CVE-2019-17016, CVE-2019-17017, CVE-2019-17020, CVE-2019-17022, CVE-2019-17023, CVE-2019-17024, CVE-2019-17025. . * debian/rules: - Don't build with --compress-debug-sections on jessie. - Use sourcestamp.txt for MOZ_BUILD_DATE. - Avoid running dh_update_autotools_config. We're dealing with this manually and we don't want config.* files being touched under third_party/rust. * debian/control*: - Bump nspr, nss and sqlite build dependencies. - Add missing dependency on libdrm-dev. * debian/browser.mozconfig.in: Explicitly build with wayland support enabled. . * intl/icu_sources_data.py: Don't build ICU in parallel. * gfx/skia/skia/third_party/skcms/src/Transform_inl.h: Work around older GCC ICE on arm. (Thanks Emilio Pozuelo Monfort) . firefox (71.0-2) unstable; urgency=medium . * dom/indexedDB/ActorsParent.cpp: Work around lack of support for http://eel.is/c++draft/class.temporary#6.7 in compilers. bz#1601707 Closes: #946249, #946547. * layout/generic/WritingModes.h, servo/ports/geckolib/cbindgen.toml: Fix build with newer cbindgen. bz#1602358. . firefox (71.0-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2019-36, also known as: CVE-2019-11756, CVE-2019-17008, CVE-2019-11745, CVE-2019-17014, CVE-2019-17010, CVE-2019-17005, CVE-2019-17011, CVE-2019-17012, CVE-2019-17013. . * debian/l10n/gen: Add support for ca-valencia. * debian/control*: Bump nspr, nss, rustc and cargo build dependencies. * debian/rules, debian/control.in: - Build with nodejs-mozilla on jessie and stretch. - Build with nasm-mozilla on jessie and stretch. - Don't build with system libvpx on stretch. (Thanks Emilio Pozuelo Monfort) . firefox (70.0.1-1) unstable; urgency=medium . * New upstream release. . firefox (70.0-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2019-34, also known as: CVE-2018-6156, CVE-2019-15903, CVE-2019-11757, CVE-2019-11759, CVE-2019-11760, CVE-2019-11761, CVE-2019-11762, CVE-2019-11763, CVE-2019-11765, CVE-2019-17000, CVE-2019-17001, CVE-2019-17002, CVE-2019-11764. . * debian/control*: Bump nss, sqlite, rustc, cargo, and cbindgen build dependencies. . firefox (69.0.2-1) unstable; urgency=medium . * New upstream release. . firefox (69.0.1-1) unstable; urgency=medium . * New upstream release. * Fix for mfsa2019-31, also known as CVE-2019-11754. . * debian/control*: - Bump nss, rustc, cargo and cbindgen build dependencies. Closes: #939412. - Remove build dependency versions where Debian has had the right version since Jessie. * debian/source/lintian-overrides: Adjust DotZlib.chm path. . firefox (69.0-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2019-25, also known as: CVE-2019-11746, CVE-2019-11744, CVE-2019-11742, CVE-2019-11752, CVE-2019-9812, CVE-2019-11741, CVE-2019-11743, CVE-2019-11748, CVE-2019-11749, CVE-2019-5849, CVE-2019-11750, CVE-2019-11737, CVE-2019-11738, CVE-2019-11747, CVE-2019-11734, CVE-2019-11735, CVE-2019-11740. . * debian/upstream.mk: Read source repo and revision from json when getting upstream info. Instead of the .txt file that doesn't exist as of 69. * debian/control*: - Remove unused build dependency against python-ply. - Remove python-minimal build dependency. All supported versions of Debian have a new enough version. - Remove build dependency against libjsoncpp-dev. * debian/l10n/gen, debian/latest_nightly.py, debian/rules, debian/symbols.mk, debian/upstream.mk, debian/watch: Use explicit python2.7 instead of python. * debian/rules: Use `mach python --no-virtualenv` to invoke the preprocessor. . * config/system-headers, toolkit/crashreporter/jsoncpp/src/lib_json/moz.build, toolkit/crashreporter/minidump-analyzer/moz.build: Revert hack to build against libjsoncpp. It was fine when it was only used by the crash reporter, but that's not the case anymore, and it breaks the build. Also, the bundled version is newer than what is available in Debian. firefox-esr (78.2.0esr-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2020-32 and mfsa2020-38, also known as: CVE-2020-15652, CVE-2020-6514, CVE-2020-15655, CVE-2020-15653, CVE-2020-6463, CVE-2020-15656, CVE-2020-15658, CVE-2020-15654, CVE-2020-15659, CVE-2020-15664, CVE-2020-15670. firefox-esr (68.12.0esr-1) unstable; urgency=medium . * New upstream release * Fixes for mfsa2020-37, also known as CVE-2020-15664 and CVE-2020-15669. fish (3.0.2-2+deb10u1) buster; urgency=medium . * Non-maintainer upload. + With permission from package maintainer and uploader. . [ Miao Wang ] * debian/patches: Add patch to ensure tty options are restored on exit. This fixes upstream issue 5663. (Closes: #970777) freecol (0.11.6+dfsg2-2+deb10u1) buster; urgency=medium . * CVE-2018-1000825 (Closes: #917023) freetype (2.9.1-3+deb10u2) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Fix heap buffer overflow (CVE-2020-15999) (Closes: #972586) gajim-omemo (2.6.27-1+deb10u1) buster; urgency=medium . * add patch: Switch to 12 byte IV glances (3.1.0-1+deb10u1) buster; urgency=medium . * d/control: Update my lastname. * Now glances listen on 127.0.0.1. (Closes: #970812) httpcomponents-client (4.5.7-1+deb10u1) buster-security; urgency=high . * Team upload. * Fix CVE-2020-13956: Incorrect handling of malformed authority component by URIUtils#extractHost. iptables-persistent (1.0.11+deb10u1) buster; urgency=medium . * [cdc4a5] Do not load modules. Thanks to Thorsten Glaser (Closes: #963012) * [cdc4a5] Do not call log_action_cont_msg() Thanks to Synthea (Closes: #961589) * [b6e6f9] Backport the logic to flush rules from 1.0.14 krb5 (1.17-3+deb10u1) buster-security; urgency=medium . * CVE-2020-28196 (Closes: #973880) lacme (0.5-1+deb10u2) buster; urgency=medium . * Use upstream certificate chain instead of an hardcoded one. This is a breaking change. The certificate indicated by 'CAfile' is no longer used as is in 'certificate-chain' (along with the leaf cert). The chain returned by the ACME v2 endpoint is used instead. This allows for more flexbility with respect to key/CA rotation, cf. https://letsencrypt.org/2020/11/06/own-two-feet.html and https://community.letsencrypt.org/t/beginning-issuance-from-r3/139018 * Additional current/planned CA certificates can be found under /usr/local/share/lacme: - lets-encrypt-e[12].pem - lets-encrypt-r[34]-cross-signed.pem - lets-encrypt-r[34].pem - letsencryptauthorityx[34].pem See https://letsencrypt.org/certificates/ * Moreover 'CAfile' now defaults to /usr/share/lacme/ca-certificates.crt which is a concatenation of all known active CA certificates (which includes the previous default). Closes: #975862. libdatetime-timezone-perl (1:2.23-1+2020d) buster; urgency=medium . * Update to Olson database version 2020d. This update includes contemporary changes for Palestine. libdatetime-timezone-perl (1:2.23-1+2020c) buster; urgency=medium . * Update to Olson database version 2020c. This update includes contemporary changes for Fiji. libdatetime-timezone-perl (1:2.23-1+2020b) buster; urgency=medium . * Update to Olson database version 2020b. This update includes contemporary changes for Morocco, Casey Station, and the Yukon. This release also removes the very long-deprecated "US/Pacific-New" zone name. libexif (0.6.21-5.1+deb10u5) buster-security; urgency=medium . * Add upstream patch to prevent compiler optimization of a buffer overflow check (fixes CVE-2020-0452). libimobiledevice (1.2.1~git20181030.92c5462-2+deb10u1) buster; urgency=medium . * d/patches: partial support for iOS 14 libjpeg-turbo (1:1.5.2-2+deb10u1) buster; urgency=medium . * CVE-2018-1152 (Closes: #902950) * CVE-2018-14498 (Closes: #924678) * CVE-2019-2201 * CVE-2020-13790 (Closes: #962829) libproxy (0.4.15-5+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Fix buffer overflow when PAC is enabled (CVE-2020-26154) (Closes: #968366) * Rewrite url::recvline to be nonrecursive (CVE-2020-25219) (Closes: #971394) libxml2 (2.9.4+dfsg1-7+deb10u1) buster; urgency=medium . * CVE-2017-18258 (Closes: #895245) * CVE-2018-14404 (Closes: #901817) * CVE-2018-14567 * CVE-2019-19956 * CVE-2019-20388 (Closes: #949583) * CVE-2020-7595 (Closes: #949582) linux (4.19.160-2) buster; urgency=medium . * net: Disable MLX5_ESWITCH on mips and mipsel (Fixes FTBFS) linux (4.19.160-1) buster; urgency=medium . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.153 - [ppc64el] ibmveth: Switch order of ibmveth_helper calls. - [ppc64el] ibmveth: Identify ingress large send packets. - ipv4: Restore flowi4_oif update before call to xfrm_lookup_route - mlx4: handle non-napi callers to napi_poll - [armhf] net: fec: Fix phy_device lookup for phy_reset_after_clk_enable() - [armhf] net: fec: Fix PHY init after phy_reset_after_clk_enable() - net: fix pos incrementment in ipv6_route_seq_next - net/smc: fix valid DMBE buffer sizes - net: usb: qmi_wwan: add Cellient MPL200 card - tipc: fix the skb_unshare() in tipc_buf_append() - net/ipv4: always honour route mtu during forwarding - r8169: fix data corruption issue on RTL8402 - [arm*] binder: fix UAF when releasing todo list (CVE-2020-0423) - ALSA: bebob: potential info leak in hwdep_read() - net: hdlc: In hdlc_rcv, check to make sure dev is an HDLC device - [x86,ppc64el] net: hdlc_raw_eth: Clear the IFF_TX_SKB_SHARING flag after calling ether_setup - net/sched: act_tunnel_key: fix OOB write in case of IPv6 ERSPAN tunnels - nfc: Ensure presence of NFC_ATTR_FIRMWARE_NAME attribute in nfc_genl_fw_download() - tcp: fix to update snd_wl1 in bulk receiver fast path - r8169: fix operation under forced interrupt threading - icmp: randomize the global rate limiter (CVE-2020-25705) - ALSA: hda/realtek: Enable audio jacks of ASUS D700SA with ALC887 - cifs: remove bogus debug code - cifs: Return the error from crypt_message when enc/dec key not found. - [x86] KVM: x86/mmu: Commit zap of remaining invalid pages when recovering lpages - [x86] KVM: SVM: Initialize prev_ga_tag before use - crypto: algif_aead - Do not set MAY_BACKLOG on the async path - [x86] EDAC/i5100: Fix error handling order in i5100_init_one() - [x86] fpu: Allow multiple bits in clearcpuid= parameter - [arm64] drivers/perf: xgene_pmu: Fix uninitialized resource struct - [x86] nmi: Fix nmi_handle() duration miscalculation - [amd64] x86/events/amd/iommu: Fix sizeof mismatch - crypto: algif_skcipher - EBUSY on aio should be an error - media: tuner-simple: fix regression in simple_set_radio_freq - media: uvcvideo: Set media controller entity functions - media: uvcvideo: Silence shift-out-of-bounds warning - [armhf] media: omap3isp: Fix memleak in isp_probe - [armhf] media: ti-vpe: Fix a missing check and reference count leak - regulator: resolve supply after creating regulator - ath10k: provide survey info as accumulated data - Bluetooth: hci_uart: Cancel init work before unregistering - ath6kl: prevent potential array overflow in ath6kl_add_new_sta() - ath9k: Fix potential out of bounds in ath9k_htc_txcompletion_cb() - ath10k: Fix the size used in a 'dma_free_coherent()' call in an error handling path - [arm64] wcn36xx: Fix reported 802.11n rx_highest rate wcn3660/wcn3680 - [arm64] ASoC: qcom: lpass-platform: fix memory leak - [arm64] ASoC: qcom: lpass-cpu: fix concurrency issue - brcmfmac: check ndev pointer - mwifiex: Do not use GFP_KERNEL in atomic context - [x86] staging: rtl8192u: Do not use GFP_KERNEL in atomic context - [x86] drm/gma500: fix error check - scsi: qla4xxx: Fix an error handling path in 'qla4xxx_get_host_stats()' - scsi: qla2xxx: Fix wrong return value in qla_nvme_register_hba() - scsi: csiostor: Fix wrong return value in csio_hw_prep_fw() - [x86] VMCI: check return value of get_user_pages_fast() for errors - [ppc64el] tty: hvcs: Don't NULL tty->driver_data until hvcs_cleanup() - pty: do tty_flip_buffer_push without port->lock in pty_write - [x86] pwm: lpss: Fix off by one error in base_unit math in pwm_lpss_prepare() - [x86] pwm: lpss: Add range limit check for the base_unit register value - [x86] video: fbdev: vga16fb: fix setting of pixclock because a pass-by-value error - video: fbdev: sis: fix null ptr dereference - video: fbdev: radeon: Fix memleak in radeonfb_pci_register - HID: roccat: add bounds checking in kone_sysfs_write_settings() - [armhf] pinctrl: mcp23s08: Fix mcp23x17_regmap initialiser - [armhf] pinctrl: mcp23s08: Fix mcp23x17 precious range - net/mlx5: Don't call timecounter cyc2time directly from 1PPS flow - [arm64,armhf] net: stmmac: use netif_tx_start|stop_all_queues() function - [arm64] cpufreq: armada-37xx: Add missing MODULE_DEVICE_TABLE - ath6kl: wmi: prevent a shift wrapping bug in ath6kl_wmi_delete_pstream_cmd() - [amd64] misc: mic: scif: Fix error handling path - [arm*] usb: dwc2: Fix parameter type in function pointer prototype - quota: clear padding in v2r1_mem2diskdqb() - HID: hid-input: fix stylus battery reporting - net: enic: Cure the enic api locking trainwreck - [mips*] mfd: sm501: Fix leaks in probe() - iwlwifi: mvm: split a print to avoid a WARNING in ROC - usb: gadget: f_ncm: fix ncm_bitrate for SuperSpeed and above. - usb: gadget: u_ether: enable qmult on SuperSpeed Plus as well - nl80211: fix non-split wiphy information - [arm*] usb: dwc2: Fix INTR OUT transfers in DDMA mode. - scsi: target: tcmu: Fix warning: 'page' may be used uninitialized - scsi: be2iscsi: Fix a theoretical leak in beiscsi_create_eqs() - mwifiex: fix double free - ipvs: clear skb->tstamp in forwarding path - netfilter: nf_log: missing vlan offload tag and proto - mm/memcg: fix device private memcg accounting - mm, oom_adj: don't loop through tasks in __set_oom_adj when not necessary - IB/mlx4: Fix starvation in paravirt mux/demux - IB/mlx4: Adjust delayed work when a dup is observed - [powerpc*] pseries: Fix missing of_node_put() in rng_init() - [powerpc*] icp-hv: Fix missing of_node_put() in success path - RDMA/ucma: Fix locking for ctx->events_reported - RDMA/ucma: Add missing locking around rdma_leave_multicast() - [powerpc*] pseries: explicitly reschedule during drmem_lmb list traversal - mtd: mtdoops: Don't write panic data twice - [armel,armhf] ARM: 9007/1: l2c: fix prefetch bits init in L2X0_AUX_CTRL using DT values - xfs: limit entries returned when counting fsmap records - xfs: fix high key handling in the rt allocator's query_range function - RDMA/qedr: Fix use of uninitialized field - RDMA/qedr: Fix inline size returned for iWARP https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.154 - [powerpc*] 64s/radix: Fix mm_cpumask trimming race vs kthread_use_mm - RDMA/cma: Remove dead code for kernel rdmacm multicast - RDMA/cma: Consolidate the destruction of a cma_multicast in one place - [arm64] RDMA/hns: Set the unsupported wr opcode - [arm64] RDMA/hns: Fix missing sq_sig_type when querying QP - overflow: Include header file with SIZE_MAX declaration - [powerpc*] perf: Exclude pmc5/6 from the irrelevant PMU group constraints - [poerpc*] cpufreq: powernv: Fix frame-size-overflow in powernv_cpufreq_reboot_notifier - IB/rdmavt: Fix sizeof mismatch - f2fs: wait for sysfs kobject removal before freeing f2fs_sb_info - lib/crc32.c: fix trivial typo in preprocessor condition - rapidio: fix error handling path - rapidio: fix the missed put_device() for rio_mport_add_riodev - mailbox: avoid timer start from callback - [arm64,armhf] clk: rockchip: Initialize hw to error to avoid undefined behavior - [arm*] clk: bcm2835: add missing release if devm_clk_hw_register fails - watchdog: Fix memleak in watchdog_cdev_register - watchdog: Use put_device on error - svcrdma: fix bounce buffers for unaligned offsets and multiple pages - ext4: limit entries returned when counting fsmap records - vfio/pci: Clear token on bypass registration failure - [amd64,arm64] vfio iommu type1: Fix memory leak in vfio_iommu_type1_pin_pages - SUNRPC: fix copying of multiple pages in gss_read_proxy_verf() - [armhf] Input: omap4-keypad - fix handling of platform_get_irq() error - [armhf] Input: twl4030_keypad - fix handling of platform_get_irq() error - [armhf] Input: sun4i-ps2 - fix handling of platform_get_irq() error - [x86] KVM: emulating RDPID failure shall return #UD rather than #GP - netfilter: conntrack: connection timeout after re-register - netfilter: nf_fwd_netdev: clear timestamp in forwarding path - [armhf] dts: sun8i: r40: bananapi-m2-ultra: Fix dcdc1 regulator - [armhf] memory: omap-gpmc: Fix a couple off by ones - [powerpc*] powernv/dump: Fix race while processing OPAL dump - nvmet: fix uninitialized work for zero kato - [x86,arm64] i2c: core: Restore acpi_walk_dep_device_list() getting called after registering the ACPI i2c devs - block: ratelimit handle_bad_sector() message - [x86] crypto: ccp - fix error handling - media: firewire: fix memory leak - media: ati_remote: sanity check for both endpoints - media: media/pci: prevent memory leak in bttv_probe - media: uvcvideo: Ensure all probed info is returned to v4l2 - mmc: sdio: Check for CISTPL_VERS_1 buffer size - media: saa7134: avoid a shift overflow - fs: dlm: fix configfs memory leak - [arm64] media: venus: core: Fix runtime PM imbalance in venus_probe - ip_gre: set dev->hard_header_len and dev->needed_headroom properly - mac80211: handle lack of sband->bitrates in rates - PM: hibernate: remove the bogus call to get_gendisk() in software_resume() - scsi: mvumi: Fix error return in mvumi_io_attach() - scsi: target: core: Add CONTROL field for trace events - [amd64] mic: vop: copy data to kernel space then write to io memory - [amd64] misc: vop: add round_up(x,4) for vring_size to avoid kernel panic - usb: gadget: function: printer: fix use-after-free in __lock_acquire - udf: Limit sparing table size - udf: Avoid accessing uninitialized data on failed inode read - USB: cdc-acm: handle broken union descriptors - [arm64,armhf] usb: dwc3: simple: add support for Hikey 970 - [armhf] can: flexcan: flexcan_chip_stop(): add error handling and propagate error value - ath9k: hif_usb: fix race condition between usb_get_urb() and usb_kill_anchored_urbs() - misc: rtsx: Fix memory leak in rtsx_pci_probe - reiserfs: only call unlock_new_inode() if I_NEW - xfs: make sure the rt allocator doesn't run off the end - usb: ohci: Default to per-port over-current protection - Bluetooth: Only mark socket zapped after unlocking - [ppc64el] scsi: ibmvfc: Fix error return in ibmvfc_probe() - brcmsmac: fix memory leak in wlc_phy_attach_lcnphy - rtl8xxxu: prevent potential memory leak - Fix use after free in get_capset_info callback. - scsi: qedi: Protect active command list to avoid list corruption - scsi: qedi: Fix list_del corruption while removing active I/O - [x86] tty: ipwireless: fix error handling - ipvs: Fix uninit-value in do_ip_vs_set_ctl() - reiserfs: Fix memory leak in reiserfs_parse_options() - mwifiex: don't call del_timer_sync() on uninitialized timer - brcm80211: fix possible memleak in brcmf_proto_msgbuf_attach - usb: core: Solve race condition in anchor cleanup functions - ath10k: check idx validity in __ath10k_htt_rx_ring_fill_n() - usb: cdc-acm: add quirk to blacklist ETAS ES58X devices - USB: cdc-wdm: Make wdm_flush() interruptible and add wdm_fsync(). - eeprom: at25: set minimum read/write access stride to 1 - usb: gadget: f_ncm: allow using NCM in SuperSpeed Plus gadgets. https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.155 - scripts/setlocalversion: make git describe output more reliable - [arm64] Run ARCH_WORKAROUND_1 enabling code on all CPUs - [arm64] link with -z norelro regardless of CONFIG_RELOCATABLE - [x86,arm64,armhf] efivarfs: Replace invalid slashes with exclamation marks in dentries. - gtp: fix an use-before-init in gtp_newlink() - netem: fix zero division in tabledist - tcp: Prevent low rmem stalls with SO_RCVLOWAT. - tipc: fix memory leak caused by tipc_buf_append() - r8169: fix issue with forced threading in combination with shared interrupts - cxgb4: set up filter action after rewrites - [x86] arch/x86/amd/ibs: Fix re-arming IBS Fetch - [x86] xen: disable Firmware First mode for correctable memory errors - fuse: fix page dereference after free - bpf: Fix comment for helper bpf_current_task_under_cgroup() - p54: avoid accessing the data mapped to streaming DMA - [powerpc*] cxl: Rework error message for incompatible slots - RDMA/addr: Fix race with netevent_callback()/rdma_addr_cancel() - mtd: lpddr: Fix bad logic in print_drs_error - [arm*] serial: pl011: Fix lockdep splat when handling magic-sysrq interrupt - fscrypt: return -EXDEV for incompatible rename or link into encrypted dir - fscrypt: clean up and improve dentry revalidation - fscrypt: fix race allowing rename() and link() of ciphertext dentries - fs, fscrypt: clear DCACHE_ENCRYPTED_NAME when unaliasing directory - fscrypt: only set dentry_operations on ciphertext dentries - fscrypt: fix race where ->lookup() marks plaintext dentry as ciphertext - Revert "block: ratelimit handle_bad_sector() message" - xen/events: don't use chip_data for legacy IRQs - xen/events: avoid removing an event channel while handling it (CVE-2020-27675) - xen/events: add a proper barrier to 2-level uevent unmasking (CVE-2020-27673) - xen/events: fix race in evtchn_fifo_unmask() (CVE-2020-27673) - xen/events: add a new "late EOI" evtchn framework (CVE-2020-27673) - xen/blkback: use lateeoi irq binding (CVE-2020-27673) - xen/netback: use lateeoi irq binding (CVE-2020-27673) - xen/scsiback: use lateeoi irq binding (CVE-2020-27673) - xen/pvcallsback: use lateeoi irq binding (CVE-2020-27673) - xen/pciback: use lateeoi irq binding (CVE-2020-27673) - xen/events: switch user event channels to lateeoi model (CVE-2020-27673) - xen/events: use a common cpu hotplug hook for event channels (CVE-2020-27673) - xen/events: defer eoi in case of excessive number of events (CVE-2020-27673) - xen/events: block rogue events for some time (CVE-2020-27673) - RDMA/qedr: Fix memory leak in iWARP CM - ata: sata_nv: Fix retrieving of active qcs - futex: Fix incorrect should_fail_futex() handling - [powerpc*] powernv/smp: Fix spurious DBG() warning - mm: fix exec activate_mm vs TLB shootdown and lazy tlb switching race - [powerpc*] select ARCH_WANT_IRQS_OFF_ACTIVATE_MM - f2fs: add trace exit in exception path - f2fs: fix uninit-value in f2fs_lookup - f2fs: fix to check segment boundary during SIT page readahead - [armel,armhf] 8997/2: hw_breakpoint: Handle inexact watchpoint addresses - power: supply: bq27xxx: report "not charging" on all types - xfs: fix realtime bitmap/summary file truncation when growing rt volume - ath10k: fix VHT NSS calculation when STBC is enabled - media: videodev2.h: RGB BT2020 and HSV are always full range - [x86] usb: typec: tcpm: During PR_SWAP, source caps should be sent only after tSwapSourceStart - media: tw5864: check status of tw5864_frameinterval_get - mmc: via-sdmmc: Fix data race bug - [arm64] topology: Stop using MPIDR for topology information - media: uvcvideo: Fix dereference of out-of-bound list iterator - USB: adutux: fix debugging - uio: free uio id after uio file node is freed - usb: xhci: omit duplicate actions when suspending a runtime suspended host. - [arm64] mm: return cpu_all_mask when node is NUMA_NO_NODE - xfs: don't free rt blocks when we're doing a REMAP bunmapi call - ACPI: Add out of bounds and numa_off protections to pxm_to_node() - drivers/net/wan/hdlc_fr: Correctly handle special skb->protocol values - btrfs: fix replace of seed device - md/bitmap: md_bitmap_get_counter returns wrong blocks - bnxt_en: Log unknown link speed appropriately. - [arm64] rpmsg: glink: Use complete_all for open states - [armhf] clk: ti: clockdomain: fix static checker warning - net: 9p: initialize sun_server.sun_path to have addr's value only when addr is valid - ext4: Detect already used quota file early - gfs2: add validation checks for size of superblock - cifs: handle -EINTR in cifs_setattr - [armhf] memory: emif: Remove bogus debugfs error handling - nbd: make the config put is called before the notifying the waiter - sgl_alloc_order: fix memory leak - nvme-rdma: fix crash when connect rejected - md/raid5: fix oops during stripe resizing - [x86,arm64] mmc: sdhci-acpi: AMDI0040: Set SDHCI_QUIRK2_PRESET_VALUE_BROKEN - [x86] perf/x86/amd/ibs: Don't include randomized bits in get_ibs_op_count() - [x86] perf/x86/amd/ibs: Fix raw sample data accumulation - media: uvcvideo: Fix uvc_ctrl_fixup_xu_info() not having any effect - fs: Don't invalidate page buffers in block_write_full_page() - NFS: fix nfs_path in case of a rename retry - ACPI: button: fix handling lid state changes when input device closed - [x86] ACPI / extlog: Check for RDMSR failure (Closes: #971058) - [x86] ACPI: video: use ACPI backlight for HP 635 Notebook - [x86] acpi-cpufreq: Honor _PSD table setting on new AMD CPUs - scsi: mptfusion: Fix null pointer dereferences in mptscsih_remove() - scsi: qla2xxx: Fix crash on session cleanup with unload - btrfs: qgroup: fix wrong qgroup metadata reserve for delayed inode - btrfs: improve device scanning messages - btrfs: reschedule if necessary when logging directory items - btrfs: send, recompute reference path after orphanization of a directory - btrfs: use kvzalloc() to allocate clone_roots in btrfs_ioctl_send() - btrfs: cleanup cow block on error - btrfs: fix use-after-free on readahead extent after failure to create it - usb: xhci: Workaround for S3 issue on AMD SNPS 3.0 xHC - [arm64,armhf] usb: dwc3: ep0: Fix ZLP for OUT ep0 requests - [arm64,armhf] usb: dwc3: gadget: Check MPS of the request length - [arm64,armhf] usb: dwc3: core: add phy cleanup for probe error handling - [arm64,armhf] usb: dwc3: core: don't trigger runtime pm when remove driver - usb: cdc-acm: fix cooldown mechanism - [x86] usb: typec: tcpm: reset hard_reset_count for any disconnect - [x86] drm/i915: Force VT'd workarounds when running as a guest OS - vt: keyboard, simplify vt_kdgkbsent - vt: keyboard, extend func_buf_lock to readers (CVE-2020-25656) - HID: wacom: Avoid entering wacom_wac_pen_report for pad / battery - udf: Fix memory leak when mounting - [powerpc*] drmem: Make lmb_size 64 bit - [s390x] stp: add locking to sysfs functions - [powerpc*] rtas: Restrict RTAS requests from userspace (CVE-2020-27777) - [powerpc*] Warn about use of smt_snooze_delay - [powerpc*] powernv/elog: Fix race while processing OPAL error log event. - [powerpc*] Fix undetected data corruption with P9N DD2.1 VSX CI load emulation - NFSv4.2: support EXCHGID4_FLAG_SUPP_FENCE_OPS 4.2 EXCHANGE_ID flag - NFSD: Add missing NFSv2 .pc_func methods - ubifs: dent: Fix some potential memory leaks while iterating entries - perf python scripting: Fix printable strings in python3 scripts - ubi: check kthread_should_stop() after the setting of task state - [armhf] i2c: imx: Fix external abort on interrupt in exit paths - drm/amdgpu: don't map BO in reserved region - ceph: promote to unsigned long long before shifting - libceph: clear con->out_msg on Policy::stateful_server faults - 9P: Cast to loff_t before multiplying - ring-buffer: Return 0 on success from ring_buffer_resize() - [amd64] vringh: fix __vringh_iov() when riov and wiov are different - ext4: fix leaking sysfs kobject after failed mount - ext4: fix error handling code in add_new_gdb - ext4: fix invalid inode checksum - drm/ttm: fix eviction valuable range check. - tty: make FONTX ioctl use the tty pointer they were actually passed (CVE-2020-25668) - cachefiles: Handle readpage error correctly - device property: Keep secondary firmware node secondary by type - device property: Don't clear secondary pointer for shared primary firmware node - [arm64] KVM: Fix AArch32 handling of DBGD{CCINT,SCRext} and DBGVCR - [x86] staging: comedi: cb_pcidas: Allow 2-channel commands for AO subdevice - [mips*] staging: octeon: repair "fixed-link" support - [mips*] staging: octeon: Drop on uncorrectable alignment or FCS error https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.156 - [x86] drm/i915: Break up error capture compression loops with cond_resched() - tipc: fix use-after-free in tipc_bcast_get_mode - ptrace: fix task_join_group_stop() for the case when current is traced - [arm64] cadence: force nonlinear buffers to be cloned - net: usb: qmi_wwan: add Telit LE910Cx 0x1230 composition - sctp: Fix COMM_LOST/CANT_STR_ASSOC err reporting on big-endian platforms - [arm64,armhf] sfp: Fix error handing in sfp_probe() - blktrace: fix debugfs use after free (CVE-2019-19770) - btrfs: extent_io: Kill the forward declaration of flush_write_bio - btrfs: extent_io: Move the BUG_ON() in flush_write_bio() one level up - Revert "btrfs: flush write bio if we loop in extent_write_cache_pages" - btrfs: flush write bio if we loop in extent_write_cache_pages - btrfs: extent_io: Handle errors better in extent_write_full_page() - btrfs: extent_io: Handle errors better in btree_write_cache_pages() - btrfs: extent_io: add proper error handling to lock_extent_buffer_for_io() - Btrfs: fix unwritten extent buffers and hangs on future writeback attempts - btrfs: Don't submit any btree write bio if the fs has errors (CVE-2019-19039, CVE-2019-19377) - btrfs: Move btrfs_check_chunk_valid() to tree-check.[ch] and export it - btrfs: tree-checker: Make chunk item checker messages more readable - btrfs: tree-checker: Make btrfs_check_chunk_valid() return EUCLEAN instead of EIO - btrfs: tree-checker: Check chunk item at tree block read time - btrfs: tree-checker: Verify dev item - btrfs: tree-checker: Fix wrong check on max devid - btrfs: tree-checker: Enhance chunk checker to validate chunk profile (CVE-2019-19816) - btrfs: tree-checker: Verify inode item - btrfs: tree-checker: fix the error message for transid error - Fonts: Replace discarded const qualifier - ALSA: usb-audio: Add implicit feedback quirk for Zoom UAC-2 - ALSA: usb-audio: add usb vendor id as DSD-capable for Khadas devices - ALSA: usb-audio: Add implicit feedback quirk for Qu-16 - ALSA: usb-audio: Add implicit feedback quirk for MODX - mm: mempolicy: fix potential pte_unmap_unlock pte error - kthread_worker: prevent queuing delayed work from timer_fn when it is being canceled - mm: always have io_remap_pfn_range() set pgprot_decrypted() - gfs2: Wake up when sd_glock_disposal becomes zero - ring-buffer: Fix recursion protection transitions between interrupt context - ftrace: Fix recursion check for NMI test - ftrace: Handle tracing when switching between context - tracing: Fix out of bounds write in get_trace_buf - futex: Handle transient "ownerless" rtmutex state correctly - [amd64] x86/kexec: Use up-to-dated screen_info copy to fill boot params - of: Fix reserved-memory overlap detection - blk-cgroup: Fix memleak on error path - blk-cgroup: Pre-allocate tree node on blkg_conf_prep - scsi: core: Don't start concurrent async scan on same host - vsock: use ns_capable_noaudit() on socket create - [arm*] drm/vc4: drv: Add error handding for bind - [amd64,arm64] ACPI: NFIT: Fix comparison to '-ENXIO' - vt: Disable KD_FONT_OP_COPY (CVE-2020-28974) - fork: fix copy_process(CLONE_PARENT) race with the exiting ->real_parent - USB: serial: cyberjack: fix write-URB completion race - USB: serial: option: add Quectel EC200T module support - USB: serial: option: add LE910Cx compositions 0x1203, 0x1230, 0x1231 - USB: serial: option: add Telit FN980 composition 0x1055 - USB: Add NO_LPM quirk for Kingston flash drive - PM: runtime: Resume the device earlier in __device_release_driver() - perf/core: Fix a memory leak in perf_event_parse_addr_filter() (CVE-2020-25704) - tools: perf: Fix build error in v4.19.y - [arm64,armhf] net: dsa: read mac address from DT for slave device - [arm64] dts: marvell: espressobin: Add ethernet switch aliases https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.157 - [x86] powercap: restrict energy meter to root access (CVE-2020-8694) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.158 - regulator: defer probe when trying to get voltage from unresolved supply - time: Prevent undefined behaviour in timespec64_to_ns() - nbd: don't update block size after device is started - [arm64,armhf] usb: dwc3: gadget: Continue to process pending requests - [arm64,armhf] usb: dwc3: gadget: Reclaim extra TRBs after request completion - btrfs: sysfs: init devices outside of the chunk_mutex - btrfs: reschedule when cloning lots of extents - [x86] hv_balloon: disable warning when floor reached - net: xfrm: fix a race condition during allocing spi - xfs: set xefi_discard when creating a deferred agfl free log intent item - netfilter: ipset: Update byte and packet counters regardless of whether they match - perf tools: Add missing swap for ino_generation - [x86] ALSA: hda: prevent undefined shift in snd_hdac_ext_bus_get_link() - can: rx-offload: don't call kfree_skb() from IRQ context - can: dev: can_get_echo_skb(): prevent call to kfree_skb() in hard IRQ context - can: dev: __can_get_echo_skb(): fix real payload length return value for RTR frames - can: can_create_echo_skb(): fix echo skb generation: always use skb_clone() - can: peak_usb: add range checking in decode operations - can: peak_usb: peak_usb_get_ts_time(): fix timestamp wrapping - can: peak_canfd: pucan_handle_can_rx(): fix echo management when loopback is on - [armhf] can: flexcan: remove FLEXCAN_QUIRK_DISABLE_MECR quirk for LS1021A - xfs: flush new eof page on truncate to avoid post-eof corruption - [arm64,x86] tpm: efi: Don't create binary_bios_measurements file for an empty log - Btrfs: fix missing error return if writeback for extent buffer never started - ath9k_htc: Use appropriate rs_datalen type - netfilter: use actual socket sk rather than skb sk when routing harder - gfs2: Free rd_bits later in gfs2_clear_rgrpd to fix use-after-free - gfs2: Add missing truncate_inode_pages_final for sd_aspace - gfs2: check for live vs. read-only file system in gfs2_fitrim - scsi: hpsa: Fix memory leak in hpsa_init_one() - drm/amdgpu: perform srbm soft reset always on SDMA resume - mac80211: fix use of skb payload instead of header - cfg80211: regulatory: Fix inconsistent format argument - scsi: scsi_dh_alua: Avoid crash during alua_bus_detach() - [s390x] smp: move rcu_cpu_starting() earlier - [x86] tpm_tis: Disable interrupts on ThinkPad T490s - tick/common: Touch watchdog in tick_unfreeze() on all CPUs - [x86] pinctrl: intel: Set default bias in case no particular value given - [armel,armhf] 9019/1: kprobes: Avoid fortify_panic() when copying optprobe template - nbd: fix a block_device refcount leak in nbd_release - xfs: fix flags argument to rmap lookup when converting shared file rmaps - xfs: fix rmap key and record comparison functions - lan743x: fix "BUG: invalid wait context" when setting rx mode - xfs: fix a missing unlock on error in xfs_fs_map_blocks - of/address: Fix of_node memory leak in of_dma_is_coherent - [i386] cosa: Add missing kfree in error path of cosa_write - perf: Fix get_recursion_context() - ext4: correctly report "not supported" for {usr,grp}jquota when !CONFIG_QUOTA - ext4: unlock xattr_sem properly in ext4_inline_data_truncate() - btrfs: dev-replace: fail mount if we don't have replace item with target device - [x86] thunderbolt: Fix memory leak if ida_simple_get() fails in enumerate_services() - [x86] thunderbolt: Add the missed ida_simple_remove() in ring_request_msix() - uio: Fix use-after-free in uio_unregister_device() - usb: cdc-acm: Add DISABLE_ECHO for Renesas USB Download mode - futex: Don't enable IRQs unconditionally in put_pi_state() - ocfs2: initialize ip_next_orphan - btrfs: fix potential overflow in cluster_pages_for_defrag on 32bit arch - selinux: Fix error return code in sel_ib_pkey_sid_slow() - gpio: pcie-idio-24: Fix irq mask when masking - gpio: pcie-idio-24: Fix IRQ Enable Register value - gpio: pcie-idio-24: Enable PEX8311 interrupts - don't dump the threads that had been already exiting when zapped. - [x86] drm/gma500: Fix out-of-bounds access to struct drm_device.vblank[] - pinctrl: amd: use higher precision for 512 RtcClk - pinctrl: amd: fix incorrect way to disable debounce filter - swiotlb: fix "x86: Don't panic if can not alloc buffer for swiotlb" - IPv6: Set SIT tunnel hard_header_len to zero - [s390x] net/af_iucv: fix null pointer dereference on shutdown - net: Update window_clamp if SOCK_RCVBUF is set - tipc: fix memory leak in tipc_topsrv_start() - vrf: Fix fast path output packet handling with async Netfilter rules - r8169: fix potential skb double free in an error path - random32: make prandom_u32() output unpredictable - [x86] speculation: Allow IBPB to be conditionally enabled on CPUs with always-on STIBP - perf/core: Fix race in the perf_mmap_close() function (CVE-2020-14351) - Revert "kernel/reboot.c: convert simple_strtoul to kstrtoint" - reboot: fix overflow parsing reboot cpu number - net: sch_generic: fix the missing new qdisc assignment bug - Convert trailing spaces and periods in path components https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.159 - [powerpc*] 64s: move some exception handlers out of line - [powerpc*] 64s: flush L1D on kernel entry (CVE-2020-4788) - [powerpc*] Add a framework for user access tracking - [powerpc*] Implement user_access_begin and friends - [powerpc*] Fix __clear_user() with KUAP enabled - [powerpc*] uaccess: Evaluate macro arguments once, before user access is allowed - [powerpc*] 64s: flush L1D after user accesses (CVE-2020-4788) - Revert "perf cs-etm: Move definition of 'traceid_list' global variable from header file" - Input: sunkbd - avoid use-after-free in teardown paths (CVE-2020-25669) - mac80211: always wind down STA state - can: proc: can_remove_proc(): silence remove_proc_entry warning - [x86] KVM: x86: clflushopt should be treated as a no-op by emulation - [arm64] ACPI: GED: fix -Wformat https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.160 - ah6: fix error return code in ah6_input() - atm: nicstar: Unmap DMA on send error - bnxt_en: read EEPROM A2h address using page 0 - devlink: Add missing genlmsg_cancel() in devlink_nl_sb_port_pool_fill() - inet_diag: Fix error path to cancel the meseage in inet_req_diag_fill() - lan743x: fix issue causing intermittent kernel log warnings - lan743x: prevent entire kernel HANG on open, for some platforms - net: b44: fix error return code in b44_init_one() - net: bridge: add missing counters to ndo_get_stats64 callback - [arm64,armhf] net: dsa: mv88e6xxx: Avoid VTU corruption on 6097 - net: Have netpoll bring-up DSA management interface - net/mlx4_core: Fix init_hca fields offset - page_frag: Recover from memory pressure - qed: fix error return code in qed_iwarp_ll2_start() - qlcnic: fix error return code in qlcnic_83xx_restart_hw() - sctp: change to hold/put transport for proto_unreach_timer - tcp: only postpone PROBE_RTT if RTT is < current min_rtt estimate - [arm64,armhf] net/mlx5: Disable QoS when min_rates on all VFs are zero - net: usb: qmi_wwan: Set DTR quirk for MR400 - [arm64,armhf] pinctrl: rockchip: enable gpio pclk for rockchip_gpio_to_irq - scsi: ufs: Fix unbalanced scsi_block_reqs_cnt caused by ufshcd_hold() - [x86] ACPI: button: Add DMI quirk for Medion Akoya E2228T - [arm64] psci: Avoid printing in cpu_psci_cpu_die() - vfs: remove lockdep bogosity in __sb_start_write - [arm64] dts: allwinner: a64: Pine64 Plus: Fix ethernet node - [arm64] dts: allwinner: h5: OrangePi PC2: Fix ethernet node - [armhf] dts: sun8i: r40: bananapi-m2-ultra: Fix ethernet node - [armhf] Revert "arm: sun8i: orangepi-pc-plus: Set EMAC activity LEDs to active high" - [armhf] dts: sun8i: h3: orangepi-plus2e: Enable RGMII RX/TX delay on Ethernet PHY - [armhf] dts: sun8i: a83t: Enable both RGMII RX/TX delay on Ethernet PHY - [arm64] dts: allwinner: a64: bananapi-m64: Enable RGMII RX/TX delay on PHY - [mips*] export has_transparent_hugepage() for modules - [arm64] dts: allwinner: h5: OrangePi Prime: Fix ethernet node - perf lock: Don't free "lock_seq_stat" if read_count isn't zero - ip_tunnels: Set tunnel option flag when tunnel metadata is present - can: af_can: prevent potential access of uninitialized member in can_rcv() - can: af_can: prevent potential access of uninitialized member in canfd_rcv() - can: dev: can_restart(): post buffer from the right context - can: mcba_usb: mcba_usb_start_xmit(): first fill skb, then pass to can_put_echo_skb() - can: peak_usb: fix potential integer overflow on shift of a int - [arm64] ASoC: qcom: lpass-platform: Fix memory leak - [arm64,armhf] drm/sun4i: dw-hdmi: fix error return code in sun8i_dw_hdmi_bind() - can: kvaser_usb: kvaser_usb_hydra: Fix KCAN bittiming limits - [armhf] regulator: ti-abb: Fix array out of bound read access on the first transition - xfs: revert "xfs: fix rmap key and record comparison functions" - [amd64] efi/x86: Free efi_pgd with free_pages() - libfs: fix error cast of negative value in simple_attr_write() - speakup: Do not let the line discipline be used several times (CVE-2020-28941) - ALSA: firewire: Clean up a locking issue in copy_resp_to_buf() - ALSA: usb-audio: Add delay quirk for all Logitech USB devices - ALSA: ctl: fix error path at adding user-defined element set - ALSA: mixart: Fix mutex deadlock - ALSA: hda/realtek: Add some Clove SSID in the ALC293(ALC1220) - [armhf] tty: serial: imx: keep console clocks always on - [arm64,armhf,x86] efivarfs: fix memory leak in efivarfs_create() - [arm64,x86] staging: rtl8723bs: Add 024c:0627 to the list of SDIO device-ids - ext4: fix bogus warning in ext4_update_dx_flag() - [x86] iio: accel: kxcjk1013: Replace is_smo8500_device with an acpi_type enum - [x86] iio: accel: kxcjk1013: Add support for KIOX010A ACPI DSM for setting tablet-mode - [armhf] regulator: pfuze100: limit pfuze-support-disable-sw to pfuze{100,200} - regulator: fix memory leak with repeated set_machine_constraints() - regulator: avoid resolve_supply() infinite recursion - regulator: workaround self-referent regulators - mac80211: minstrel: remove deferred sampling code - mac80211: minstrel: fix tx status processing corner case - mac80211: free sta in sta_info_insert_finish() on errors - [s390x] cpum_sf.c: fix file permission for cpum_sfb_size - [s390x] dasd: fix null pointer dereference for ERP requests - ptrace: Set PF_SUPERPRIV when checking capability - seccomp: Set PF_SUPERPRIV when checking capability - [x86] microcode/intel: Check patch signature before saving microcode for early loading - mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() . [ Salvatore Bonaccorso ] * net: Enable NET_SWITCHDEV; disable on armel/marvell (Closes: #949863) * Bump ABI to 13 * [rt] Update to 4.19.152-rt65 * [rt] Refresh "mm: Protect activate_mm() by preempt_[disable&enable]_rt()" * [rt] Refresh "kthread: convert worker lock to raw spinlock" * [rt] Refresh "signals: Allow rt tasks to cache one sigqueue struct" * [rt] Refresh "tpm_tis: fix stall after iowrite*()s" * [rt] Refresh "futex: Delay deallocation of pi_state" * [rt] Refresh "futex: Make the futex_hash_bucket spinlock_t again" * [rt] Update to 4.19.152-rt66 - mm/memcontrol: Disable preemption in __mod_memcg_lruvec_state() - ptrace: fix ptrace_unfreeze_traced() race with rt-lock * [rt] Update to 4.19.160-rt69 . [ Noah Meyerhans ] * Backport upstream fix for PCI bridge firmware configuration preservation (Closes: #968623) . [ John L. Villalovos ] * Backport support for USB Host Controllers with local memory to avoid crashes. In particular the Renesas USB 3.0 controller (PD720201/PD720202) which is used on the Ampere's Mt Jade platform which is part of their Altra product line: - lib/genalloc: add gen_pool_dma_zalloc() for zeroed DMA allocations - USB: use genalloc for USB HCs with local memory - USB: drop HCD_LOCAL_MEM flag - usb: don't create dma pools for HCDs with a localmem_pool - usb: add a hcd_uses_dma helper - usb: host: ohci-sm501: init genalloc for local memory - usb/hcd: Fix a NULL vs IS_ERR() bug in usb_hcd_setup_local_mem() * [arm64] config/arm64/config: Set NODES_SHIFT to 4 . [ Yves-Alexis Perez ] * usbnet: ipheth: fix connectivity with iOS 14 linux (4.19.152-1) buster-security; urgency=high . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.147 - [arm64,armhf] dsa: Allow forwarding of redirected IGMP traffic - scsi: qla2xxx: Update rscn_rcvd field to more meaningful scan_needed - scsi: qla2xxx: Move rport registration out of internal work_list - scsi: qla2xxx: Reduce holding sess_lock to prevent CPU lock-up - net: handle the return value of pskb_carve_frag_list() correctly - [x86] hv_netvsc: Remove "unlikely" from netvsc_select_queue - NFSv4.1 handle ERR_DELAY error reclaiming locking state on delegation recall - scsi: pm8001: Fix memleak in pm8001_exec_internal_task_abort - scsi: libfc: Fix for double free() - scsi: lpfc: Fix FLOGI/PLOGI receive race condition in pt2pt discovery - [arm64] regulator: pwm: Fix machine constraints application - NFS: Zero-stateid SETATTR should first return delegation - SUNRPC: stop printk reading past end of string - nvme-fc: cancel async events before freeing event struct - nvme-rdma: cancel async events before freeing event struct - f2fs: fix indefinite loop scanning for free nid - f2fs: Return EOF on unaligned end of file DIO read - i2c: algo: pca: Reapply i2c bus settings after reset - spi: Fix memory leak on splited transfers - [arm64,armhf] clk: rockchip: Fix initialization of mux_pll_src_4plls_p - [arm64] ASoC: qcom: Set card->owner to avoid warnings - [x86] Drivers: hv: vmbus: Add timeout to vmbus_wait_for_unload - fbcon: Fix user font detection test at fbcon_resize(). - USB: quirks: Add USB_QUIRK_IGNORE_REMOTE_WAKEUP quirk for BYD zhaoxin notebook - USB: UAS: fix disconnect by unplugging a hub - usblp: fix race between disconnect() and read() - [x86] i2c: i801: Fix resume bug - Revert "ALSA: hda - Fix silent audio output and corrupted input on MSI X570-A PRO" - percpu: fix first chunk size calculation for populated bitmap - Input: trackpoint - add new trackpoint variant IDs - serial: 8250_pci: Add Realtek 816a and 816b - ehci-hcd: Move include to keep CRC stable - [powerpc*] dma: Fix dma_map_ops::get_required_mask https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.148 - af_key: pfkey_dump needs parameter validation - KVM: fix memory leak in kvm_io_bus_unregister_dev() - kprobes: fix kill kprobe which has been marked as gone - mm/thp: fix __split_huge_pmd_locked() for migration PMD - cxgb4: Fix offset when clearing filter byte counters - geneve: add transport ports in route lookup for geneve (CVE-2020-25645) - [x86,ppc64el] hdlc_ppp: add range checks in ppp_cp_parse_cr() (CVE-2020-25643) - ip: fix tos reflection in ack and reset packets - ipv6: avoid lockdep issue in fib6_del() - net: DCB: Validate DCB_ATTR_DCB_BUFFER argument - net: ipv6: fix kconfig dependency warning for IPV6_SEG6_HMAC - net: sch_generic: aviod concurrent reset and enqueue op for lockless qdisc - nfp: use correct define to return NONE fec - tipc: Fix memory leak in tipc_group_create_member() - tipc: fix shutdown() of connection oriented socket - tipc: use skb_unshare() instead in tipc_buf_append() - bnxt_en: return proper error codes in bnxt_show_temp - bnxt_en: Protect bnxt_set_eee() and bnxt_set_pauseparam() with mutex. - net: phy: Avoid NPD upon phy_detach() when driver is unbound - net: add __must_check to skb_put_padto() - ipv4: Update exception handling for multipath routes via same device - kbuild: add OBJSIZE variable for the size tool - mm: memcg: fix memcg reclaim soft lockup - tcp_bbr: refactor bbr_target_cwnd() for general inflight provisioning - tcp_bbr: adapt cwnd based on ack aggregation estimation - serial: 8250: Avoid error message on reprobe https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.149 - selinux: allow labeling before policy is loaded - media: mc-device.c: fix memleak in media_device_register_entity - dma-fence: Serialise signal enabling (dma_fence_enable_sw_signaling) - ath10k: fix array out-of-bounds access - ath10k: fix memory leak for tpc_stats_final - mm: fix double page fault on arm64 if PTE_AF is cleared - scsi: aacraid: fix illegal IO beyond last LBA - [x86] gma/gma500: fix a memory disclosure bug due to uninitialized bytes - [armel,armhf] ASoC: kirkwood: fix IRQ error handling - [amd64] arch/x86/lib/usercopy_64.c: fix __copy_user_flushcache() cache writeback - [x86] ioapic: Unbreak check_timer() - ALSA: usb-audio: Add delay quirk for H570e USB headsets - ALSA: hda/realtek - Couldn't detect Mic if booting with headset plugged - ALSA: hda/realtek: Enable front panel headset LED on Lenovo ThinkStation P520 - lib/string.c: implement stpcpy - [armhf] PM / devfreq: tegra30: Fix integer overflow on CPU's freq max out - [x86] scsi: fnic: fix use after free - scsi: lpfc: Fix kernel crash at lpfc_nvme_info_show during remote port bounce - net: silence data-races on sk_backlog.tail - [armhf] clk/ti/adpll: allocate room for terminating null - mtd: cfi_cmdset_0002: don't free cfi->cfiq in error path of cfi_amdstd_setup() - mfd: mfd-core: Protect against NULL call-back function pointer - [x86] tpm_crb: fix fTPM on AMD Zen+ CPUs - tracing: Adding NULL checks for trace_array descriptor pointer - bcache: fix a lost wake-up problem caused by mca_cannibalize_lock - RDMA/qedr: Fix potential use after free - RDMA/i40iw: Fix potential use after free - fix dget_parent() fastpath race - xfs: fix attr leaf header freemap.size underflow - RDMA/iw_cgxb4: Fix an error handling path in 'c4iw_connect()' - ubi: Fix producing anchor PEBs - mmc: core: Fix size overflow for mmc partitions - gfs2: clean up iopen glock mess in gfs2_create_inode - scsi: pm80xx: Cleanup command when a reset times out - CIFS: Properly process SMB3 lease breaks - ASoC: max98090: remove msleep in PLL unlocked workaround - kernel/sys.c: avoid copying possible padding bytes in copy_to_user - [arm64,armhf] KVM: vgic: Fix potential double free dist->spis in __kvm_vgic_destroy() - xfs: fix log reservation overflows when allocating large rt extents - neigh_stat_seq_next() should increase position index - rt_cpu_seq_next should increase position index - ipv6_route_seq_next should increase position index - seqlock: Require WRITE_ONCE surrounding raw_seqcount_barrier - sctp: move trace_sctp_probe_path into sctp_outq_sack - [arm64,x86] ACPI: EC: Reference count query handlers under lock - scsi: ufs: Make ufshcd_add_command_trace() easier to read - scsi: ufs: Fix a race condition in the tracing code - [s390x] /cpum_sf: Use kzalloc and minor changes - [powerpc*] eeh: Only dump stack once if an MMIO loop is detected - Bluetooth: btrtl: Use kvmalloc for FW allocations - [armel,armhf] ARM: 8948/1: Prevent OOB access in stacktrace - ar5523: Add USB ID of SMCWUSBT-G2 wireless adapter - ceph: ensure we have a new cap before continuing in fill_inode - Bluetooth: Fix refcount use-after-free issue - mm/swapfile.c: swap_next should increase position index - mm: pagewalk: fix termination condition in walk_pte_range() - Bluetooth: prefetch channel before killing sock - KVM: fix overflow of zero page refcount with ksm running - ALSA: hda: Clear RIRB status before reading WP - skbuff: fix a data race in skb_queue_len() - audit: CONFIG_CHANGE don't log internal bookkeeping as an event - selinux: sel_avc_get_stat_idx should increase position index - scsi: lpfc: Fix RQ buffer leakage when no IOCBs available - scsi: lpfc: Fix coverity errors in fmdi attribute handling - [armhf] drm/omap: fix possible object reference leak - crypto: chelsio - This fixes the kernel panic which occurs during a libkcapi test - mt76: clear skb pointers from rx aggregation reorder buffer during cleanup - ALSA: usb-audio: Don't create a mixer element with bogus volume range - [s390x] perf test: Fix test trace+probe_vfs_getname.sh on s390 - RDMA/rxe: Fix configuration of atomic queue pair attributes - [x86] KVM: x86: fix incorrect comparison in trace event - [x86] pkeys: Add check for pkey "overflow" - bpf: Remove recursion prevention from rcu free callback - [arm64,armhf] dmaengine: tegra-apb: Prevent race conditions on channel's freeing - random: fix data races at timer_rand_state - [arm64] bus: hisi_lpc: Fixup IO ports addresses to avoid use-after-free in host removal - media: go7007: Fix URB type for interrupt handling - Bluetooth: guard against controllers sending zero'd events - timekeeping: Prevent 32bit truncation in scale64_check_overflow() - ext4: fix a data race at inode->i_disksize - mm: avoid data corruption on CoW fault into PFN-mapped VMA - drm/amdgpu: increase atombios cmd timeout - ath10k: use kzalloc to read for ath10k_sdio_hif_diag_read - scsi: aacraid: Disabling TM path and only processing IOP reset - Bluetooth: L2CAP: handle l2cap config request during open state - media: tda10071: fix unsigned sign extension overflow - xfs: don't ever return a stale pointer from __xfs_dir3_free_read - xfs: mark dir corrupt when lookup-by-hash fails - ext4: mark block bitmap corrupted when found instead of BUGON - nfsd: Don't add locks to closed or closing open stateids - RDMA/cm: Remove a race freeing timewait_info - [powerpc*] KVM: PPC: Book3S HV: Treat TM-related invalid form instructions on P9 like the valid ones - [arm64] drm/msm: fix leaks if initialization fails - [arm64] drm/msm/a5xx: Always set an OPP supported hardware value - serial: 8250_port: Don't service RX FIFO if throttled - [powerpc*] cpufreq: powernv: Fix frame-size-overflow in powernv_cpufreq_work_fn - nvme-multipath: do not reset on unknown status - nvme: Fix controller creation races with teardown flow - RDMA/rxe: Set sys_image_guid to be aligned with HW IB devices - scsi: hpsa: correct race condition in offload enabled - SUNRPC: Fix a potential buffer overflow in 'svc_print_xprts()' - svcrdma: Fix leak of transport addresses - PCI: Use ioremap(), not phys_to_virt() for platform ROM - ubifs: Fix out-of-bounds memory access caused by abnormal value of node_len - ALSA: usb-audio: Fix case when USB MIDI interface has more than one extra endpoint descriptor - PCI: pciehp: Fix MSI interrupt race - NFS: Fix races nfs_page_group_destroy() vs nfs_destroy_unlinked_subrequests() - mm/kmemleak.c: use address-of operator on section symbols - mm/filemap.c: clear page error before actual read - mm/vmscan.c: fix data races using kswapd_classzone_idx - nvmet-rdma: fix double free of rdma queue - mm/mmap.c: initialize align_offset explicitly for vm_unmapped_area - scsi: qedi: Fix termination timeouts in session logout - [arm64] serial: uartps: Wait for tx_empty in console setup - [x86] KVM: Remove CREATE_IRQCHIP/SET_PIT2 race - bdev: Reduce time holding bd_mutex in sync in blkdev_close() - [x86] drivers: char: tlclk.c: Avoid data race between init and interrupt handler - [arm64] KVM: vgic-its: Fix memory leak on the error path of vgic_add_lpi() - net: openvswitch: use u64 for meter bucket - scsi: aacraid: Fix error handling paths in aac_probe_one() - staging:r8188eu: avoid skb_clone for amsdu to msdu conversion - [arm64] cpufeature: Relax checks for AArch32 support at EL[0-2] - dt-bindings: sound: wm8994: Correct required supplies based on actual implementaion - atm: fix a memory leak of vcc->user_back - Bluetooth: Handle Inquiry Cancel error after Inquiry Complete - tipc: fix memory leak in service subscripting - [armhf] tty: serial: samsung: Correct clock selection logic - ALSA: hda: Fix potential race in unsol event handler - [powerpc*] traps: Make unrecoverable NMIs die instead of panic - fuse: don't check refcount after stealing page - [powerpc*] scsi: cxlflash: Fix error return code in cxlflash_probe() - [arm64] cpufeature: Drop TraceFilt feature exposure from ID_DFR0 register - e1000: Do not perform reset in reset_task if we are already down - drm/nouveau/debugfs: fix runtime pm imbalance on error - drm/nouveau: fix runtime pm imbalance on error - drm/nouveau/dispnv50: fix runtime pm imbalance on error - printk: handle blank console arguments passed in. - [arm64,armhf] usb: dwc3: Increase timeout for CmdAct cleared by device controller - btrfs: don't force read-only after error in drop snapshot - vfio/pci: fix memory leaks of eventfd ctx - perf trace: Fix the selection for architectures to generate the errno name tables - [arm64,armhf] wlcore: fix runtime pm imbalance in wl1271_tx_work - [arm64,armhf] wlcore: fix runtime pm imbalance in wlcore_regdomain_config - [arm64,armhf] PCI: tegra: Fix runtime PM imbalance on error - ceph: fix potential race in ceph_check_caps - mm/swap_state: fix a data race in swapin_nr_pages - [armel] mtd: parser: cmdline: Support MTD names containing one or more colons - [x86] speculation/mds: Mark mds_user_clear_cpu_buffers() __always_inline - vfio/pci: Clear error and request eventfd ctx after releasing - cifs: Fix double add page to memcg when cifs_readpages - nvme: fix possible deadlock when I/O is blocked - scsi: libfc: Handling of extra kref - scsi: libfc: Skip additional kref updating work event - vfio/pci: fix racy on error and request eventfd ctx - btrfs: qgroup: fix data leak caused by race between writeback and truncate - net: openvswitch: use div_u64() for 64-by-32 divisions - nvme: explicitly update mpath disk capacity on revalidation - [x86] ASoC: Intel: bytcr_rt5640: Add quirk for MPMAN Converter9 2-in-1 - [s390x] init: add missing __init annotations - lockdep: fix order in trace_hardirqs_off_caller() - [amd64] drm/amdkfd: fix a memory leak issue - i2c: core: Call i2c_acpi_install_space_handler() before i2c_acpi_register_devices() - mwifiex: Increase AES key storage size to 256 bits - batman-adv: bla: fix type misuse for backbone_gw hash indexing - atm: eni: fix the missed pci_disable_device() for eni_init_one() - batman-adv: mcast/TT: fix wrongly dropped or rerouted packets - mac802154: tx: fix use-after-free - bpf: Fix clobbering of r2 in bpf_gen_ld_abs - [arm*] drm/vc4/vc4_hdmi: fill ASoC card owner - net: qed: RDMA personality shouldn't fail VF load - batman-adv: Add missing include for in_interrupt() - batman-adv: mcast: fix duplicate mcast packets in BLA backbone from mesh - batman-adv: mcast: fix duplicate mcast packets from BLA backbone to mesh - bpf: Fix a rcu warning for bpffs map pretty-print - [x86] ALSA: asihpi: fix iounmap in error handler - regmap: fix page selection for noinc reads - [x86] KVM: Reset MMU context if guest toggles CR4.SMAP or CR4.PKE - [x86] KVM: SVM: Add a dedicated INVD intercept routine - tracing: fix double free - [s390x] dasd: Fix zero write for FBA devices - kprobes: Fix to check probe enabled before disarm_kprobe_ftrace() - mm, THP, swap: fix allocating cluster for swapfile by mistake - [s390x] zcrypt: Fix ZCRYPT_PERDEV_REQCNT ioctl - ata: define AC_ERR_OK - ata: make qc_prep return ata_completion_errors - ata: sata_mv, avoid trigerrable BUG_ON - [arm64] KVM: Assume write fault on S1PTW permission fault on instruction fetch https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.150 - mmc: sdhci: Workaround broken command queuing on Intel GLK based IRBIS models - USB: gadget: f_ncm: Fix NDP16 datagram validation - vsock/virtio: use RCU to avoid use-after-free on the_virtio_vsock - vsock/virtio: stop workers during the .remove() - vsock/virtio: add transport parameter to the virtio_transport_reset_no_sock() - net: virtio_vsock: Enhance connection semantics - Input: i8042 - add nopnp quirk for Acer Aspire 5 A515 - ftrace: Move RCU is watching check after recursion check - drm/amdgpu: restore proper ref count in amdgpu_display_crtc_set_config - drivers/net/wan/hdlc_fr: Add needed_headroom for PVC devices - [armhf] drm/sun4i: mixer: Extend regmap max_register - net: dec: de2104x: Increase receive ring size for Tulip - rndis_host: increase sleep time in the query-response loop - nvme-core: get/put ctrl and transport module in nvme_dev_open/release() - [x86,ppc64el] drivers/net/wan/hdlc: Set skb->protocol before transmitting - mac80211: do not allow bigger VHT MPDUs than the hardware supports - nvme-fc: fail new connections to a deleted host or remote port - [armhf] pinctrl: mvebu: Fix i2c sda definition for 98DX3236 - nfs: Fix security label length not being reset - [armhf] clk: samsung: exynos4: mark 'chipid' clock as CLK_IGNORE_UNUSED - Input: trackpoint - enable Synaptics trackpoints - random32: Restore __latent_entropy attribute on net_rand_state - mm: replace memmap_context by meminit_context - mm: don't rely on system state to detect hot-plug operations - epoll: do not insert into poll queues until all sanity checks are done - epoll: replace ->visited/visited_list with generation count - epoll: EPOLL_CTL_ADD: close the race in decision to take fast path - ep_create_wakeup_source(): dentry name can change under you... - netfilter: ctnetlink: add a range check for l3/l4 protonum (CVE-2020-25211) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.151 - fbdev, newport_con: Move FONT_EXTRA_WORDS macros into linux/font.h - Fonts: Support FONT_EXTRA_WORDS macros for built-in fonts - fbcon: Fix global-out-of-bounds read in fbcon_get_font() - net: wireless: nl80211: fix out-of-bounds access in nl80211_del_key() - drm/nouveau/mem: guard against NULL pointer access in mem_del - usermodehelper: reset umask to default before executing user process - [x86] platform/x86: intel-vbtn: Fix SW_TABLET_MODE always reporting 1 on the HP Pavilion 11 x360 - [x86] platform/x86: thinkpad_acpi: initialize tp_nvram_state variable - [x86] platform/x86: intel-vbtn: Switch to an allow-list for SW_TABLET_MODE reporting - [x86] platform/x86: thinkpad_acpi: re-initialize ACPI buffer size when reuse - driver core: Fix probe_count imbalance in really_probe() - [x86] i2c: i801: Exclude device from suspend direct complete optimization - [armhf] mtd: rawnand: sunxi: Fix the probe error path - nvme-core: put ctrl ref when module ref get fail - macsec: avoid use-after-free in macsec_handle_frame() - mm/khugepaged: fix filemap page_to_pgoff(page) != offset - xfrmi: drop ignore_df check before updating pmtu - cifs: Fix incomplete memory allocation on setxattr path - [arm64,armhf] i2c: meson: fix clock setting overwrite - [arm64,armhf] i2c: meson: fixup rate calculation with filter delay - sctp: fix sctp_auth_init_hmacs() error path - team: set dev->needed_headroom in team_setup_by_port() - net: team: fix memory leak in __team_options_register - openvswitch: handle DNAT tuple collision - drm/amdgpu: prevent double kfree ttm->sg - xfrm: clone XFRMA_SET_MARK in xfrm_do_migrate - xfrm: clone XFRMA_REPLAY_ESN_VAL in xfrm_do_migrate - xfrm: clone XFRMA_SEC_CTX in xfrm_do_migrate - xfrm: clone whole liftime_cur structure in xfrm_do_migrate - [arm64,armhf] net: stmmac: removed enabling eee in EEE set callback - xfrm: Use correct address family in xfrm_state_find - bonding: set dev->needed_headroom in bond_setup_by_slave() - net: usb: ax88179_178a: fix missing stop entry in driver_info - net/mlx5e: Fix VLAN cleanup flow - net/mlx5e: Fix VLAN create flow - rxrpc: Fix rxkad token xdr encoding - rxrpc: Downgrade the BUG() for unsupported token type in rxrpc_read() - rxrpc: Fix some missing _bh annotations on locking conn->state_lock - rxrpc: Fix server keyring leak - perf: Fix task_function_call() error handling - mmc: core: don't set limits.discard_granularity as 0 - mm: khugepaged: recalculate min_free_kbytes after memory hotplug as expected by khugepaged - net: usb: rtl8150: set random MAC address when set_ethernet_addr() fails https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.152 - Bluetooth: A2MP: Fix not initializing all members (CVE-2020-12352) - Bluetooth: L2CAP: Fix calling sk_filter on non-socket based channel (CVE-2020-12351) - Bluetooth: MGMT: Fix not checking if BT_HS is enabled - Bluetooth: Consolidate encryption handling in hci_encrypt_cfm - Bluetooth: Fix update of connection state in `hci_encrypt_cfm` - Bluetooth: Disconnect if E0 is used for Level 4 - media: usbtv: Fix refcounting mixup - USB: serial: option: add Cellient MPL200 card - USB: serial: option: Add Telit FT980-KS composition - [x86] staging: comedi: check validity of wMaxPacketSize of usb endpoints found - USB: serial: pl2303: add device-id for HP GC device - USB: serial: ftdi_sio: add support for FreeCalypso JTAG+UART adapters - reiserfs: Initialize inode keys properly - reiserfs: Fix oops during mount - [arm*] drivers/net/ethernet/marvell/mvmdio.c: Fix non OF case (Closes: #908712) - [x86] crypto: qat - check cipher length for aead AES-CBC-HMAC-SHA . [ Salvatore Bonaccorso ] * [rt] Update to 4.19.148-rt64 * Bump ABI to 12 * Revert "perf cs-etm: Move definition of 'traceid_list' global variable from header file" linux-latest (105+deb10u8) buster; urgency=medium . * Update to 4.19.0-13 linux-latest (105+deb10u7) buster-security; urgency=high . * Update to 4.19.0-12 linux-signed-amd64 (4.19.160+2) buster; urgency=medium . * Sign kernel from linux 4.19.160-2 . * net: Disable MLX5_ESWITCH on mips and mipsel (Fixes FTBFS) linux-signed-amd64 (4.19.160+1) buster; urgency=medium . * Sign kernel from linux 4.19.160-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.153 - [ppc64el] ibmveth: Switch order of ibmveth_helper calls. - [ppc64el] ibmveth: Identify ingress large send packets. - ipv4: Restore flowi4_oif update before call to xfrm_lookup_route - mlx4: handle non-napi callers to napi_poll - [armhf] net: fec: Fix phy_device lookup for phy_reset_after_clk_enable() - [armhf] net: fec: Fix PHY init after phy_reset_after_clk_enable() - net: fix pos incrementment in ipv6_route_seq_next - net/smc: fix valid DMBE buffer sizes - net: usb: qmi_wwan: add Cellient MPL200 card - tipc: fix the skb_unshare() in tipc_buf_append() - net/ipv4: always honour route mtu during forwarding - r8169: fix data corruption issue on RTL8402 - [arm*] binder: fix UAF when releasing todo list (CVE-2020-0423) - ALSA: bebob: potential info leak in hwdep_read() - net: hdlc: In hdlc_rcv, check to make sure dev is an HDLC device - [x86,ppc64el] net: hdlc_raw_eth: Clear the IFF_TX_SKB_SHARING flag after calling ether_setup - net/sched: act_tunnel_key: fix OOB write in case of IPv6 ERSPAN tunnels - nfc: Ensure presence of NFC_ATTR_FIRMWARE_NAME attribute in nfc_genl_fw_download() - tcp: fix to update snd_wl1 in bulk receiver fast path - r8169: fix operation under forced interrupt threading - icmp: randomize the global rate limiter (CVE-2020-25705) - ALSA: hda/realtek: Enable audio jacks of ASUS D700SA with ALC887 - cifs: remove bogus debug code - cifs: Return the error from crypt_message when enc/dec key not found. - [x86] KVM: x86/mmu: Commit zap of remaining invalid pages when recovering lpages - [x86] KVM: SVM: Initialize prev_ga_tag before use - crypto: algif_aead - Do not set MAY_BACKLOG on the async path - [x86] EDAC/i5100: Fix error handling order in i5100_init_one() - [x86] fpu: Allow multiple bits in clearcpuid= parameter - [arm64] drivers/perf: xgene_pmu: Fix uninitialized resource struct - [x86] nmi: Fix nmi_handle() duration miscalculation - [amd64] x86/events/amd/iommu: Fix sizeof mismatch - crypto: algif_skcipher - EBUSY on aio should be an error - media: tuner-simple: fix regression in simple_set_radio_freq - media: uvcvideo: Set media controller entity functions - media: uvcvideo: Silence shift-out-of-bounds warning - [armhf] media: omap3isp: Fix memleak in isp_probe - [armhf] media: ti-vpe: Fix a missing check and reference count leak - regulator: resolve supply after creating regulator - ath10k: provide survey info as accumulated data - Bluetooth: hci_uart: Cancel init work before unregistering - ath6kl: prevent potential array overflow in ath6kl_add_new_sta() - ath9k: Fix potential out of bounds in ath9k_htc_txcompletion_cb() - ath10k: Fix the size used in a 'dma_free_coherent()' call in an error handling path - [arm64] wcn36xx: Fix reported 802.11n rx_highest rate wcn3660/wcn3680 - [arm64] ASoC: qcom: lpass-platform: fix memory leak - [arm64] ASoC: qcom: lpass-cpu: fix concurrency issue - brcmfmac: check ndev pointer - mwifiex: Do not use GFP_KERNEL in atomic context - [x86] staging: rtl8192u: Do not use GFP_KERNEL in atomic context - [x86] drm/gma500: fix error check - scsi: qla4xxx: Fix an error handling path in 'qla4xxx_get_host_stats()' - scsi: qla2xxx: Fix wrong return value in qla_nvme_register_hba() - scsi: csiostor: Fix wrong return value in csio_hw_prep_fw() - [x86] VMCI: check return value of get_user_pages_fast() for errors - [ppc64el] tty: hvcs: Don't NULL tty->driver_data until hvcs_cleanup() - pty: do tty_flip_buffer_push without port->lock in pty_write - [x86] pwm: lpss: Fix off by one error in base_unit math in pwm_lpss_prepare() - [x86] pwm: lpss: Add range limit check for the base_unit register value - [x86] video: fbdev: vga16fb: fix setting of pixclock because a pass-by-value error - video: fbdev: sis: fix null ptr dereference - video: fbdev: radeon: Fix memleak in radeonfb_pci_register - HID: roccat: add bounds checking in kone_sysfs_write_settings() - [armhf] pinctrl: mcp23s08: Fix mcp23x17_regmap initialiser - [armhf] pinctrl: mcp23s08: Fix mcp23x17 precious range - net/mlx5: Don't call timecounter cyc2time directly from 1PPS flow - [arm64,armhf] net: stmmac: use netif_tx_start|stop_all_queues() function - [arm64] cpufreq: armada-37xx: Add missing MODULE_DEVICE_TABLE - ath6kl: wmi: prevent a shift wrapping bug in ath6kl_wmi_delete_pstream_cmd() - [amd64] misc: mic: scif: Fix error handling path - [arm*] usb: dwc2: Fix parameter type in function pointer prototype - quota: clear padding in v2r1_mem2diskdqb() - HID: hid-input: fix stylus battery reporting - net: enic: Cure the enic api locking trainwreck - [mips*] mfd: sm501: Fix leaks in probe() - iwlwifi: mvm: split a print to avoid a WARNING in ROC - usb: gadget: f_ncm: fix ncm_bitrate for SuperSpeed and above. - usb: gadget: u_ether: enable qmult on SuperSpeed Plus as well - nl80211: fix non-split wiphy information - [arm*] usb: dwc2: Fix INTR OUT transfers in DDMA mode. - scsi: target: tcmu: Fix warning: 'page' may be used uninitialized - scsi: be2iscsi: Fix a theoretical leak in beiscsi_create_eqs() - mwifiex: fix double free - ipvs: clear skb->tstamp in forwarding path - netfilter: nf_log: missing vlan offload tag and proto - mm/memcg: fix device private memcg accounting - mm, oom_adj: don't loop through tasks in __set_oom_adj when not necessary - IB/mlx4: Fix starvation in paravirt mux/demux - IB/mlx4: Adjust delayed work when a dup is observed - [powerpc*] pseries: Fix missing of_node_put() in rng_init() - [powerpc*] icp-hv: Fix missing of_node_put() in success path - RDMA/ucma: Fix locking for ctx->events_reported - RDMA/ucma: Add missing locking around rdma_leave_multicast() - [powerpc*] pseries: explicitly reschedule during drmem_lmb list traversal - mtd: mtdoops: Don't write panic data twice - [armel,armhf] ARM: 9007/1: l2c: fix prefetch bits init in L2X0_AUX_CTRL using DT values - xfs: limit entries returned when counting fsmap records - xfs: fix high key handling in the rt allocator's query_range function - RDMA/qedr: Fix use of uninitialized field - RDMA/qedr: Fix inline size returned for iWARP https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.154 - [powerpc*] 64s/radix: Fix mm_cpumask trimming race vs kthread_use_mm - RDMA/cma: Remove dead code for kernel rdmacm multicast - RDMA/cma: Consolidate the destruction of a cma_multicast in one place - [arm64] RDMA/hns: Set the unsupported wr opcode - [arm64] RDMA/hns: Fix missing sq_sig_type when querying QP - overflow: Include header file with SIZE_MAX declaration - [powerpc*] perf: Exclude pmc5/6 from the irrelevant PMU group constraints - [poerpc*] cpufreq: powernv: Fix frame-size-overflow in powernv_cpufreq_reboot_notifier - IB/rdmavt: Fix sizeof mismatch - f2fs: wait for sysfs kobject removal before freeing f2fs_sb_info - lib/crc32.c: fix trivial typo in preprocessor condition - rapidio: fix error handling path - rapidio: fix the missed put_device() for rio_mport_add_riodev - mailbox: avoid timer start from callback - [arm64,armhf] clk: rockchip: Initialize hw to error to avoid undefined behavior - [arm*] clk: bcm2835: add missing release if devm_clk_hw_register fails - watchdog: Fix memleak in watchdog_cdev_register - watchdog: Use put_device on error - svcrdma: fix bounce buffers for unaligned offsets and multiple pages - ext4: limit entries returned when counting fsmap records - vfio/pci: Clear token on bypass registration failure - [amd64,arm64] vfio iommu type1: Fix memory leak in vfio_iommu_type1_pin_pages - SUNRPC: fix copying of multiple pages in gss_read_proxy_verf() - [armhf] Input: omap4-keypad - fix handling of platform_get_irq() error - [armhf] Input: twl4030_keypad - fix handling of platform_get_irq() error - [armhf] Input: sun4i-ps2 - fix handling of platform_get_irq() error - [x86] KVM: emulating RDPID failure shall return #UD rather than #GP - netfilter: conntrack: connection timeout after re-register - netfilter: nf_fwd_netdev: clear timestamp in forwarding path - [armhf] dts: sun8i: r40: bananapi-m2-ultra: Fix dcdc1 regulator - [armhf] memory: omap-gpmc: Fix a couple off by ones - [powerpc*] powernv/dump: Fix race while processing OPAL dump - nvmet: fix uninitialized work for zero kato - [x86,arm64] i2c: core: Restore acpi_walk_dep_device_list() getting called after registering the ACPI i2c devs - block: ratelimit handle_bad_sector() message - [x86] crypto: ccp - fix error handling - media: firewire: fix memory leak - media: ati_remote: sanity check for both endpoints - media: media/pci: prevent memory leak in bttv_probe - media: uvcvideo: Ensure all probed info is returned to v4l2 - mmc: sdio: Check for CISTPL_VERS_1 buffer size - media: saa7134: avoid a shift overflow - fs: dlm: fix configfs memory leak - [arm64] media: venus: core: Fix runtime PM imbalance in venus_probe - ip_gre: set dev->hard_header_len and dev->needed_headroom properly - mac80211: handle lack of sband->bitrates in rates - PM: hibernate: remove the bogus call to get_gendisk() in software_resume() - scsi: mvumi: Fix error return in mvumi_io_attach() - scsi: target: core: Add CONTROL field for trace events - [amd64] mic: vop: copy data to kernel space then write to io memory - [amd64] misc: vop: add round_up(x,4) for vring_size to avoid kernel panic - usb: gadget: function: printer: fix use-after-free in __lock_acquire - udf: Limit sparing table size - udf: Avoid accessing uninitialized data on failed inode read - USB: cdc-acm: handle broken union descriptors - [arm64,armhf] usb: dwc3: simple: add support for Hikey 970 - [armhf] can: flexcan: flexcan_chip_stop(): add error handling and propagate error value - ath9k: hif_usb: fix race condition between usb_get_urb() and usb_kill_anchored_urbs() - misc: rtsx: Fix memory leak in rtsx_pci_probe - reiserfs: only call unlock_new_inode() if I_NEW - xfs: make sure the rt allocator doesn't run off the end - usb: ohci: Default to per-port over-current protection - Bluetooth: Only mark socket zapped after unlocking - [ppc64el] scsi: ibmvfc: Fix error return in ibmvfc_probe() - brcmsmac: fix memory leak in wlc_phy_attach_lcnphy - rtl8xxxu: prevent potential memory leak - Fix use after free in get_capset_info callback. - scsi: qedi: Protect active command list to avoid list corruption - scsi: qedi: Fix list_del corruption while removing active I/O - [x86] tty: ipwireless: fix error handling - ipvs: Fix uninit-value in do_ip_vs_set_ctl() - reiserfs: Fix memory leak in reiserfs_parse_options() - mwifiex: don't call del_timer_sync() on uninitialized timer - brcm80211: fix possible memleak in brcmf_proto_msgbuf_attach - usb: core: Solve race condition in anchor cleanup functions - ath10k: check idx validity in __ath10k_htt_rx_ring_fill_n() - usb: cdc-acm: add quirk to blacklist ETAS ES58X devices - USB: cdc-wdm: Make wdm_flush() interruptible and add wdm_fsync(). - eeprom: at25: set minimum read/write access stride to 1 - usb: gadget: f_ncm: allow using NCM in SuperSpeed Plus gadgets. https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.155 - scripts/setlocalversion: make git describe output more reliable - [arm64] Run ARCH_WORKAROUND_1 enabling code on all CPUs - [arm64] link with -z norelro regardless of CONFIG_RELOCATABLE - [x86,arm64,armhf] efivarfs: Replace invalid slashes with exclamation marks in dentries. - gtp: fix an use-before-init in gtp_newlink() - netem: fix zero division in tabledist - tcp: Prevent low rmem stalls with SO_RCVLOWAT. - tipc: fix memory leak caused by tipc_buf_append() - r8169: fix issue with forced threading in combination with shared interrupts - cxgb4: set up filter action after rewrites - [x86] arch/x86/amd/ibs: Fix re-arming IBS Fetch - [x86] xen: disable Firmware First mode for correctable memory errors - fuse: fix page dereference after free - bpf: Fix comment for helper bpf_current_task_under_cgroup() - p54: avoid accessing the data mapped to streaming DMA - [powerpc*] cxl: Rework error message for incompatible slots - RDMA/addr: Fix race with netevent_callback()/rdma_addr_cancel() - mtd: lpddr: Fix bad logic in print_drs_error - [arm*] serial: pl011: Fix lockdep splat when handling magic-sysrq interrupt - fscrypt: return -EXDEV for incompatible rename or link into encrypted dir - fscrypt: clean up and improve dentry revalidation - fscrypt: fix race allowing rename() and link() of ciphertext dentries - fs, fscrypt: clear DCACHE_ENCRYPTED_NAME when unaliasing directory - fscrypt: only set dentry_operations on ciphertext dentries - fscrypt: fix race where ->lookup() marks plaintext dentry as ciphertext - Revert "block: ratelimit handle_bad_sector() message" - xen/events: don't use chip_data for legacy IRQs - xen/events: avoid removing an event channel while handling it (CVE-2020-27675) - xen/events: add a proper barrier to 2-level uevent unmasking (CVE-2020-27673) - xen/events: fix race in evtchn_fifo_unmask() (CVE-2020-27673) - xen/events: add a new "late EOI" evtchn framework (CVE-2020-27673) - xen/blkback: use lateeoi irq binding (CVE-2020-27673) - xen/netback: use lateeoi irq binding (CVE-2020-27673) - xen/scsiback: use lateeoi irq binding (CVE-2020-27673) - xen/pvcallsback: use lateeoi irq binding (CVE-2020-27673) - xen/pciback: use lateeoi irq binding (CVE-2020-27673) - xen/events: switch user event channels to lateeoi model (CVE-2020-27673) - xen/events: use a common cpu hotplug hook for event channels (CVE-2020-27673) - xen/events: defer eoi in case of excessive number of events (CVE-2020-27673) - xen/events: block rogue events for some time (CVE-2020-27673) - RDMA/qedr: Fix memory leak in iWARP CM - ata: sata_nv: Fix retrieving of active qcs - futex: Fix incorrect should_fail_futex() handling - [powerpc*] powernv/smp: Fix spurious DBG() warning - mm: fix exec activate_mm vs TLB shootdown and lazy tlb switching race - [powerpc*] select ARCH_WANT_IRQS_OFF_ACTIVATE_MM - f2fs: add trace exit in exception path - f2fs: fix uninit-value in f2fs_lookup - f2fs: fix to check segment boundary during SIT page readahead - [armel,armhf] 8997/2: hw_breakpoint: Handle inexact watchpoint addresses - power: supply: bq27xxx: report "not charging" on all types - xfs: fix realtime bitmap/summary file truncation when growing rt volume - ath10k: fix VHT NSS calculation when STBC is enabled - media: videodev2.h: RGB BT2020 and HSV are always full range - [x86] usb: typec: tcpm: During PR_SWAP, source caps should be sent only after tSwapSourceStart - media: tw5864: check status of tw5864_frameinterval_get - mmc: via-sdmmc: Fix data race bug - [arm64] topology: Stop using MPIDR for topology information - media: uvcvideo: Fix dereference of out-of-bound list iterator - USB: adutux: fix debugging - uio: free uio id after uio file node is freed - usb: xhci: omit duplicate actions when suspending a runtime suspended host. - [arm64] mm: return cpu_all_mask when node is NUMA_NO_NODE - xfs: don't free rt blocks when we're doing a REMAP bunmapi call - ACPI: Add out of bounds and numa_off protections to pxm_to_node() - drivers/net/wan/hdlc_fr: Correctly handle special skb->protocol values - btrfs: fix replace of seed device - md/bitmap: md_bitmap_get_counter returns wrong blocks - bnxt_en: Log unknown link speed appropriately. - [arm64] rpmsg: glink: Use complete_all for open states - [armhf] clk: ti: clockdomain: fix static checker warning - net: 9p: initialize sun_server.sun_path to have addr's value only when addr is valid - ext4: Detect already used quota file early - gfs2: add validation checks for size of superblock - cifs: handle -EINTR in cifs_setattr - [armhf] memory: emif: Remove bogus debugfs error handling - nbd: make the config put is called before the notifying the waiter - sgl_alloc_order: fix memory leak - nvme-rdma: fix crash when connect rejected - md/raid5: fix oops during stripe resizing - [x86,arm64] mmc: sdhci-acpi: AMDI0040: Set SDHCI_QUIRK2_PRESET_VALUE_BROKEN - [x86] perf/x86/amd/ibs: Don't include randomized bits in get_ibs_op_count() - [x86] perf/x86/amd/ibs: Fix raw sample data accumulation - media: uvcvideo: Fix uvc_ctrl_fixup_xu_info() not having any effect - fs: Don't invalidate page buffers in block_write_full_page() - NFS: fix nfs_path in case of a rename retry - ACPI: button: fix handling lid state changes when input device closed - [x86] ACPI / extlog: Check for RDMSR failure (Closes: #971058) - [x86] ACPI: video: use ACPI backlight for HP 635 Notebook - [x86] acpi-cpufreq: Honor _PSD table setting on new AMD CPUs - scsi: mptfusion: Fix null pointer dereferences in mptscsih_remove() - scsi: qla2xxx: Fix crash on session cleanup with unload - btrfs: qgroup: fix wrong qgroup metadata reserve for delayed inode - btrfs: improve device scanning messages - btrfs: reschedule if necessary when logging directory items - btrfs: send, recompute reference path after orphanization of a directory - btrfs: use kvzalloc() to allocate clone_roots in btrfs_ioctl_send() - btrfs: cleanup cow block on error - btrfs: fix use-after-free on readahead extent after failure to create it - usb: xhci: Workaround for S3 issue on AMD SNPS 3.0 xHC - [arm64,armhf] usb: dwc3: ep0: Fix ZLP for OUT ep0 requests - [arm64,armhf] usb: dwc3: gadget: Check MPS of the request length - [arm64,armhf] usb: dwc3: core: add phy cleanup for probe error handling - [arm64,armhf] usb: dwc3: core: don't trigger runtime pm when remove driver - usb: cdc-acm: fix cooldown mechanism - [x86] usb: typec: tcpm: reset hard_reset_count for any disconnect - [x86] drm/i915: Force VT'd workarounds when running as a guest OS - vt: keyboard, simplify vt_kdgkbsent - vt: keyboard, extend func_buf_lock to readers (CVE-2020-25656) - HID: wacom: Avoid entering wacom_wac_pen_report for pad / battery - udf: Fix memory leak when mounting - [powerpc*] drmem: Make lmb_size 64 bit - [s390x] stp: add locking to sysfs functions - [powerpc*] rtas: Restrict RTAS requests from userspace (CVE-2020-27777) - [powerpc*] Warn about use of smt_snooze_delay - [powerpc*] powernv/elog: Fix race while processing OPAL error log event. - [powerpc*] Fix undetected data corruption with P9N DD2.1 VSX CI load emulation - NFSv4.2: support EXCHGID4_FLAG_SUPP_FENCE_OPS 4.2 EXCHANGE_ID flag - NFSD: Add missing NFSv2 .pc_func methods - ubifs: dent: Fix some potential memory leaks while iterating entries - perf python scripting: Fix printable strings in python3 scripts - ubi: check kthread_should_stop() after the setting of task state - [armhf] i2c: imx: Fix external abort on interrupt in exit paths - drm/amdgpu: don't map BO in reserved region - ceph: promote to unsigned long long before shifting - libceph: clear con->out_msg on Policy::stateful_server faults - 9P: Cast to loff_t before multiplying - ring-buffer: Return 0 on success from ring_buffer_resize() - [amd64] vringh: fix __vringh_iov() when riov and wiov are different - ext4: fix leaking sysfs kobject after failed mount - ext4: fix error handling code in add_new_gdb - ext4: fix invalid inode checksum - drm/ttm: fix eviction valuable range check. - tty: make FONTX ioctl use the tty pointer they were actually passed (CVE-2020-25668) - cachefiles: Handle readpage error correctly - device property: Keep secondary firmware node secondary by type - device property: Don't clear secondary pointer for shared primary firmware node - [arm64] KVM: Fix AArch32 handling of DBGD{CCINT,SCRext} and DBGVCR - [x86] staging: comedi: cb_pcidas: Allow 2-channel commands for AO subdevice - [mips*] staging: octeon: repair "fixed-link" support - [mips*] staging: octeon: Drop on uncorrectable alignment or FCS error https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.156 - [x86] drm/i915: Break up error capture compression loops with cond_resched() - tipc: fix use-after-free in tipc_bcast_get_mode - ptrace: fix task_join_group_stop() for the case when current is traced - [arm64] cadence: force nonlinear buffers to be cloned - net: usb: qmi_wwan: add Telit LE910Cx 0x1230 composition - sctp: Fix COMM_LOST/CANT_STR_ASSOC err reporting on big-endian platforms - [arm64,armhf] sfp: Fix error handing in sfp_probe() - blktrace: fix debugfs use after free (CVE-2019-19770) - btrfs: extent_io: Kill the forward declaration of flush_write_bio - btrfs: extent_io: Move the BUG_ON() in flush_write_bio() one level up - Revert "btrfs: flush write bio if we loop in extent_write_cache_pages" - btrfs: flush write bio if we loop in extent_write_cache_pages - btrfs: extent_io: Handle errors better in extent_write_full_page() - btrfs: extent_io: Handle errors better in btree_write_cache_pages() - btrfs: extent_io: add proper error handling to lock_extent_buffer_for_io() - Btrfs: fix unwritten extent buffers and hangs on future writeback attempts - btrfs: Don't submit any btree write bio if the fs has errors (CVE-2019-19039, CVE-2019-19377) - btrfs: Move btrfs_check_chunk_valid() to tree-check.[ch] and export it - btrfs: tree-checker: Make chunk item checker messages more readable - btrfs: tree-checker: Make btrfs_check_chunk_valid() return EUCLEAN instead of EIO - btrfs: tree-checker: Check chunk item at tree block read time - btrfs: tree-checker: Verify dev item - btrfs: tree-checker: Fix wrong check on max devid - btrfs: tree-checker: Enhance chunk checker to validate chunk profile (CVE-2019-19816) - btrfs: tree-checker: Verify inode item - btrfs: tree-checker: fix the error message for transid error - Fonts: Replace discarded const qualifier - ALSA: usb-audio: Add implicit feedback quirk for Zoom UAC-2 - ALSA: usb-audio: add usb vendor id as DSD-capable for Khadas devices - ALSA: usb-audio: Add implicit feedback quirk for Qu-16 - ALSA: usb-audio: Add implicit feedback quirk for MODX - mm: mempolicy: fix potential pte_unmap_unlock pte error - kthread_worker: prevent queuing delayed work from timer_fn when it is being canceled - mm: always have io_remap_pfn_range() set pgprot_decrypted() - gfs2: Wake up when sd_glock_disposal becomes zero - ring-buffer: Fix recursion protection transitions between interrupt context - ftrace: Fix recursion check for NMI test - ftrace: Handle tracing when switching between context - tracing: Fix out of bounds write in get_trace_buf - futex: Handle transient "ownerless" rtmutex state correctly - [amd64] x86/kexec: Use up-to-dated screen_info copy to fill boot params - of: Fix reserved-memory overlap detection - blk-cgroup: Fix memleak on error path - blk-cgroup: Pre-allocate tree node on blkg_conf_prep - scsi: core: Don't start concurrent async scan on same host - vsock: use ns_capable_noaudit() on socket create - [arm*] drm/vc4: drv: Add error handding for bind - [amd64,arm64] ACPI: NFIT: Fix comparison to '-ENXIO' - vt: Disable KD_FONT_OP_COPY (CVE-2020-28974) - fork: fix copy_process(CLONE_PARENT) race with the exiting ->real_parent - USB: serial: cyberjack: fix write-URB completion race - USB: serial: option: add Quectel EC200T module support - USB: serial: option: add LE910Cx compositions 0x1203, 0x1230, 0x1231 - USB: serial: option: add Telit FN980 composition 0x1055 - USB: Add NO_LPM quirk for Kingston flash drive - PM: runtime: Resume the device earlier in __device_release_driver() - perf/core: Fix a memory leak in perf_event_parse_addr_filter() (CVE-2020-25704) - tools: perf: Fix build error in v4.19.y - [arm64,armhf] net: dsa: read mac address from DT for slave device - [arm64] dts: marvell: espressobin: Add ethernet switch aliases https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.157 - [x86] powercap: restrict energy meter to root access (CVE-2020-8694) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.158 - regulator: defer probe when trying to get voltage from unresolved supply - time: Prevent undefined behaviour in timespec64_to_ns() - nbd: don't update block size after device is started - [arm64,armhf] usb: dwc3: gadget: Continue to process pending requests - [arm64,armhf] usb: dwc3: gadget: Reclaim extra TRBs after request completion - btrfs: sysfs: init devices outside of the chunk_mutex - btrfs: reschedule when cloning lots of extents - [x86] hv_balloon: disable warning when floor reached - net: xfrm: fix a race condition during allocing spi - xfs: set xefi_discard when creating a deferred agfl free log intent item - netfilter: ipset: Update byte and packet counters regardless of whether they match - perf tools: Add missing swap for ino_generation - [x86] ALSA: hda: prevent undefined shift in snd_hdac_ext_bus_get_link() - can: rx-offload: don't call kfree_skb() from IRQ context - can: dev: can_get_echo_skb(): prevent call to kfree_skb() in hard IRQ context - can: dev: __can_get_echo_skb(): fix real payload length return value for RTR frames - can: can_create_echo_skb(): fix echo skb generation: always use skb_clone() - can: peak_usb: add range checking in decode operations - can: peak_usb: peak_usb_get_ts_time(): fix timestamp wrapping - can: peak_canfd: pucan_handle_can_rx(): fix echo management when loopback is on - [armhf] can: flexcan: remove FLEXCAN_QUIRK_DISABLE_MECR quirk for LS1021A - xfs: flush new eof page on truncate to avoid post-eof corruption - [arm64,x86] tpm: efi: Don't create binary_bios_measurements file for an empty log - Btrfs: fix missing error return if writeback for extent buffer never started - ath9k_htc: Use appropriate rs_datalen type - netfilter: use actual socket sk rather than skb sk when routing harder - gfs2: Free rd_bits later in gfs2_clear_rgrpd to fix use-after-free - gfs2: Add missing truncate_inode_pages_final for sd_aspace - gfs2: check for live vs. read-only file system in gfs2_fitrim - scsi: hpsa: Fix memory leak in hpsa_init_one() - drm/amdgpu: perform srbm soft reset always on SDMA resume - mac80211: fix use of skb payload instead of header - cfg80211: regulatory: Fix inconsistent format argument - scsi: scsi_dh_alua: Avoid crash during alua_bus_detach() - [s390x] smp: move rcu_cpu_starting() earlier - [x86] tpm_tis: Disable interrupts on ThinkPad T490s - tick/common: Touch watchdog in tick_unfreeze() on all CPUs - [x86] pinctrl: intel: Set default bias in case no particular value given - [armel,armhf] 9019/1: kprobes: Avoid fortify_panic() when copying optprobe template - nbd: fix a block_device refcount leak in nbd_release - xfs: fix flags argument to rmap lookup when converting shared file rmaps - xfs: fix rmap key and record comparison functions - lan743x: fix "BUG: invalid wait context" when setting rx mode - xfs: fix a missing unlock on error in xfs_fs_map_blocks - of/address: Fix of_node memory leak in of_dma_is_coherent - [i386] cosa: Add missing kfree in error path of cosa_write - perf: Fix get_recursion_context() - ext4: correctly report "not supported" for {usr,grp}jquota when !CONFIG_QUOTA - ext4: unlock xattr_sem properly in ext4_inline_data_truncate() - btrfs: dev-replace: fail mount if we don't have replace item with target device - [x86] thunderbolt: Fix memory leak if ida_simple_get() fails in enumerate_services() - [x86] thunderbolt: Add the missed ida_simple_remove() in ring_request_msix() - uio: Fix use-after-free in uio_unregister_device() - usb: cdc-acm: Add DISABLE_ECHO for Renesas USB Download mode - futex: Don't enable IRQs unconditionally in put_pi_state() - ocfs2: initialize ip_next_orphan - btrfs: fix potential overflow in cluster_pages_for_defrag on 32bit arch - selinux: Fix error return code in sel_ib_pkey_sid_slow() - gpio: pcie-idio-24: Fix irq mask when masking - gpio: pcie-idio-24: Fix IRQ Enable Register value - gpio: pcie-idio-24: Enable PEX8311 interrupts - don't dump the threads that had been already exiting when zapped. - [x86] drm/gma500: Fix out-of-bounds access to struct drm_device.vblank[] - pinctrl: amd: use higher precision for 512 RtcClk - pinctrl: amd: fix incorrect way to disable debounce filter - swiotlb: fix "x86: Don't panic if can not alloc buffer for swiotlb" - IPv6: Set SIT tunnel hard_header_len to zero - [s390x] net/af_iucv: fix null pointer dereference on shutdown - net: Update window_clamp if SOCK_RCVBUF is set - tipc: fix memory leak in tipc_topsrv_start() - vrf: Fix fast path output packet handling with async Netfilter rules - r8169: fix potential skb double free in an error path - random32: make prandom_u32() output unpredictable - [x86] speculation: Allow IBPB to be conditionally enabled on CPUs with always-on STIBP - perf/core: Fix race in the perf_mmap_close() function (CVE-2020-14351) - Revert "kernel/reboot.c: convert simple_strtoul to kstrtoint" - reboot: fix overflow parsing reboot cpu number - net: sch_generic: fix the missing new qdisc assignment bug - Convert trailing spaces and periods in path components https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.159 - [powerpc*] 64s: move some exception handlers out of line - [powerpc*] 64s: flush L1D on kernel entry (CVE-2020-4788) - [powerpc*] Add a framework for user access tracking - [powerpc*] Implement user_access_begin and friends - [powerpc*] Fix __clear_user() with KUAP enabled - [powerpc*] uaccess: Evaluate macro arguments once, before user access is allowed - [powerpc*] 64s: flush L1D after user accesses (CVE-2020-4788) - Revert "perf cs-etm: Move definition of 'traceid_list' global variable from header file" - Input: sunkbd - avoid use-after-free in teardown paths (CVE-2020-25669) - mac80211: always wind down STA state - can: proc: can_remove_proc(): silence remove_proc_entry warning - [x86] KVM: x86: clflushopt should be treated as a no-op by emulation - [arm64] ACPI: GED: fix -Wformat https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.160 - ah6: fix error return code in ah6_input() - atm: nicstar: Unmap DMA on send error - bnxt_en: read EEPROM A2h address using page 0 - devlink: Add missing genlmsg_cancel() in devlink_nl_sb_port_pool_fill() - inet_diag: Fix error path to cancel the meseage in inet_req_diag_fill() - lan743x: fix issue causing intermittent kernel log warnings - lan743x: prevent entire kernel HANG on open, for some platforms - net: b44: fix error return code in b44_init_one() - net: bridge: add missing counters to ndo_get_stats64 callback - [arm64,armhf] net: dsa: mv88e6xxx: Avoid VTU corruption on 6097 - net: Have netpoll bring-up DSA management interface - net/mlx4_core: Fix init_hca fields offset - page_frag: Recover from memory pressure - qed: fix error return code in qed_iwarp_ll2_start() - qlcnic: fix error return code in qlcnic_83xx_restart_hw() - sctp: change to hold/put transport for proto_unreach_timer - tcp: only postpone PROBE_RTT if RTT is < current min_rtt estimate - [arm64,armhf] net/mlx5: Disable QoS when min_rates on all VFs are zero - net: usb: qmi_wwan: Set DTR quirk for MR400 - [arm64,armhf] pinctrl: rockchip: enable gpio pclk for rockchip_gpio_to_irq - scsi: ufs: Fix unbalanced scsi_block_reqs_cnt caused by ufshcd_hold() - [x86] ACPI: button: Add DMI quirk for Medion Akoya E2228T - [arm64] psci: Avoid printing in cpu_psci_cpu_die() - vfs: remove lockdep bogosity in __sb_start_write - [arm64] dts: allwinner: a64: Pine64 Plus: Fix ethernet node - [arm64] dts: allwinner: h5: OrangePi PC2: Fix ethernet node - [armhf] dts: sun8i: r40: bananapi-m2-ultra: Fix ethernet node - [armhf] Revert "arm: sun8i: orangepi-pc-plus: Set EMAC activity LEDs to active high" - [armhf] dts: sun8i: h3: orangepi-plus2e: Enable RGMII RX/TX delay on Ethernet PHY - [armhf] dts: sun8i: a83t: Enable both RGMII RX/TX delay on Ethernet PHY - [arm64] dts: allwinner: a64: bananapi-m64: Enable RGMII RX/TX delay on PHY - [mips*] export has_transparent_hugepage() for modules - [arm64] dts: allwinner: h5: OrangePi Prime: Fix ethernet node - perf lock: Don't free "lock_seq_stat" if read_count isn't zero - ip_tunnels: Set tunnel option flag when tunnel metadata is present - can: af_can: prevent potential access of uninitialized member in can_rcv() - can: af_can: prevent potential access of uninitialized member in canfd_rcv() - can: dev: can_restart(): post buffer from the right context - can: mcba_usb: mcba_usb_start_xmit(): first fill skb, then pass to can_put_echo_skb() - can: peak_usb: fix potential integer overflow on shift of a int - [arm64] ASoC: qcom: lpass-platform: Fix memory leak - [arm64,armhf] drm/sun4i: dw-hdmi: fix error return code in sun8i_dw_hdmi_bind() - can: kvaser_usb: kvaser_usb_hydra: Fix KCAN bittiming limits - [armhf] regulator: ti-abb: Fix array out of bound read access on the first transition - xfs: revert "xfs: fix rmap key and record comparison functions" - [amd64] efi/x86: Free efi_pgd with free_pages() - libfs: fix error cast of negative value in simple_attr_write() - speakup: Do not let the line discipline be used several times (CVE-2020-28941) - ALSA: firewire: Clean up a locking issue in copy_resp_to_buf() - ALSA: usb-audio: Add delay quirk for all Logitech USB devices - ALSA: ctl: fix error path at adding user-defined element set - ALSA: mixart: Fix mutex deadlock - ALSA: hda/realtek: Add some Clove SSID in the ALC293(ALC1220) - [armhf] tty: serial: imx: keep console clocks always on - [arm64,armhf,x86] efivarfs: fix memory leak in efivarfs_create() - [arm64,x86] staging: rtl8723bs: Add 024c:0627 to the list of SDIO device-ids - ext4: fix bogus warning in ext4_update_dx_flag() - [x86] iio: accel: kxcjk1013: Replace is_smo8500_device with an acpi_type enum - [x86] iio: accel: kxcjk1013: Add support for KIOX010A ACPI DSM for setting tablet-mode - [armhf] regulator: pfuze100: limit pfuze-support-disable-sw to pfuze{100,200} - regulator: fix memory leak with repeated set_machine_constraints() - regulator: avoid resolve_supply() infinite recursion - regulator: workaround self-referent regulators - mac80211: minstrel: remove deferred sampling code - mac80211: minstrel: fix tx status processing corner case - mac80211: free sta in sta_info_insert_finish() on errors - [s390x] cpum_sf.c: fix file permission for cpum_sfb_size - [s390x] dasd: fix null pointer dereference for ERP requests - ptrace: Set PF_SUPERPRIV when checking capability - seccomp: Set PF_SUPERPRIV when checking capability - [x86] microcode/intel: Check patch signature before saving microcode for early loading - mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() . [ Salvatore Bonaccorso ] * net: Enable NET_SWITCHDEV; disable on armel/marvell (Closes: #949863) * Bump ABI to 13 * [rt] Update to 4.19.152-rt65 * [rt] Refresh "mm: Protect activate_mm() by preempt_[disable&enable]_rt()" * [rt] Refresh "kthread: convert worker lock to raw spinlock" * [rt] Refresh "signals: Allow rt tasks to cache one sigqueue struct" * [rt] Refresh "tpm_tis: fix stall after iowrite*()s" * [rt] Refresh "futex: Delay deallocation of pi_state" * [rt] Refresh "futex: Make the futex_hash_bucket spinlock_t again" * [rt] Update to 4.19.152-rt66 - mm/memcontrol: Disable preemption in __mod_memcg_lruvec_state() - ptrace: fix ptrace_unfreeze_traced() race with rt-lock * [rt] Update to 4.19.160-rt69 . [ Noah Meyerhans ] * Backport upstream fix for PCI bridge firmware configuration preservation (Closes: #968623) . [ John L. Villalovos ] * Backport support for USB Host Controllers with local memory to avoid crashes. In particular the Renesas USB 3.0 controller (PD720201/PD720202) which is used on the Ampere's Mt Jade platform which is part of their Altra product line: - lib/genalloc: add gen_pool_dma_zalloc() for zeroed DMA allocations - USB: use genalloc for USB HCs with local memory - USB: drop HCD_LOCAL_MEM flag - usb: don't create dma pools for HCDs with a localmem_pool - usb: add a hcd_uses_dma helper - usb: host: ohci-sm501: init genalloc for local memory - usb/hcd: Fix a NULL vs IS_ERR() bug in usb_hcd_setup_local_mem() * [arm64] config/arm64/config: Set NODES_SHIFT to 4 . [ Yves-Alexis Perez ] * usbnet: ipheth: fix connectivity with iOS 14 linux-signed-amd64 (4.19.152+1) buster-security; urgency=high . * Sign kernel from linux 4.19.152-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.147 - [arm64,armhf] dsa: Allow forwarding of redirected IGMP traffic - scsi: qla2xxx: Update rscn_rcvd field to more meaningful scan_needed - scsi: qla2xxx: Move rport registration out of internal work_list - scsi: qla2xxx: Reduce holding sess_lock to prevent CPU lock-up - net: handle the return value of pskb_carve_frag_list() correctly - [x86] hv_netvsc: Remove "unlikely" from netvsc_select_queue - NFSv4.1 handle ERR_DELAY error reclaiming locking state on delegation recall - scsi: pm8001: Fix memleak in pm8001_exec_internal_task_abort - scsi: libfc: Fix for double free() - scsi: lpfc: Fix FLOGI/PLOGI receive race condition in pt2pt discovery - [arm64] regulator: pwm: Fix machine constraints application - NFS: Zero-stateid SETATTR should first return delegation - SUNRPC: stop printk reading past end of string - nvme-fc: cancel async events before freeing event struct - nvme-rdma: cancel async events before freeing event struct - f2fs: fix indefinite loop scanning for free nid - f2fs: Return EOF on unaligned end of file DIO read - i2c: algo: pca: Reapply i2c bus settings after reset - spi: Fix memory leak on splited transfers - [arm64,armhf] clk: rockchip: Fix initialization of mux_pll_src_4plls_p - [arm64] ASoC: qcom: Set card->owner to avoid warnings - [x86] Drivers: hv: vmbus: Add timeout to vmbus_wait_for_unload - fbcon: Fix user font detection test at fbcon_resize(). - USB: quirks: Add USB_QUIRK_IGNORE_REMOTE_WAKEUP quirk for BYD zhaoxin notebook - USB: UAS: fix disconnect by unplugging a hub - usblp: fix race between disconnect() and read() - [x86] i2c: i801: Fix resume bug - Revert "ALSA: hda - Fix silent audio output and corrupted input on MSI X570-A PRO" - percpu: fix first chunk size calculation for populated bitmap - Input: trackpoint - add new trackpoint variant IDs - serial: 8250_pci: Add Realtek 816a and 816b - ehci-hcd: Move include to keep CRC stable - [powerpc*] dma: Fix dma_map_ops::get_required_mask https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.148 - af_key: pfkey_dump needs parameter validation - KVM: fix memory leak in kvm_io_bus_unregister_dev() - kprobes: fix kill kprobe which has been marked as gone - mm/thp: fix __split_huge_pmd_locked() for migration PMD - cxgb4: Fix offset when clearing filter byte counters - geneve: add transport ports in route lookup for geneve (CVE-2020-25645) - [x86,ppc64el] hdlc_ppp: add range checks in ppp_cp_parse_cr() (CVE-2020-25643) - ip: fix tos reflection in ack and reset packets - ipv6: avoid lockdep issue in fib6_del() - net: DCB: Validate DCB_ATTR_DCB_BUFFER argument - net: ipv6: fix kconfig dependency warning for IPV6_SEG6_HMAC - net: sch_generic: aviod concurrent reset and enqueue op for lockless qdisc - nfp: use correct define to return NONE fec - tipc: Fix memory leak in tipc_group_create_member() - tipc: fix shutdown() of connection oriented socket - tipc: use skb_unshare() instead in tipc_buf_append() - bnxt_en: return proper error codes in bnxt_show_temp - bnxt_en: Protect bnxt_set_eee() and bnxt_set_pauseparam() with mutex. - net: phy: Avoid NPD upon phy_detach() when driver is unbound - net: add __must_check to skb_put_padto() - ipv4: Update exception handling for multipath routes via same device - kbuild: add OBJSIZE variable for the size tool - mm: memcg: fix memcg reclaim soft lockup - tcp_bbr: refactor bbr_target_cwnd() for general inflight provisioning - tcp_bbr: adapt cwnd based on ack aggregation estimation - serial: 8250: Avoid error message on reprobe https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.149 - selinux: allow labeling before policy is loaded - media: mc-device.c: fix memleak in media_device_register_entity - dma-fence: Serialise signal enabling (dma_fence_enable_sw_signaling) - ath10k: fix array out-of-bounds access - ath10k: fix memory leak for tpc_stats_final - mm: fix double page fault on arm64 if PTE_AF is cleared - scsi: aacraid: fix illegal IO beyond last LBA - [x86] gma/gma500: fix a memory disclosure bug due to uninitialized bytes - [armel,armhf] ASoC: kirkwood: fix IRQ error handling - [amd64] arch/x86/lib/usercopy_64.c: fix __copy_user_flushcache() cache writeback - [x86] ioapic: Unbreak check_timer() - ALSA: usb-audio: Add delay quirk for H570e USB headsets - ALSA: hda/realtek - Couldn't detect Mic if booting with headset plugged - ALSA: hda/realtek: Enable front panel headset LED on Lenovo ThinkStation P520 - lib/string.c: implement stpcpy - [armhf] PM / devfreq: tegra30: Fix integer overflow on CPU's freq max out - [x86] scsi: fnic: fix use after free - scsi: lpfc: Fix kernel crash at lpfc_nvme_info_show during remote port bounce - net: silence data-races on sk_backlog.tail - [armhf] clk/ti/adpll: allocate room for terminating null - mtd: cfi_cmdset_0002: don't free cfi->cfiq in error path of cfi_amdstd_setup() - mfd: mfd-core: Protect against NULL call-back function pointer - [x86] tpm_crb: fix fTPM on AMD Zen+ CPUs - tracing: Adding NULL checks for trace_array descriptor pointer - bcache: fix a lost wake-up problem caused by mca_cannibalize_lock - RDMA/qedr: Fix potential use after free - RDMA/i40iw: Fix potential use after free - fix dget_parent() fastpath race - xfs: fix attr leaf header freemap.size underflow - RDMA/iw_cgxb4: Fix an error handling path in 'c4iw_connect()' - ubi: Fix producing anchor PEBs - mmc: core: Fix size overflow for mmc partitions - gfs2: clean up iopen glock mess in gfs2_create_inode - scsi: pm80xx: Cleanup command when a reset times out - CIFS: Properly process SMB3 lease breaks - ASoC: max98090: remove msleep in PLL unlocked workaround - kernel/sys.c: avoid copying possible padding bytes in copy_to_user - [arm64,armhf] KVM: vgic: Fix potential double free dist->spis in __kvm_vgic_destroy() - xfs: fix log reservation overflows when allocating large rt extents - neigh_stat_seq_next() should increase position index - rt_cpu_seq_next should increase position index - ipv6_route_seq_next should increase position index - seqlock: Require WRITE_ONCE surrounding raw_seqcount_barrier - sctp: move trace_sctp_probe_path into sctp_outq_sack - [arm64,x86] ACPI: EC: Reference count query handlers under lock - scsi: ufs: Make ufshcd_add_command_trace() easier to read - scsi: ufs: Fix a race condition in the tracing code - [s390x] /cpum_sf: Use kzalloc and minor changes - [powerpc*] eeh: Only dump stack once if an MMIO loop is detected - Bluetooth: btrtl: Use kvmalloc for FW allocations - [armel,armhf] ARM: 8948/1: Prevent OOB access in stacktrace - ar5523: Add USB ID of SMCWUSBT-G2 wireless adapter - ceph: ensure we have a new cap before continuing in fill_inode - Bluetooth: Fix refcount use-after-free issue - mm/swapfile.c: swap_next should increase position index - mm: pagewalk: fix termination condition in walk_pte_range() - Bluetooth: prefetch channel before killing sock - KVM: fix overflow of zero page refcount with ksm running - ALSA: hda: Clear RIRB status before reading WP - skbuff: fix a data race in skb_queue_len() - audit: CONFIG_CHANGE don't log internal bookkeeping as an event - selinux: sel_avc_get_stat_idx should increase position index - scsi: lpfc: Fix RQ buffer leakage when no IOCBs available - scsi: lpfc: Fix coverity errors in fmdi attribute handling - [armhf] drm/omap: fix possible object reference leak - crypto: chelsio - This fixes the kernel panic which occurs during a libkcapi test - mt76: clear skb pointers from rx aggregation reorder buffer during cleanup - ALSA: usb-audio: Don't create a mixer element with bogus volume range - [s390x] perf test: Fix test trace+probe_vfs_getname.sh on s390 - RDMA/rxe: Fix configuration of atomic queue pair attributes - [x86] KVM: x86: fix incorrect comparison in trace event - [x86] pkeys: Add check for pkey "overflow" - bpf: Remove recursion prevention from rcu free callback - [arm64,armhf] dmaengine: tegra-apb: Prevent race conditions on channel's freeing - random: fix data races at timer_rand_state - [arm64] bus: hisi_lpc: Fixup IO ports addresses to avoid use-after-free in host removal - media: go7007: Fix URB type for interrupt handling - Bluetooth: guard against controllers sending zero'd events - timekeeping: Prevent 32bit truncation in scale64_check_overflow() - ext4: fix a data race at inode->i_disksize - mm: avoid data corruption on CoW fault into PFN-mapped VMA - drm/amdgpu: increase atombios cmd timeout - ath10k: use kzalloc to read for ath10k_sdio_hif_diag_read - scsi: aacraid: Disabling TM path and only processing IOP reset - Bluetooth: L2CAP: handle l2cap config request during open state - media: tda10071: fix unsigned sign extension overflow - xfs: don't ever return a stale pointer from __xfs_dir3_free_read - xfs: mark dir corrupt when lookup-by-hash fails - ext4: mark block bitmap corrupted when found instead of BUGON - nfsd: Don't add locks to closed or closing open stateids - RDMA/cm: Remove a race freeing timewait_info - [powerpc*] KVM: PPC: Book3S HV: Treat TM-related invalid form instructions on P9 like the valid ones - [arm64] drm/msm: fix leaks if initialization fails - [arm64] drm/msm/a5xx: Always set an OPP supported hardware value - serial: 8250_port: Don't service RX FIFO if throttled - [powerpc*] cpufreq: powernv: Fix frame-size-overflow in powernv_cpufreq_work_fn - nvme-multipath: do not reset on unknown status - nvme: Fix controller creation races with teardown flow - RDMA/rxe: Set sys_image_guid to be aligned with HW IB devices - scsi: hpsa: correct race condition in offload enabled - SUNRPC: Fix a potential buffer overflow in 'svc_print_xprts()' - svcrdma: Fix leak of transport addresses - PCI: Use ioremap(), not phys_to_virt() for platform ROM - ubifs: Fix out-of-bounds memory access caused by abnormal value of node_len - ALSA: usb-audio: Fix case when USB MIDI interface has more than one extra endpoint descriptor - PCI: pciehp: Fix MSI interrupt race - NFS: Fix races nfs_page_group_destroy() vs nfs_destroy_unlinked_subrequests() - mm/kmemleak.c: use address-of operator on section symbols - mm/filemap.c: clear page error before actual read - mm/vmscan.c: fix data races using kswapd_classzone_idx - nvmet-rdma: fix double free of rdma queue - mm/mmap.c: initialize align_offset explicitly for vm_unmapped_area - scsi: qedi: Fix termination timeouts in session logout - [arm64] serial: uartps: Wait for tx_empty in console setup - [x86] KVM: Remove CREATE_IRQCHIP/SET_PIT2 race - bdev: Reduce time holding bd_mutex in sync in blkdev_close() - [x86] drivers: char: tlclk.c: Avoid data race between init and interrupt handler - [arm64] KVM: vgic-its: Fix memory leak on the error path of vgic_add_lpi() - net: openvswitch: use u64 for meter bucket - scsi: aacraid: Fix error handling paths in aac_probe_one() - staging:r8188eu: avoid skb_clone for amsdu to msdu conversion - [arm64] cpufeature: Relax checks for AArch32 support at EL[0-2] - dt-bindings: sound: wm8994: Correct required supplies based on actual implementaion - atm: fix a memory leak of vcc->user_back - Bluetooth: Handle Inquiry Cancel error after Inquiry Complete - tipc: fix memory leak in service subscripting - [armhf] tty: serial: samsung: Correct clock selection logic - ALSA: hda: Fix potential race in unsol event handler - [powerpc*] traps: Make unrecoverable NMIs die instead of panic - fuse: don't check refcount after stealing page - [powerpc*] scsi: cxlflash: Fix error return code in cxlflash_probe() - [arm64] cpufeature: Drop TraceFilt feature exposure from ID_DFR0 register - e1000: Do not perform reset in reset_task if we are already down - drm/nouveau/debugfs: fix runtime pm imbalance on error - drm/nouveau: fix runtime pm imbalance on error - drm/nouveau/dispnv50: fix runtime pm imbalance on error - printk: handle blank console arguments passed in. - [arm64,armhf] usb: dwc3: Increase timeout for CmdAct cleared by device controller - btrfs: don't force read-only after error in drop snapshot - vfio/pci: fix memory leaks of eventfd ctx - perf trace: Fix the selection for architectures to generate the errno name tables - [arm64,armhf] wlcore: fix runtime pm imbalance in wl1271_tx_work - [arm64,armhf] wlcore: fix runtime pm imbalance in wlcore_regdomain_config - [arm64,armhf] PCI: tegra: Fix runtime PM imbalance on error - ceph: fix potential race in ceph_check_caps - mm/swap_state: fix a data race in swapin_nr_pages - [armel] mtd: parser: cmdline: Support MTD names containing one or more colons - [x86] speculation/mds: Mark mds_user_clear_cpu_buffers() __always_inline - vfio/pci: Clear error and request eventfd ctx after releasing - cifs: Fix double add page to memcg when cifs_readpages - nvme: fix possible deadlock when I/O is blocked - scsi: libfc: Handling of extra kref - scsi: libfc: Skip additional kref updating work event - vfio/pci: fix racy on error and request eventfd ctx - btrfs: qgroup: fix data leak caused by race between writeback and truncate - net: openvswitch: use div_u64() for 64-by-32 divisions - nvme: explicitly update mpath disk capacity on revalidation - [x86] ASoC: Intel: bytcr_rt5640: Add quirk for MPMAN Converter9 2-in-1 - [s390x] init: add missing __init annotations - lockdep: fix order in trace_hardirqs_off_caller() - [amd64] drm/amdkfd: fix a memory leak issue - i2c: core: Call i2c_acpi_install_space_handler() before i2c_acpi_register_devices() - mwifiex: Increase AES key storage size to 256 bits - batman-adv: bla: fix type misuse for backbone_gw hash indexing - atm: eni: fix the missed pci_disable_device() for eni_init_one() - batman-adv: mcast/TT: fix wrongly dropped or rerouted packets - mac802154: tx: fix use-after-free - bpf: Fix clobbering of r2 in bpf_gen_ld_abs - [arm*] drm/vc4/vc4_hdmi: fill ASoC card owner - net: qed: RDMA personality shouldn't fail VF load - batman-adv: Add missing include for in_interrupt() - batman-adv: mcast: fix duplicate mcast packets in BLA backbone from mesh - batman-adv: mcast: fix duplicate mcast packets from BLA backbone to mesh - bpf: Fix a rcu warning for bpffs map pretty-print - [x86] ALSA: asihpi: fix iounmap in error handler - regmap: fix page selection for noinc reads - [x86] KVM: Reset MMU context if guest toggles CR4.SMAP or CR4.PKE - [x86] KVM: SVM: Add a dedicated INVD intercept routine - tracing: fix double free - [s390x] dasd: Fix zero write for FBA devices - kprobes: Fix to check probe enabled before disarm_kprobe_ftrace() - mm, THP, swap: fix allocating cluster for swapfile by mistake - [s390x] zcrypt: Fix ZCRYPT_PERDEV_REQCNT ioctl - ata: define AC_ERR_OK - ata: make qc_prep return ata_completion_errors - ata: sata_mv, avoid trigerrable BUG_ON - [arm64] KVM: Assume write fault on S1PTW permission fault on instruction fetch https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.150 - mmc: sdhci: Workaround broken command queuing on Intel GLK based IRBIS models - USB: gadget: f_ncm: Fix NDP16 datagram validation - vsock/virtio: use RCU to avoid use-after-free on the_virtio_vsock - vsock/virtio: stop workers during the .remove() - vsock/virtio: add transport parameter to the virtio_transport_reset_no_sock() - net: virtio_vsock: Enhance connection semantics - Input: i8042 - add nopnp quirk for Acer Aspire 5 A515 - ftrace: Move RCU is watching check after recursion check - drm/amdgpu: restore proper ref count in amdgpu_display_crtc_set_config - drivers/net/wan/hdlc_fr: Add needed_headroom for PVC devices - [armhf] drm/sun4i: mixer: Extend regmap max_register - net: dec: de2104x: Increase receive ring size for Tulip - rndis_host: increase sleep time in the query-response loop - nvme-core: get/put ctrl and transport module in nvme_dev_open/release() - [x86,ppc64el] drivers/net/wan/hdlc: Set skb->protocol before transmitting - mac80211: do not allow bigger VHT MPDUs than the hardware supports - nvme-fc: fail new connections to a deleted host or remote port - [armhf] pinctrl: mvebu: Fix i2c sda definition for 98DX3236 - nfs: Fix security label length not being reset - [armhf] clk: samsung: exynos4: mark 'chipid' clock as CLK_IGNORE_UNUSED - Input: trackpoint - enable Synaptics trackpoints - random32: Restore __latent_entropy attribute on net_rand_state - mm: replace memmap_context by meminit_context - mm: don't rely on system state to detect hot-plug operations - epoll: do not insert into poll queues until all sanity checks are done - epoll: replace ->visited/visited_list with generation count - epoll: EPOLL_CTL_ADD: close the race in decision to take fast path - ep_create_wakeup_source(): dentry name can change under you... - netfilter: ctnetlink: add a range check for l3/l4 protonum (CVE-2020-25211) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.151 - fbdev, newport_con: Move FONT_EXTRA_WORDS macros into linux/font.h - Fonts: Support FONT_EXTRA_WORDS macros for built-in fonts - fbcon: Fix global-out-of-bounds read in fbcon_get_font() - net: wireless: nl80211: fix out-of-bounds access in nl80211_del_key() - drm/nouveau/mem: guard against NULL pointer access in mem_del - usermodehelper: reset umask to default before executing user process - [x86] platform/x86: intel-vbtn: Fix SW_TABLET_MODE always reporting 1 on the HP Pavilion 11 x360 - [x86] platform/x86: thinkpad_acpi: initialize tp_nvram_state variable - [x86] platform/x86: intel-vbtn: Switch to an allow-list for SW_TABLET_MODE reporting - [x86] platform/x86: thinkpad_acpi: re-initialize ACPI buffer size when reuse - driver core: Fix probe_count imbalance in really_probe() - [x86] i2c: i801: Exclude device from suspend direct complete optimization - [armhf] mtd: rawnand: sunxi: Fix the probe error path - nvme-core: put ctrl ref when module ref get fail - macsec: avoid use-after-free in macsec_handle_frame() - mm/khugepaged: fix filemap page_to_pgoff(page) != offset - xfrmi: drop ignore_df check before updating pmtu - cifs: Fix incomplete memory allocation on setxattr path - [arm64,armhf] i2c: meson: fix clock setting overwrite - [arm64,armhf] i2c: meson: fixup rate calculation with filter delay - sctp: fix sctp_auth_init_hmacs() error path - team: set dev->needed_headroom in team_setup_by_port() - net: team: fix memory leak in __team_options_register - openvswitch: handle DNAT tuple collision - drm/amdgpu: prevent double kfree ttm->sg - xfrm: clone XFRMA_SET_MARK in xfrm_do_migrate - xfrm: clone XFRMA_REPLAY_ESN_VAL in xfrm_do_migrate - xfrm: clone XFRMA_SEC_CTX in xfrm_do_migrate - xfrm: clone whole liftime_cur structure in xfrm_do_migrate - [arm64,armhf] net: stmmac: removed enabling eee in EEE set callback - xfrm: Use correct address family in xfrm_state_find - bonding: set dev->needed_headroom in bond_setup_by_slave() - net: usb: ax88179_178a: fix missing stop entry in driver_info - net/mlx5e: Fix VLAN cleanup flow - net/mlx5e: Fix VLAN create flow - rxrpc: Fix rxkad token xdr encoding - rxrpc: Downgrade the BUG() for unsupported token type in rxrpc_read() - rxrpc: Fix some missing _bh annotations on locking conn->state_lock - rxrpc: Fix server keyring leak - perf: Fix task_function_call() error handling - mmc: core: don't set limits.discard_granularity as 0 - mm: khugepaged: recalculate min_free_kbytes after memory hotplug as expected by khugepaged - net: usb: rtl8150: set random MAC address when set_ethernet_addr() fails https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.152 - Bluetooth: A2MP: Fix not initializing all members (CVE-2020-12352) - Bluetooth: L2CAP: Fix calling sk_filter on non-socket based channel (CVE-2020-12351) - Bluetooth: MGMT: Fix not checking if BT_HS is enabled - Bluetooth: Consolidate encryption handling in hci_encrypt_cfm - Bluetooth: Fix update of connection state in `hci_encrypt_cfm` - Bluetooth: Disconnect if E0 is used for Level 4 - media: usbtv: Fix refcounting mixup - USB: serial: option: add Cellient MPL200 card - USB: serial: option: Add Telit FT980-KS composition - [x86] staging: comedi: check validity of wMaxPacketSize of usb endpoints found - USB: serial: pl2303: add device-id for HP GC device - USB: serial: ftdi_sio: add support for FreeCalypso JTAG+UART adapters - reiserfs: Initialize inode keys properly - reiserfs: Fix oops during mount - [arm*] drivers/net/ethernet/marvell/mvmdio.c: Fix non OF case (Closes: #908712) - [x86] crypto: qat - check cipher length for aead AES-CBC-HMAC-SHA . [ Salvatore Bonaccorso ] * [rt] Update to 4.19.148-rt64 * Bump ABI to 12 * Revert "perf cs-etm: Move definition of 'traceid_list' global variable from header file" linux-signed-arm64 (4.19.160+2) buster; urgency=medium . * Sign kernel from linux 4.19.160-2 . * net: Disable MLX5_ESWITCH on mips and mipsel (Fixes FTBFS) linux-signed-arm64 (4.19.160+1) buster; urgency=medium . * Sign kernel from linux 4.19.160-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.153 - [ppc64el] ibmveth: Switch order of ibmveth_helper calls. - [ppc64el] ibmveth: Identify ingress large send packets. - ipv4: Restore flowi4_oif update before call to xfrm_lookup_route - mlx4: handle non-napi callers to napi_poll - [armhf] net: fec: Fix phy_device lookup for phy_reset_after_clk_enable() - [armhf] net: fec: Fix PHY init after phy_reset_after_clk_enable() - net: fix pos incrementment in ipv6_route_seq_next - net/smc: fix valid DMBE buffer sizes - net: usb: qmi_wwan: add Cellient MPL200 card - tipc: fix the skb_unshare() in tipc_buf_append() - net/ipv4: always honour route mtu during forwarding - r8169: fix data corruption issue on RTL8402 - [arm*] binder: fix UAF when releasing todo list (CVE-2020-0423) - ALSA: bebob: potential info leak in hwdep_read() - net: hdlc: In hdlc_rcv, check to make sure dev is an HDLC device - [x86,ppc64el] net: hdlc_raw_eth: Clear the IFF_TX_SKB_SHARING flag after calling ether_setup - net/sched: act_tunnel_key: fix OOB write in case of IPv6 ERSPAN tunnels - nfc: Ensure presence of NFC_ATTR_FIRMWARE_NAME attribute in nfc_genl_fw_download() - tcp: fix to update snd_wl1 in bulk receiver fast path - r8169: fix operation under forced interrupt threading - icmp: randomize the global rate limiter (CVE-2020-25705) - ALSA: hda/realtek: Enable audio jacks of ASUS D700SA with ALC887 - cifs: remove bogus debug code - cifs: Return the error from crypt_message when enc/dec key not found. - [x86] KVM: x86/mmu: Commit zap of remaining invalid pages when recovering lpages - [x86] KVM: SVM: Initialize prev_ga_tag before use - crypto: algif_aead - Do not set MAY_BACKLOG on the async path - [x86] EDAC/i5100: Fix error handling order in i5100_init_one() - [x86] fpu: Allow multiple bits in clearcpuid= parameter - [arm64] drivers/perf: xgene_pmu: Fix uninitialized resource struct - [x86] nmi: Fix nmi_handle() duration miscalculation - [amd64] x86/events/amd/iommu: Fix sizeof mismatch - crypto: algif_skcipher - EBUSY on aio should be an error - media: tuner-simple: fix regression in simple_set_radio_freq - media: uvcvideo: Set media controller entity functions - media: uvcvideo: Silence shift-out-of-bounds warning - [armhf] media: omap3isp: Fix memleak in isp_probe - [armhf] media: ti-vpe: Fix a missing check and reference count leak - regulator: resolve supply after creating regulator - ath10k: provide survey info as accumulated data - Bluetooth: hci_uart: Cancel init work before unregistering - ath6kl: prevent potential array overflow in ath6kl_add_new_sta() - ath9k: Fix potential out of bounds in ath9k_htc_txcompletion_cb() - ath10k: Fix the size used in a 'dma_free_coherent()' call in an error handling path - [arm64] wcn36xx: Fix reported 802.11n rx_highest rate wcn3660/wcn3680 - [arm64] ASoC: qcom: lpass-platform: fix memory leak - [arm64] ASoC: qcom: lpass-cpu: fix concurrency issue - brcmfmac: check ndev pointer - mwifiex: Do not use GFP_KERNEL in atomic context - [x86] staging: rtl8192u: Do not use GFP_KERNEL in atomic context - [x86] drm/gma500: fix error check - scsi: qla4xxx: Fix an error handling path in 'qla4xxx_get_host_stats()' - scsi: qla2xxx: Fix wrong return value in qla_nvme_register_hba() - scsi: csiostor: Fix wrong return value in csio_hw_prep_fw() - [x86] VMCI: check return value of get_user_pages_fast() for errors - [ppc64el] tty: hvcs: Don't NULL tty->driver_data until hvcs_cleanup() - pty: do tty_flip_buffer_push without port->lock in pty_write - [x86] pwm: lpss: Fix off by one error in base_unit math in pwm_lpss_prepare() - [x86] pwm: lpss: Add range limit check for the base_unit register value - [x86] video: fbdev: vga16fb: fix setting of pixclock because a pass-by-value error - video: fbdev: sis: fix null ptr dereference - video: fbdev: radeon: Fix memleak in radeonfb_pci_register - HID: roccat: add bounds checking in kone_sysfs_write_settings() - [armhf] pinctrl: mcp23s08: Fix mcp23x17_regmap initialiser - [armhf] pinctrl: mcp23s08: Fix mcp23x17 precious range - net/mlx5: Don't call timecounter cyc2time directly from 1PPS flow - [arm64,armhf] net: stmmac: use netif_tx_start|stop_all_queues() function - [arm64] cpufreq: armada-37xx: Add missing MODULE_DEVICE_TABLE - ath6kl: wmi: prevent a shift wrapping bug in ath6kl_wmi_delete_pstream_cmd() - [amd64] misc: mic: scif: Fix error handling path - [arm*] usb: dwc2: Fix parameter type in function pointer prototype - quota: clear padding in v2r1_mem2diskdqb() - HID: hid-input: fix stylus battery reporting - net: enic: Cure the enic api locking trainwreck - [mips*] mfd: sm501: Fix leaks in probe() - iwlwifi: mvm: split a print to avoid a WARNING in ROC - usb: gadget: f_ncm: fix ncm_bitrate for SuperSpeed and above. - usb: gadget: u_ether: enable qmult on SuperSpeed Plus as well - nl80211: fix non-split wiphy information - [arm*] usb: dwc2: Fix INTR OUT transfers in DDMA mode. - scsi: target: tcmu: Fix warning: 'page' may be used uninitialized - scsi: be2iscsi: Fix a theoretical leak in beiscsi_create_eqs() - mwifiex: fix double free - ipvs: clear skb->tstamp in forwarding path - netfilter: nf_log: missing vlan offload tag and proto - mm/memcg: fix device private memcg accounting - mm, oom_adj: don't loop through tasks in __set_oom_adj when not necessary - IB/mlx4: Fix starvation in paravirt mux/demux - IB/mlx4: Adjust delayed work when a dup is observed - [powerpc*] pseries: Fix missing of_node_put() in rng_init() - [powerpc*] icp-hv: Fix missing of_node_put() in success path - RDMA/ucma: Fix locking for ctx->events_reported - RDMA/ucma: Add missing locking around rdma_leave_multicast() - [powerpc*] pseries: explicitly reschedule during drmem_lmb list traversal - mtd: mtdoops: Don't write panic data twice - [armel,armhf] ARM: 9007/1: l2c: fix prefetch bits init in L2X0_AUX_CTRL using DT values - xfs: limit entries returned when counting fsmap records - xfs: fix high key handling in the rt allocator's query_range function - RDMA/qedr: Fix use of uninitialized field - RDMA/qedr: Fix inline size returned for iWARP https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.154 - [powerpc*] 64s/radix: Fix mm_cpumask trimming race vs kthread_use_mm - RDMA/cma: Remove dead code for kernel rdmacm multicast - RDMA/cma: Consolidate the destruction of a cma_multicast in one place - [arm64] RDMA/hns: Set the unsupported wr opcode - [arm64] RDMA/hns: Fix missing sq_sig_type when querying QP - overflow: Include header file with SIZE_MAX declaration - [powerpc*] perf: Exclude pmc5/6 from the irrelevant PMU group constraints - [poerpc*] cpufreq: powernv: Fix frame-size-overflow in powernv_cpufreq_reboot_notifier - IB/rdmavt: Fix sizeof mismatch - f2fs: wait for sysfs kobject removal before freeing f2fs_sb_info - lib/crc32.c: fix trivial typo in preprocessor condition - rapidio: fix error handling path - rapidio: fix the missed put_device() for rio_mport_add_riodev - mailbox: avoid timer start from callback - [arm64,armhf] clk: rockchip: Initialize hw to error to avoid undefined behavior - [arm*] clk: bcm2835: add missing release if devm_clk_hw_register fails - watchdog: Fix memleak in watchdog_cdev_register - watchdog: Use put_device on error - svcrdma: fix bounce buffers for unaligned offsets and multiple pages - ext4: limit entries returned when counting fsmap records - vfio/pci: Clear token on bypass registration failure - [amd64,arm64] vfio iommu type1: Fix memory leak in vfio_iommu_type1_pin_pages - SUNRPC: fix copying of multiple pages in gss_read_proxy_verf() - [armhf] Input: omap4-keypad - fix handling of platform_get_irq() error - [armhf] Input: twl4030_keypad - fix handling of platform_get_irq() error - [armhf] Input: sun4i-ps2 - fix handling of platform_get_irq() error - [x86] KVM: emulating RDPID failure shall return #UD rather than #GP - netfilter: conntrack: connection timeout after re-register - netfilter: nf_fwd_netdev: clear timestamp in forwarding path - [armhf] dts: sun8i: r40: bananapi-m2-ultra: Fix dcdc1 regulator - [armhf] memory: omap-gpmc: Fix a couple off by ones - [powerpc*] powernv/dump: Fix race while processing OPAL dump - nvmet: fix uninitialized work for zero kato - [x86,arm64] i2c: core: Restore acpi_walk_dep_device_list() getting called after registering the ACPI i2c devs - block: ratelimit handle_bad_sector() message - [x86] crypto: ccp - fix error handling - media: firewire: fix memory leak - media: ati_remote: sanity check for both endpoints - media: media/pci: prevent memory leak in bttv_probe - media: uvcvideo: Ensure all probed info is returned to v4l2 - mmc: sdio: Check for CISTPL_VERS_1 buffer size - media: saa7134: avoid a shift overflow - fs: dlm: fix configfs memory leak - [arm64] media: venus: core: Fix runtime PM imbalance in venus_probe - ip_gre: set dev->hard_header_len and dev->needed_headroom properly - mac80211: handle lack of sband->bitrates in rates - PM: hibernate: remove the bogus call to get_gendisk() in software_resume() - scsi: mvumi: Fix error return in mvumi_io_attach() - scsi: target: core: Add CONTROL field for trace events - [amd64] mic: vop: copy data to kernel space then write to io memory - [amd64] misc: vop: add round_up(x,4) for vring_size to avoid kernel panic - usb: gadget: function: printer: fix use-after-free in __lock_acquire - udf: Limit sparing table size - udf: Avoid accessing uninitialized data on failed inode read - USB: cdc-acm: handle broken union descriptors - [arm64,armhf] usb: dwc3: simple: add support for Hikey 970 - [armhf] can: flexcan: flexcan_chip_stop(): add error handling and propagate error value - ath9k: hif_usb: fix race condition between usb_get_urb() and usb_kill_anchored_urbs() - misc: rtsx: Fix memory leak in rtsx_pci_probe - reiserfs: only call unlock_new_inode() if I_NEW - xfs: make sure the rt allocator doesn't run off the end - usb: ohci: Default to per-port over-current protection - Bluetooth: Only mark socket zapped after unlocking - [ppc64el] scsi: ibmvfc: Fix error return in ibmvfc_probe() - brcmsmac: fix memory leak in wlc_phy_attach_lcnphy - rtl8xxxu: prevent potential memory leak - Fix use after free in get_capset_info callback. - scsi: qedi: Protect active command list to avoid list corruption - scsi: qedi: Fix list_del corruption while removing active I/O - [x86] tty: ipwireless: fix error handling - ipvs: Fix uninit-value in do_ip_vs_set_ctl() - reiserfs: Fix memory leak in reiserfs_parse_options() - mwifiex: don't call del_timer_sync() on uninitialized timer - brcm80211: fix possible memleak in brcmf_proto_msgbuf_attach - usb: core: Solve race condition in anchor cleanup functions - ath10k: check idx validity in __ath10k_htt_rx_ring_fill_n() - usb: cdc-acm: add quirk to blacklist ETAS ES58X devices - USB: cdc-wdm: Make wdm_flush() interruptible and add wdm_fsync(). - eeprom: at25: set minimum read/write access stride to 1 - usb: gadget: f_ncm: allow using NCM in SuperSpeed Plus gadgets. https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.155 - scripts/setlocalversion: make git describe output more reliable - [arm64] Run ARCH_WORKAROUND_1 enabling code on all CPUs - [arm64] link with -z norelro regardless of CONFIG_RELOCATABLE - [x86,arm64,armhf] efivarfs: Replace invalid slashes with exclamation marks in dentries. - gtp: fix an use-before-init in gtp_newlink() - netem: fix zero division in tabledist - tcp: Prevent low rmem stalls with SO_RCVLOWAT. - tipc: fix memory leak caused by tipc_buf_append() - r8169: fix issue with forced threading in combination with shared interrupts - cxgb4: set up filter action after rewrites - [x86] arch/x86/amd/ibs: Fix re-arming IBS Fetch - [x86] xen: disable Firmware First mode for correctable memory errors - fuse: fix page dereference after free - bpf: Fix comment for helper bpf_current_task_under_cgroup() - p54: avoid accessing the data mapped to streaming DMA - [powerpc*] cxl: Rework error message for incompatible slots - RDMA/addr: Fix race with netevent_callback()/rdma_addr_cancel() - mtd: lpddr: Fix bad logic in print_drs_error - [arm*] serial: pl011: Fix lockdep splat when handling magic-sysrq interrupt - fscrypt: return -EXDEV for incompatible rename or link into encrypted dir - fscrypt: clean up and improve dentry revalidation - fscrypt: fix race allowing rename() and link() of ciphertext dentries - fs, fscrypt: clear DCACHE_ENCRYPTED_NAME when unaliasing directory - fscrypt: only set dentry_operations on ciphertext dentries - fscrypt: fix race where ->lookup() marks plaintext dentry as ciphertext - Revert "block: ratelimit handle_bad_sector() message" - xen/events: don't use chip_data for legacy IRQs - xen/events: avoid removing an event channel while handling it (CVE-2020-27675) - xen/events: add a proper barrier to 2-level uevent unmasking (CVE-2020-27673) - xen/events: fix race in evtchn_fifo_unmask() (CVE-2020-27673) - xen/events: add a new "late EOI" evtchn framework (CVE-2020-27673) - xen/blkback: use lateeoi irq binding (CVE-2020-27673) - xen/netback: use lateeoi irq binding (CVE-2020-27673) - xen/scsiback: use lateeoi irq binding (CVE-2020-27673) - xen/pvcallsback: use lateeoi irq binding (CVE-2020-27673) - xen/pciback: use lateeoi irq binding (CVE-2020-27673) - xen/events: switch user event channels to lateeoi model (CVE-2020-27673) - xen/events: use a common cpu hotplug hook for event channels (CVE-2020-27673) - xen/events: defer eoi in case of excessive number of events (CVE-2020-27673) - xen/events: block rogue events for some time (CVE-2020-27673) - RDMA/qedr: Fix memory leak in iWARP CM - ata: sata_nv: Fix retrieving of active qcs - futex: Fix incorrect should_fail_futex() handling - [powerpc*] powernv/smp: Fix spurious DBG() warning - mm: fix exec activate_mm vs TLB shootdown and lazy tlb switching race - [powerpc*] select ARCH_WANT_IRQS_OFF_ACTIVATE_MM - f2fs: add trace exit in exception path - f2fs: fix uninit-value in f2fs_lookup - f2fs: fix to check segment boundary during SIT page readahead - [armel,armhf] 8997/2: hw_breakpoint: Handle inexact watchpoint addresses - power: supply: bq27xxx: report "not charging" on all types - xfs: fix realtime bitmap/summary file truncation when growing rt volume - ath10k: fix VHT NSS calculation when STBC is enabled - media: videodev2.h: RGB BT2020 and HSV are always full range - [x86] usb: typec: tcpm: During PR_SWAP, source caps should be sent only after tSwapSourceStart - media: tw5864: check status of tw5864_frameinterval_get - mmc: via-sdmmc: Fix data race bug - [arm64] topology: Stop using MPIDR for topology information - media: uvcvideo: Fix dereference of out-of-bound list iterator - USB: adutux: fix debugging - uio: free uio id after uio file node is freed - usb: xhci: omit duplicate actions when suspending a runtime suspended host. - [arm64] mm: return cpu_all_mask when node is NUMA_NO_NODE - xfs: don't free rt blocks when we're doing a REMAP bunmapi call - ACPI: Add out of bounds and numa_off protections to pxm_to_node() - drivers/net/wan/hdlc_fr: Correctly handle special skb->protocol values - btrfs: fix replace of seed device - md/bitmap: md_bitmap_get_counter returns wrong blocks - bnxt_en: Log unknown link speed appropriately. - [arm64] rpmsg: glink: Use complete_all for open states - [armhf] clk: ti: clockdomain: fix static checker warning - net: 9p: initialize sun_server.sun_path to have addr's value only when addr is valid - ext4: Detect already used quota file early - gfs2: add validation checks for size of superblock - cifs: handle -EINTR in cifs_setattr - [armhf] memory: emif: Remove bogus debugfs error handling - nbd: make the config put is called before the notifying the waiter - sgl_alloc_order: fix memory leak - nvme-rdma: fix crash when connect rejected - md/raid5: fix oops during stripe resizing - [x86,arm64] mmc: sdhci-acpi: AMDI0040: Set SDHCI_QUIRK2_PRESET_VALUE_BROKEN - [x86] perf/x86/amd/ibs: Don't include randomized bits in get_ibs_op_count() - [x86] perf/x86/amd/ibs: Fix raw sample data accumulation - media: uvcvideo: Fix uvc_ctrl_fixup_xu_info() not having any effect - fs: Don't invalidate page buffers in block_write_full_page() - NFS: fix nfs_path in case of a rename retry - ACPI: button: fix handling lid state changes when input device closed - [x86] ACPI / extlog: Check for RDMSR failure (Closes: #971058) - [x86] ACPI: video: use ACPI backlight for HP 635 Notebook - [x86] acpi-cpufreq: Honor _PSD table setting on new AMD CPUs - scsi: mptfusion: Fix null pointer dereferences in mptscsih_remove() - scsi: qla2xxx: Fix crash on session cleanup with unload - btrfs: qgroup: fix wrong qgroup metadata reserve for delayed inode - btrfs: improve device scanning messages - btrfs: reschedule if necessary when logging directory items - btrfs: send, recompute reference path after orphanization of a directory - btrfs: use kvzalloc() to allocate clone_roots in btrfs_ioctl_send() - btrfs: cleanup cow block on error - btrfs: fix use-after-free on readahead extent after failure to create it - usb: xhci: Workaround for S3 issue on AMD SNPS 3.0 xHC - [arm64,armhf] usb: dwc3: ep0: Fix ZLP for OUT ep0 requests - [arm64,armhf] usb: dwc3: gadget: Check MPS of the request length - [arm64,armhf] usb: dwc3: core: add phy cleanup for probe error handling - [arm64,armhf] usb: dwc3: core: don't trigger runtime pm when remove driver - usb: cdc-acm: fix cooldown mechanism - [x86] usb: typec: tcpm: reset hard_reset_count for any disconnect - [x86] drm/i915: Force VT'd workarounds when running as a guest OS - vt: keyboard, simplify vt_kdgkbsent - vt: keyboard, extend func_buf_lock to readers (CVE-2020-25656) - HID: wacom: Avoid entering wacom_wac_pen_report for pad / battery - udf: Fix memory leak when mounting - [powerpc*] drmem: Make lmb_size 64 bit - [s390x] stp: add locking to sysfs functions - [powerpc*] rtas: Restrict RTAS requests from userspace (CVE-2020-27777) - [powerpc*] Warn about use of smt_snooze_delay - [powerpc*] powernv/elog: Fix race while processing OPAL error log event. - [powerpc*] Fix undetected data corruption with P9N DD2.1 VSX CI load emulation - NFSv4.2: support EXCHGID4_FLAG_SUPP_FENCE_OPS 4.2 EXCHANGE_ID flag - NFSD: Add missing NFSv2 .pc_func methods - ubifs: dent: Fix some potential memory leaks while iterating entries - perf python scripting: Fix printable strings in python3 scripts - ubi: check kthread_should_stop() after the setting of task state - [armhf] i2c: imx: Fix external abort on interrupt in exit paths - drm/amdgpu: don't map BO in reserved region - ceph: promote to unsigned long long before shifting - libceph: clear con->out_msg on Policy::stateful_server faults - 9P: Cast to loff_t before multiplying - ring-buffer: Return 0 on success from ring_buffer_resize() - [amd64] vringh: fix __vringh_iov() when riov and wiov are different - ext4: fix leaking sysfs kobject after failed mount - ext4: fix error handling code in add_new_gdb - ext4: fix invalid inode checksum - drm/ttm: fix eviction valuable range check. - tty: make FONTX ioctl use the tty pointer they were actually passed (CVE-2020-25668) - cachefiles: Handle readpage error correctly - device property: Keep secondary firmware node secondary by type - device property: Don't clear secondary pointer for shared primary firmware node - [arm64] KVM: Fix AArch32 handling of DBGD{CCINT,SCRext} and DBGVCR - [x86] staging: comedi: cb_pcidas: Allow 2-channel commands for AO subdevice - [mips*] staging: octeon: repair "fixed-link" support - [mips*] staging: octeon: Drop on uncorrectable alignment or FCS error https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.156 - [x86] drm/i915: Break up error capture compression loops with cond_resched() - tipc: fix use-after-free in tipc_bcast_get_mode - ptrace: fix task_join_group_stop() for the case when current is traced - [arm64] cadence: force nonlinear buffers to be cloned - net: usb: qmi_wwan: add Telit LE910Cx 0x1230 composition - sctp: Fix COMM_LOST/CANT_STR_ASSOC err reporting on big-endian platforms - [arm64,armhf] sfp: Fix error handing in sfp_probe() - blktrace: fix debugfs use after free (CVE-2019-19770) - btrfs: extent_io: Kill the forward declaration of flush_write_bio - btrfs: extent_io: Move the BUG_ON() in flush_write_bio() one level up - Revert "btrfs: flush write bio if we loop in extent_write_cache_pages" - btrfs: flush write bio if we loop in extent_write_cache_pages - btrfs: extent_io: Handle errors better in extent_write_full_page() - btrfs: extent_io: Handle errors better in btree_write_cache_pages() - btrfs: extent_io: add proper error handling to lock_extent_buffer_for_io() - Btrfs: fix unwritten extent buffers and hangs on future writeback attempts - btrfs: Don't submit any btree write bio if the fs has errors (CVE-2019-19039, CVE-2019-19377) - btrfs: Move btrfs_check_chunk_valid() to tree-check.[ch] and export it - btrfs: tree-checker: Make chunk item checker messages more readable - btrfs: tree-checker: Make btrfs_check_chunk_valid() return EUCLEAN instead of EIO - btrfs: tree-checker: Check chunk item at tree block read time - btrfs: tree-checker: Verify dev item - btrfs: tree-checker: Fix wrong check on max devid - btrfs: tree-checker: Enhance chunk checker to validate chunk profile (CVE-2019-19816) - btrfs: tree-checker: Verify inode item - btrfs: tree-checker: fix the error message for transid error - Fonts: Replace discarded const qualifier - ALSA: usb-audio: Add implicit feedback quirk for Zoom UAC-2 - ALSA: usb-audio: add usb vendor id as DSD-capable for Khadas devices - ALSA: usb-audio: Add implicit feedback quirk for Qu-16 - ALSA: usb-audio: Add implicit feedback quirk for MODX - mm: mempolicy: fix potential pte_unmap_unlock pte error - kthread_worker: prevent queuing delayed work from timer_fn when it is being canceled - mm: always have io_remap_pfn_range() set pgprot_decrypted() - gfs2: Wake up when sd_glock_disposal becomes zero - ring-buffer: Fix recursion protection transitions between interrupt context - ftrace: Fix recursion check for NMI test - ftrace: Handle tracing when switching between context - tracing: Fix out of bounds write in get_trace_buf - futex: Handle transient "ownerless" rtmutex state correctly - [amd64] x86/kexec: Use up-to-dated screen_info copy to fill boot params - of: Fix reserved-memory overlap detection - blk-cgroup: Fix memleak on error path - blk-cgroup: Pre-allocate tree node on blkg_conf_prep - scsi: core: Don't start concurrent async scan on same host - vsock: use ns_capable_noaudit() on socket create - [arm*] drm/vc4: drv: Add error handding for bind - [amd64,arm64] ACPI: NFIT: Fix comparison to '-ENXIO' - vt: Disable KD_FONT_OP_COPY (CVE-2020-28974) - fork: fix copy_process(CLONE_PARENT) race with the exiting ->real_parent - USB: serial: cyberjack: fix write-URB completion race - USB: serial: option: add Quectel EC200T module support - USB: serial: option: add LE910Cx compositions 0x1203, 0x1230, 0x1231 - USB: serial: option: add Telit FN980 composition 0x1055 - USB: Add NO_LPM quirk for Kingston flash drive - PM: runtime: Resume the device earlier in __device_release_driver() - perf/core: Fix a memory leak in perf_event_parse_addr_filter() (CVE-2020-25704) - tools: perf: Fix build error in v4.19.y - [arm64,armhf] net: dsa: read mac address from DT for slave device - [arm64] dts: marvell: espressobin: Add ethernet switch aliases https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.157 - [x86] powercap: restrict energy meter to root access (CVE-2020-8694) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.158 - regulator: defer probe when trying to get voltage from unresolved supply - time: Prevent undefined behaviour in timespec64_to_ns() - nbd: don't update block size after device is started - [arm64,armhf] usb: dwc3: gadget: Continue to process pending requests - [arm64,armhf] usb: dwc3: gadget: Reclaim extra TRBs after request completion - btrfs: sysfs: init devices outside of the chunk_mutex - btrfs: reschedule when cloning lots of extents - [x86] hv_balloon: disable warning when floor reached - net: xfrm: fix a race condition during allocing spi - xfs: set xefi_discard when creating a deferred agfl free log intent item - netfilter: ipset: Update byte and packet counters regardless of whether they match - perf tools: Add missing swap for ino_generation - [x86] ALSA: hda: prevent undefined shift in snd_hdac_ext_bus_get_link() - can: rx-offload: don't call kfree_skb() from IRQ context - can: dev: can_get_echo_skb(): prevent call to kfree_skb() in hard IRQ context - can: dev: __can_get_echo_skb(): fix real payload length return value for RTR frames - can: can_create_echo_skb(): fix echo skb generation: always use skb_clone() - can: peak_usb: add range checking in decode operations - can: peak_usb: peak_usb_get_ts_time(): fix timestamp wrapping - can: peak_canfd: pucan_handle_can_rx(): fix echo management when loopback is on - [armhf] can: flexcan: remove FLEXCAN_QUIRK_DISABLE_MECR quirk for LS1021A - xfs: flush new eof page on truncate to avoid post-eof corruption - [arm64,x86] tpm: efi: Don't create binary_bios_measurements file for an empty log - Btrfs: fix missing error return if writeback for extent buffer never started - ath9k_htc: Use appropriate rs_datalen type - netfilter: use actual socket sk rather than skb sk when routing harder - gfs2: Free rd_bits later in gfs2_clear_rgrpd to fix use-after-free - gfs2: Add missing truncate_inode_pages_final for sd_aspace - gfs2: check for live vs. read-only file system in gfs2_fitrim - scsi: hpsa: Fix memory leak in hpsa_init_one() - drm/amdgpu: perform srbm soft reset always on SDMA resume - mac80211: fix use of skb payload instead of header - cfg80211: regulatory: Fix inconsistent format argument - scsi: scsi_dh_alua: Avoid crash during alua_bus_detach() - [s390x] smp: move rcu_cpu_starting() earlier - [x86] tpm_tis: Disable interrupts on ThinkPad T490s - tick/common: Touch watchdog in tick_unfreeze() on all CPUs - [x86] pinctrl: intel: Set default bias in case no particular value given - [armel,armhf] 9019/1: kprobes: Avoid fortify_panic() when copying optprobe template - nbd: fix a block_device refcount leak in nbd_release - xfs: fix flags argument to rmap lookup when converting shared file rmaps - xfs: fix rmap key and record comparison functions - lan743x: fix "BUG: invalid wait context" when setting rx mode - xfs: fix a missing unlock on error in xfs_fs_map_blocks - of/address: Fix of_node memory leak in of_dma_is_coherent - [i386] cosa: Add missing kfree in error path of cosa_write - perf: Fix get_recursion_context() - ext4: correctly report "not supported" for {usr,grp}jquota when !CONFIG_QUOTA - ext4: unlock xattr_sem properly in ext4_inline_data_truncate() - btrfs: dev-replace: fail mount if we don't have replace item with target device - [x86] thunderbolt: Fix memory leak if ida_simple_get() fails in enumerate_services() - [x86] thunderbolt: Add the missed ida_simple_remove() in ring_request_msix() - uio: Fix use-after-free in uio_unregister_device() - usb: cdc-acm: Add DISABLE_ECHO for Renesas USB Download mode - futex: Don't enable IRQs unconditionally in put_pi_state() - ocfs2: initialize ip_next_orphan - btrfs: fix potential overflow in cluster_pages_for_defrag on 32bit arch - selinux: Fix error return code in sel_ib_pkey_sid_slow() - gpio: pcie-idio-24: Fix irq mask when masking - gpio: pcie-idio-24: Fix IRQ Enable Register value - gpio: pcie-idio-24: Enable PEX8311 interrupts - don't dump the threads that had been already exiting when zapped. - [x86] drm/gma500: Fix out-of-bounds access to struct drm_device.vblank[] - pinctrl: amd: use higher precision for 512 RtcClk - pinctrl: amd: fix incorrect way to disable debounce filter - swiotlb: fix "x86: Don't panic if can not alloc buffer for swiotlb" - IPv6: Set SIT tunnel hard_header_len to zero - [s390x] net/af_iucv: fix null pointer dereference on shutdown - net: Update window_clamp if SOCK_RCVBUF is set - tipc: fix memory leak in tipc_topsrv_start() - vrf: Fix fast path output packet handling with async Netfilter rules - r8169: fix potential skb double free in an error path - random32: make prandom_u32() output unpredictable - [x86] speculation: Allow IBPB to be conditionally enabled on CPUs with always-on STIBP - perf/core: Fix race in the perf_mmap_close() function (CVE-2020-14351) - Revert "kernel/reboot.c: convert simple_strtoul to kstrtoint" - reboot: fix overflow parsing reboot cpu number - net: sch_generic: fix the missing new qdisc assignment bug - Convert trailing spaces and periods in path components https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.159 - [powerpc*] 64s: move some exception handlers out of line - [powerpc*] 64s: flush L1D on kernel entry (CVE-2020-4788) - [powerpc*] Add a framework for user access tracking - [powerpc*] Implement user_access_begin and friends - [powerpc*] Fix __clear_user() with KUAP enabled - [powerpc*] uaccess: Evaluate macro arguments once, before user access is allowed - [powerpc*] 64s: flush L1D after user accesses (CVE-2020-4788) - Revert "perf cs-etm: Move definition of 'traceid_list' global variable from header file" - Input: sunkbd - avoid use-after-free in teardown paths (CVE-2020-25669) - mac80211: always wind down STA state - can: proc: can_remove_proc(): silence remove_proc_entry warning - [x86] KVM: x86: clflushopt should be treated as a no-op by emulation - [arm64] ACPI: GED: fix -Wformat https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.160 - ah6: fix error return code in ah6_input() - atm: nicstar: Unmap DMA on send error - bnxt_en: read EEPROM A2h address using page 0 - devlink: Add missing genlmsg_cancel() in devlink_nl_sb_port_pool_fill() - inet_diag: Fix error path to cancel the meseage in inet_req_diag_fill() - lan743x: fix issue causing intermittent kernel log warnings - lan743x: prevent entire kernel HANG on open, for some platforms - net: b44: fix error return code in b44_init_one() - net: bridge: add missing counters to ndo_get_stats64 callback - [arm64,armhf] net: dsa: mv88e6xxx: Avoid VTU corruption on 6097 - net: Have netpoll bring-up DSA management interface - net/mlx4_core: Fix init_hca fields offset - page_frag: Recover from memory pressure - qed: fix error return code in qed_iwarp_ll2_start() - qlcnic: fix error return code in qlcnic_83xx_restart_hw() - sctp: change to hold/put transport for proto_unreach_timer - tcp: only postpone PROBE_RTT if RTT is < current min_rtt estimate - [arm64,armhf] net/mlx5: Disable QoS when min_rates on all VFs are zero - net: usb: qmi_wwan: Set DTR quirk for MR400 - [arm64,armhf] pinctrl: rockchip: enable gpio pclk for rockchip_gpio_to_irq - scsi: ufs: Fix unbalanced scsi_block_reqs_cnt caused by ufshcd_hold() - [x86] ACPI: button: Add DMI quirk for Medion Akoya E2228T - [arm64] psci: Avoid printing in cpu_psci_cpu_die() - vfs: remove lockdep bogosity in __sb_start_write - [arm64] dts: allwinner: a64: Pine64 Plus: Fix ethernet node - [arm64] dts: allwinner: h5: OrangePi PC2: Fix ethernet node - [armhf] dts: sun8i: r40: bananapi-m2-ultra: Fix ethernet node - [armhf] Revert "arm: sun8i: orangepi-pc-plus: Set EMAC activity LEDs to active high" - [armhf] dts: sun8i: h3: orangepi-plus2e: Enable RGMII RX/TX delay on Ethernet PHY - [armhf] dts: sun8i: a83t: Enable both RGMII RX/TX delay on Ethernet PHY - [arm64] dts: allwinner: a64: bananapi-m64: Enable RGMII RX/TX delay on PHY - [mips*] export has_transparent_hugepage() for modules - [arm64] dts: allwinner: h5: OrangePi Prime: Fix ethernet node - perf lock: Don't free "lock_seq_stat" if read_count isn't zero - ip_tunnels: Set tunnel option flag when tunnel metadata is present - can: af_can: prevent potential access of uninitialized member in can_rcv() - can: af_can: prevent potential access of uninitialized member in canfd_rcv() - can: dev: can_restart(): post buffer from the right context - can: mcba_usb: mcba_usb_start_xmit(): first fill skb, then pass to can_put_echo_skb() - can: peak_usb: fix potential integer overflow on shift of a int - [arm64] ASoC: qcom: lpass-platform: Fix memory leak - [arm64,armhf] drm/sun4i: dw-hdmi: fix error return code in sun8i_dw_hdmi_bind() - can: kvaser_usb: kvaser_usb_hydra: Fix KCAN bittiming limits - [armhf] regulator: ti-abb: Fix array out of bound read access on the first transition - xfs: revert "xfs: fix rmap key and record comparison functions" - [amd64] efi/x86: Free efi_pgd with free_pages() - libfs: fix error cast of negative value in simple_attr_write() - speakup: Do not let the line discipline be used several times (CVE-2020-28941) - ALSA: firewire: Clean up a locking issue in copy_resp_to_buf() - ALSA: usb-audio: Add delay quirk for all Logitech USB devices - ALSA: ctl: fix error path at adding user-defined element set - ALSA: mixart: Fix mutex deadlock - ALSA: hda/realtek: Add some Clove SSID in the ALC293(ALC1220) - [armhf] tty: serial: imx: keep console clocks always on - [arm64,armhf,x86] efivarfs: fix memory leak in efivarfs_create() - [arm64,x86] staging: rtl8723bs: Add 024c:0627 to the list of SDIO device-ids - ext4: fix bogus warning in ext4_update_dx_flag() - [x86] iio: accel: kxcjk1013: Replace is_smo8500_device with an acpi_type enum - [x86] iio: accel: kxcjk1013: Add support for KIOX010A ACPI DSM for setting tablet-mode - [armhf] regulator: pfuze100: limit pfuze-support-disable-sw to pfuze{100,200} - regulator: fix memory leak with repeated set_machine_constraints() - regulator: avoid resolve_supply() infinite recursion - regulator: workaround self-referent regulators - mac80211: minstrel: remove deferred sampling code - mac80211: minstrel: fix tx status processing corner case - mac80211: free sta in sta_info_insert_finish() on errors - [s390x] cpum_sf.c: fix file permission for cpum_sfb_size - [s390x] dasd: fix null pointer dereference for ERP requests - ptrace: Set PF_SUPERPRIV when checking capability - seccomp: Set PF_SUPERPRIV when checking capability - [x86] microcode/intel: Check patch signature before saving microcode for early loading - mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() . [ Salvatore Bonaccorso ] * net: Enable NET_SWITCHDEV; disable on armel/marvell (Closes: #949863) * Bump ABI to 13 * [rt] Update to 4.19.152-rt65 * [rt] Refresh "mm: Protect activate_mm() by preempt_[disable&enable]_rt()" * [rt] Refresh "kthread: convert worker lock to raw spinlock" * [rt] Refresh "signals: Allow rt tasks to cache one sigqueue struct" * [rt] Refresh "tpm_tis: fix stall after iowrite*()s" * [rt] Refresh "futex: Delay deallocation of pi_state" * [rt] Refresh "futex: Make the futex_hash_bucket spinlock_t again" * [rt] Update to 4.19.152-rt66 - mm/memcontrol: Disable preemption in __mod_memcg_lruvec_state() - ptrace: fix ptrace_unfreeze_traced() race with rt-lock * [rt] Update to 4.19.160-rt69 . [ Noah Meyerhans ] * Backport upstream fix for PCI bridge firmware configuration preservation (Closes: #968623) . [ John L. Villalovos ] * Backport support for USB Host Controllers with local memory to avoid crashes. In particular the Renesas USB 3.0 controller (PD720201/PD720202) which is used on the Ampere's Mt Jade platform which is part of their Altra product line: - lib/genalloc: add gen_pool_dma_zalloc() for zeroed DMA allocations - USB: use genalloc for USB HCs with local memory - USB: drop HCD_LOCAL_MEM flag - usb: don't create dma pools for HCDs with a localmem_pool - usb: add a hcd_uses_dma helper - usb: host: ohci-sm501: init genalloc for local memory - usb/hcd: Fix a NULL vs IS_ERR() bug in usb_hcd_setup_local_mem() * [arm64] config/arm64/config: Set NODES_SHIFT to 4 . [ Yves-Alexis Perez ] * usbnet: ipheth: fix connectivity with iOS 14 linux-signed-arm64 (4.19.152+1) buster-security; urgency=high . * Sign kernel from linux 4.19.152-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.147 - [arm64,armhf] dsa: Allow forwarding of redirected IGMP traffic - scsi: qla2xxx: Update rscn_rcvd field to more meaningful scan_needed - scsi: qla2xxx: Move rport registration out of internal work_list - scsi: qla2xxx: Reduce holding sess_lock to prevent CPU lock-up - net: handle the return value of pskb_carve_frag_list() correctly - [x86] hv_netvsc: Remove "unlikely" from netvsc_select_queue - NFSv4.1 handle ERR_DELAY error reclaiming locking state on delegation recall - scsi: pm8001: Fix memleak in pm8001_exec_internal_task_abort - scsi: libfc: Fix for double free() - scsi: lpfc: Fix FLOGI/PLOGI receive race condition in pt2pt discovery - [arm64] regulator: pwm: Fix machine constraints application - NFS: Zero-stateid SETATTR should first return delegation - SUNRPC: stop printk reading past end of string - nvme-fc: cancel async events before freeing event struct - nvme-rdma: cancel async events before freeing event struct - f2fs: fix indefinite loop scanning for free nid - f2fs: Return EOF on unaligned end of file DIO read - i2c: algo: pca: Reapply i2c bus settings after reset - spi: Fix memory leak on splited transfers - [arm64,armhf] clk: rockchip: Fix initialization of mux_pll_src_4plls_p - [arm64] ASoC: qcom: Set card->owner to avoid warnings - [x86] Drivers: hv: vmbus: Add timeout to vmbus_wait_for_unload - fbcon: Fix user font detection test at fbcon_resize(). - USB: quirks: Add USB_QUIRK_IGNORE_REMOTE_WAKEUP quirk for BYD zhaoxin notebook - USB: UAS: fix disconnect by unplugging a hub - usblp: fix race between disconnect() and read() - [x86] i2c: i801: Fix resume bug - Revert "ALSA: hda - Fix silent audio output and corrupted input on MSI X570-A PRO" - percpu: fix first chunk size calculation for populated bitmap - Input: trackpoint - add new trackpoint variant IDs - serial: 8250_pci: Add Realtek 816a and 816b - ehci-hcd: Move include to keep CRC stable - [powerpc*] dma: Fix dma_map_ops::get_required_mask https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.148 - af_key: pfkey_dump needs parameter validation - KVM: fix memory leak in kvm_io_bus_unregister_dev() - kprobes: fix kill kprobe which has been marked as gone - mm/thp: fix __split_huge_pmd_locked() for migration PMD - cxgb4: Fix offset when clearing filter byte counters - geneve: add transport ports in route lookup for geneve (CVE-2020-25645) - [x86,ppc64el] hdlc_ppp: add range checks in ppp_cp_parse_cr() (CVE-2020-25643) - ip: fix tos reflection in ack and reset packets - ipv6: avoid lockdep issue in fib6_del() - net: DCB: Validate DCB_ATTR_DCB_BUFFER argument - net: ipv6: fix kconfig dependency warning for IPV6_SEG6_HMAC - net: sch_generic: aviod concurrent reset and enqueue op for lockless qdisc - nfp: use correct define to return NONE fec - tipc: Fix memory leak in tipc_group_create_member() - tipc: fix shutdown() of connection oriented socket - tipc: use skb_unshare() instead in tipc_buf_append() - bnxt_en: return proper error codes in bnxt_show_temp - bnxt_en: Protect bnxt_set_eee() and bnxt_set_pauseparam() with mutex. - net: phy: Avoid NPD upon phy_detach() when driver is unbound - net: add __must_check to skb_put_padto() - ipv4: Update exception handling for multipath routes via same device - kbuild: add OBJSIZE variable for the size tool - mm: memcg: fix memcg reclaim soft lockup - tcp_bbr: refactor bbr_target_cwnd() for general inflight provisioning - tcp_bbr: adapt cwnd based on ack aggregation estimation - serial: 8250: Avoid error message on reprobe https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.149 - selinux: allow labeling before policy is loaded - media: mc-device.c: fix memleak in media_device_register_entity - dma-fence: Serialise signal enabling (dma_fence_enable_sw_signaling) - ath10k: fix array out-of-bounds access - ath10k: fix memory leak for tpc_stats_final - mm: fix double page fault on arm64 if PTE_AF is cleared - scsi: aacraid: fix illegal IO beyond last LBA - [x86] gma/gma500: fix a memory disclosure bug due to uninitialized bytes - [armel,armhf] ASoC: kirkwood: fix IRQ error handling - [amd64] arch/x86/lib/usercopy_64.c: fix __copy_user_flushcache() cache writeback - [x86] ioapic: Unbreak check_timer() - ALSA: usb-audio: Add delay quirk for H570e USB headsets - ALSA: hda/realtek - Couldn't detect Mic if booting with headset plugged - ALSA: hda/realtek: Enable front panel headset LED on Lenovo ThinkStation P520 - lib/string.c: implement stpcpy - [armhf] PM / devfreq: tegra30: Fix integer overflow on CPU's freq max out - [x86] scsi: fnic: fix use after free - scsi: lpfc: Fix kernel crash at lpfc_nvme_info_show during remote port bounce - net: silence data-races on sk_backlog.tail - [armhf] clk/ti/adpll: allocate room for terminating null - mtd: cfi_cmdset_0002: don't free cfi->cfiq in error path of cfi_amdstd_setup() - mfd: mfd-core: Protect against NULL call-back function pointer - [x86] tpm_crb: fix fTPM on AMD Zen+ CPUs - tracing: Adding NULL checks for trace_array descriptor pointer - bcache: fix a lost wake-up problem caused by mca_cannibalize_lock - RDMA/qedr: Fix potential use after free - RDMA/i40iw: Fix potential use after free - fix dget_parent() fastpath race - xfs: fix attr leaf header freemap.size underflow - RDMA/iw_cgxb4: Fix an error handling path in 'c4iw_connect()' - ubi: Fix producing anchor PEBs - mmc: core: Fix size overflow for mmc partitions - gfs2: clean up iopen glock mess in gfs2_create_inode - scsi: pm80xx: Cleanup command when a reset times out - CIFS: Properly process SMB3 lease breaks - ASoC: max98090: remove msleep in PLL unlocked workaround - kernel/sys.c: avoid copying possible padding bytes in copy_to_user - [arm64,armhf] KVM: vgic: Fix potential double free dist->spis in __kvm_vgic_destroy() - xfs: fix log reservation overflows when allocating large rt extents - neigh_stat_seq_next() should increase position index - rt_cpu_seq_next should increase position index - ipv6_route_seq_next should increase position index - seqlock: Require WRITE_ONCE surrounding raw_seqcount_barrier - sctp: move trace_sctp_probe_path into sctp_outq_sack - [arm64,x86] ACPI: EC: Reference count query handlers under lock - scsi: ufs: Make ufshcd_add_command_trace() easier to read - scsi: ufs: Fix a race condition in the tracing code - [s390x] /cpum_sf: Use kzalloc and minor changes - [powerpc*] eeh: Only dump stack once if an MMIO loop is detected - Bluetooth: btrtl: Use kvmalloc for FW allocations - [armel,armhf] ARM: 8948/1: Prevent OOB access in stacktrace - ar5523: Add USB ID of SMCWUSBT-G2 wireless adapter - ceph: ensure we have a new cap before continuing in fill_inode - Bluetooth: Fix refcount use-after-free issue - mm/swapfile.c: swap_next should increase position index - mm: pagewalk: fix termination condition in walk_pte_range() - Bluetooth: prefetch channel before killing sock - KVM: fix overflow of zero page refcount with ksm running - ALSA: hda: Clear RIRB status before reading WP - skbuff: fix a data race in skb_queue_len() - audit: CONFIG_CHANGE don't log internal bookkeeping as an event - selinux: sel_avc_get_stat_idx should increase position index - scsi: lpfc: Fix RQ buffer leakage when no IOCBs available - scsi: lpfc: Fix coverity errors in fmdi attribute handling - [armhf] drm/omap: fix possible object reference leak - crypto: chelsio - This fixes the kernel panic which occurs during a libkcapi test - mt76: clear skb pointers from rx aggregation reorder buffer during cleanup - ALSA: usb-audio: Don't create a mixer element with bogus volume range - [s390x] perf test: Fix test trace+probe_vfs_getname.sh on s390 - RDMA/rxe: Fix configuration of atomic queue pair attributes - [x86] KVM: x86: fix incorrect comparison in trace event - [x86] pkeys: Add check for pkey "overflow" - bpf: Remove recursion prevention from rcu free callback - [arm64,armhf] dmaengine: tegra-apb: Prevent race conditions on channel's freeing - random: fix data races at timer_rand_state - [arm64] bus: hisi_lpc: Fixup IO ports addresses to avoid use-after-free in host removal - media: go7007: Fix URB type for interrupt handling - Bluetooth: guard against controllers sending zero'd events - timekeeping: Prevent 32bit truncation in scale64_check_overflow() - ext4: fix a data race at inode->i_disksize - mm: avoid data corruption on CoW fault into PFN-mapped VMA - drm/amdgpu: increase atombios cmd timeout - ath10k: use kzalloc to read for ath10k_sdio_hif_diag_read - scsi: aacraid: Disabling TM path and only processing IOP reset - Bluetooth: L2CAP: handle l2cap config request during open state - media: tda10071: fix unsigned sign extension overflow - xfs: don't ever return a stale pointer from __xfs_dir3_free_read - xfs: mark dir corrupt when lookup-by-hash fails - ext4: mark block bitmap corrupted when found instead of BUGON - nfsd: Don't add locks to closed or closing open stateids - RDMA/cm: Remove a race freeing timewait_info - [powerpc*] KVM: PPC: Book3S HV: Treat TM-related invalid form instructions on P9 like the valid ones - [arm64] drm/msm: fix leaks if initialization fails - [arm64] drm/msm/a5xx: Always set an OPP supported hardware value - serial: 8250_port: Don't service RX FIFO if throttled - [powerpc*] cpufreq: powernv: Fix frame-size-overflow in powernv_cpufreq_work_fn - nvme-multipath: do not reset on unknown status - nvme: Fix controller creation races with teardown flow - RDMA/rxe: Set sys_image_guid to be aligned with HW IB devices - scsi: hpsa: correct race condition in offload enabled - SUNRPC: Fix a potential buffer overflow in 'svc_print_xprts()' - svcrdma: Fix leak of transport addresses - PCI: Use ioremap(), not phys_to_virt() for platform ROM - ubifs: Fix out-of-bounds memory access caused by abnormal value of node_len - ALSA: usb-audio: Fix case when USB MIDI interface has more than one extra endpoint descriptor - PCI: pciehp: Fix MSI interrupt race - NFS: Fix races nfs_page_group_destroy() vs nfs_destroy_unlinked_subrequests() - mm/kmemleak.c: use address-of operator on section symbols - mm/filemap.c: clear page error before actual read - mm/vmscan.c: fix data races using kswapd_classzone_idx - nvmet-rdma: fix double free of rdma queue - mm/mmap.c: initialize align_offset explicitly for vm_unmapped_area - scsi: qedi: Fix termination timeouts in session logout - [arm64] serial: uartps: Wait for tx_empty in console setup - [x86] KVM: Remove CREATE_IRQCHIP/SET_PIT2 race - bdev: Reduce time holding bd_mutex in sync in blkdev_close() - [x86] drivers: char: tlclk.c: Avoid data race between init and interrupt handler - [arm64] KVM: vgic-its: Fix memory leak on the error path of vgic_add_lpi() - net: openvswitch: use u64 for meter bucket - scsi: aacraid: Fix error handling paths in aac_probe_one() - staging:r8188eu: avoid skb_clone for amsdu to msdu conversion - [arm64] cpufeature: Relax checks for AArch32 support at EL[0-2] - dt-bindings: sound: wm8994: Correct required supplies based on actual implementaion - atm: fix a memory leak of vcc->user_back - Bluetooth: Handle Inquiry Cancel error after Inquiry Complete - tipc: fix memory leak in service subscripting - [armhf] tty: serial: samsung: Correct clock selection logic - ALSA: hda: Fix potential race in unsol event handler - [powerpc*] traps: Make unrecoverable NMIs die instead of panic - fuse: don't check refcount after stealing page - [powerpc*] scsi: cxlflash: Fix error return code in cxlflash_probe() - [arm64] cpufeature: Drop TraceFilt feature exposure from ID_DFR0 register - e1000: Do not perform reset in reset_task if we are already down - drm/nouveau/debugfs: fix runtime pm imbalance on error - drm/nouveau: fix runtime pm imbalance on error - drm/nouveau/dispnv50: fix runtime pm imbalance on error - printk: handle blank console arguments passed in. - [arm64,armhf] usb: dwc3: Increase timeout for CmdAct cleared by device controller - btrfs: don't force read-only after error in drop snapshot - vfio/pci: fix memory leaks of eventfd ctx - perf trace: Fix the selection for architectures to generate the errno name tables - [arm64,armhf] wlcore: fix runtime pm imbalance in wl1271_tx_work - [arm64,armhf] wlcore: fix runtime pm imbalance in wlcore_regdomain_config - [arm64,armhf] PCI: tegra: Fix runtime PM imbalance on error - ceph: fix potential race in ceph_check_caps - mm/swap_state: fix a data race in swapin_nr_pages - [armel] mtd: parser: cmdline: Support MTD names containing one or more colons - [x86] speculation/mds: Mark mds_user_clear_cpu_buffers() __always_inline - vfio/pci: Clear error and request eventfd ctx after releasing - cifs: Fix double add page to memcg when cifs_readpages - nvme: fix possible deadlock when I/O is blocked - scsi: libfc: Handling of extra kref - scsi: libfc: Skip additional kref updating work event - vfio/pci: fix racy on error and request eventfd ctx - btrfs: qgroup: fix data leak caused by race between writeback and truncate - net: openvswitch: use div_u64() for 64-by-32 divisions - nvme: explicitly update mpath disk capacity on revalidation - [x86] ASoC: Intel: bytcr_rt5640: Add quirk for MPMAN Converter9 2-in-1 - [s390x] init: add missing __init annotations - lockdep: fix order in trace_hardirqs_off_caller() - [amd64] drm/amdkfd: fix a memory leak issue - i2c: core: Call i2c_acpi_install_space_handler() before i2c_acpi_register_devices() - mwifiex: Increase AES key storage size to 256 bits - batman-adv: bla: fix type misuse for backbone_gw hash indexing - atm: eni: fix the missed pci_disable_device() for eni_init_one() - batman-adv: mcast/TT: fix wrongly dropped or rerouted packets - mac802154: tx: fix use-after-free - bpf: Fix clobbering of r2 in bpf_gen_ld_abs - [arm*] drm/vc4/vc4_hdmi: fill ASoC card owner - net: qed: RDMA personality shouldn't fail VF load - batman-adv: Add missing include for in_interrupt() - batman-adv: mcast: fix duplicate mcast packets in BLA backbone from mesh - batman-adv: mcast: fix duplicate mcast packets from BLA backbone to mesh - bpf: Fix a rcu warning for bpffs map pretty-print - [x86] ALSA: asihpi: fix iounmap in error handler - regmap: fix page selection for noinc reads - [x86] KVM: Reset MMU context if guest toggles CR4.SMAP or CR4.PKE - [x86] KVM: SVM: Add a dedicated INVD intercept routine - tracing: fix double free - [s390x] dasd: Fix zero write for FBA devices - kprobes: Fix to check probe enabled before disarm_kprobe_ftrace() - mm, THP, swap: fix allocating cluster for swapfile by mistake - [s390x] zcrypt: Fix ZCRYPT_PERDEV_REQCNT ioctl - ata: define AC_ERR_OK - ata: make qc_prep return ata_completion_errors - ata: sata_mv, avoid trigerrable BUG_ON - [arm64] KVM: Assume write fault on S1PTW permission fault on instruction fetch https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.150 - mmc: sdhci: Workaround broken command queuing on Intel GLK based IRBIS models - USB: gadget: f_ncm: Fix NDP16 datagram validation - vsock/virtio: use RCU to avoid use-after-free on the_virtio_vsock - vsock/virtio: stop workers during the .remove() - vsock/virtio: add transport parameter to the virtio_transport_reset_no_sock() - net: virtio_vsock: Enhance connection semantics - Input: i8042 - add nopnp quirk for Acer Aspire 5 A515 - ftrace: Move RCU is watching check after recursion check - drm/amdgpu: restore proper ref count in amdgpu_display_crtc_set_config - drivers/net/wan/hdlc_fr: Add needed_headroom for PVC devices - [armhf] drm/sun4i: mixer: Extend regmap max_register - net: dec: de2104x: Increase receive ring size for Tulip - rndis_host: increase sleep time in the query-response loop - nvme-core: get/put ctrl and transport module in nvme_dev_open/release() - [x86,ppc64el] drivers/net/wan/hdlc: Set skb->protocol before transmitting - mac80211: do not allow bigger VHT MPDUs than the hardware supports - nvme-fc: fail new connections to a deleted host or remote port - [armhf] pinctrl: mvebu: Fix i2c sda definition for 98DX3236 - nfs: Fix security label length not being reset - [armhf] clk: samsung: exynos4: mark 'chipid' clock as CLK_IGNORE_UNUSED - Input: trackpoint - enable Synaptics trackpoints - random32: Restore __latent_entropy attribute on net_rand_state - mm: replace memmap_context by meminit_context - mm: don't rely on system state to detect hot-plug operations - epoll: do not insert into poll queues until all sanity checks are done - epoll: replace ->visited/visited_list with generation count - epoll: EPOLL_CTL_ADD: close the race in decision to take fast path - ep_create_wakeup_source(): dentry name can change under you... - netfilter: ctnetlink: add a range check for l3/l4 protonum (CVE-2020-25211) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.151 - fbdev, newport_con: Move FONT_EXTRA_WORDS macros into linux/font.h - Fonts: Support FONT_EXTRA_WORDS macros for built-in fonts - fbcon: Fix global-out-of-bounds read in fbcon_get_font() - net: wireless: nl80211: fix out-of-bounds access in nl80211_del_key() - drm/nouveau/mem: guard against NULL pointer access in mem_del - usermodehelper: reset umask to default before executing user process - [x86] platform/x86: intel-vbtn: Fix SW_TABLET_MODE always reporting 1 on the HP Pavilion 11 x360 - [x86] platform/x86: thinkpad_acpi: initialize tp_nvram_state variable - [x86] platform/x86: intel-vbtn: Switch to an allow-list for SW_TABLET_MODE reporting - [x86] platform/x86: thinkpad_acpi: re-initialize ACPI buffer size when reuse - driver core: Fix probe_count imbalance in really_probe() - [x86] i2c: i801: Exclude device from suspend direct complete optimization - [armhf] mtd: rawnand: sunxi: Fix the probe error path - nvme-core: put ctrl ref when module ref get fail - macsec: avoid use-after-free in macsec_handle_frame() - mm/khugepaged: fix filemap page_to_pgoff(page) != offset - xfrmi: drop ignore_df check before updating pmtu - cifs: Fix incomplete memory allocation on setxattr path - [arm64,armhf] i2c: meson: fix clock setting overwrite - [arm64,armhf] i2c: meson: fixup rate calculation with filter delay - sctp: fix sctp_auth_init_hmacs() error path - team: set dev->needed_headroom in team_setup_by_port() - net: team: fix memory leak in __team_options_register - openvswitch: handle DNAT tuple collision - drm/amdgpu: prevent double kfree ttm->sg - xfrm: clone XFRMA_SET_MARK in xfrm_do_migrate - xfrm: clone XFRMA_REPLAY_ESN_VAL in xfrm_do_migrate - xfrm: clone XFRMA_SEC_CTX in xfrm_do_migrate - xfrm: clone whole liftime_cur structure in xfrm_do_migrate - [arm64,armhf] net: stmmac: removed enabling eee in EEE set callback - xfrm: Use correct address family in xfrm_state_find - bonding: set dev->needed_headroom in bond_setup_by_slave() - net: usb: ax88179_178a: fix missing stop entry in driver_info - net/mlx5e: Fix VLAN cleanup flow - net/mlx5e: Fix VLAN create flow - rxrpc: Fix rxkad token xdr encoding - rxrpc: Downgrade the BUG() for unsupported token type in rxrpc_read() - rxrpc: Fix some missing _bh annotations on locking conn->state_lock - rxrpc: Fix server keyring leak - perf: Fix task_function_call() error handling - mmc: core: don't set limits.discard_granularity as 0 - mm: khugepaged: recalculate min_free_kbytes after memory hotplug as expected by khugepaged - net: usb: rtl8150: set random MAC address when set_ethernet_addr() fails https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.152 - Bluetooth: A2MP: Fix not initializing all members (CVE-2020-12352) - Bluetooth: L2CAP: Fix calling sk_filter on non-socket based channel (CVE-2020-12351) - Bluetooth: MGMT: Fix not checking if BT_HS is enabled - Bluetooth: Consolidate encryption handling in hci_encrypt_cfm - Bluetooth: Fix update of connection state in `hci_encrypt_cfm` - Bluetooth: Disconnect if E0 is used for Level 4 - media: usbtv: Fix refcounting mixup - USB: serial: option: add Cellient MPL200 card - USB: serial: option: Add Telit FT980-KS composition - [x86] staging: comedi: check validity of wMaxPacketSize of usb endpoints found - USB: serial: pl2303: add device-id for HP GC device - USB: serial: ftdi_sio: add support for FreeCalypso JTAG+UART adapters - reiserfs: Initialize inode keys properly - reiserfs: Fix oops during mount - [arm*] drivers/net/ethernet/marvell/mvmdio.c: Fix non OF case (Closes: #908712) - [x86] crypto: qat - check cipher length for aead AES-CBC-HMAC-SHA . [ Salvatore Bonaccorso ] * [rt] Update to 4.19.148-rt64 * Bump ABI to 12 * Revert "perf cs-etm: Move definition of 'traceid_list' global variable from header file" linux-signed-i386 (4.19.160+2) buster; urgency=medium . * Sign kernel from linux 4.19.160-2 . * net: Disable MLX5_ESWITCH on mips and mipsel (Fixes FTBFS) linux-signed-i386 (4.19.160+1) buster; urgency=medium . * Sign kernel from linux 4.19.160-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.153 - [ppc64el] ibmveth: Switch order of ibmveth_helper calls. - [ppc64el] ibmveth: Identify ingress large send packets. - ipv4: Restore flowi4_oif update before call to xfrm_lookup_route - mlx4: handle non-napi callers to napi_poll - [armhf] net: fec: Fix phy_device lookup for phy_reset_after_clk_enable() - [armhf] net: fec: Fix PHY init after phy_reset_after_clk_enable() - net: fix pos incrementment in ipv6_route_seq_next - net/smc: fix valid DMBE buffer sizes - net: usb: qmi_wwan: add Cellient MPL200 card - tipc: fix the skb_unshare() in tipc_buf_append() - net/ipv4: always honour route mtu during forwarding - r8169: fix data corruption issue on RTL8402 - [arm*] binder: fix UAF when releasing todo list (CVE-2020-0423) - ALSA: bebob: potential info leak in hwdep_read() - net: hdlc: In hdlc_rcv, check to make sure dev is an HDLC device - [x86,ppc64el] net: hdlc_raw_eth: Clear the IFF_TX_SKB_SHARING flag after calling ether_setup - net/sched: act_tunnel_key: fix OOB write in case of IPv6 ERSPAN tunnels - nfc: Ensure presence of NFC_ATTR_FIRMWARE_NAME attribute in nfc_genl_fw_download() - tcp: fix to update snd_wl1 in bulk receiver fast path - r8169: fix operation under forced interrupt threading - icmp: randomize the global rate limiter (CVE-2020-25705) - ALSA: hda/realtek: Enable audio jacks of ASUS D700SA with ALC887 - cifs: remove bogus debug code - cifs: Return the error from crypt_message when enc/dec key not found. - [x86] KVM: x86/mmu: Commit zap of remaining invalid pages when recovering lpages - [x86] KVM: SVM: Initialize prev_ga_tag before use - crypto: algif_aead - Do not set MAY_BACKLOG on the async path - [x86] EDAC/i5100: Fix error handling order in i5100_init_one() - [x86] fpu: Allow multiple bits in clearcpuid= parameter - [arm64] drivers/perf: xgene_pmu: Fix uninitialized resource struct - [x86] nmi: Fix nmi_handle() duration miscalculation - [amd64] x86/events/amd/iommu: Fix sizeof mismatch - crypto: algif_skcipher - EBUSY on aio should be an error - media: tuner-simple: fix regression in simple_set_radio_freq - media: uvcvideo: Set media controller entity functions - media: uvcvideo: Silence shift-out-of-bounds warning - [armhf] media: omap3isp: Fix memleak in isp_probe - [armhf] media: ti-vpe: Fix a missing check and reference count leak - regulator: resolve supply after creating regulator - ath10k: provide survey info as accumulated data - Bluetooth: hci_uart: Cancel init work before unregistering - ath6kl: prevent potential array overflow in ath6kl_add_new_sta() - ath9k: Fix potential out of bounds in ath9k_htc_txcompletion_cb() - ath10k: Fix the size used in a 'dma_free_coherent()' call in an error handling path - [arm64] wcn36xx: Fix reported 802.11n rx_highest rate wcn3660/wcn3680 - [arm64] ASoC: qcom: lpass-platform: fix memory leak - [arm64] ASoC: qcom: lpass-cpu: fix concurrency issue - brcmfmac: check ndev pointer - mwifiex: Do not use GFP_KERNEL in atomic context - [x86] staging: rtl8192u: Do not use GFP_KERNEL in atomic context - [x86] drm/gma500: fix error check - scsi: qla4xxx: Fix an error handling path in 'qla4xxx_get_host_stats()' - scsi: qla2xxx: Fix wrong return value in qla_nvme_register_hba() - scsi: csiostor: Fix wrong return value in csio_hw_prep_fw() - [x86] VMCI: check return value of get_user_pages_fast() for errors - [ppc64el] tty: hvcs: Don't NULL tty->driver_data until hvcs_cleanup() - pty: do tty_flip_buffer_push without port->lock in pty_write - [x86] pwm: lpss: Fix off by one error in base_unit math in pwm_lpss_prepare() - [x86] pwm: lpss: Add range limit check for the base_unit register value - [x86] video: fbdev: vga16fb: fix setting of pixclock because a pass-by-value error - video: fbdev: sis: fix null ptr dereference - video: fbdev: radeon: Fix memleak in radeonfb_pci_register - HID: roccat: add bounds checking in kone_sysfs_write_settings() - [armhf] pinctrl: mcp23s08: Fix mcp23x17_regmap initialiser - [armhf] pinctrl: mcp23s08: Fix mcp23x17 precious range - net/mlx5: Don't call timecounter cyc2time directly from 1PPS flow - [arm64,armhf] net: stmmac: use netif_tx_start|stop_all_queues() function - [arm64] cpufreq: armada-37xx: Add missing MODULE_DEVICE_TABLE - ath6kl: wmi: prevent a shift wrapping bug in ath6kl_wmi_delete_pstream_cmd() - [amd64] misc: mic: scif: Fix error handling path - [arm*] usb: dwc2: Fix parameter type in function pointer prototype - quota: clear padding in v2r1_mem2diskdqb() - HID: hid-input: fix stylus battery reporting - net: enic: Cure the enic api locking trainwreck - [mips*] mfd: sm501: Fix leaks in probe() - iwlwifi: mvm: split a print to avoid a WARNING in ROC - usb: gadget: f_ncm: fix ncm_bitrate for SuperSpeed and above. - usb: gadget: u_ether: enable qmult on SuperSpeed Plus as well - nl80211: fix non-split wiphy information - [arm*] usb: dwc2: Fix INTR OUT transfers in DDMA mode. - scsi: target: tcmu: Fix warning: 'page' may be used uninitialized - scsi: be2iscsi: Fix a theoretical leak in beiscsi_create_eqs() - mwifiex: fix double free - ipvs: clear skb->tstamp in forwarding path - netfilter: nf_log: missing vlan offload tag and proto - mm/memcg: fix device private memcg accounting - mm, oom_adj: don't loop through tasks in __set_oom_adj when not necessary - IB/mlx4: Fix starvation in paravirt mux/demux - IB/mlx4: Adjust delayed work when a dup is observed - [powerpc*] pseries: Fix missing of_node_put() in rng_init() - [powerpc*] icp-hv: Fix missing of_node_put() in success path - RDMA/ucma: Fix locking for ctx->events_reported - RDMA/ucma: Add missing locking around rdma_leave_multicast() - [powerpc*] pseries: explicitly reschedule during drmem_lmb list traversal - mtd: mtdoops: Don't write panic data twice - [armel,armhf] ARM: 9007/1: l2c: fix prefetch bits init in L2X0_AUX_CTRL using DT values - xfs: limit entries returned when counting fsmap records - xfs: fix high key handling in the rt allocator's query_range function - RDMA/qedr: Fix use of uninitialized field - RDMA/qedr: Fix inline size returned for iWARP https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.154 - [powerpc*] 64s/radix: Fix mm_cpumask trimming race vs kthread_use_mm - RDMA/cma: Remove dead code for kernel rdmacm multicast - RDMA/cma: Consolidate the destruction of a cma_multicast in one place - [arm64] RDMA/hns: Set the unsupported wr opcode - [arm64] RDMA/hns: Fix missing sq_sig_type when querying QP - overflow: Include header file with SIZE_MAX declaration - [powerpc*] perf: Exclude pmc5/6 from the irrelevant PMU group constraints - [poerpc*] cpufreq: powernv: Fix frame-size-overflow in powernv_cpufreq_reboot_notifier - IB/rdmavt: Fix sizeof mismatch - f2fs: wait for sysfs kobject removal before freeing f2fs_sb_info - lib/crc32.c: fix trivial typo in preprocessor condition - rapidio: fix error handling path - rapidio: fix the missed put_device() for rio_mport_add_riodev - mailbox: avoid timer start from callback - [arm64,armhf] clk: rockchip: Initialize hw to error to avoid undefined behavior - [arm*] clk: bcm2835: add missing release if devm_clk_hw_register fails - watchdog: Fix memleak in watchdog_cdev_register - watchdog: Use put_device on error - svcrdma: fix bounce buffers for unaligned offsets and multiple pages - ext4: limit entries returned when counting fsmap records - vfio/pci: Clear token on bypass registration failure - [amd64,arm64] vfio iommu type1: Fix memory leak in vfio_iommu_type1_pin_pages - SUNRPC: fix copying of multiple pages in gss_read_proxy_verf() - [armhf] Input: omap4-keypad - fix handling of platform_get_irq() error - [armhf] Input: twl4030_keypad - fix handling of platform_get_irq() error - [armhf] Input: sun4i-ps2 - fix handling of platform_get_irq() error - [x86] KVM: emulating RDPID failure shall return #UD rather than #GP - netfilter: conntrack: connection timeout after re-register - netfilter: nf_fwd_netdev: clear timestamp in forwarding path - [armhf] dts: sun8i: r40: bananapi-m2-ultra: Fix dcdc1 regulator - [armhf] memory: omap-gpmc: Fix a couple off by ones - [powerpc*] powernv/dump: Fix race while processing OPAL dump - nvmet: fix uninitialized work for zero kato - [x86,arm64] i2c: core: Restore acpi_walk_dep_device_list() getting called after registering the ACPI i2c devs - block: ratelimit handle_bad_sector() message - [x86] crypto: ccp - fix error handling - media: firewire: fix memory leak - media: ati_remote: sanity check for both endpoints - media: media/pci: prevent memory leak in bttv_probe - media: uvcvideo: Ensure all probed info is returned to v4l2 - mmc: sdio: Check for CISTPL_VERS_1 buffer size - media: saa7134: avoid a shift overflow - fs: dlm: fix configfs memory leak - [arm64] media: venus: core: Fix runtime PM imbalance in venus_probe - ip_gre: set dev->hard_header_len and dev->needed_headroom properly - mac80211: handle lack of sband->bitrates in rates - PM: hibernate: remove the bogus call to get_gendisk() in software_resume() - scsi: mvumi: Fix error return in mvumi_io_attach() - scsi: target: core: Add CONTROL field for trace events - [amd64] mic: vop: copy data to kernel space then write to io memory - [amd64] misc: vop: add round_up(x,4) for vring_size to avoid kernel panic - usb: gadget: function: printer: fix use-after-free in __lock_acquire - udf: Limit sparing table size - udf: Avoid accessing uninitialized data on failed inode read - USB: cdc-acm: handle broken union descriptors - [arm64,armhf] usb: dwc3: simple: add support for Hikey 970 - [armhf] can: flexcan: flexcan_chip_stop(): add error handling and propagate error value - ath9k: hif_usb: fix race condition between usb_get_urb() and usb_kill_anchored_urbs() - misc: rtsx: Fix memory leak in rtsx_pci_probe - reiserfs: only call unlock_new_inode() if I_NEW - xfs: make sure the rt allocator doesn't run off the end - usb: ohci: Default to per-port over-current protection - Bluetooth: Only mark socket zapped after unlocking - [ppc64el] scsi: ibmvfc: Fix error return in ibmvfc_probe() - brcmsmac: fix memory leak in wlc_phy_attach_lcnphy - rtl8xxxu: prevent potential memory leak - Fix use after free in get_capset_info callback. - scsi: qedi: Protect active command list to avoid list corruption - scsi: qedi: Fix list_del corruption while removing active I/O - [x86] tty: ipwireless: fix error handling - ipvs: Fix uninit-value in do_ip_vs_set_ctl() - reiserfs: Fix memory leak in reiserfs_parse_options() - mwifiex: don't call del_timer_sync() on uninitialized timer - brcm80211: fix possible memleak in brcmf_proto_msgbuf_attach - usb: core: Solve race condition in anchor cleanup functions - ath10k: check idx validity in __ath10k_htt_rx_ring_fill_n() - usb: cdc-acm: add quirk to blacklist ETAS ES58X devices - USB: cdc-wdm: Make wdm_flush() interruptible and add wdm_fsync(). - eeprom: at25: set minimum read/write access stride to 1 - usb: gadget: f_ncm: allow using NCM in SuperSpeed Plus gadgets. https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.155 - scripts/setlocalversion: make git describe output more reliable - [arm64] Run ARCH_WORKAROUND_1 enabling code on all CPUs - [arm64] link with -z norelro regardless of CONFIG_RELOCATABLE - [x86,arm64,armhf] efivarfs: Replace invalid slashes with exclamation marks in dentries. - gtp: fix an use-before-init in gtp_newlink() - netem: fix zero division in tabledist - tcp: Prevent low rmem stalls with SO_RCVLOWAT. - tipc: fix memory leak caused by tipc_buf_append() - r8169: fix issue with forced threading in combination with shared interrupts - cxgb4: set up filter action after rewrites - [x86] arch/x86/amd/ibs: Fix re-arming IBS Fetch - [x86] xen: disable Firmware First mode for correctable memory errors - fuse: fix page dereference after free - bpf: Fix comment for helper bpf_current_task_under_cgroup() - p54: avoid accessing the data mapped to streaming DMA - [powerpc*] cxl: Rework error message for incompatible slots - RDMA/addr: Fix race with netevent_callback()/rdma_addr_cancel() - mtd: lpddr: Fix bad logic in print_drs_error - [arm*] serial: pl011: Fix lockdep splat when handling magic-sysrq interrupt - fscrypt: return -EXDEV for incompatible rename or link into encrypted dir - fscrypt: clean up and improve dentry revalidation - fscrypt: fix race allowing rename() and link() of ciphertext dentries - fs, fscrypt: clear DCACHE_ENCRYPTED_NAME when unaliasing directory - fscrypt: only set dentry_operations on ciphertext dentries - fscrypt: fix race where ->lookup() marks plaintext dentry as ciphertext - Revert "block: ratelimit handle_bad_sector() message" - xen/events: don't use chip_data for legacy IRQs - xen/events: avoid removing an event channel while handling it (CVE-2020-27675) - xen/events: add a proper barrier to 2-level uevent unmasking (CVE-2020-27673) - xen/events: fix race in evtchn_fifo_unmask() (CVE-2020-27673) - xen/events: add a new "late EOI" evtchn framework (CVE-2020-27673) - xen/blkback: use lateeoi irq binding (CVE-2020-27673) - xen/netback: use lateeoi irq binding (CVE-2020-27673) - xen/scsiback: use lateeoi irq binding (CVE-2020-27673) - xen/pvcallsback: use lateeoi irq binding (CVE-2020-27673) - xen/pciback: use lateeoi irq binding (CVE-2020-27673) - xen/events: switch user event channels to lateeoi model (CVE-2020-27673) - xen/events: use a common cpu hotplug hook for event channels (CVE-2020-27673) - xen/events: defer eoi in case of excessive number of events (CVE-2020-27673) - xen/events: block rogue events for some time (CVE-2020-27673) - RDMA/qedr: Fix memory leak in iWARP CM - ata: sata_nv: Fix retrieving of active qcs - futex: Fix incorrect should_fail_futex() handling - [powerpc*] powernv/smp: Fix spurious DBG() warning - mm: fix exec activate_mm vs TLB shootdown and lazy tlb switching race - [powerpc*] select ARCH_WANT_IRQS_OFF_ACTIVATE_MM - f2fs: add trace exit in exception path - f2fs: fix uninit-value in f2fs_lookup - f2fs: fix to check segment boundary during SIT page readahead - [armel,armhf] 8997/2: hw_breakpoint: Handle inexact watchpoint addresses - power: supply: bq27xxx: report "not charging" on all types - xfs: fix realtime bitmap/summary file truncation when growing rt volume - ath10k: fix VHT NSS calculation when STBC is enabled - media: videodev2.h: RGB BT2020 and HSV are always full range - [x86] usb: typec: tcpm: During PR_SWAP, source caps should be sent only after tSwapSourceStart - media: tw5864: check status of tw5864_frameinterval_get - mmc: via-sdmmc: Fix data race bug - [arm64] topology: Stop using MPIDR for topology information - media: uvcvideo: Fix dereference of out-of-bound list iterator - USB: adutux: fix debugging - uio: free uio id after uio file node is freed - usb: xhci: omit duplicate actions when suspending a runtime suspended host. - [arm64] mm: return cpu_all_mask when node is NUMA_NO_NODE - xfs: don't free rt blocks when we're doing a REMAP bunmapi call - ACPI: Add out of bounds and numa_off protections to pxm_to_node() - drivers/net/wan/hdlc_fr: Correctly handle special skb->protocol values - btrfs: fix replace of seed device - md/bitmap: md_bitmap_get_counter returns wrong blocks - bnxt_en: Log unknown link speed appropriately. - [arm64] rpmsg: glink: Use complete_all for open states - [armhf] clk: ti: clockdomain: fix static checker warning - net: 9p: initialize sun_server.sun_path to have addr's value only when addr is valid - ext4: Detect already used quota file early - gfs2: add validation checks for size of superblock - cifs: handle -EINTR in cifs_setattr - [armhf] memory: emif: Remove bogus debugfs error handling - nbd: make the config put is called before the notifying the waiter - sgl_alloc_order: fix memory leak - nvme-rdma: fix crash when connect rejected - md/raid5: fix oops during stripe resizing - [x86,arm64] mmc: sdhci-acpi: AMDI0040: Set SDHCI_QUIRK2_PRESET_VALUE_BROKEN - [x86] perf/x86/amd/ibs: Don't include randomized bits in get_ibs_op_count() - [x86] perf/x86/amd/ibs: Fix raw sample data accumulation - media: uvcvideo: Fix uvc_ctrl_fixup_xu_info() not having any effect - fs: Don't invalidate page buffers in block_write_full_page() - NFS: fix nfs_path in case of a rename retry - ACPI: button: fix handling lid state changes when input device closed - [x86] ACPI / extlog: Check for RDMSR failure (Closes: #971058) - [x86] ACPI: video: use ACPI backlight for HP 635 Notebook - [x86] acpi-cpufreq: Honor _PSD table setting on new AMD CPUs - scsi: mptfusion: Fix null pointer dereferences in mptscsih_remove() - scsi: qla2xxx: Fix crash on session cleanup with unload - btrfs: qgroup: fix wrong qgroup metadata reserve for delayed inode - btrfs: improve device scanning messages - btrfs: reschedule if necessary when logging directory items - btrfs: send, recompute reference path after orphanization of a directory - btrfs: use kvzalloc() to allocate clone_roots in btrfs_ioctl_send() - btrfs: cleanup cow block on error - btrfs: fix use-after-free on readahead extent after failure to create it - usb: xhci: Workaround for S3 issue on AMD SNPS 3.0 xHC - [arm64,armhf] usb: dwc3: ep0: Fix ZLP for OUT ep0 requests - [arm64,armhf] usb: dwc3: gadget: Check MPS of the request length - [arm64,armhf] usb: dwc3: core: add phy cleanup for probe error handling - [arm64,armhf] usb: dwc3: core: don't trigger runtime pm when remove driver - usb: cdc-acm: fix cooldown mechanism - [x86] usb: typec: tcpm: reset hard_reset_count for any disconnect - [x86] drm/i915: Force VT'd workarounds when running as a guest OS - vt: keyboard, simplify vt_kdgkbsent - vt: keyboard, extend func_buf_lock to readers (CVE-2020-25656) - HID: wacom: Avoid entering wacom_wac_pen_report for pad / battery - udf: Fix memory leak when mounting - [powerpc*] drmem: Make lmb_size 64 bit - [s390x] stp: add locking to sysfs functions - [powerpc*] rtas: Restrict RTAS requests from userspace (CVE-2020-27777) - [powerpc*] Warn about use of smt_snooze_delay - [powerpc*] powernv/elog: Fix race while processing OPAL error log event. - [powerpc*] Fix undetected data corruption with P9N DD2.1 VSX CI load emulation - NFSv4.2: support EXCHGID4_FLAG_SUPP_FENCE_OPS 4.2 EXCHANGE_ID flag - NFSD: Add missing NFSv2 .pc_func methods - ubifs: dent: Fix some potential memory leaks while iterating entries - perf python scripting: Fix printable strings in python3 scripts - ubi: check kthread_should_stop() after the setting of task state - [armhf] i2c: imx: Fix external abort on interrupt in exit paths - drm/amdgpu: don't map BO in reserved region - ceph: promote to unsigned long long before shifting - libceph: clear con->out_msg on Policy::stateful_server faults - 9P: Cast to loff_t before multiplying - ring-buffer: Return 0 on success from ring_buffer_resize() - [amd64] vringh: fix __vringh_iov() when riov and wiov are different - ext4: fix leaking sysfs kobject after failed mount - ext4: fix error handling code in add_new_gdb - ext4: fix invalid inode checksum - drm/ttm: fix eviction valuable range check. - tty: make FONTX ioctl use the tty pointer they were actually passed (CVE-2020-25668) - cachefiles: Handle readpage error correctly - device property: Keep secondary firmware node secondary by type - device property: Don't clear secondary pointer for shared primary firmware node - [arm64] KVM: Fix AArch32 handling of DBGD{CCINT,SCRext} and DBGVCR - [x86] staging: comedi: cb_pcidas: Allow 2-channel commands for AO subdevice - [mips*] staging: octeon: repair "fixed-link" support - [mips*] staging: octeon: Drop on uncorrectable alignment or FCS error https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.156 - [x86] drm/i915: Break up error capture compression loops with cond_resched() - tipc: fix use-after-free in tipc_bcast_get_mode - ptrace: fix task_join_group_stop() for the case when current is traced - [arm64] cadence: force nonlinear buffers to be cloned - net: usb: qmi_wwan: add Telit LE910Cx 0x1230 composition - sctp: Fix COMM_LOST/CANT_STR_ASSOC err reporting on big-endian platforms - [arm64,armhf] sfp: Fix error handing in sfp_probe() - blktrace: fix debugfs use after free (CVE-2019-19770) - btrfs: extent_io: Kill the forward declaration of flush_write_bio - btrfs: extent_io: Move the BUG_ON() in flush_write_bio() one level up - Revert "btrfs: flush write bio if we loop in extent_write_cache_pages" - btrfs: flush write bio if we loop in extent_write_cache_pages - btrfs: extent_io: Handle errors better in extent_write_full_page() - btrfs: extent_io: Handle errors better in btree_write_cache_pages() - btrfs: extent_io: add proper error handling to lock_extent_buffer_for_io() - Btrfs: fix unwritten extent buffers and hangs on future writeback attempts - btrfs: Don't submit any btree write bio if the fs has errors (CVE-2019-19039, CVE-2019-19377) - btrfs: Move btrfs_check_chunk_valid() to tree-check.[ch] and export it - btrfs: tree-checker: Make chunk item checker messages more readable - btrfs: tree-checker: Make btrfs_check_chunk_valid() return EUCLEAN instead of EIO - btrfs: tree-checker: Check chunk item at tree block read time - btrfs: tree-checker: Verify dev item - btrfs: tree-checker: Fix wrong check on max devid - btrfs: tree-checker: Enhance chunk checker to validate chunk profile (CVE-2019-19816) - btrfs: tree-checker: Verify inode item - btrfs: tree-checker: fix the error message for transid error - Fonts: Replace discarded const qualifier - ALSA: usb-audio: Add implicit feedback quirk for Zoom UAC-2 - ALSA: usb-audio: add usb vendor id as DSD-capable for Khadas devices - ALSA: usb-audio: Add implicit feedback quirk for Qu-16 - ALSA: usb-audio: Add implicit feedback quirk for MODX - mm: mempolicy: fix potential pte_unmap_unlock pte error - kthread_worker: prevent queuing delayed work from timer_fn when it is being canceled - mm: always have io_remap_pfn_range() set pgprot_decrypted() - gfs2: Wake up when sd_glock_disposal becomes zero - ring-buffer: Fix recursion protection transitions between interrupt context - ftrace: Fix recursion check for NMI test - ftrace: Handle tracing when switching between context - tracing: Fix out of bounds write in get_trace_buf - futex: Handle transient "ownerless" rtmutex state correctly - [amd64] x86/kexec: Use up-to-dated screen_info copy to fill boot params - of: Fix reserved-memory overlap detection - blk-cgroup: Fix memleak on error path - blk-cgroup: Pre-allocate tree node on blkg_conf_prep - scsi: core: Don't start concurrent async scan on same host - vsock: use ns_capable_noaudit() on socket create - [arm*] drm/vc4: drv: Add error handding for bind - [amd64,arm64] ACPI: NFIT: Fix comparison to '-ENXIO' - vt: Disable KD_FONT_OP_COPY (CVE-2020-28974) - fork: fix copy_process(CLONE_PARENT) race with the exiting ->real_parent - USB: serial: cyberjack: fix write-URB completion race - USB: serial: option: add Quectel EC200T module support - USB: serial: option: add LE910Cx compositions 0x1203, 0x1230, 0x1231 - USB: serial: option: add Telit FN980 composition 0x1055 - USB: Add NO_LPM quirk for Kingston flash drive - PM: runtime: Resume the device earlier in __device_release_driver() - perf/core: Fix a memory leak in perf_event_parse_addr_filter() (CVE-2020-25704) - tools: perf: Fix build error in v4.19.y - [arm64,armhf] net: dsa: read mac address from DT for slave device - [arm64] dts: marvell: espressobin: Add ethernet switch aliases https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.157 - [x86] powercap: restrict energy meter to root access (CVE-2020-8694) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.158 - regulator: defer probe when trying to get voltage from unresolved supply - time: Prevent undefined behaviour in timespec64_to_ns() - nbd: don't update block size after device is started - [arm64,armhf] usb: dwc3: gadget: Continue to process pending requests - [arm64,armhf] usb: dwc3: gadget: Reclaim extra TRBs after request completion - btrfs: sysfs: init devices outside of the chunk_mutex - btrfs: reschedule when cloning lots of extents - [x86] hv_balloon: disable warning when floor reached - net: xfrm: fix a race condition during allocing spi - xfs: set xefi_discard when creating a deferred agfl free log intent item - netfilter: ipset: Update byte and packet counters regardless of whether they match - perf tools: Add missing swap for ino_generation - [x86] ALSA: hda: prevent undefined shift in snd_hdac_ext_bus_get_link() - can: rx-offload: don't call kfree_skb() from IRQ context - can: dev: can_get_echo_skb(): prevent call to kfree_skb() in hard IRQ context - can: dev: __can_get_echo_skb(): fix real payload length return value for RTR frames - can: can_create_echo_skb(): fix echo skb generation: always use skb_clone() - can: peak_usb: add range checking in decode operations - can: peak_usb: peak_usb_get_ts_time(): fix timestamp wrapping - can: peak_canfd: pucan_handle_can_rx(): fix echo management when loopback is on - [armhf] can: flexcan: remove FLEXCAN_QUIRK_DISABLE_MECR quirk for LS1021A - xfs: flush new eof page on truncate to avoid post-eof corruption - [arm64,x86] tpm: efi: Don't create binary_bios_measurements file for an empty log - Btrfs: fix missing error return if writeback for extent buffer never started - ath9k_htc: Use appropriate rs_datalen type - netfilter: use actual socket sk rather than skb sk when routing harder - gfs2: Free rd_bits later in gfs2_clear_rgrpd to fix use-after-free - gfs2: Add missing truncate_inode_pages_final for sd_aspace - gfs2: check for live vs. read-only file system in gfs2_fitrim - scsi: hpsa: Fix memory leak in hpsa_init_one() - drm/amdgpu: perform srbm soft reset always on SDMA resume - mac80211: fix use of skb payload instead of header - cfg80211: regulatory: Fix inconsistent format argument - scsi: scsi_dh_alua: Avoid crash during alua_bus_detach() - [s390x] smp: move rcu_cpu_starting() earlier - [x86] tpm_tis: Disable interrupts on ThinkPad T490s - tick/common: Touch watchdog in tick_unfreeze() on all CPUs - [x86] pinctrl: intel: Set default bias in case no particular value given - [armel,armhf] 9019/1: kprobes: Avoid fortify_panic() when copying optprobe template - nbd: fix a block_device refcount leak in nbd_release - xfs: fix flags argument to rmap lookup when converting shared file rmaps - xfs: fix rmap key and record comparison functions - lan743x: fix "BUG: invalid wait context" when setting rx mode - xfs: fix a missing unlock on error in xfs_fs_map_blocks - of/address: Fix of_node memory leak in of_dma_is_coherent - [i386] cosa: Add missing kfree in error path of cosa_write - perf: Fix get_recursion_context() - ext4: correctly report "not supported" for {usr,grp}jquota when !CONFIG_QUOTA - ext4: unlock xattr_sem properly in ext4_inline_data_truncate() - btrfs: dev-replace: fail mount if we don't have replace item with target device - [x86] thunderbolt: Fix memory leak if ida_simple_get() fails in enumerate_services() - [x86] thunderbolt: Add the missed ida_simple_remove() in ring_request_msix() - uio: Fix use-after-free in uio_unregister_device() - usb: cdc-acm: Add DISABLE_ECHO for Renesas USB Download mode - futex: Don't enable IRQs unconditionally in put_pi_state() - ocfs2: initialize ip_next_orphan - btrfs: fix potential overflow in cluster_pages_for_defrag on 32bit arch - selinux: Fix error return code in sel_ib_pkey_sid_slow() - gpio: pcie-idio-24: Fix irq mask when masking - gpio: pcie-idio-24: Fix IRQ Enable Register value - gpio: pcie-idio-24: Enable PEX8311 interrupts - don't dump the threads that had been already exiting when zapped. - [x86] drm/gma500: Fix out-of-bounds access to struct drm_device.vblank[] - pinctrl: amd: use higher precision for 512 RtcClk - pinctrl: amd: fix incorrect way to disable debounce filter - swiotlb: fix "x86: Don't panic if can not alloc buffer for swiotlb" - IPv6: Set SIT tunnel hard_header_len to zero - [s390x] net/af_iucv: fix null pointer dereference on shutdown - net: Update window_clamp if SOCK_RCVBUF is set - tipc: fix memory leak in tipc_topsrv_start() - vrf: Fix fast path output packet handling with async Netfilter rules - r8169: fix potential skb double free in an error path - random32: make prandom_u32() output unpredictable - [x86] speculation: Allow IBPB to be conditionally enabled on CPUs with always-on STIBP - perf/core: Fix race in the perf_mmap_close() function (CVE-2020-14351) - Revert "kernel/reboot.c: convert simple_strtoul to kstrtoint" - reboot: fix overflow parsing reboot cpu number - net: sch_generic: fix the missing new qdisc assignment bug - Convert trailing spaces and periods in path components https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.159 - [powerpc*] 64s: move some exception handlers out of line - [powerpc*] 64s: flush L1D on kernel entry (CVE-2020-4788) - [powerpc*] Add a framework for user access tracking - [powerpc*] Implement user_access_begin and friends - [powerpc*] Fix __clear_user() with KUAP enabled - [powerpc*] uaccess: Evaluate macro arguments once, before user access is allowed - [powerpc*] 64s: flush L1D after user accesses (CVE-2020-4788) - Revert "perf cs-etm: Move definition of 'traceid_list' global variable from header file" - Input: sunkbd - avoid use-after-free in teardown paths (CVE-2020-25669) - mac80211: always wind down STA state - can: proc: can_remove_proc(): silence remove_proc_entry warning - [x86] KVM: x86: clflushopt should be treated as a no-op by emulation - [arm64] ACPI: GED: fix -Wformat https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.160 - ah6: fix error return code in ah6_input() - atm: nicstar: Unmap DMA on send error - bnxt_en: read EEPROM A2h address using page 0 - devlink: Add missing genlmsg_cancel() in devlink_nl_sb_port_pool_fill() - inet_diag: Fix error path to cancel the meseage in inet_req_diag_fill() - lan743x: fix issue causing intermittent kernel log warnings - lan743x: prevent entire kernel HANG on open, for some platforms - net: b44: fix error return code in b44_init_one() - net: bridge: add missing counters to ndo_get_stats64 callback - [arm64,armhf] net: dsa: mv88e6xxx: Avoid VTU corruption on 6097 - net: Have netpoll bring-up DSA management interface - net/mlx4_core: Fix init_hca fields offset - page_frag: Recover from memory pressure - qed: fix error return code in qed_iwarp_ll2_start() - qlcnic: fix error return code in qlcnic_83xx_restart_hw() - sctp: change to hold/put transport for proto_unreach_timer - tcp: only postpone PROBE_RTT if RTT is < current min_rtt estimate - [arm64,armhf] net/mlx5: Disable QoS when min_rates on all VFs are zero - net: usb: qmi_wwan: Set DTR quirk for MR400 - [arm64,armhf] pinctrl: rockchip: enable gpio pclk for rockchip_gpio_to_irq - scsi: ufs: Fix unbalanced scsi_block_reqs_cnt caused by ufshcd_hold() - [x86] ACPI: button: Add DMI quirk for Medion Akoya E2228T - [arm64] psci: Avoid printing in cpu_psci_cpu_die() - vfs: remove lockdep bogosity in __sb_start_write - [arm64] dts: allwinner: a64: Pine64 Plus: Fix ethernet node - [arm64] dts: allwinner: h5: OrangePi PC2: Fix ethernet node - [armhf] dts: sun8i: r40: bananapi-m2-ultra: Fix ethernet node - [armhf] Revert "arm: sun8i: orangepi-pc-plus: Set EMAC activity LEDs to active high" - [armhf] dts: sun8i: h3: orangepi-plus2e: Enable RGMII RX/TX delay on Ethernet PHY - [armhf] dts: sun8i: a83t: Enable both RGMII RX/TX delay on Ethernet PHY - [arm64] dts: allwinner: a64: bananapi-m64: Enable RGMII RX/TX delay on PHY - [mips*] export has_transparent_hugepage() for modules - [arm64] dts: allwinner: h5: OrangePi Prime: Fix ethernet node - perf lock: Don't free "lock_seq_stat" if read_count isn't zero - ip_tunnels: Set tunnel option flag when tunnel metadata is present - can: af_can: prevent potential access of uninitialized member in can_rcv() - can: af_can: prevent potential access of uninitialized member in canfd_rcv() - can: dev: can_restart(): post buffer from the right context - can: mcba_usb: mcba_usb_start_xmit(): first fill skb, then pass to can_put_echo_skb() - can: peak_usb: fix potential integer overflow on shift of a int - [arm64] ASoC: qcom: lpass-platform: Fix memory leak - [arm64,armhf] drm/sun4i: dw-hdmi: fix error return code in sun8i_dw_hdmi_bind() - can: kvaser_usb: kvaser_usb_hydra: Fix KCAN bittiming limits - [armhf] regulator: ti-abb: Fix array out of bound read access on the first transition - xfs: revert "xfs: fix rmap key and record comparison functions" - [amd64] efi/x86: Free efi_pgd with free_pages() - libfs: fix error cast of negative value in simple_attr_write() - speakup: Do not let the line discipline be used several times (CVE-2020-28941) - ALSA: firewire: Clean up a locking issue in copy_resp_to_buf() - ALSA: usb-audio: Add delay quirk for all Logitech USB devices - ALSA: ctl: fix error path at adding user-defined element set - ALSA: mixart: Fix mutex deadlock - ALSA: hda/realtek: Add some Clove SSID in the ALC293(ALC1220) - [armhf] tty: serial: imx: keep console clocks always on - [arm64,armhf,x86] efivarfs: fix memory leak in efivarfs_create() - [arm64,x86] staging: rtl8723bs: Add 024c:0627 to the list of SDIO device-ids - ext4: fix bogus warning in ext4_update_dx_flag() - [x86] iio: accel: kxcjk1013: Replace is_smo8500_device with an acpi_type enum - [x86] iio: accel: kxcjk1013: Add support for KIOX010A ACPI DSM for setting tablet-mode - [armhf] regulator: pfuze100: limit pfuze-support-disable-sw to pfuze{100,200} - regulator: fix memory leak with repeated set_machine_constraints() - regulator: avoid resolve_supply() infinite recursion - regulator: workaround self-referent regulators - mac80211: minstrel: remove deferred sampling code - mac80211: minstrel: fix tx status processing corner case - mac80211: free sta in sta_info_insert_finish() on errors - [s390x] cpum_sf.c: fix file permission for cpum_sfb_size - [s390x] dasd: fix null pointer dereference for ERP requests - ptrace: Set PF_SUPERPRIV when checking capability - seccomp: Set PF_SUPERPRIV when checking capability - [x86] microcode/intel: Check patch signature before saving microcode for early loading - mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() . [ Salvatore Bonaccorso ] * net: Enable NET_SWITCHDEV; disable on armel/marvell (Closes: #949863) * Bump ABI to 13 * [rt] Update to 4.19.152-rt65 * [rt] Refresh "mm: Protect activate_mm() by preempt_[disable&enable]_rt()" * [rt] Refresh "kthread: convert worker lock to raw spinlock" * [rt] Refresh "signals: Allow rt tasks to cache one sigqueue struct" * [rt] Refresh "tpm_tis: fix stall after iowrite*()s" * [rt] Refresh "futex: Delay deallocation of pi_state" * [rt] Refresh "futex: Make the futex_hash_bucket spinlock_t again" * [rt] Update to 4.19.152-rt66 - mm/memcontrol: Disable preemption in __mod_memcg_lruvec_state() - ptrace: fix ptrace_unfreeze_traced() race with rt-lock * [rt] Update to 4.19.160-rt69 . [ Noah Meyerhans ] * Backport upstream fix for PCI bridge firmware configuration preservation (Closes: #968623) . [ John L. Villalovos ] * Backport support for USB Host Controllers with local memory to avoid crashes. In particular the Renesas USB 3.0 controller (PD720201/PD720202) which is used on the Ampere's Mt Jade platform which is part of their Altra product line: - lib/genalloc: add gen_pool_dma_zalloc() for zeroed DMA allocations - USB: use genalloc for USB HCs with local memory - USB: drop HCD_LOCAL_MEM flag - usb: don't create dma pools for HCDs with a localmem_pool - usb: add a hcd_uses_dma helper - usb: host: ohci-sm501: init genalloc for local memory - usb/hcd: Fix a NULL vs IS_ERR() bug in usb_hcd_setup_local_mem() * [arm64] config/arm64/config: Set NODES_SHIFT to 4 . [ Yves-Alexis Perez ] * usbnet: ipheth: fix connectivity with iOS 14 linux-signed-i386 (4.19.152+1) buster-security; urgency=high . * Sign kernel from linux 4.19.152-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.147 - [arm64,armhf] dsa: Allow forwarding of redirected IGMP traffic - scsi: qla2xxx: Update rscn_rcvd field to more meaningful scan_needed - scsi: qla2xxx: Move rport registration out of internal work_list - scsi: qla2xxx: Reduce holding sess_lock to prevent CPU lock-up - net: handle the return value of pskb_carve_frag_list() correctly - [x86] hv_netvsc: Remove "unlikely" from netvsc_select_queue - NFSv4.1 handle ERR_DELAY error reclaiming locking state on delegation recall - scsi: pm8001: Fix memleak in pm8001_exec_internal_task_abort - scsi: libfc: Fix for double free() - scsi: lpfc: Fix FLOGI/PLOGI receive race condition in pt2pt discovery - [arm64] regulator: pwm: Fix machine constraints application - NFS: Zero-stateid SETATTR should first return delegation - SUNRPC: stop printk reading past end of string - nvme-fc: cancel async events before freeing event struct - nvme-rdma: cancel async events before freeing event struct - f2fs: fix indefinite loop scanning for free nid - f2fs: Return EOF on unaligned end of file DIO read - i2c: algo: pca: Reapply i2c bus settings after reset - spi: Fix memory leak on splited transfers - [arm64,armhf] clk: rockchip: Fix initialization of mux_pll_src_4plls_p - [arm64] ASoC: qcom: Set card->owner to avoid warnings - [x86] Drivers: hv: vmbus: Add timeout to vmbus_wait_for_unload - fbcon: Fix user font detection test at fbcon_resize(). - USB: quirks: Add USB_QUIRK_IGNORE_REMOTE_WAKEUP quirk for BYD zhaoxin notebook - USB: UAS: fix disconnect by unplugging a hub - usblp: fix race between disconnect() and read() - [x86] i2c: i801: Fix resume bug - Revert "ALSA: hda - Fix silent audio output and corrupted input on MSI X570-A PRO" - percpu: fix first chunk size calculation for populated bitmap - Input: trackpoint - add new trackpoint variant IDs - serial: 8250_pci: Add Realtek 816a and 816b - ehci-hcd: Move include to keep CRC stable - [powerpc*] dma: Fix dma_map_ops::get_required_mask https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.148 - af_key: pfkey_dump needs parameter validation - KVM: fix memory leak in kvm_io_bus_unregister_dev() - kprobes: fix kill kprobe which has been marked as gone - mm/thp: fix __split_huge_pmd_locked() for migration PMD - cxgb4: Fix offset when clearing filter byte counters - geneve: add transport ports in route lookup for geneve (CVE-2020-25645) - [x86,ppc64el] hdlc_ppp: add range checks in ppp_cp_parse_cr() (CVE-2020-25643) - ip: fix tos reflection in ack and reset packets - ipv6: avoid lockdep issue in fib6_del() - net: DCB: Validate DCB_ATTR_DCB_BUFFER argument - net: ipv6: fix kconfig dependency warning for IPV6_SEG6_HMAC - net: sch_generic: aviod concurrent reset and enqueue op for lockless qdisc - nfp: use correct define to return NONE fec - tipc: Fix memory leak in tipc_group_create_member() - tipc: fix shutdown() of connection oriented socket - tipc: use skb_unshare() instead in tipc_buf_append() - bnxt_en: return proper error codes in bnxt_show_temp - bnxt_en: Protect bnxt_set_eee() and bnxt_set_pauseparam() with mutex. - net: phy: Avoid NPD upon phy_detach() when driver is unbound - net: add __must_check to skb_put_padto() - ipv4: Update exception handling for multipath routes via same device - kbuild: add OBJSIZE variable for the size tool - mm: memcg: fix memcg reclaim soft lockup - tcp_bbr: refactor bbr_target_cwnd() for general inflight provisioning - tcp_bbr: adapt cwnd based on ack aggregation estimation - serial: 8250: Avoid error message on reprobe https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.149 - selinux: allow labeling before policy is loaded - media: mc-device.c: fix memleak in media_device_register_entity - dma-fence: Serialise signal enabling (dma_fence_enable_sw_signaling) - ath10k: fix array out-of-bounds access - ath10k: fix memory leak for tpc_stats_final - mm: fix double page fault on arm64 if PTE_AF is cleared - scsi: aacraid: fix illegal IO beyond last LBA - [x86] gma/gma500: fix a memory disclosure bug due to uninitialized bytes - [armel,armhf] ASoC: kirkwood: fix IRQ error handling - [amd64] arch/x86/lib/usercopy_64.c: fix __copy_user_flushcache() cache writeback - [x86] ioapic: Unbreak check_timer() - ALSA: usb-audio: Add delay quirk for H570e USB headsets - ALSA: hda/realtek - Couldn't detect Mic if booting with headset plugged - ALSA: hda/realtek: Enable front panel headset LED on Lenovo ThinkStation P520 - lib/string.c: implement stpcpy - [armhf] PM / devfreq: tegra30: Fix integer overflow on CPU's freq max out - [x86] scsi: fnic: fix use after free - scsi: lpfc: Fix kernel crash at lpfc_nvme_info_show during remote port bounce - net: silence data-races on sk_backlog.tail - [armhf] clk/ti/adpll: allocate room for terminating null - mtd: cfi_cmdset_0002: don't free cfi->cfiq in error path of cfi_amdstd_setup() - mfd: mfd-core: Protect against NULL call-back function pointer - [x86] tpm_crb: fix fTPM on AMD Zen+ CPUs - tracing: Adding NULL checks for trace_array descriptor pointer - bcache: fix a lost wake-up problem caused by mca_cannibalize_lock - RDMA/qedr: Fix potential use after free - RDMA/i40iw: Fix potential use after free - fix dget_parent() fastpath race - xfs: fix attr leaf header freemap.size underflow - RDMA/iw_cgxb4: Fix an error handling path in 'c4iw_connect()' - ubi: Fix producing anchor PEBs - mmc: core: Fix size overflow for mmc partitions - gfs2: clean up iopen glock mess in gfs2_create_inode - scsi: pm80xx: Cleanup command when a reset times out - CIFS: Properly process SMB3 lease breaks - ASoC: max98090: remove msleep in PLL unlocked workaround - kernel/sys.c: avoid copying possible padding bytes in copy_to_user - [arm64,armhf] KVM: vgic: Fix potential double free dist->spis in __kvm_vgic_destroy() - xfs: fix log reservation overflows when allocating large rt extents - neigh_stat_seq_next() should increase position index - rt_cpu_seq_next should increase position index - ipv6_route_seq_next should increase position index - seqlock: Require WRITE_ONCE surrounding raw_seqcount_barrier - sctp: move trace_sctp_probe_path into sctp_outq_sack - [arm64,x86] ACPI: EC: Reference count query handlers under lock - scsi: ufs: Make ufshcd_add_command_trace() easier to read - scsi: ufs: Fix a race condition in the tracing code - [s390x] /cpum_sf: Use kzalloc and minor changes - [powerpc*] eeh: Only dump stack once if an MMIO loop is detected - Bluetooth: btrtl: Use kvmalloc for FW allocations - [armel,armhf] ARM: 8948/1: Prevent OOB access in stacktrace - ar5523: Add USB ID of SMCWUSBT-G2 wireless adapter - ceph: ensure we have a new cap before continuing in fill_inode - Bluetooth: Fix refcount use-after-free issue - mm/swapfile.c: swap_next should increase position index - mm: pagewalk: fix termination condition in walk_pte_range() - Bluetooth: prefetch channel before killing sock - KVM: fix overflow of zero page refcount with ksm running - ALSA: hda: Clear RIRB status before reading WP - skbuff: fix a data race in skb_queue_len() - audit: CONFIG_CHANGE don't log internal bookkeeping as an event - selinux: sel_avc_get_stat_idx should increase position index - scsi: lpfc: Fix RQ buffer leakage when no IOCBs available - scsi: lpfc: Fix coverity errors in fmdi attribute handling - [armhf] drm/omap: fix possible object reference leak - crypto: chelsio - This fixes the kernel panic which occurs during a libkcapi test - mt76: clear skb pointers from rx aggregation reorder buffer during cleanup - ALSA: usb-audio: Don't create a mixer element with bogus volume range - [s390x] perf test: Fix test trace+probe_vfs_getname.sh on s390 - RDMA/rxe: Fix configuration of atomic queue pair attributes - [x86] KVM: x86: fix incorrect comparison in trace event - [x86] pkeys: Add check for pkey "overflow" - bpf: Remove recursion prevention from rcu free callback - [arm64,armhf] dmaengine: tegra-apb: Prevent race conditions on channel's freeing - random: fix data races at timer_rand_state - [arm64] bus: hisi_lpc: Fixup IO ports addresses to avoid use-after-free in host removal - media: go7007: Fix URB type for interrupt handling - Bluetooth: guard against controllers sending zero'd events - timekeeping: Prevent 32bit truncation in scale64_check_overflow() - ext4: fix a data race at inode->i_disksize - mm: avoid data corruption on CoW fault into PFN-mapped VMA - drm/amdgpu: increase atombios cmd timeout - ath10k: use kzalloc to read for ath10k_sdio_hif_diag_read - scsi: aacraid: Disabling TM path and only processing IOP reset - Bluetooth: L2CAP: handle l2cap config request during open state - media: tda10071: fix unsigned sign extension overflow - xfs: don't ever return a stale pointer from __xfs_dir3_free_read - xfs: mark dir corrupt when lookup-by-hash fails - ext4: mark block bitmap corrupted when found instead of BUGON - nfsd: Don't add locks to closed or closing open stateids - RDMA/cm: Remove a race freeing timewait_info - [powerpc*] KVM: PPC: Book3S HV: Treat TM-related invalid form instructions on P9 like the valid ones - [arm64] drm/msm: fix leaks if initialization fails - [arm64] drm/msm/a5xx: Always set an OPP supported hardware value - serial: 8250_port: Don't service RX FIFO if throttled - [powerpc*] cpufreq: powernv: Fix frame-size-overflow in powernv_cpufreq_work_fn - nvme-multipath: do not reset on unknown status - nvme: Fix controller creation races with teardown flow - RDMA/rxe: Set sys_image_guid to be aligned with HW IB devices - scsi: hpsa: correct race condition in offload enabled - SUNRPC: Fix a potential buffer overflow in 'svc_print_xprts()' - svcrdma: Fix leak of transport addresses - PCI: Use ioremap(), not phys_to_virt() for platform ROM - ubifs: Fix out-of-bounds memory access caused by abnormal value of node_len - ALSA: usb-audio: Fix case when USB MIDI interface has more than one extra endpoint descriptor - PCI: pciehp: Fix MSI interrupt race - NFS: Fix races nfs_page_group_destroy() vs nfs_destroy_unlinked_subrequests() - mm/kmemleak.c: use address-of operator on section symbols - mm/filemap.c: clear page error before actual read - mm/vmscan.c: fix data races using kswapd_classzone_idx - nvmet-rdma: fix double free of rdma queue - mm/mmap.c: initialize align_offset explicitly for vm_unmapped_area - scsi: qedi: Fix termination timeouts in session logout - [arm64] serial: uartps: Wait for tx_empty in console setup - [x86] KVM: Remove CREATE_IRQCHIP/SET_PIT2 race - bdev: Reduce time holding bd_mutex in sync in blkdev_close() - [x86] drivers: char: tlclk.c: Avoid data race between init and interrupt handler - [arm64] KVM: vgic-its: Fix memory leak on the error path of vgic_add_lpi() - net: openvswitch: use u64 for meter bucket - scsi: aacraid: Fix error handling paths in aac_probe_one() - staging:r8188eu: avoid skb_clone for amsdu to msdu conversion - [arm64] cpufeature: Relax checks for AArch32 support at EL[0-2] - dt-bindings: sound: wm8994: Correct required supplies based on actual implementaion - atm: fix a memory leak of vcc->user_back - Bluetooth: Handle Inquiry Cancel error after Inquiry Complete - tipc: fix memory leak in service subscripting - [armhf] tty: serial: samsung: Correct clock selection logic - ALSA: hda: Fix potential race in unsol event handler - [powerpc*] traps: Make unrecoverable NMIs die instead of panic - fuse: don't check refcount after stealing page - [powerpc*] scsi: cxlflash: Fix error return code in cxlflash_probe() - [arm64] cpufeature: Drop TraceFilt feature exposure from ID_DFR0 register - e1000: Do not perform reset in reset_task if we are already down - drm/nouveau/debugfs: fix runtime pm imbalance on error - drm/nouveau: fix runtime pm imbalance on error - drm/nouveau/dispnv50: fix runtime pm imbalance on error - printk: handle blank console arguments passed in. - [arm64,armhf] usb: dwc3: Increase timeout for CmdAct cleared by device controller - btrfs: don't force read-only after error in drop snapshot - vfio/pci: fix memory leaks of eventfd ctx - perf trace: Fix the selection for architectures to generate the errno name tables - [arm64,armhf] wlcore: fix runtime pm imbalance in wl1271_tx_work - [arm64,armhf] wlcore: fix runtime pm imbalance in wlcore_regdomain_config - [arm64,armhf] PCI: tegra: Fix runtime PM imbalance on error - ceph: fix potential race in ceph_check_caps - mm/swap_state: fix a data race in swapin_nr_pages - [armel] mtd: parser: cmdline: Support MTD names containing one or more colons - [x86] speculation/mds: Mark mds_user_clear_cpu_buffers() __always_inline - vfio/pci: Clear error and request eventfd ctx after releasing - cifs: Fix double add page to memcg when cifs_readpages - nvme: fix possible deadlock when I/O is blocked - scsi: libfc: Handling of extra kref - scsi: libfc: Skip additional kref updating work event - vfio/pci: fix racy on error and request eventfd ctx - btrfs: qgroup: fix data leak caused by race between writeback and truncate - net: openvswitch: use div_u64() for 64-by-32 divisions - nvme: explicitly update mpath disk capacity on revalidation - [x86] ASoC: Intel: bytcr_rt5640: Add quirk for MPMAN Converter9 2-in-1 - [s390x] init: add missing __init annotations - lockdep: fix order in trace_hardirqs_off_caller() - [amd64] drm/amdkfd: fix a memory leak issue - i2c: core: Call i2c_acpi_install_space_handler() before i2c_acpi_register_devices() - mwifiex: Increase AES key storage size to 256 bits - batman-adv: bla: fix type misuse for backbone_gw hash indexing - atm: eni: fix the missed pci_disable_device() for eni_init_one() - batman-adv: mcast/TT: fix wrongly dropped or rerouted packets - mac802154: tx: fix use-after-free - bpf: Fix clobbering of r2 in bpf_gen_ld_abs - [arm*] drm/vc4/vc4_hdmi: fill ASoC card owner - net: qed: RDMA personality shouldn't fail VF load - batman-adv: Add missing include for in_interrupt() - batman-adv: mcast: fix duplicate mcast packets in BLA backbone from mesh - batman-adv: mcast: fix duplicate mcast packets from BLA backbone to mesh - bpf: Fix a rcu warning for bpffs map pretty-print - [x86] ALSA: asihpi: fix iounmap in error handler - regmap: fix page selection for noinc reads - [x86] KVM: Reset MMU context if guest toggles CR4.SMAP or CR4.PKE - [x86] KVM: SVM: Add a dedicated INVD intercept routine - tracing: fix double free - [s390x] dasd: Fix zero write for FBA devices - kprobes: Fix to check probe enabled before disarm_kprobe_ftrace() - mm, THP, swap: fix allocating cluster for swapfile by mistake - [s390x] zcrypt: Fix ZCRYPT_PERDEV_REQCNT ioctl - ata: define AC_ERR_OK - ata: make qc_prep return ata_completion_errors - ata: sata_mv, avoid trigerrable BUG_ON - [arm64] KVM: Assume write fault on S1PTW permission fault on instruction fetch https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.150 - mmc: sdhci: Workaround broken command queuing on Intel GLK based IRBIS models - USB: gadget: f_ncm: Fix NDP16 datagram validation - vsock/virtio: use RCU to avoid use-after-free on the_virtio_vsock - vsock/virtio: stop workers during the .remove() - vsock/virtio: add transport parameter to the virtio_transport_reset_no_sock() - net: virtio_vsock: Enhance connection semantics - Input: i8042 - add nopnp quirk for Acer Aspire 5 A515 - ftrace: Move RCU is watching check after recursion check - drm/amdgpu: restore proper ref count in amdgpu_display_crtc_set_config - drivers/net/wan/hdlc_fr: Add needed_headroom for PVC devices - [armhf] drm/sun4i: mixer: Extend regmap max_register - net: dec: de2104x: Increase receive ring size for Tulip - rndis_host: increase sleep time in the query-response loop - nvme-core: get/put ctrl and transport module in nvme_dev_open/release() - [x86,ppc64el] drivers/net/wan/hdlc: Set skb->protocol before transmitting - mac80211: do not allow bigger VHT MPDUs than the hardware supports - nvme-fc: fail new connections to a deleted host or remote port - [armhf] pinctrl: mvebu: Fix i2c sda definition for 98DX3236 - nfs: Fix security label length not being reset - [armhf] clk: samsung: exynos4: mark 'chipid' clock as CLK_IGNORE_UNUSED - Input: trackpoint - enable Synaptics trackpoints - random32: Restore __latent_entropy attribute on net_rand_state - mm: replace memmap_context by meminit_context - mm: don't rely on system state to detect hot-plug operations - epoll: do not insert into poll queues until all sanity checks are done - epoll: replace ->visited/visited_list with generation count - epoll: EPOLL_CTL_ADD: close the race in decision to take fast path - ep_create_wakeup_source(): dentry name can change under you... - netfilter: ctnetlink: add a range check for l3/l4 protonum (CVE-2020-25211) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.151 - fbdev, newport_con: Move FONT_EXTRA_WORDS macros into linux/font.h - Fonts: Support FONT_EXTRA_WORDS macros for built-in fonts - fbcon: Fix global-out-of-bounds read in fbcon_get_font() - net: wireless: nl80211: fix out-of-bounds access in nl80211_del_key() - drm/nouveau/mem: guard against NULL pointer access in mem_del - usermodehelper: reset umask to default before executing user process - [x86] platform/x86: intel-vbtn: Fix SW_TABLET_MODE always reporting 1 on the HP Pavilion 11 x360 - [x86] platform/x86: thinkpad_acpi: initialize tp_nvram_state variable - [x86] platform/x86: intel-vbtn: Switch to an allow-list for SW_TABLET_MODE reporting - [x86] platform/x86: thinkpad_acpi: re-initialize ACPI buffer size when reuse - driver core: Fix probe_count imbalance in really_probe() - [x86] i2c: i801: Exclude device from suspend direct complete optimization - [armhf] mtd: rawnand: sunxi: Fix the probe error path - nvme-core: put ctrl ref when module ref get fail - macsec: avoid use-after-free in macsec_handle_frame() - mm/khugepaged: fix filemap page_to_pgoff(page) != offset - xfrmi: drop ignore_df check before updating pmtu - cifs: Fix incomplete memory allocation on setxattr path - [arm64,armhf] i2c: meson: fix clock setting overwrite - [arm64,armhf] i2c: meson: fixup rate calculation with filter delay - sctp: fix sctp_auth_init_hmacs() error path - team: set dev->needed_headroom in team_setup_by_port() - net: team: fix memory leak in __team_options_register - openvswitch: handle DNAT tuple collision - drm/amdgpu: prevent double kfree ttm->sg - xfrm: clone XFRMA_SET_MARK in xfrm_do_migrate - xfrm: clone XFRMA_REPLAY_ESN_VAL in xfrm_do_migrate - xfrm: clone XFRMA_SEC_CTX in xfrm_do_migrate - xfrm: clone whole liftime_cur structure in xfrm_do_migrate - [arm64,armhf] net: stmmac: removed enabling eee in EEE set callback - xfrm: Use correct address family in xfrm_state_find - bonding: set dev->needed_headroom in bond_setup_by_slave() - net: usb: ax88179_178a: fix missing stop entry in driver_info - net/mlx5e: Fix VLAN cleanup flow - net/mlx5e: Fix VLAN create flow - rxrpc: Fix rxkad token xdr encoding - rxrpc: Downgrade the BUG() for unsupported token type in rxrpc_read() - rxrpc: Fix some missing _bh annotations on locking conn->state_lock - rxrpc: Fix server keyring leak - perf: Fix task_function_call() error handling - mmc: core: don't set limits.discard_granularity as 0 - mm: khugepaged: recalculate min_free_kbytes after memory hotplug as expected by khugepaged - net: usb: rtl8150: set random MAC address when set_ethernet_addr() fails https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.152 - Bluetooth: A2MP: Fix not initializing all members (CVE-2020-12352) - Bluetooth: L2CAP: Fix calling sk_filter on non-socket based channel (CVE-2020-12351) - Bluetooth: MGMT: Fix not checking if BT_HS is enabled - Bluetooth: Consolidate encryption handling in hci_encrypt_cfm - Bluetooth: Fix update of connection state in `hci_encrypt_cfm` - Bluetooth: Disconnect if E0 is used for Level 4 - media: usbtv: Fix refcounting mixup - USB: serial: option: add Cellient MPL200 card - USB: serial: option: Add Telit FT980-KS composition - [x86] staging: comedi: check validity of wMaxPacketSize of usb endpoints found - USB: serial: pl2303: add device-id for HP GC device - USB: serial: ftdi_sio: add support for FreeCalypso JTAG+UART adapters - reiserfs: Initialize inode keys properly - reiserfs: Fix oops during mount - [arm*] drivers/net/ethernet/marvell/mvmdio.c: Fix non OF case (Closes: #908712) - [x86] crypto: qat - check cipher length for aead AES-CBC-HMAC-SHA . [ Salvatore Bonaccorso ] * [rt] Update to 4.19.148-rt64 * Bump ABI to 12 * Revert "perf cs-etm: Move definition of 'traceid_list' global variable from header file" lmod (6.6-0.3+deb10u1) buster; urgency=medium . * Change Architecture: to any. Closes: #951508 This is required because lmod now gets LUA_PATH and LUA_CPATH at compile time (to deal with users overriding those variables). See https://github.com/TACC/Lmod/issues/112 There was an upstream report that this breaks Raspian, which was rejected, so it is unlikely that upstream will return to the current behaviour. See https://github.com/TACC/Lmod/issues/338 Thanks to Baptiste Jonglez for finding the relevant upstream bug reports. The same change was just uploaded as an NMU to unstable (in 6.6-0.4). mariadb-10.3 (1:10.3.27-0+deb10u1) buster; urgency=medium . * New upstream version 10.3.27. Includes fixes to serious regressions in MariaDB 10.3.26 that corrupted data or made server unable to start. * SECURITY UPDATE: Includes new upstream 10.3.26 which included fixes for the following security vulnerabilities: - CVE-2020-28912 - CVE-2020-14812 - CVE-2020-14789 - CVE-2020-14776 - CVE-2020-14765 * Upstream 10.3.26 included: - Fix mytop shebang (Closes: #972780, Closes: #970681) * Remove 3 patches applied upstream. mariadb-10.3 (1:10.3.25-0+deb10u1) buster-security; urgency=high . * SECURITY UPDATE: New upstream version 10.3.25. Includes fixes for the following security vulnerabilities: - CVE-2020-15180 * Salsa-CI: Update to be compatible with latest master/salsa-ci.yml mariadb-10.3 (1:10.3.24-2) unstable; urgency=medium . * Include MariaDB client plugin caching_sha2_password * Fix Perl script segfaults by backporting patch (Closes: #966633) mariadb-10.3 (1:10.3.24-1) unstable; urgency=medium . [ Otto Kekäläinen ] * New upstream version 10.3.24 - Drop kFreeBSD, Risv64 and ZSTD patches applied upstream * Remove redundant patterns from d/copyright * Includes permanent upstream fixes to get RocksDB built on riscv64 (Closes: #933151, Closes: LP#1876814) . [ Andrius Merkys ] * Fix a pair of typos in apparmor-profile mariadb-10.3 (1:10.3.23-1) unstable; urgency=medium . [ Otto Kekäläinen ] * SECURITY UPDATE: New upstream version 10.3.23. Includes fixes for the following security vulnerabilities (Closes: #961849): - CVE-2020-2752 - CVE-2020-2760 - CVE-2020-2812 - CVE-2020-2814 - CVE-2020-13249 - Includes fix for MDEV-21586: Server does not start if lc_messages setting was not English (Closes: #951059) - Backport packaging improvements from MariaDB 10.4: - Fix RocksDB build failure on arch riscv64 - Amend changelog with #951059 reference - Properly use DH_ and DEB_ flag in d/rules - Detect MySQL 8.0 based on undo_001 file as *.flag is buggy in mysql-8.0 - Make mariadb-client-10.4 Recommends libdbd-mariadb-perl as primary option - Update package to use debhelper level 10 - Delete pam_mariadb_mtr.so test plugin from build completely - Fix minor typos in docs and in-line comments - Sync server stopping logic from MariaDB 10.4 preinst/postinst/postrm - Sync AppArmor profile handling from MariaDB 10.4 - Sync non-functional delta from upstream 10.4 - Simplify autopkgtest 'smoke' to be easier to debug . [ Christian Ehrhardt ] * Fix RocksDB build failure on arch riscv64 mediawiki (1:1.31.10-1~deb10u1) buster-security; urgency=medium . * New upstream version 1.31.10, fixing CVE-2020-15005, CVE-2020-25812, CVE-2020-25813, CVE-2020-25814, CVE-2020-25827, CVE-2020-25828. CVE-2020-25689 does not affect this package, it requires an additional extension. * Additionally, mitigations for firejail's CVE-2020-17367, CVE-2020-17368 are included as well. mediawiki (1:1.31.8-1) unstable; urgency=medium . * New upstream version 1.31.8, fixing CVE-2020-15005. * Use debhelper 12 and dh_installsystemd. mediawiki (1:1.31.7-1) unstable; urgency=medium . * New upstream version 1.31.7, fixing CVE-2020-10960. CVE-2020-10960 does not affect this version of MediaWiki. * A hardening fix was included for the OATHAuth extension to limit access of user-controlled JavaScript. * Standards-Version: 4.5.0, no changes needed moin (1.9.9-1+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * security: fix stored XSS vulnerability via SVG attachment (CVE-2020-15275) * security: fix remote code execution via cache action (CVE-2020-25074) * Tweak Debian version used to 1.9.9-1+deb10u1 to avoid possible version clash with lower suite. mupdf (1.14.0+ds1-4+deb10u2) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Detect/avoid overflow when calculating sizes of pixmaps (CVE-2020-26519) (Closes: #971595) mutt (1.10.1-2.1+deb10u4) buster; urgency=medium . * debian/patches: + fix for CVE-2020-28896 located in security/CVE-2020-28896.patch. neomutt (20180716+dfsg.1-1+deb10u2) buster; urgency=medium . * debian/patches: + security/CVE-2020-28896.patch: handle the relevant CVE to stop sending login information over an encrypted connections in certain conditions. node-object-path (0.11.4-2+deb10u1) buster; urgency=medium . * Team upload * Fix prototype pollution in set() (Closes: CVE-2020-15256) node-pathval (1.1.0-3+deb10u1) buster; urgency=medium . * Fix prototype pollution (Closes: #972895, CVE-2020-7751) okular (4:17.12.2-2.2+deb10u1) buster; urgency=medium . * CVE-2020-9359 (Closes: #954891) openjdk-11 (11.0.9.1+1-1~deb10u2) buster; urgency=medium . * Rebuild for Buster (Closes: #975728) * Disable tests for this upload. openjdk-11 (11.0.9.1+1-1~deb10u1) buster; urgency=medium . * Rebuild for Buster (Closes: #975728) openjdk-11 (11.0.9+11-1) unstable; urgency=medium . * OpenJDK 11.0.9+11 build (release). * Security fixes: - JDK-8233624: Enhance JNI linkage - JDK-8236196: Improve string pooling - JDK-8236862, CVE-2020-14779: Enhance support of Proxy class - JDK-8237990, CVE-2020-14781: Enhanced LDAP contexts - JDK-8237995, CVE-2020-14782: Enhance certificate processing - JDK-8240124: Better VM Interning - JDK-8241114, CVE-2020-14792: Better range handling - JDK-8242680, CVE-2020-14796: Improved URI Support - JDK-8242685, CVE-2020-14797: Better Path Validation - JDK-8242695, CVE-2020-14798: Enhanced buffer support - JDK-8243302: Advanced class supports - JDK-8244136, CVE-2020-14803: Improved Buffer supports - JDK-8244479: Further constrain certificates - JDK-8244955: Additional Fix for JDK-8240124 - JDK-8245407: Enhance zoning of times - JDK-8245412: Better class definitions - JDK-8245417: Improve certificate chain handling - JDK-8248574: Improve jpeg processing - JDK-8249927: Specify limits of jdk.serialProxyInterfaceLimit - JDK-8253019: Enhanced JPEG decoding . [ Tiago Stürmer Daitx ] * debian/rules: - copy apport hook to source_$(PKGSOURCE).py, fixes apport on Ubuntu where source name is openjdk-lts instead of openjdk-11. * Refresh patches. . [ Matthias Klose ] * Don't run the jdk tests as an autopkg test, taking too long. * Call strip-nondeterminism before computing jmod hashes (Julian Gilbey). Closes: #944738. * Build with GCC 10 in current development versions. Closes: #972288. openjdk-11 (11.0.9+11-1~deb10u1) buster-security; urgency=medium . * Rebuild for Buster openjdk-11 (11.0.8+10-1.1) unstable; urgency=medium . * Non-maintainer upload. * Apply patch to strip nondeterminism before computing jmod hash. Thank you to Julian Gilbey for the patch. (Closes: #944738) Add Build-Depends on strip-nondeterminism. openjdk-11 (11.0.8+10-1) unstable; urgency=high . * OpenJDK 11.0.8+10 build (release). * Security fixes: - JDK-8233239, CVE-2020-14562: Enhance TIFF support - JDK-8236867, CVE-2020-14573: Enhance Graal interface handling - JDK-8237117, CVE-2020-14556: Better ForkJoinPool behavior - JDK-8237592, CVE-2020-14577: Enhance certificate verification - JDK-8238002, CVE-2020-14581: Better matrix operations - JDK-8238920, CVE-2020-14583: Better Buffer support - JDK-8240119, CVE-2020-14593: Less Affine Transformations - JDK-8242136, CVE-2020-14621: Better XML namespace handling - JDK-8230613: Better ASCII conversions - JDK-8231800: Better listing of arrays - JDK-8232014: Expand DTD support - JDK-8233234: Better Zip Naming - JDK-8233255: Better Swing Buttons - JDK-8234032: Improve basic calendar services - JDK-8234042: Better factory production of certificates - JDK-8234418: Better parsing with CertificateFactory - JDK-8234836: Improve serialization handling - JDK-8236191: Enhance OID processing - JDK-8238013: Enhance String writing - JDK-8238804: Enhance key handling process - JDK-8238842: AIOOBE in GIFImageReader.initializeStringTable - JDK-8238843: Enhanced font handing - JDK-8238925: Enhance WAV file playback - JDK-8240482: Improved WAV file playback - JDK-8241379: Update JCEKS support - JDK-8241522: Manifest improved jar headers redux . [ Tiago Stürmer Daitx ] * d/p/default-jvm-cfg.diff: updated patch. * d/p/8214571.diff, d/p/8228407.diff: applied by upstream, removed patches. . [ Matthias Klose ] * Don't try to run autopkg tests on armel, mipsel, mips64el. * debian/copyright (remove licenses not found anymore in the sources): - Little CMS, libpng, GIFLIB. * Prepare to Build using GCC 10. openldap (2.4.47+dfsg-3+deb10u4) buster-security; urgency=high . * Fix slapd abort due to assertion failure in Certificate List syntax validation (ITS#9383) (CVE-2020-25709) * Fix slapd abort due to assertion failure in CSN normalization with invalid input (ITS#9384) (CVE-2020-25710) openldap (2.4.47+dfsg-3+deb10u3) buster-security; urgency=high . * Fix slapd normalization handling with modrdn (ITS#9370) pacemaker (2.0.1-5+deb10u1) buster-security; urgency=high . * [bf23450] Apply patch series fixing CVE-2020-25654: ACL bypass. A vulnerability was found in Pacemaker allowing a user who is in the haclient group but restricted by ACLs to bypass those ACLs, providing cluster-wide arbitrary code execution with root privileges. When the enable-acl cluster option isn't set to true, members of the haclient group (and root) can modify Pacemaker's CIB without restriction, which already gives them these capabilities, so there is no additional exposure in that case. More info: https://www.openwall.com/lists/oss-security/2020/10/27/1 Patches: https://lists.clusterlabs.org/pipermail/developers/2020-October/002324.html Thanks to Ken Gaillot (Closes: #973254) partman-auto (149+deb10u1) buster; urgency=medium . * Bump /boot sizes in most recipes from between 128 and 256M to between 512 and 768M. As initramfs keep growing, and kernel ABI bumps keep happening, running out of space on /boot is unpleasant. Closes: #893886, 951709. * Import from Ubuntu: Introduce partman-auto/cap-ram, to allow capping RAM size as used for swap partition calculations. This allows us to cap the minimum size of swap partitions size to 1*CAP, and their maximum size to a maximum of 2 or 3*CAP depending on architecture. Default is set to 1024, thus capping swap partitions to between 1 and 3GB. LP: #1351267, closes: #949651, #950344. Patch from Dimitri John Ledkov. pcaudiolib (1.1-3+deb10u1) buster; urgency=medium . * patches/cancel: Cap cancellation latency to 10ms. plinth (19.1+deb10u1) buster; urgency=medium . * apache: Disable mod_status (CVE-2020-25073) puma (3.12.0-2+deb10u2) buster; urgency=medium . * Team upload. * d/patches/0009-disable-tests-failing-in-single-cpu.patch: Add author and bug tracker information. * d/patches/CVE-2020-5247.patch: Add patch to fix CVE-2020-5247. - Fix header value could inject their own HTTP response (closes: #952766). * d/patches/CVE-2020-5249.patch: Add patch to fix CVE-2020-5249. - Fix splitting newlines in headers and another vector for HTTP injection (closes: #953122). * d/patches/CVE-2020-11076.patch: Add patch to fix CVE-2020-11076. - Better handle client input to fix HTTP Smuggling via Transfer-Encoding header (closes: #972102). * d/patches/CVE-2020-11077.patch: Add patch to fix CVE-2020-11077. - Reduce ambiguity of headers to fix HTTP Smuggling via Transfer-Encoding header (closes: #972102). * d/patches/series: Enable new patches. python-flask-cors (3.0.7-1+deb10u1) buster-security; urgency=high . * Team upload. * Fix CVE-2020-25032 (Closes: #969362) with upstream patch rails (2:5.2.2.1+dfsg-1+deb10u2) buster-security; urgency=medium . * CVE-2020-8162 CVE-2020-8164 CVE-2020-8165 CVE-2020-8166 CVE-2020-8167 CVE-2020-15169 raptor2 (2.0.14-1.1~deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Rebuild for buster-security . raptor2 (2.0.14-1.1) unstable; urgency=medium . * Non-maintainer upload. * Calcualte max nspace declarations correctly for XML writer (CVE-2017-18926) (Closes: #973889) ros-ros-comm (1.14.3+ds1-5+deb10u2) buster; urgency=high . * Add https://github.com/ros/ros_comm/pull/2065 (Fix CVE-2020-16124) ruby2.5 (2.5.5-3+deb10u3) buster; urgency=high . * Add patch to fix a potential HTTP request smuggling vulnerability in WEBrick. (Fixes: CVE-2020-25613) sddm (0.18.0-1+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Fix X not having access control on startup (CVE-2020-28049) (Closes: #973748) sleuthkit (4.6.5-1+deb10u1) buster; urgency=high . * Team upload. * Add patch to fix stack buffer overflow in yaffsfs_istat. (Closes: #953976, CVE-2020-10232) spice (0.14.0-1.3+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * quic: Check we have some data to start decoding quic image (CVE-2020-14355) * quic: Check image size in quic_decode_begin (CVE-2020-14355) * quic: Check RLE lengths (CVE-2020-14355) * quic: Avoid possible buffer overflow in find_bucket (CVE-2020-14355) spip (3.2.4-1+deb10u3) buster-security; urgency=medium . * Backport security fixes from 3.2.8 - Critical security issue, allowing identified authors to execute arbitrary PHP code sqlite3 (3.27.2-3+deb10u1) buster; urgency=medium . * CVE-2019-19923 * CVE-2019-19925 * CVE-2019-19959 * CVE-2019-20218 * CVE-2020-13434 * CVE-2020-13435 * CVE-2020-13630 * CVE-2020-13632 * CVE-2020-15358 * CVE-2019-16168 systemd (241-7~deb10u5) buster; urgency=medium . * basic/cap-list: parse/print numerical capabilities (Closes: #964926) * missing: add new Linux capabilities. Linux kernel v5.8 adds two new capabilities. Make sure we can recognize them even when built with an older kernel. * networkd: do not generate MAC for bridge device (Closes: #963488) tbsync (2.18-1~deb10u1) buster; urgency=medium . [ Mechtilde ] * [962f929] Built for buster: debian/changelog * [2c6dea8] Prepared for release in buster (proposed-updates) tbsync (2.16.1-1) unstable; urgency=medium . [ Mechtilde ] * prepared for unstable (Closes: #968102) + to fit compatibility with thunderbird 78.x . * [501e05b] Added missing bug tracker to d/u/metadata tbsync (2.16.1-1~exp1) experimental; urgency=medium . [ Mechtilde ] * [3701379] New upstream version 2.15.5~beta * [15dcb16] Adapted d/ to the new version 2.15.5-beta . [ Carsten Schoenert ] * [94005c6] d/gbp.conf: adding helper for git-buildpackage * [256c84b] New upstream version 2.16.1 * [841ffa1] d/copyright: update and sort content alphabetically * [bb84449] d/rules: rework the build process a bit * [1afb65f] d/webext-tbsync.links: updating sequencer to new requirement * [79ff8f8] d/webext-tbsync.install: adopt installing files * [0fa330f] lintian: drop source override as not needed any more tbsync (2.16.1-1~deb10u1) buster; urgency=medium . * Rebuild for buster to fit compatibility with Tb 78.x + (Closes:#971807) tbsync (2.11-2~exp1) experimental; urgency=medium . [ Mechtilde Stehmann ] * [760cf22] Changed maintainer email in d/control to avoid lintian warning * [744a80c] Removed lightning from dependency for TB >=76 * [701c8fd] Adapt versions of dependencies tbsync (2.11-1) unstable; urgency=medium . * [c20de3a] New upstream version 2.11 tcpdump (4.9.3-1~deb10u2) buster; urgency=high . * Cherry-pick commit 32027e1993 from the upstream tcpdump-4.9 branch to fix untrusted input issue in the PPP printer (CVE-2020-8037, closes: #973877). thunderbird (1:78.5.0-1~deb10u1) stable-security; urgency=medium . * Rebuild for buster-security thunderbird (1:78.4.2-1) unstable; urgency=medium . * [c7f4ed2] New upstream version 78.4.2 Fixed CVE issues in upstream version 78.4 (MFSA 2020-49): CVE-2020-26950: Write side effects in MCallGetProperty opcode not accounted for * [c3a617d] rebuild patch queue from patch-queue branch added patch: fixes/Bug-1663715-Update-syn-and-proc-macro2-so-that-Firefox-ca.patch * [8e4e7ad] thunderbird-l10n-all: add thunderbird-l10n-cy (Closes: #974127) thunderbird (1:78.4.2-1~deb10u1) stable-security; urgency=medium . * Rebuild for buster-security (Closes: #973660) [ Emilio Pozuelo Monfort ] * [3d58cc1] d/control: reenable the armhf build on buster thunderbird (1:78.4.1-1) unstable; urgency=medium . * [cf8bf1e] New upstream version 78.4.1 * [529000c] rebuild patch queue from patch-queue branch added patches: fixes/Bug-1650299-Unify-the-inclusion-of-the-ICU-data-file.-r-f.patch fixes/Don-t-build-ICU-in-parallel.patch Patches are picked from Firefox and fixing FTBFS on s390x within buster. thunderbird (1:78.4.0-1) unstable; urgency=medium . [ Emilio Pozuelo Monfort ] * [652f8de] install the apparmor profile in thunderbird.install . [ Carsten Schoenert ] * [5240d53] Revert "thunderbird.install: adjust.desktop renamed file name" (Closes: #972601) * [861b21a] Revert "Rename .desktop file for AppStream compliance" (Closes: #972578) * [ffc5818] New upstream version 78.4.0 Fixed CVE issues in upstream version 78.4 (MFSA 2020-47): CVE-2020-15969: Use-after-free in usersctp CVE-2020-15683: Memory safety bugs fixed in Thunderbird 78.4 * [81396e3] rebuild patch queue from patch-queue branch removed patches (fixed upstream): porting-mips/Bug-1649655-MIPS-Add-CodeGenerator-visitWasmRegisterResul.patch porting/Bug-1666646-Bump-CodeAlignment-to-8-in-MacroAssembler-non.patch . modified patches: fixes/Appdata-Adding-some-German-translations.patch fixes/Appdata-Fix-up-AppStream-error-by-adding-missing-field.patch . Minor fine tuning to the AppStream specific parts but also revert some translation entries as they are not intend to be translatable. These modification also in correlation with the mentioned bug reports above which are closed by the other adjustments. thunderbird (1:78.4.0-1~deb10u1) stable-security; urgency=medium . * Rebuild for buster-security thunderbird (1:78.3.3-1) unstable; urgency=medium . [ Emilio Pozuelo Monfort ] * [6f18974] Remove duplicated --disable-debug-symbols flag * [1119d50] Print a verbose build log by not calling the mach wrapper * [fcf7c11] Exclude -g from CXXFLAGS as well . [ Carsten Schoenert ] * [9eb159f] New upstream version 78.3.3 * [47171dc] rebuild patch queue from patch-queue branch added patches: fixes/Appdata-Adding-some-German-translations.patch fixes/Appdata-Fix-up-AppStream-error-by-adding-missing-field.patch * [1474d91] Rename .desktop file for AppStream compliance * [10e49a9] thunderbird.install: adjust.desktop renamed file name * [018bbc1] thunderbird.pc: remove left over cruft thunderbird (1:78.3.2-1) unstable; urgency=medium . * [0b2f19f] d/rules: remove hand crafted icu build Cherry-picked from debian/buster branch. The possible required build of the ICU if the usage of an external ICU library is now handled by the upstream build system. * [1583517] d/rules: rewrite dpkg_buildflags to remove option '-g' Cherry-picked from debian/buster branch. We need to remove the option '-g' from the dpkg_buildflags variable for real if we want a build without debugging information (e.g. on 32bit architectures). * [fb4c9c4] New upstream version 78.3.2 * [9d5e2b9] d/rules: install the language Add-ons into /u/l/t/e Do not install the thunderbird-l10n packages into /usr/share/thunderbird any more, install them directly into /usr/libt/thunderbird/extensions. This simplifies the package structures as there is no real need to install the packages into /usr/share/thunderbird and linking them back. thunderbird (1:78.3.1-2) unstable; urgency=medium . * [649f664] rebuild patch queue from patch-queue branch added patches: fixes/reduce-the-rust-debuginfo-level-on-selected-architectures.patch porting-s390x/Explicitly-instantiate-TIntermTraverser-traverse-TIntermN.patch thunderbird (1:78.3.1-2~deb10u2) stable-security; urgency=medium . * [72d9abd] d/rules: rewrite dpkg_buildflags to remove option '-g' * [adb263e] d/rules: disable dbgsym package on i386 for stable-security thunderbird (1:78.3.1-2~deb10u1) stable-security; urgency=medium . * Rebuild for buster-security * [cc92401] d/rules: remove hand crafted icu build thunderbird (1:78.3.1-1) unstable; urgency=medium . [ Carsten Schoenert ] * [6bd965f] New upstream version 78.3.1 Fixed CVE issues in upstream version 78.3.1 (MFSA 2020-44): CVE-2020-15677: Download origin spoofing via redirect CVE-2020-15676: XSS when pasting attacker-controlled data into a contenteditable element CVE-2020-15678: When recursing through layers while scrolling, an iterator may have become invalid, resulting in a potential use-after-free scenario CVE-2020-15673: Memory safety bugs fixed in Thunderbird 78.3 * [8ba13c5] rebuild patch queue from patch-queue branch added patches(picked from firefox packaging): fixes/Add-missing-bindings-for-mips-in-the-authenticator-crate.patch porting-mips/Bug-1642265-MIPS64-Add-branchTestSymbol-and-fallibleUnbox.patch porting-mips/Bug-1649655-MIPS-Add-CodeGenerator-visitWasmRegisterResul.patch porting/Bug-1666646-Bump-CodeAlignment-to-8-in-MacroAssembler-non.patch removed patch(fixed upstream): fixes/Bug-1664607-Don-t-try-to-load-what-s-new-page-when-built-.patch * [c6d282d] calendar-google-provider*: removing left over cruft There are two left over sequencer files from the calendar-google-package, not need any more since 1:68.2.2-1 * [cf37615] d/README.Debian: Update and adding new information Some updated information regarding the now included OpenPGP support, also updating some grammar for 'Add-on'. * [faf225b] thunderbird.NEWS: Add hint about integration of OpenPGP support Giving the user a information about the OpenPGP status within Thunderbird since the version 78.0. * [d6f4f0e] Revert "d/tb.lintian-overrides: ignore warning about none versioned breaks" * [9e6cbec] d/copyright: update content thunderbird (1:78.2.2-1) experimental; urgency=medium . * [c6592e8] New upstream version 78.2.2 * [28f5fce] rebuild patch queue from patch-queue branch added patches: fixes/Bug-1664607-Don-t-try-to-load-what-s-new-page-when-built-.patch porting-s390x/Use-more-recent-embedded-version-of-sqlite3.patch * [4866c06] d/mozconfig.default: add extra config options for ppc64el thunderbird (1:78.2.1-1) experimental; urgency=medium . * [1f3f76b] d/rules: drop C{,XX}FLAGS originally intended for GCC6 * [4490e37] d/mozconfig.default: add options for mips64el * [17b4e5c] d/rules: Don't build debug symbols on 32Bit arch * [6dff7e0] d/rules: addind -Wl,--as-needed to linker flags * [a213a7f] New upstream version 78.2.1 thunderbird (1:78.2.0-1) experimental; urgency=medium . [ intrigeri ] * [f6fcafd] d/control: drop hard dependency on libgtk2.0-0 (Closes: #908654) * [85b7a2e] autopkgtests: fix typo in comment * [4bd70ae] d/mozconfig.default: fix typos in comments * [d986a6d] d/control: allow Enigmail 2.2.0 and newer (Closes: #968707) . [ Carsten Schoenert ] * [52b4006] d/control: increase B-D for libnss3 (Closes: #966805) * [7794563] New upstream version 78.2.0 Fixed CVE issues in upstream version 78.2.0 (MFSA 2020-41): CVE-2020-15663: Downgrade attack on the Mozilla Maintenance Service could have resulted in escalation of privilege CVE-2020-15664: Attacker-induced prompt for extension installation CVE-2020-15670: Memory safety bugs fixed in Thunderbird 78.2 * [623f853] rebuild patch queue from patch-queue branch No modifications made, just updating the index. thunderbird (1:78.1.1-1) experimental; urgency=medium . * [5fb842b] d/mozconfig.default: adding new option regarding Add-Ons Adding additional options --allow-addon-sideload and --with-unsigned-addon-scopes=app,system. These option are adopted and taken from the firefox package. * [8de0b35] New upstream version 78.1.1 * [4abe5ed] d/copyright: update content Some small updates to the copyright information. * [3caa541] d/control: adding new B-D for botan and json-c The upstream source now offers the possibility to use the system libraries for botan and json-c, for this we need to have both libraries installed for building Thunderbird. * [251d524] d/mozconfig.default: use botan and json-c system libraries Turn on the configuration flags for botan and also for json-c that let the build use the installed provided system libraries instead of using internal versions. * [a32a163] rebuild patch queue from patch-queue branch removed patch: debian-hacks/stop-configure-if-with-system-bz2-was-passed-but-no-.patch Upstream has now (again) a configure option for using a installed system bzip2 library that makes our added patch for this not needed anymore. * [16c91c0] lintian: remove override for embedded bzip2 in librnp.so thunderbird (1:78.1.0-1) experimental; urgency=medium . * [c4099cd] New upstream version 78.1.0 Fixed CVE issues in upstream version 78.1.0 (MFSA 2020-33): CVE-2020-15652: Potential leak of redirect targets when loading scripts in a worker CVE-2020-6514: WebRTC data channel leaks internal address to peer CVE-2020-15655: Extension APIs could be used to bypass Same-Origin Policy CVE-2020-15653: Bypassing iframe sandbox when allowing popups CVE-2020-6463: Use-after-free in ANGLE gl::Texture::onUnbindAsSamplerTexture CVE-2020-15656: Type confusion for special arguments in IonMonkey CVE-2020-15658: Overriding file type when saving to disk CVE-2020-15657: DLL hijacking due to incorrect loading path CVE-2020-15654: Custom cursor can overlay user interface CVE-2020-15659: Memory safety bugs fixed in Thunderbird 78.1 thunderbird (1:78.0.1-1) experimental; urgency=medium . * [5450d8d] d/control: increase B-D for libnss3 * [9749d1d] d/control: drop B-D on python2 and move over to python3 * [b31360b] d/xpi-pack.sh: adding xpi-pack shell script * [89ede80] Drop mozilla-devscripts as B-D * [f3b2ced] New upstream version 78.0.1 * [1847202] d/tb.lintian-overrides: ignore warning about none versioned breaks * [d56c922] d/lightning.links: removing left over sequencer file thunderbird (1:78.0-1) experimental; urgency=medium . * [1016cc5] New upstream version 78.0 Fixed CVE issues in upstream version 78.0 (MFSA 2020-29): CVE-2020-12415: AppCache manifest poisoning due to url encoded character processing CVE-2020-12416: Use-after-free in WebRTC VideoBroadcaster CVE-2020-12417: Memory corruption due to missing sign-extension for ValueTags on ARM64 CVE-2020-12418: Information disclosure due to manipulated URL object CVE-2020-12419: Use-after-free in nsGlobalWindowInner CVE-2020-12420: Use-After-Free when trying to connect to a STUN server CVE-2020-15648: X-Frame-Options bypass using object or embed tags CVE-2020-12402: RSA Key Generation vulnerable to side-channel attack CVE-2020-12421: Add-On updates did not respect the same certificate trust rules as software updates CVE-2020-12422: Integer overflow in nsJPEGEncoder::emptyOutputBuffer CVE-2020-12424: WebRTC permission prompt could have been bypassed by a compromised content process CVE-2020-12425: Out of bound read in Date.parse() CVE-2020-12426: Memory safety bugs fixed in Thunderbird 78 * [ad66b04] rebuild patch queue from patch-queue branch reworked patch: porting-kfreebsd-hurd/LDAP-support-building-on-GNU-kFreeBSD-and-GNU-Hurd.patch * [4a2039c] d/mozconfig.default: enable OpenPGP feature build thunderbird (1:78.0~b2-1) experimental; urgency=medium . * [c8da927] d/source.filter: fix obviously happen typo * [c513a96] New upstream version 78.0~b2 * [6e9104e] d/control: tb, adding binary version to lightning provides Make the Provides for Lightning a versioned provide. * [8adec8f] enigmail: let any version of Enigmail break We now can break on any Enigmail version, the Enigmail functions are now included in Thunderbird and don't want to have an Enigmail package get installed in parallel. * [696b1fc] xul-ext-*/webext-*: adding more extensions to break Quite all of the current packaged Thunderbird extensions will not work for now with Thunderbird 78.*, adding/renaming the current know packages with recent versions to Breaks for thunderbird. * [e488d0c] thunderbird: remove some non-existing packages from Breaks The listed packages xul-ext-foxyproxy-standard xul-ext-gnome-keyring xul-ext-nostalgy aren't in any supported release so we don't need them any more within a Breaks for thunderbird. * [039ee90] thunderbird: remove outdated myspell packages from Breaks All previously listed myspell packages in Breaks for thunderbird aren't reachable with the given version any more. We can remove them safely. * [08ea0ba] thunderbird: remove outdated hunspell packages from Breaks The same is true for the hunspell packages that were listed in the Breaks field for thunderbird. thunderbird (1:78.0~b1-1) experimental; urgency=medium . [ Carsten Schoenert ] * [625efa9] d/source.filter: some updates to filtering list Recent modification of the shipped files in the upstream tarball do require small updates of the filter list we use to repack the tarball. * [967ee19] New upstream version 78.0~b1 * [240991e] rebuild patch queue from patch-queue branch removed patch: debian-hacks/use-icudt-b-l-.dat-depending-on-architecture.patch This will require some additional adjustment later for the stable-security upkoads as this patch was required to get a recent ICU version build before the build of the thunderbird sources did start. reworked patch: debian-hacks/stop-configure-if-with-system-bz2-was-passed-but-no-.patch * [07cab53] d/mozconfig.default: remove no longer existing options By this release a lot of old configure options are kicked out, some of them we have used until now. We need to remove these from the config. * [df2e99b] d/copyright: update content As usual some required update of the copyright file, more files are not shipped anymore. . [ intrigeri ] * [82a4b03] AppArmor: update profile from upstream at commit 860d2d9 (cherry-picked from unstable) thunderbird (1:77.0~b3-1) experimental; urgency=medium . * [82de2f6] New upstream version 77.0~b3 * [8beaf6f] rebuild patch queue from patch-queue branch removed patch (included upstream): fixes/Bug-1634994-fix-disable-av1-r-tnikkel.patch * [ab2d7a2] d/copyright: Add license for appstream xml file * [1533187] d/source.filter: Remove some *.wasm files as well * [7cdfe03] d/thunderbird.lintian-overrides: Some more needed overrides We need currently the included bzip library. Also add a false positive about the misread postinst script. * [9385fd4b] d/control: Remove doubled listed package libglib2.0-dev Drop a doubled listed package libglib2.0-dev within B-D. thunderbird (1:77.0~b2-1) experimental; urgency=medium . * [185d4f7] New upstream version 77.0~b2 * [e918036] rebuild patch queue from patch-queue branch removed patch: fixes/Bug-1635671-Upgrade-typename-to-1.12.0.-r-emilio.patch * [c1979ce] d/mozconfig.default: Remove obsolete options Drop the options '--with-distribution-id' and '--with-user-appdir'. The former is basically only supporting the given default 'org.mozilla' and the latter was set to the default '.mozilla' anyway. thunderbird (1:77.0~b1-1) experimental; urgency=medium . * [ee06e6e] New upstream version 77.0~b1 * [a21b649] rebuild patch queue from patch-queue branch removed patches (not needed any more): lower-down-required-version-on-NSS3.patch . added patches: fixes/Bug-1634994-fix-disable-av1-r-tnikkel.patch fixes/Bug-1635671-Upgrade-typename-to-1.12.0.-r-emilio.patch * [295cc4d] d/control: increase B-D for libnss3 The build requires now libnss3-dev >= 2:3.52. * [f998baf] lintian-overrides: remove overrides for kinto-http-client.js No override needed for this file, it's not included any more. thunderbird (1:76.0~b2-1) experimental; urgency=medium . * [87988db] d/control: increase B-D for cargo to 0.42 * [b9b0dfd] rebuild patch queue from patch-queue branch removed patch: debian-hacks/Ignore-version-check-for-cargo.patch * [8386db0] d/control: Remove B-D on libjson-dev and libsqlite3-dev The built uses internal copies for libjson and libsqlite as there are made modifications to them. For now we can decrease the list of build dependencies by removing this two packages. * [6324222] New upstream version 76.0~b2 * [629b3bb] d/rules: Remove default compiler flag No needed for '-Wl,--as-needed' any more, it's default now. thunderbird (1:76.0~b1-1) experimental; urgency=medium . * [b52cd52] d/c-thunderbird-l10n-tarball.sh: change upstream resource Upstream has changed the folder were we can find the language providing XPI packages. They simply moved over from linux-i686 to linux-x86_64. * [22e697a] d/rules: drop set up of LIGHTNING_VERSION variable We don't need this variable any more for building the packages (like all the lightning-foo named stuff), there is no dedicated Lighting named stuff around. * [4ad871b] d/gbp.conf: Remove additional tarball for lightning-l10n git-buildpackage won't find this additional tarball as it's not needed starting by the import of the next upstream version (this is 76.0b1). * [25d8d42] d/c-l-l10n-t.sh: Remove helper script We also don't need to build the l10n specific additional tarball for Lighting related parts any more. Dropping this helper script. * [9d33d06] d/README.source: Remove part of lightning-l10n * [b063d7f] New upstream version 76.0~b1 * [e7a23ec] rebuild patch queue from patch-queue branch removed patches (not needed or included upstream): debian-hacks/Build-against-system-libjsoncpp.patch debian-hacks/Downgrade-SQlite-version-to-3.27.2.patch fixes/Bug-1531309-Don-t-use-__PRETTY_FUNCTION__-or-__FUNCTION__.patch fixes/Bug-1560340-Only-add-confvars.sh-as-a-dependency-to-confi.patch . added patches: debian-hacks/Ignore-version-check-for-cargo.patch lower-down-required-version-on-NSS3.patch * [94d8593] d/control: adding new packages thunderbird-l10n-{cak,kab,uz} After the final release of Thunderbird 68.0 new l10n support for the languages Kacqhikel, Georgian and Uzbek was added. Reflect this by adding new binary packages for those languages. * [5397182] d/mozconfig.default: remove option for system-sqlite Upstream is using their own version of an modified SQLite now and has dropping the additional configure option about this. * [abb0ded] d/control: increase various versions in B-D The current source requires some more recent versions of the helping tools for building the sources as usual. * [abfc8b2] d/rules: remove any action related to old lightning stuff As the sources doesn't have any Lightning specific parts any more we need to adjust the build process within debina/rules a bit. Thus dropping all the rules around Lighting things. * [f95b3ad] d/control: Turn lightning into transitional package For now switch the behaviour of the lightning package into a transitional one. We might can drop the whole package rather soon. * [c3062cb] d/thunderbird.install: Remove blocklist.xml Don't install the file blocklist.xml any more, it's now not shipped by upstream any more. * [856e99e] d/mozconfig.thunderbird: Remove --enable-calendar Previously the build of the Lightning extension was needed to get enabled to built this as an extension. Now it's fully integrated into the core this configure option isn't needed any longer. * [5551a8a] d/copyright: update content As usual there is some moving within the source code between the major versions, reflect this by adjusting the content of the copyright file. * [21e9b7f] lintian-overrides: adjust overrides for needed files Also the override file for the source is needing some adjustments. * [f25ddc4] d/source.filter: update the filter sequences The control for filtering non needed stuff from the upstream tarball must also get adjusted due changed versions, moved folders etc. * [e4a81ba] d/thunderbird.install: Install also appdata.xml Upstream is providing an AppStream data file which we want install mow also. * [80385c9] d/source.filter: Sorting entries alphabetically No functional modifications, just sorting entries to find stuff more easily. * [585cf0a] d/thunderbird.lintian-overrides: update after config changes We also need to modify the content for Lintian overrides for the thunderbird package a bit. Thunderbird comes now (again) with own versions of the libraries libtheora and libjsoncpp. Mostly because Mozilla has made some own modifications within these libraries. thunderbird (1:68.12.0-1) unstable; urgency=medium . * [103cab7] New upstream version 68.12.0 Fixed CVE issues in upstream version 68.11.0 (MFSA 2020-35): CVE-2020-15663: Downgrade attack on the Mozilla Maintenance Service could have resulted in escalation of privilege CVE-2020-15664: Attacker-induced prompt for extension installation CVE-2020-15669: Use-After-Free when aborting an operation tigervnc (1.9.0+dfsg-3+deb10u3) buster; urgency=high . [ Joachim Falk ] * Properly store certificate exceptions in native and java VNC viewer. The VNC viewers stored the certificate exceptions as authorities, meaning that the owner of a certificate could impersonate any server after a client had added an exception. This is issue CVE-2020-26117 (Closes: #971272). tor (0.3.5.12-1) buster; urgency=medium . * New upstream version, updating Tor in stable (cf. #975297). transmission (2.94-2+deb10u2) buster; urgency=medium . * Fix mem leak (Closes: #968097) tzdata (2020d-0+deb10u1) buster; urgency=medium . * New upstream version, affecting the following future timestamp: - Palestine ends DST earlier than predicted, on 2020-10-24. - Fiji starts DST later than usual, on 2020-12-20. tzdata (2020c-1) unstable; urgency=medium . * New upstream version, affecting the following future timestamp: - Fiji starts DST later than usual, on 2020-12-20. tzdata (2020b-1) unstable; urgency=medium . * New upstream version, affecting the following past and future timestamps: - Revised predictions for Morocco's changes starting in 2023. - Macquarie Island has stayed in sync with Tasmania since 2011. - Casey, Antarctica is at +08 in winter and +11 in summer since 2018. * Update German debconf translation, by Helge Kreutzmann. Closes: #960783. * Update Dutch debconf translation, by Frans Spiesschaert. Closes: #963007. * Update Portuguese debconf translation, by Rui Branco. Closes: #871051. * Update debian/upstream/signing-key.asc. * Get rid of old SystemV timezones, as this has been fully removed upstream. Convert existing configuration to the "new" America/* names. * Drop pacificnew support, it has been removed upstream. tzdata (2020b-0+deb10u1) buster; urgency=medium . * New upstream version, affecting the following past and future timestamps: - Revised predictions for Morocco's changes starting in 2023. - Macquarie Island has stayed in sync with Tasmania since 2011. - Casey, Antarctica is at +08 in winter and +11 in summer since 2018. * Restore the pacificnew and systemv files that have been removed upstream. The corresponding timezones have been removed from the bullseye/sid package, with the switch to the new names handle by the maintainer scripts. However we do not want to transition to the new names in a stable release. * Update debian/upstream/signing-key.asc. tzdata (2020a-1) unstable; urgency=medium . * New upstream version, affecting the following future timestamps: - Morocco springs forward on 2020-05-31, not 2020-05-24. - Canada's Yukon advanced to -07 year-round on 2020-03-08. * Bump Standards-Version to 4.5.0 (no changes). ublock-origin (1.30.0+dfsg-1~deb10u1) buster; urgency=medium . * Backport version 1.30.0+dfsg to Buster. * Revert to debhelper level 12. ublock-origin (1.29.0+dfsg-2) unstable; urgency=medium . * Update debian/copyright. Readd codemirror license which got accidentally removed and two new fonts licenses. (Closes: #969742) ublock-origin (1.29.0+dfsg-1) unstable; urgency=medium . * New upstream version 1.29.0+dfsg. - Restore compatibility with Firefox 80. (Closes: #969123) * Restore compatibility with Chromium. Add new binary package webext-ublock-origin-chromium. (Closes: #954097) ublock-origin (1.28.0+dfsg-1) unstable; urgency=medium . * New upstream version 1.28.0+dfsg. (Closes: #952645) * Remove obsolete binary packages xul-ext-ublock-origin and chromium-ublock-origin. (Closes: #908158) * Install the Firefox version into webext-ublock-origin. Temporarily only the Firefox web browser is supported. A new version of ublock-origin is currently waiting in the ftp-master's NEW queue. As soon as this version enters Debian, both web browsers, Chromium and Firefox, will be supported again. * Fix the wrong version number in both Firefox and Chromium manifest files. (Closes: #946796) ublock-origin (1.25.0+dfsg-1) experimental; urgency=medium . * New upstream version 1.25.0+dfsg. (Closes: #952645) * Remove obsolete binary packages xul-ext-ublock-origin and chromium-ublock-origin. (Closes: #908158) * Make webext-ublock-origin a transitional package. From now on users need to install the browser-specific addon versions,either webext-ublock-origin-firefox or webext-ublock-origin-chromium. Please also read /usr/share/doc/webext-ublock-origin/NEWS. Providing just a single binary package for both web browsers was not a viable solution due to sandboxing limitations. (Closes: #946808, #911098) * Fix the wrong version number in both Firefox and Chromium manifest files. (Closes: #946796) ublock-origin (1.22.2+dfsg-2) unstable; urgency=medium . * Update debian/copyright. Add some missing file paths and the MIT license. (Closes: #956268) ublock-origin (1.22.2+dfsg-1) unstable; urgency=medium . * New upstream version 1.22.2+dfsg. vips (8.7.4-1+deb10u1) buster; urgency=medium . * Fix CVE-2020-20739: variable used-before-set error in im_vips2dz() . wordpress (5.0.11+dfsg1-0+deb10u1) buster-security; urgency=high . * Security release, fixes 8 bugs Closes: #973562 - CVE-2020-28039: Protected meta that could lead to arbitrary file deletion. - CVE-2020-28035: XML-RPC privilege escalation. - CVE-2020-28036: XML-RPC privilege escalation. - CVE-2020-28032: Hardening deserialization requests. - CVE-2020-28037: DoS attack could lead to RCE. - CVE-2020-28038: Stored XSS in post slugs. - CVE-2020-28033: Disable spam embeds from disabled sites on a multisite network. - CVE-2020-28034: Cross-Site Scripting (XSS) via global variables. - CVE-2020-28040: CSRF attacks that change a theme's background image. * Remove duplicated changeset 45974 Closes: #971914 x11vnc (0.9.13-6+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * scan: limit access to shared memory segments to current user (CVE-2020-29074) (Closes: #975875) xen (4.11.4+37-g3263f257ca-1) buster-security; urgency=high . * Update to new upstream version 4.11.4+37-g3263f257ca, which also contains security fixes for the following issues: - x86 pv: Crash when handling guest access to MSR_MISC_ENABLE XSA-333 CVE-2020-25602 - race when migrating timers between x86 HVM vCPU-s XSA-336 CVE-2020-25604 - PCI passthrough code reading back hardware registers XSA-337 CVE-2020-25595 - once valid event channels may not turn invalid XSA-338 CVE-2020-25597 - x86 pv guest kernel DoS via SYSENTER XSA-339 CVE-2020-25596 - Missing memory barriers when accessing/allocating an event channel XSA-340 CVE-2020-25603 - out of bounds event channels available to 32-bit x86 domains XSA-342 CVE-2020-25600 - races with evtchn_reset() XSA-343 CVE-2020-25599 - lack of preemption in evtchn_reset() / evtchn_destroy() XSA-344 CVE-2020-25601 * Note that with this update, we will be detaching the Buster updates from the Xen version in Debian unstable, which will get a newer Xen version RSN. xen (4.11.4+24-gddaaccbbab-1) unstable; urgency=medium . * Update to new upstream version 4.11.4+24-gddaaccbbab, which also contains security fixes for the following issues: - inverted code paths in x86 dirty VRAM tracking XSA-319 CVE-2020-15563 - Special Register Buffer speculative side channel XSA-320 CVE-2020-0543 N.B: To mitigate this issue, new cpu microcode is required. The changes in Xen provide a workaround for affected hardware that is not receiving a vendor microcode update. Please refer to the upstream XSA-320 Advisory text for more details. - insufficient cache write-back under VT-d XSA-321 CVE-2020-15565 - Missing alignment check in VCPUOP_register_vcpu_info XSA-327 CVE-2020-15564 - non-atomic modification of live EPT PTE XSA-328 CVE-2020-15567 yaws (2.0.6+dfsg-1+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Reject external entities in DAV requests (CVE-2020-24379) * Fix unused variable warning * Sanitize CGI requests (CVE-2020-24916) ======================================= Sat, 26 Sep 2020 - Debian 10.6 released ======================================= ========================================================================= [Date: Sat, 26 Sep 2020 09:07:04 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-9-all-amd64 | 4.19.118-2+deb10u1 | amd64 linux-headers-4.19.0-9-amd64 | 4.19.118-2+deb10u1 | amd64 linux-headers-4.19.0-9-cloud-amd64 | 4.19.118-2+deb10u1 | amd64 linux-headers-4.19.0-9-rt-amd64 | 4.19.118-2+deb10u1 | amd64 linux-image-4.19.0-9-amd64-dbg | 4.19.118-2+deb10u1 | amd64 linux-image-4.19.0-9-amd64-unsigned | 4.19.118-2+deb10u1 | amd64 linux-image-4.19.0-9-cloud-amd64-dbg | 4.19.118-2+deb10u1 | amd64 linux-image-4.19.0-9-cloud-amd64-unsigned | 4.19.118-2+deb10u1 | amd64 linux-image-4.19.0-9-rt-amd64-dbg | 4.19.118-2+deb10u1 | amd64 linux-image-4.19.0-9-rt-amd64-unsigned | 4.19.118-2+deb10u1 | amd64 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 26 Sep 2020 09:07:15 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-9-all-mipsel | 4.19.118-2+deb10u1 | mipsel ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 26 Sep 2020 09:07:27 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: ata-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el btrfs-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el cdrom-core-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el compress-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el crc-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el crypto-dm-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el crypto-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el event-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el ext4-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el fancontrol-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el fat-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el fb-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el firewire-core-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el fuse-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el hypervisor-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el i2c-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el input-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el isofs-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el jfs-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el kernel-image-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el linux-headers-4.19.0-9-all-ppc64el | 4.19.118-2+deb10u1 | ppc64el linux-headers-4.19.0-9-powerpc64le | 4.19.118-2+deb10u1 | ppc64el linux-image-4.19.0-9-powerpc64le | 4.19.118-2+deb10u1 | ppc64el linux-image-4.19.0-9-powerpc64le-dbg | 4.19.118-2+deb10u1 | ppc64el loop-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el md-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el mouse-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el mtd-core-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el multipath-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el nbd-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el nic-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el nic-shared-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el nic-usb-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el nic-wireless-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el ppp-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el sata-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el scsi-core-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el scsi-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el scsi-nic-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el serial-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el squashfs-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el udf-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el uinput-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el usb-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el usb-serial-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el usb-storage-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el xfs-modules-4.19.0-9-powerpc64le-di | 4.19.118-2+deb10u1 | ppc64el ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 26 Sep 2020 09:07:39 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: btrfs-modules-4.19.0-9-s390x-di | 4.19.118-2+deb10u1 | s390x cdrom-core-modules-4.19.0-9-s390x-di | 4.19.118-2+deb10u1 | s390x compress-modules-4.19.0-9-s390x-di | 4.19.118-2+deb10u1 | s390x crc-modules-4.19.0-9-s390x-di | 4.19.118-2+deb10u1 | s390x crypto-dm-modules-4.19.0-9-s390x-di | 4.19.118-2+deb10u1 | s390x crypto-modules-4.19.0-9-s390x-di | 4.19.118-2+deb10u1 | s390x dasd-extra-modules-4.19.0-9-s390x-di | 4.19.118-2+deb10u1 | s390x dasd-modules-4.19.0-9-s390x-di | 4.19.118-2+deb10u1 | s390x ext4-modules-4.19.0-9-s390x-di | 4.19.118-2+deb10u1 | s390x fat-modules-4.19.0-9-s390x-di | 4.19.118-2+deb10u1 | s390x fuse-modules-4.19.0-9-s390x-di | 4.19.118-2+deb10u1 | s390x isofs-modules-4.19.0-9-s390x-di | 4.19.118-2+deb10u1 | s390x kernel-image-4.19.0-9-s390x-di | 4.19.118-2+deb10u1 | s390x linux-headers-4.19.0-9-all-s390x | 4.19.118-2+deb10u1 | s390x linux-headers-4.19.0-9-s390x | 4.19.118-2+deb10u1 | s390x linux-image-4.19.0-9-s390x | 4.19.118-2+deb10u1 | s390x linux-image-4.19.0-9-s390x-dbg | 4.19.118-2+deb10u1 | s390x loop-modules-4.19.0-9-s390x-di | 4.19.118-2+deb10u1 | s390x md-modules-4.19.0-9-s390x-di | 4.19.118-2+deb10u1 | s390x mtd-core-modules-4.19.0-9-s390x-di | 4.19.118-2+deb10u1 | s390x multipath-modules-4.19.0-9-s390x-di | 4.19.118-2+deb10u1 | s390x nbd-modules-4.19.0-9-s390x-di | 4.19.118-2+deb10u1 | s390x nic-modules-4.19.0-9-s390x-di | 4.19.118-2+deb10u1 | s390x scsi-core-modules-4.19.0-9-s390x-di | 4.19.118-2+deb10u1 | s390x scsi-modules-4.19.0-9-s390x-di | 4.19.118-2+deb10u1 | s390x udf-modules-4.19.0-9-s390x-di | 4.19.118-2+deb10u1 | s390x xfs-modules-4.19.0-9-s390x-di | 4.19.118-2+deb10u1 | s390x zlib-modules-4.19.0-9-s390x-di | 4.19.118-2+deb10u1 | s390x ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 26 Sep 2020 09:08:01 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-9-all | 4.19.118-2+deb10u1 | amd64, arm64, armel, armhf, i386, mips, mips64el, mipsel, ppc64el, s390x ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 26 Sep 2020 09:08:17 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-9-all-arm64 | 4.19.118-2+deb10u1 | arm64 linux-headers-4.19.0-9-arm64 | 4.19.118-2+deb10u1 | arm64 linux-headers-4.19.0-9-rt-arm64 | 4.19.118-2+deb10u1 | arm64 linux-image-4.19.0-9-arm64-dbg | 4.19.118-2+deb10u1 | arm64 linux-image-4.19.0-9-arm64-unsigned | 4.19.118-2+deb10u1 | arm64 linux-image-4.19.0-9-rt-arm64-dbg | 4.19.118-2+deb10u1 | arm64 linux-image-4.19.0-9-rt-arm64-unsigned | 4.19.118-2+deb10u1 | arm64 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 26 Sep 2020 09:08:35 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: btrfs-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel cdrom-core-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel compress-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel crc-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel crypto-dm-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel crypto-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel event-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel ext4-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel fat-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel fb-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel fuse-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel input-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel ipv6-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel isofs-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel jffs2-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel jfs-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel kernel-image-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel leds-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel linux-headers-4.19.0-9-all-armel | 4.19.118-2+deb10u1 | armel linux-headers-4.19.0-9-marvell | 4.19.118-2+deb10u1 | armel linux-headers-4.19.0-9-rpi | 4.19.118-2+deb10u1 | armel linux-image-4.19.0-9-marvell | 4.19.118-2+deb10u1 | armel linux-image-4.19.0-9-marvell-dbg | 4.19.118-2+deb10u1 | armel linux-image-4.19.0-9-rpi | 4.19.118-2+deb10u1 | armel linux-image-4.19.0-9-rpi-dbg | 4.19.118-2+deb10u1 | armel loop-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel md-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel minix-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel mmc-core-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel mmc-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel mouse-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel mtd-core-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel mtd-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel multipath-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel nbd-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel nic-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel nic-shared-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel nic-usb-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel ppp-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel sata-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel scsi-core-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel squashfs-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel udf-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel uinput-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel usb-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel usb-serial-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel usb-storage-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel zlib-modules-4.19.0-9-marvell-di | 4.19.118-2+deb10u1 | armel ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 26 Sep 2020 09:08:45 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: ata-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf btrfs-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf cdrom-core-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf compress-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf crc-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf crypto-dm-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf crypto-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf efi-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf event-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf ext4-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf fat-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf fb-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf fuse-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf i2c-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf input-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf isofs-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf jfs-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf kernel-image-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf leds-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf linux-headers-4.19.0-9-all-armhf | 4.19.118-2+deb10u1 | armhf linux-headers-4.19.0-9-armmp | 4.19.118-2+deb10u1 | armhf linux-headers-4.19.0-9-armmp-lpae | 4.19.118-2+deb10u1 | armhf linux-headers-4.19.0-9-rt-armmp | 4.19.118-2+deb10u1 | armhf linux-image-4.19.0-9-armmp | 4.19.118-2+deb10u1 | armhf linux-image-4.19.0-9-armmp-dbg | 4.19.118-2+deb10u1 | armhf linux-image-4.19.0-9-armmp-lpae | 4.19.118-2+deb10u1 | armhf linux-image-4.19.0-9-armmp-lpae-dbg | 4.19.118-2+deb10u1 | armhf linux-image-4.19.0-9-rt-armmp | 4.19.118-2+deb10u1 | armhf linux-image-4.19.0-9-rt-armmp-dbg | 4.19.118-2+deb10u1 | armhf loop-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf md-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf mmc-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf mtd-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf multipath-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf nbd-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf nic-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf nic-shared-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf nic-usb-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf nic-wireless-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf pata-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf ppp-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf sata-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf scsi-core-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf scsi-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf scsi-nic-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf squashfs-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf udf-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf uinput-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf usb-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf usb-serial-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf usb-storage-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf zlib-modules-4.19.0-9-armmp-di | 4.19.118-2+deb10u1 | armhf ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 26 Sep 2020 09:08:54 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-9-686 | 4.19.118-2+deb10u1 | i386 linux-headers-4.19.0-9-686-pae | 4.19.118-2+deb10u1 | i386 linux-headers-4.19.0-9-all-i386 | 4.19.118-2+deb10u1 | i386 linux-headers-4.19.0-9-rt-686-pae | 4.19.118-2+deb10u1 | i386 linux-image-4.19.0-9-686-dbg | 4.19.118-2+deb10u1 | i386 linux-image-4.19.0-9-686-pae-dbg | 4.19.118-2+deb10u1 | i386 linux-image-4.19.0-9-686-pae-unsigned | 4.19.118-2+deb10u1 | i386 linux-image-4.19.0-9-686-unsigned | 4.19.118-2+deb10u1 | i386 linux-image-4.19.0-9-rt-686-pae-dbg | 4.19.118-2+deb10u1 | i386 linux-image-4.19.0-9-rt-686-pae-unsigned | 4.19.118-2+deb10u1 | i386 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 26 Sep 2020 09:09:03 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-9-all-mips | 4.19.118-2+deb10u1 | mips ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 26 Sep 2020 09:09:16 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: affs-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel btrfs-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel cdrom-core-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel compress-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel crc-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel crypto-dm-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel crypto-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel event-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel ext4-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel fat-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel fuse-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel hfs-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel input-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel isofs-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel jfs-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel kernel-image-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel linux-headers-4.19.0-9-5kc-malta | 4.19.118-2+deb10u1 | mips, mips64el, mipsel linux-headers-4.19.0-9-octeon | 4.19.118-2+deb10u1 | mips, mips64el, mipsel linux-image-4.19.0-9-5kc-malta | 4.19.118-2+deb10u1 | mips, mips64el, mipsel linux-image-4.19.0-9-5kc-malta-dbg | 4.19.118-2+deb10u1 | mips, mips64el, mipsel linux-image-4.19.0-9-octeon | 4.19.118-2+deb10u1 | mips, mips64el, mipsel linux-image-4.19.0-9-octeon-dbg | 4.19.118-2+deb10u1 | mips, mips64el, mipsel loop-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel md-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel minix-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel multipath-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel nbd-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel nic-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel nic-shared-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel nic-usb-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel nic-wireless-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel pata-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel ppp-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel rtc-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel sata-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel scsi-core-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel scsi-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel scsi-nic-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel sound-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel squashfs-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel udf-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel usb-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel usb-serial-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel usb-storage-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel xfs-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel zlib-modules-4.19.0-9-octeon-di | 4.19.118-2+deb10u1 | mips, mips64el, mipsel ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 26 Sep 2020 09:09:32 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: affs-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel ata-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel btrfs-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel cdrom-core-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel compress-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel crc-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel crypto-dm-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel crypto-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel event-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel ext4-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel fat-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel fb-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel fuse-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel hfs-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel i2c-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel input-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel isofs-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel jfs-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel kernel-image-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel linux-headers-4.19.0-9-4kc-malta | 4.19.118-2+deb10u1 | mips, mipsel linux-image-4.19.0-9-4kc-malta | 4.19.118-2+deb10u1 | mips, mipsel linux-image-4.19.0-9-4kc-malta-dbg | 4.19.118-2+deb10u1 | mips, mipsel loop-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel md-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel minix-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel mmc-core-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel mmc-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel mouse-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel mtd-core-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel multipath-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel nbd-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel nic-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel nic-shared-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel nic-usb-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel nic-wireless-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel pata-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel ppp-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel sata-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel scsi-core-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel scsi-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel scsi-nic-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel sound-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel squashfs-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel udf-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel usb-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel usb-serial-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel usb-storage-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel xfs-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel zlib-modules-4.19.0-9-4kc-malta-di | 4.19.118-2+deb10u1 | mips, mipsel ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 26 Sep 2020 09:09:46 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: affs-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el ata-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el btrfs-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el cdrom-core-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el compress-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el crc-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el crypto-dm-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el crypto-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el event-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el ext4-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el fat-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el fb-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el fuse-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el hfs-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el i2c-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el input-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el isofs-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el jfs-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el kernel-image-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el linux-headers-4.19.0-9-all-mips64el | 4.19.118-2+deb10u1 | mips64el loop-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el md-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el minix-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el mmc-core-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el mmc-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el mouse-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el mtd-core-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el multipath-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el nbd-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el nic-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el nic-shared-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el nic-usb-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el nic-wireless-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el pata-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el ppp-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el sata-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el scsi-core-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el scsi-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el scsi-nic-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el sound-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el squashfs-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el udf-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el usb-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el usb-serial-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el usb-storage-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el xfs-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el zlib-modules-4.19.0-9-5kc-malta-di | 4.19.118-2+deb10u1 | mips64el ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 26 Sep 2020 09:10:10 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: affs-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel ata-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel btrfs-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel cdrom-core-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel compress-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel crc-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel crypto-dm-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel crypto-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel event-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel ext4-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel fat-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel fb-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel firewire-core-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel fuse-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel hfs-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel input-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel isofs-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel jfs-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel kernel-image-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel linux-headers-4.19.0-9-loongson-3 | 4.19.118-2+deb10u1 | mips64el, mipsel linux-image-4.19.0-9-loongson-3 | 4.19.118-2+deb10u1 | mips64el, mipsel linux-image-4.19.0-9-loongson-3-dbg | 4.19.118-2+deb10u1 | mips64el, mipsel loop-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel md-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel minix-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel mtd-core-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel multipath-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel nbd-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel nfs-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel nic-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel nic-shared-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel nic-usb-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel nic-wireless-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel pata-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel ppp-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel sata-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel scsi-core-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel scsi-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel scsi-nic-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel sound-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel speakup-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel squashfs-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel udf-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel usb-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel usb-serial-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel usb-storage-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel xfs-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel zlib-modules-4.19.0-9-loongson-3-di | 4.19.118-2+deb10u1 | mips64el, mipsel ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 26 Sep 2020 09:10:21 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: acpi-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 ata-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 btrfs-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 cdrom-core-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 compress-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 crc-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 crypto-dm-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 crypto-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 efi-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 event-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 ext4-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 fat-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 fb-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 firewire-core-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 fuse-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 i2c-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 input-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 isofs-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 jfs-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 kernel-image-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 linux-image-4.19.0-9-amd64 | 4.19.118-2+deb10u1 | amd64 linux-image-4.19.0-9-cloud-amd64 | 4.19.118-2+deb10u1 | amd64 linux-image-4.19.0-9-rt-amd64 | 4.19.118-2+deb10u1 | amd64 loop-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 md-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 mmc-core-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 mmc-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 mouse-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 mtd-core-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 multipath-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 nbd-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 nic-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 nic-pcmcia-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 nic-shared-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 nic-usb-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 nic-wireless-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 pata-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 pcmcia-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 pcmcia-storage-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 ppp-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 sata-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 scsi-core-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 scsi-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 scsi-nic-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 serial-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 sound-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 speakup-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 squashfs-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 udf-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 uinput-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 usb-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 usb-serial-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 usb-storage-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 xfs-modules-4.19.0-9-amd64-di | 4.19.118-2+deb10u1 | amd64 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux-signed-amd64) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 26 Sep 2020 09:10:33 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: ata-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 btrfs-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 cdrom-core-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 compress-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 crc-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 crypto-dm-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 crypto-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 efi-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 event-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 ext4-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 fat-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 fb-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 fuse-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 i2c-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 input-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 isofs-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 jfs-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 kernel-image-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 leds-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 linux-image-4.19.0-9-arm64 | 4.19.118-2+deb10u1 | arm64 linux-image-4.19.0-9-rt-arm64 | 4.19.118-2+deb10u1 | arm64 loop-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 md-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 mmc-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 mtd-core-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 multipath-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 nbd-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 nic-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 nic-shared-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 nic-usb-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 nic-wireless-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 ppp-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 sata-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 scsi-core-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 scsi-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 scsi-nic-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 squashfs-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 udf-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 uinput-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 usb-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 usb-serial-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 usb-storage-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 xfs-modules-4.19.0-9-arm64-di | 4.19.118-2+deb10u1 | arm64 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux-signed-arm64) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 26 Sep 2020 09:10:47 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: acpi-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 acpi-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 ata-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 ata-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 btrfs-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 btrfs-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 cdrom-core-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 cdrom-core-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 compress-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 compress-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 crc-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 crc-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 crypto-dm-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 crypto-dm-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 crypto-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 crypto-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 efi-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 efi-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 event-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 event-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 ext4-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 ext4-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 fat-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 fat-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 fb-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 fb-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 firewire-core-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 firewire-core-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 fuse-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 fuse-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 i2c-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 i2c-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 input-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 input-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 isofs-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 isofs-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 jfs-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 jfs-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 kernel-image-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 kernel-image-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 linux-image-4.19.0-9-686 | 4.19.118-2+deb10u1 | i386 linux-image-4.19.0-9-686-pae | 4.19.118-2+deb10u1 | i386 linux-image-4.19.0-9-rt-686-pae | 4.19.118-2+deb10u1 | i386 loop-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 loop-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 md-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 md-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 mmc-core-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 mmc-core-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 mmc-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 mmc-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 mouse-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 mouse-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 mtd-core-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 mtd-core-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 multipath-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 multipath-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 nbd-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 nbd-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 nic-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 nic-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 nic-pcmcia-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 nic-pcmcia-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 nic-shared-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 nic-shared-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 nic-usb-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 nic-usb-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 nic-wireless-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 nic-wireless-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 pata-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 pata-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 pcmcia-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 pcmcia-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 pcmcia-storage-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 pcmcia-storage-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 ppp-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 ppp-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 sata-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 sata-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 scsi-core-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 scsi-core-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 scsi-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 scsi-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 scsi-nic-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 scsi-nic-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 serial-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 serial-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 sound-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 sound-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 speakup-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 speakup-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 squashfs-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 squashfs-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 udf-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 udf-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 uinput-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 uinput-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 usb-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 usb-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 usb-serial-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 usb-serial-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 usb-storage-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 usb-storage-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 xfs-modules-4.19.0-9-686-di | 4.19.118-2+deb10u1 | i386 xfs-modules-4.19.0-9-686-pae-di | 4.19.118-2+deb10u1 | i386 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux-signed-i386) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 26 Sep 2020 09:11:23 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-9-common | 4.19.118-2+deb10u1 | all linux-headers-4.19.0-9-common-rt | 4.19.118-2+deb10u1 | all linux-support-4.19.0-9 | 4.19.118-2+deb10u1 | all ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux - based on source metadata) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 26 Sep 2020 08:52:40 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: libstd-rust-1.34 | 1.34.2+dfsg1-1 | amd64, arm64, armhf, i386, mips, mips64el, mipsel, ppc64el, s390x ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by rustc - based on source metadata) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 26 Sep 2020 08:54:18 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: librust-cbindgen-dev | 0.8.7-1 | amd64, arm64, armhf, i386, mips, mips64el, mipsel, ppc64el, s390x ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by rustc - based on source metadata) ---------------------------------------------- ========================================================================= apache2 (2.4.38-3+deb10u4) buster-security; urgency=high . * Import http2 modules from 2.4.46 (Closes: CVE-2020-9490, CVE-2020-11993) * Fix error out on HTTP header larger than 16K (Closes: CVE-2020-11984) * Fix bad regexp in mod_rewrite (Closes: CVE-2020-1927) * Fix uninitialized memory when proxying to a malicious FTP server (Closes: CVE-2020-1934) arch-test (0.15-2+deb10u1) buster; urgency=medium . * Fix s390x detection sometimes failing (Alexander Efremkin). ark (4:18.08.3-1+deb10u2) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Pass the ARCHIVE_EXTRACT_SECURE_SYMLINKS flag to libarchive (CVE-2020-24654) (Closes: #969437) ark (4:18.08.3-1+deb10u1) buster-security; urgency=medium . * CVE-2020-16116 asterisk (1:16.2.1~dfsg-1+deb10u2) buster; urgency=medium . * CVE-2019-15297: AST-2019-004 Crash when negotiating for T.38 with a declined stream (Closes: #940060) * CVE-2019-18790: AST-2019-006 SIP request can change address of a SIP peer (Closes: #947381) * CVE-2019-18610: AST-2019-007 AMI user could execute system commands (Closes: #947377) * Fix use-after-free with TEST_FRAMEWORK enabled (Closes: #966334) * Fix segfault in pjsip show history with IPv6 peers (Closes: #882145) bacula (9.4.2-2+deb10u1) buster; urgency=medium . * Backport fix from upstream for CVE-2020-11061: oversized digest strings allow a malicious client to cause a heap overflow in the director's memory base-files (10.3+deb10u6) buster; urgency=medium . * Change /etc/debian_version to 10.6, for Debian 10.6 point release. bind9 (1:9.11.5.P4+dfsg-5.1+deb10u2) buster-security; urgency=high . [ Salvatore Bonaccorso ] * [CVE-2020-8622] Properly handle malformed truncated responses to TSIG queries * [CVE-2020-8623] Fix crash in pk11_numbits() with crafted packet when native-pkcs11 is used * Wait more than 1 second for NSEC3 chain changes * [CVE-2020-8624] Fix processing of "update-policy" rules of type "subdomain" (Closes: #966497) . [ Ondřej Surý ] * [CVE-2020-8619]: It was possible to trigger a INSIST when a zone with interior (non-leaf) wildcard label calamares-settings-debian (10.0.20-1+deb10u4) buster; urgency=medium . * Disable displaymanager module, reverting the change from deb10u2 (Closes: #968267) cargo (0.43.1-3~deb10u1) buster; urgency=medium . * Non-maintainer upload. * Backport to buster. * Vendor libgit2, the system one is too old. * Revert changes to the cargo wrapper: use debian/DEB_CARGO_PACKAGE rather than DESTDIR as the latter is not automatically set by buster's debhelper. * Bump build-dependency on rustc to 1.41. cargo (0.43.1-2) unstable; urgency=medium . * cargo-debian-wrapper: don't install /usr/.crates2.json. (Closes: #958301) cargo (0.43.1-1) unstable; urgency=medium . [ Fabian Grünbichler ] * New upstream release. cargo (0.40.0-3) unstable; urgency=medium . * debian cargo wrapper: drop DEB_CARGO_PACKAGE in favour of the more standardised DESTDIR. * Experimental riscv64 support. cargo (0.40.0-2) unstable; urgency=medium . * Restore patch for pkg-config crate to auto-detect Debian cross-compiling. * Add patch for backtrace-sys to auto-detect Debian cross-compiling. cargo (0.40.0-1) unstable; urgency=medium . [ Sylvestre Ledru ] * Ship the zsh completion (Closes: #941437) . [ Ximin Luo ] * New upstream release. cargo (0.37.0-3) unstable; urgency=medium . * Update 2001_more_portable_rustflags.patch, fixes mips FTBFS cargo (0.37.0-2) unstable; urgency=medium . * Bump serde vendored crate version up to 1.0.96 to avoid issue when compiling with atomics (the default). cargo (0.37.0-1) unstable; urgency=medium . * New upstream release. chocolate-doom (3.0.0-4+deb10u1) buster; urgency=medium . * CVE-2020-14983 chrony (3.4-4+deb10u1) buster; urgency=medium . * debian/patches/: - Add create-new-file-when-writing-pidfile.patch to prevent symlink race when writing to PID file (CVE-2020-14367). . * debian/tests/: - Fix a regression when running upstream-simulation-test-suite autopkgtest on Buster. . [ Matt Corallo ] * debian/usr.sbin.chronyd: - Fix temperature reading. (Closes: #970421) debian-installer (20190702+deb10u6) buster; urgency=medium . * Bump Linux ABI to 4.19.0-11. debian-installer-netboot-images (20190702+deb10u6) buster; urgency=medium . * Update to 20190702+deb10u6, from buster-proposed-updates. diaspora-installer (0.7.6.1+debian1+deb10u1) buster; urgency=medium . * Use --frozen option to bundle install to use upstream Gemfile.lock * Don't exclude Gemfile.lock during upgrades * Don't overiwrite config/oidc_key.pem during upgrades * Make config/schedule.yml writeable (Closes: #926968) dojo (1.14.2+dfsg1-1+deb10u2) buster; urgency=medium . * Team upload * Fix prototype pollution in deepCopy method (Closes: #953585, CVE-2020-5258) * Fix Prototype Pollution in jqMix method (Closes: #953587, CVE-2020-5259) dovecot (1:2.3.4.1-5+deb10u4) buster; urgency=medium . * Import upstream fix for dsync sieve filter sync regression (Closes: #930919) * userdb-passwd: Fix getpwent errno handling (Closes: #928492) dovecot (1:2.3.4.1-5+deb10u3) buster-security; urgency=high . * Fix CVE-2020-12100 - Receiving mail with deeply nested MIME parts leads to resource exhaustion as Dovecot attempts to parse it. * CVE-2020-12673 - Dovecot's NTLM implementation does not correctly check message buffer size, which leads to reading past allocation which can lead to crash. * CVE-2020-12674 - Dovecot's RPA mechanism implementation accepts zero-length message, which leads to assert-crash later on. facter (3.11.0-2+deb10u2) buster; urgency=medium . * Change Google GCE Metadata endpoint from "v1beta1" to "v1". Adds patch debian/patches/FACT-2018-update-gce-metadata-endpoint.patch (Closes: #966374) firefox-esr (68.12.0esr-1~deb10u1) buster-security; urgency=medium . * New upstream release * Fixes for mfsa2020-37, also known as CVE-2020-15664 and CVE-2020-15669. firefox-esr (68.11.0esr-1) unstable; urgency=medium . * New upstream release * Fixes for mfsa2020-31, also known as: CVE-2020-15652, CVE-2020-6514, CVE-2020-6463, CVE-2020-15659. firefox-esr (68.11.0esr-1~deb10u1) buster-security; urgency=medium . * New upstream release * Fixes for mfsa2020-31, also known as: CVE-2020-15652, CVE-2020-6514, CVE-2020-6463, CVE-2020-15659. firefox-esr (68.10.0esr-1) unstable; urgency=medium . * New upstream release * Fixes for mfsa2020-25, also known as: CVE-2020-12417, CVE-2020-12418, CVE-2020-12419, CVE-2020-12420, CVE-2020-12421. firejail (0.9.58.2-2+deb10u1) buster-security; urgency=high . * Import security fixes for CVE-2020-17367 and CVE-2020-17368: - don't interpret output arguments after end-of-options tag - don't pass command line through shell when redirecting output ghostscript (9.27~dfsg-2+deb10u4) buster-security; urgency=medium . * CVE-2020-16287 CVE-2020-16288 CVE-2020-16289 CVE-2020-16290 * CVE-2020-16291 CVE-2020-16292 CVE-2020-16293 CVE-2020-16294 * CVE-2020-16295 CVE-2020-16296 CVE-2020-17538 CVE-2020-16297 * CVE-2020-16298 CVE-2020-16299 CVE-2020-16300 CVE-2020-16301 * CVE-2020-16302 CVE-2020-16303 CVE-2020-16304 CVE-2020-16305 * CVE-2020-16306 CVE-2020-16307 CVE-2020-16308 CVE-2020-16309 * CVE-2020-16310 gnome-maps (3.30.3.1-0+deb10u1) buster; urgency=medium . * Non-maintainer upload * New upstream release - Make the shape layer renderer use the tile size specified in the dynamic service file, fixing an issue with misaligned shape layer (GeoJSON, GPX, KML) rendering with the new 512 pixel tile - Update Icelandic translation gnome-shell (3.30.2-11~deb10u2) buster; urgency=medium . * Team upload . [ Mike Gabriel ] * debian/patches: + Add loginDialog-*_CVE-2020-17498.patch. loginDialog: Reset auth prompt on vt switch before fade in. (Closes: #968311. CVE-2020-17489). gnome-weather (3.26.0-6~deb10u1) buster; urgency=medium . * Team upload * Upload to stable to fix #935090 * d/gbp.conf: Set packaging and upstream branches for Debian 10 stable updates . gnome-weather (3.26.0-6) unstable; urgency=medium . * Team upload * d/p/app-Use-find_nearest_city-instead-of-new_detached.patch, d/p/shared-world.js-don-t-use-detached-location-from-settings.patch: Add patches from version 3.32.1 to prevent a crash when the locations configured are invalid. In particular, this is a prerequisite for correcting the airport code for Lima in #935075, because otherwise, gnome-weather would read the old airport code from dconf on startup, and crash. Thanks to Diego Escalante Urrelo. (Closes: #935090) * d/gbp.conf: Set packaging branch to debian/unstable. debian/master is now tracking newer GNOME releases. grunt (1.0.1-8+deb10u1) buster; urgency=medium . * Team upload * Use `safeLoad` for loading YML files via `file.readYAML` (Closes: #969668, CVE-2020-7729) gssdp (1.0.5-0+deb10u1) buster; urgency=medium . * New upstream stable release. * Add get_address_mask needed by gupnp for the CVE-2020-12695 fix. gupnp (1.0.5-0+deb10u1) buster; urgency=medium . * New upstream stable release. * CVE-2020-12695: CallStranger prevention. + Needs GSSDP 1.0.5. * Fix a UAF in the CVE-2020-12695 changes. haproxy (1.8.19-1+deb10u3) buster; urgency=medium . * d/logrotate.conf: use rsyslog helper instead of SysV init script. Closes: #946973. * d/patches: reject messages where "chunked" is missing from transfer-encoding. CVE-2019-18277. icinga2 (2.10.3-2+deb10u1) buster; urgency=medium . * Team upload. * Update branch in gbp.conf & Vcs-Git URL. * Add upstream patch to fix CVE-2020-14004. (closes: #970252) icingaweb2 (2.6.2-3+deb10u1) buster-security; urgency=high . * Team upload. * Update branch in gbp.conf & Vcs-Git URL. * Add upstream patch to fix CVE-2020-24368. (closes: #968833) incron (0.5.12-1+deb10u1) buster; urgency=medium . * Add a patch to fix cleanup of zombie processes (Closes: #930526) inetutils (2:1.9.4-7+deb10u1) buster; urgency=medium . * CVE-2020-10188 (Closes: #956084) inspircd (2.0.27-1+deb10u1) buster-security; urgency=high . * Patch denial-of-service security vulnerabilities (Closes: #960650) + in m_mysql (CVE-2019-20917 / InspIRCd Security Advisory 2019-02) + in m_pgsql (CVE-2020-25269 / InspIRCd Security Advisory 2020-01) json-c (0.12.1+ds-2+deb10u1) buster-security; urgency=high . * d/patches/611.patch: Add upstream patch to fix CVE-2020-12762 lemonldap-ng (2.0.2+ds-7+deb10u5) buster-security; urgency=high . * Fix Nginx configuration files in documentation (Closes: CVE-2020-24660) * Add debian/NEWS entry libcommons-compress-java (1.18-2+deb10u1) buster; urgency=medium . * Team upload. * Add patch for CVE-2019-12402 (Closes: #939610) libdbi-perl (1.642-1+deb10u1) buster; urgency=medium . * Fix memory corruption in XS functions when Perl stack is reallocated (Closes: CVE-2020-14392) * Fix a buffer overflow on an overlong DBD class name (Closes: CVE-2020-14393) * Fix a NULL profile dereference in dbi_profile() (Closes: CVE-2019-20919) libvncserver (0.9.11+dfsg-1.3+deb10u4) buster; urgency=medium . * CVE-2019-20839: libvncclient: bail out if unix socket name would overflow. * CVE-2020-14397: libvncserver: add missing NULL pointer checks. * CVE-2020-14399: libvncclient: fix pointer aliasing/alignment issue. * CVE-2020-14400: libvncserver: fix pointer aliasing/alignment issue. * CVE-2020-14401: libvncserver: scale: cast to 64 bit before shifting. * CVE-2020-14402, CVE-2020-14403, CVE-2020-14404: libvncserver: encodings: prevent OOB accesses. * CVE-2020-14405: libvncclient/rfbproto: limit max textchat size. libx11 (2:1.6.7-1+deb10u1) buster; urgency=medium . * CVE-2020-14344 * CVE-2020-14363 (Closes: #969008) lighttpd (1.4.53-4+deb10u1) buster; urgency=high . [ Glenn Strauss ] * QA upload. * backport security, bug, portability fixes from lighttpd 1.4.54, 1.4.55 + mod_evhost, mod_flv_streaming: [regression] %0 pattern does not match hostnames without the domain part https://redmine.lighttpd.net/issues/2932 + mod_magnet: Lighttpd crashes on wrong return type in lua script https://redmine.lighttpd.net/issues/2938 + failed assertion on incoming bad request with server.error-handler https://redmine.lighttpd.net/issues/2941 + mod_wstunnel: fix wstunnel.ping-interval for big-endian architectures https://redmine.lighttpd.net/issues/2944 + fix abort in server.http-parseopts with url-path-2f-decode enabled https://redmine.lighttpd.net/issues/2945 + remove repeated slashes in server.http-parseopts with url-path-dotseg-remove, including leading "//" + [regression][Bisected] lighttpd uses way more memory with POST since 1.4.52 https://redmine.lighttpd.net/issues/2948 (closes: #954759) + OPTIONS should return 2xx status for non-existent resources if Allow is set https://redmine.lighttpd.net/issues/2939 + use high precision stat timestamp (on systems where available) in etag + mod_authn_ldap/mod_cgi race condition, "Can't contact LDAP server" https://redmine.lighttpd.net/issues/2940 + SUN_LEN in sock_addr.c (1.4.53, 1.4.54) https://redmine.lighttpd.net/issues/2962 + Embedded vim command line in conf file with no comment (#) hangs server https://redmine.lighttpd.net/issues/2980 + mod_authn_gssapi: 500 if fail to delegate creds https://redmine.lighttpd.net/issues/2967 + mod_authn_gssapi: option to store delegated creds https://redmine.lighttpd.net/issues/2967 + mod_auth: require digest uri= match original URI HTTP digest authentication not compatible with some clients https://redmine.lighttpd.net/issues/2974 + mod_auth: send Authentication-Info nextnonce when nonce is approaching expiration + mod_auth: http_auth_const_time_memeq improvement + mod_auth: http_auth_const_time_memeq_pad() + mod_auth: use constant time comparison when comparing digests + stricter request header parsing: reject WS following header field-name https://redmine.lighttpd.net/issues/2985 + stricter request header parsing: reject Transfer-Encoding + Content-Length https://redmine.lighttpd.net/issues/2985 + mod_openssl: reject invalid ALPN + mod_accesslog: parse multiple cookies https://redmine.lighttpd.net/issues/2986 + preserve %2b and %2B in query string https://redmine.lighttpd.net/issues/2999 + mod_auth: close connection after bad password mitigation slows down brute force password attacks https://redmine.lighttpd.net/boards/3/topics/8885 + do not accept() > server.max-connections + update /var/run -> /run for systemd (closes: #929203) lilypond (2.19.81+really-2.18.2-13+deb10u1) buster-security; urgency=medium . * Disable embedded-postscript and embedded-svg in safe mode linux (4.19.146-1) buster; urgency=medium . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.133 - [s390x] KVM: s390: reduce number of IO pins to 1 - regmap: fix alignment issue - [arm64,armhf] drm/tegra: hub: Do not enable orphaned window group - [arm64,armhf] gpu: host1x: Detach driver on unregister - spi: spidev: fix a race between spidev_release and spidev_remove - spi: spidev: fix a potential use-after-free in spidev_release() - ixgbe: protect ring accesses with READ- and WRITE_ONCE - i40e: protect ring accesses with READ- and WRITE_ONCE - [x86] drm: panel-orientation-quirks: Add quirk for Asus T101HA panel - [x86] drm: panel-orientation-quirks: Use generic orientation-data for Acer S1003 - cifs: update ctime and mtime during truncate - [armhf] imx6: add missing put_device() call in imx6q_suspend_init() - scsi: mptscsih: Fix read sense data size - [arm64] usb: dwc3: pci: Fix reference count leak in dwc3_pci_resume_work - block: release bip in a right way in error path - nvme-rdma: assign completion vector correctly - [x86] entry: Increase entry_stack size to a full page - net: cxgb4: fix return error value in t4_prep_fw - smsc95xx: check return value of smsc95xx_reset - smsc95xx: avoid memory leak in smsc95xx_bind - [arm64] net: hns3: fix use-after-free when doing self test - [x86] ALSA: compress: fix partial_drain completion state - nbd: Fix memory leak in nbd_add_socket - cxgb4: fix all-mask IP address comparison - bnxt_en: fix NULL dereference in case SR-IOV configuration fails - [arm64] net: macb: mark device wake capable when "magic-packet" property present - ALSA: opl3: fix infoleak in opl3 - ALSA: hda - let hs_mic be picked ahead of hp_mic - ALSA: usb-audio: add quirk for MacroSilicon MS2109 - [arm64] KVM: Fix definition of PAGE_HYP_DEVICE - [arm64] KVM: Stop clobbering x0 for HVC_SOFT_RESTART - [x86] KVM: bit 8 of non-leaf PDPEs is not reserved - [x86] KVM: Inject #GP if guest attempts to toggle CR4.LA57 in 64-bit mode - [x86] KVM: Mark CR4.TSD as being possibly owned by the guest - kallsyms: Refactor kallsyms_show_value() to take cred - kernel: module: Use struct_size() helper - module: Refactor section attr into bin attribute - module: Do not expose section addresses to non-CAP_SYSLOG - kprobes: Do not expose probe addresses to non-CAP_SYSLOG - bpf: Check correct cred for CAP_SYSLOG in bpf_dump_raw_ok() - btrfs: fix fatal extent_buffer readahead vs releasepage race - drm/radeon: fix double free - dm: use noio when sending kobject event - [s390x] mm: fix huge pte soft dirty copying https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.134 - perf: Make perf able to build with latest libbfd - genetlink: remove genl_bind - ipv4: fill fl4_icmp_{type,code} in ping_v4_sendmsg - l2tp: remove skb_dst_set() from l2tp_xmit_skb() - llc: make sure applications use ARPHRD_ETHER - net: Added pointer check for dst->ops->neigh_lookup in dst_neigh_lookup_skb - net_sched: fix a memory leak in atm_tc_init() - net: usb: qmi_wwan: add support for Quectel EG95 LTE modem - tcp: fix SO_RCVLOWAT possible hangs under high mem pressure - tcp: make sure listeners don't initialize congestion-control state - tcp: md5: add missing memory barriers in tcp_md5_do_add()/tcp_md5_hash_key() - tcp: md5: do not send silly options in SYNCOOKIES - tcp: md5: refine tcp_md5_do_add()/tcp_md5_hash_key() barriers - tcp: md5: allow changing MD5 keys in all socket states - cgroup: fix cgroup_sk_alloc() for sk_clone_lock() (CVE-2020-14356) (Closes: #966846) - cgroup: Fix sock_cgroup_data on big-endian. - sched: consistently handle layer3 header accesses in the presence of VLANs - vlan: consolidate VLAN parsing code and limit max parsing depth - [arm64] drm/msm: fix potential memleak in error branch - [arm64] alternatives: use subsections for replacement sequences - [arm64,x86] tpm_tis: extra chip->ops check on error path in tpm_tis_core_init - gfs2: read-only mounts should grab the sd_freeze_gl glock - [i386] i2c: eg20t: Load module automatically if ID matches - [arm64] alternatives: don't patch up internal branches - [armhf] iio: mma8452: Add missed iio_device_unregister() call in mma8452_probe() - [armhf] net: dsa: bcm_sf2: Fix node reference count - of: of_mdio: Correct loop scanning logic - Revert "usb/ohci-platform: Fix a warning when hibernating" - [arm64,armhf] Revert "usb/xhci-plat: Set PM runtime as active on resume" - Revert "usb/ehci-platform: Set PM runtime as active on resume" - [arm64,armhf] net: sfp: add support for module quirks - [arm64,armhf] net: sfp: add some quirks for GPON modules - HID: quirks: Remove ITE 8595 entry from hid_have_special_driver - ALSA: usb-audio: Create a registration quirk for Kingston HyperX Amp (0951:16d8) - mmc: sdhci: do not enable card detect interrupt for gpio cd type - ALSA: usb-audio: Rewrite registration quirk handling - [x86] ACPI: video: Use native backlight on Acer Aspire 5783z - ALSA: usb-audio: Add registration quirk for Kingston HyperX Cloud Alpha S - [x86] ACPI: video: Use native backlight on Acer TravelMate 5735Z - ALSA: usb-audio: Add registration quirk for Kingston HyperX Cloud Flight S - [arm64,armhf] phy: sun4i-usb: fix dereference of pointer phy0 before it is null checked - [armhf] spi: spi-sun6i: sun6i_spi_transfer_one(): fix setting of clock rate - [x86] staging: comedi: verify array index is correct before using it - regmap: debugfs: Don't sleep while atomic for fast_io regmaps - [x86] copy_xstate_to_kernel: Fix typo which caused GDB regression - apparmor: ensure that dfa state tables have entries - perf stat: Zero all the 'ena' and 'run' array slot stats for interval mode - [armhf] mtd: rawnand: marvell: Use nand_cleanup() when the device is not yet registered - [armhf] mtd: rawnand: marvell: Fix probe error path - mtd: rawnand: timings: Fix default tR_max and tCCS_min timings - HID: magicmouse: do not set up autorepeat - HID: quirks: Always poll Obins Anne Pro 2 keyboard - HID: quirks: Ignore Simply Automated UPB PIM - ALSA: line6: Perform sanity check for each URB creation - ALSA: line6: Sync the pending work cancel at disconnection - ALSA: usb-audio: Fix race against the error recovery URB submission - [x86] ALSA: hda/realtek - change to suitable link model for ASUS platform - [x86] ALSA: hda/realtek - Enable Speaker for ASUS UX533 and UX534 - [arm*] usb: dwc2: Fix shutdown callback in platform - [arm64,armhf] usb: chipidea: core: add wakeup support for extcon - USB: serial: iuu_phoenix: fix memory corruption - USB: serial: cypress_m8: enable Simply Automated UPB PIM - USB: serial: ch341: add new Product ID for CH340 - USB: serial: option: add GosunCn GM500 series - USB: serial: option: add Quectel EG95 LTE modem - [x86] virt: vbox: Fix VBGL_IOCTL_VMMDEV_REQUEST_BIG and _LOG req numbers to match upstream - [x86] virt: vbox: Fix guest capabilities mask check - [arm64] virtio: virtio_console: add missing MODULE_DEVICE_TABLE() for rproc serial - ovl: inode reference leak in ovl_is_inuse true case. - ovl: relax WARN_ON() when decoding lower directory file handle - ovl: fix unneeded call to ovl_change_flags() - fuse: Fix parameter for FS_IOC_{GET,SET}FLAGS - Revert "zram: convert remaining CLASS_ATTR() to CLASS_ATTR_RO()" (CVE-2020-10781) - [x86] mei: bus: don't clean driver pointer - timer: Prevent base->clk from moving backward - timer: Fix wheel index calculation on last level - [mips*] Fix build for LTS kernel caused by backporting lpj adjustment - hwmon: (emc2103) fix unable to change fan pwm1_enable attribute - [powerpc*] book3s64/pkeys: Fix pkey_access_permitted() for execute disable pkey - [x86] intel_th: pci: Add Jasper Lake CPU support - [x86] intel_th: pci: Add Tiger Lake PCH-H support - [x86] intel_th: pci: Add Emmitsburg PCH support - [x86] intel_th: Fix a NULL dereference when hub driver is not loaded - [arm*] thermal/drivers/cpufreq_cooling: Fix wrong frequency converted from power - [arm64] ptrace: Override SPSR.SS when single-stepping is enabled - [arm64] ptrace: Consistently use pseudo-singlestep exceptions - [arm64] compat: Ensure upper 32 bits of x0 are zero on syscall return - sched: Fix unreliable rseq cpu_id for new tasks - sched/fair: handle case of task_h_load() returning 0 - genirq/affinity: Handle affinity setting on inactive interrupts correctly - printk: queue wake_up_klogd irq_work only if per-CPU areas are ready - libceph: don't omit recovery_deletes in target_copy() - rxrpc: Fix trace string https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.135 - mac80211: allow rx of mesh eapol frames with default rx key - scsi: scsi_transport_spi: Fix function pointer check - net: sky2: initialize return of gm_phy_read - drm/nouveau/i2c/g94-: increase NV_PMGR_DP_AUXCTL_TRANSACTREQ timeout - fuse: fix weird page warning - [x86] irqdomain/treewide: Keep firmware node unconditionally allocated - SUNRPC reverting d03727b248d0 ("NFSv4 fix CLOSE not waiting for direct IO compeletion") - tipc: clean up skb list lock handling on send path - IB/umem: fix reference count leak in ib_umem_odp_get() - uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression - ALSA: info: Drop WARN_ON() from buffer NULL sanity check - btrfs: fix double free on ulist after backref resolution failure - btrfs: fix mount failure caused by race with umount - btrfs: fix page leaks after failure to lock page for delalloc - bnxt_en: Fix race when modifying pause settings. - [x86] hippi: Fix a size used in a 'pci_free_consistent()' in an error handling path - ax88172a: fix ax88172a_unbind() failures - ieee802154: fix one possible memleak in adf7242_probe - [arm64,armhf] drm: sun4i: hdmi: Fix inverted HPD result - [arm64,armhf] net: smc91x: Fix possible memory leak in smc_drv_probe() - bonding: check error value of register_netdevice() immediately - qed: suppress "don't support RoCE & iWARP" flooding on HW init - ipvs: fix the connection sync failed in some cases - bonding: check return value of register_netdevice() in bond_newlink() - serial: exar: Fix GPIO configuration for Sealevel cards based on XR17V35X - [arm64,x86] HID: i2c-hid: add Mediacom FlexBook edge13 to descriptor override - HID: alps: support devices with report id 2 - HID: steam: fixes race in handling device list. - HID: apple: Disable Fn-key key-re-mapping on clone keyboards - [arm64] dmaengine: tegra210-adma: Fix runtime PM imbalance on error - Input: add `SW_MACHINE_COVER` - regmap: dev_get_regmap_match(): fix string comparison - hwmon: (aspeed-pwm-tacho) Avoid possible buffer overflow - [amd64] dmaengine: ioat setting ioat timeout as module parameter - [x86] Input: synaptics - enable InterTouch for ThinkPad X1E 1st gen - [arm64] Use test_tsk_thread_flag() for checking TIF_SINGLESTEP - [arm*] binder: Don't use mmput() from shrinker function. - usb: xhci: Fix ASM2142/ASM3142 DMA addressing - Revert "cifs: Fix the target file was deleted when rename failed." (Closes: #966917) - [x86] staging: wlan-ng: properly check endpoint types - [x86] staging: comedi: addi_apci_1032: check INSN_CONFIG_DIGITAL_TRIG shift - [x86] staging: comedi: ni_6527: fix INSN_CONFIG_DIGITAL_TRIG support - [x86] staging: comedi: addi_apci_1500: check INSN_CONFIG_DIGITAL_TRIG shift - [x86] staging: comedi: addi_apci_1564: check INSN_CONFIG_DIGITAL_TRIG shift - serial: 8250: fix null-ptr-deref in serial8250_start_tx() - fbdev: Detect integer underflow at "struct fbcon_ops"->clear_margins. - vt: Reject zero-sized screen buffer size. - mm/memcg: fix refcount error while moving and swapping - mm: memcg/slab: synchronize access to kmem_cache dying flag using a spinlock - mm: memcg/slab: fix memory leak at non-root kmem_cache destroy - io-mapping: indicate mapping failure - drm/amdgpu: Fix NULL dereference in dpm sysfs handlers - [x86] vmlinux.lds: Page-align end of ..page_aligned sections - [x86] ASoC: rt5670: Add new gpio1_is_ext_spk_en quirk and enable it on the Lenovo Miix 2 10 - dm integrity: fix integrity recalculation that is improperly skipped - ath9k: Fix general protection fault in ath9k_hif_usb_rx_cb - ath9k: Fix regression with Atheros 9271 https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.136 - AX.25: Fix out-of-bounds read in ax25_connect() - AX.25: Prevent out-of-bounds read in ax25_sendmsg() - dev: Defer free of skbs in flush_backlog - ip6_gre: fix null-ptr-deref in ip6gre_init_net() - net-sysfs: add a newline when printing 'tx_timeout' by sysfs - net: udp: Fix wrong clean up for IS_UDPLITE macro - rxrpc: Fix sendmsg() returning EPIPE due to recvmsg() returning ENODATA - tcp: allow at most one TLP probe per flight - AX.25: Prevent integer overflows in connect and sendmsg - sctp: shrink stream outq only when new outcnt < old outcnt - sctp: shrink stream outq when fails to do addstream reconf - udp: Copy has_conns in reuseport_grow(). - udp: Improve load balancing for SO_REUSEPORT. - rtnetlink: Fix memory(net_device) leak when ->newlink fails - regmap: debugfs: check count when read regmap file https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.137 - [x86] crypto: ccp - Release all allocated memory if sha type is invalid (CVE-2019-18808) - media: rc: prevent memory leak in cx23888_ir_probe (CVE-2019-19054) - iio: imu: adis16400: fix memory leak (CVE-2019-19061) - [x86] drm/amdgpu: fix multiple memory leaks in acp_hw_init (CVE-2019-19067) - tracing: Have error path in predicate_parse() free its allocated memory (CVE-2019-19072) - ath9k_htc: release allocated buffer if timed out (CVE-2019-19073) - ath9k: release allocated buffer if timed out (CVE-2019-19074) - drm/amd/display: prevent memory leak (CVE-2019-19082) - btrfs: inode: Verify inode mode to avoid NULL pointer dereference (CVE-2019-19813, CVE-2019-19816) - sctp: implement memory accounting on tx path (CVE-2019-3874) - Btrfs: fix selftests failure due to uninitialized i_mode in test inodes - PCI/ASPM: Disable ASPM on ASMedia ASM1083/1085 PCIe-to-PCI bridge - 9p/trans_fd: Fix concurrency del of req_list in p9_fd_cancelled/p9_read_work - wireless: Use offsetof instead of custom macro. - [armel,armhf] 8986/1: hw_breakpoint: Don't invoke overflow handler on uaccess watchpoints - Revert "drm/amdgpu: Fix NULL dereference in dpm sysfs handlers" - drm/amdgpu: Prevent kernel-infoleak in amdgpu_info_ioctl() - drm: hold gem reference until object is no longer accessed - rds: Prevent kernel-infoleak in rds_notify_queue_get() - xfs: fix missed wakeup on l_flush_wait - xfrm: Fix crash when the hold queue is used. - net/mlx5: Verify Hardware supports requested ptp function on a given pin - net: lan78xx: add missing endpoint sanity check - net: lan78xx: fix transfer-buffer memory leak - mlx4: disable device on shutdown - bpf: Fix map leak in HASH_OF_MAPS map - mac80211: mesh: Free ie data when leaving mesh - mac80211: mesh: Free pending skb when destroying a mpath - [arm64] alternatives: move length validation inside the subsection - [arm64] csum: Fix handling of bad packets - Bluetooth: fix kernel oops in store_pending_adv_report - net/mlx5e: fix bpf_prog reference count leaks in mlx5e_alloc_rq - qed: Disable "MFW indication via attention" SPAM every 5 minutes - [amd64] x86/unwind/orc: Fix ORC for newly forked tasks - cxgb4: add missing release on skb in uld_send() - xen-netfront: fix potential deadlock in xennet_remove() - [x86] KVM: LAPIC: Prevent setting the tscdeadline timer if the lapic is hw disabled - [x86] i8259: Use printk_deferred() to prevent deadlock https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.138 - random32: update the net random state on interrupt and activity (CVE-2020-16166) - [armel] ARM: percpu.h: fix build error - random: fix circular include dependency on arm64 after addition of percpu.h - random32: remove net_rand_state from the latent entropy gcc plugin - random32: move the pseudo-random 32-bit definitions to prandom.h - ext4: fix direct I/O read error https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.139 - USB: serial: qcserial: add EM7305 QDL product ID - USB: iowarrior: fix up report size handling for some devices - usb: xhci: define IDs for various ASMedia host controllers - usb: xhci: Fix ASMedia ASM1142 DMA addressing - Revert "ALSA: hda: call runtime_allow() for all hda controllers" - [arm*] staging: android: ashmem: Fix lockdep warning for write operation - Bluetooth: Fix slab-out-of-bounds read in hci_extended_inquiry_result_evt() - Bluetooth: Prevent out-of-bounds read in hci_inquiry_result_evt() - Bluetooth: Prevent out-of-bounds read in hci_inquiry_result_with_rssi_evt() - [arm*] binder: Prevent context manager from incrementing ref 0 - vgacon: Fix for missing check in scrollback handling (CVE-2020-14331) - mtd: properly check all write ioctls for permissions - net/9p: validate fds in p9_fd_open - drm/nouveau/fbcon: fix module unload when fbcon init has failed for some reason - drm/nouveau/fbcon: zero-initialise the mode_cmd2 structure - usb: hso: check for return value in hso_serial_common_create() - firmware: Fix a reference count leak. - cfg80211: check vendor command doit pointer before use - igb: reinit_locked() should be called with rtnl_lock - atm: fix atm_dev refcnt leaks in atmtcp_remove_persistent - tools lib traceevent: Fix memory leak in process_dynamic_array_len - [x86] Drivers: hv: vmbus: Ignore CHANNELMSG_TL_CONNECT_RESULT(23) - xattr: break delegations in {set,remove}xattr - ipv4: Silence suspicious RCU usage warning - ipv6: fix memory leaks on IPV6_ADDRFORM path - vxlan: Ensure FDB dump is performed under RCU - net: lan78xx: replace bogus endpoint lookup - [x86] hv_netvsc: do not use VF device if link is down - net: gre: recompute gre csum for sctp over gre tunnels - [arm64] net: thunderx: use spin_lock_bh in nicvf_set_rx_mode_task() - openvswitch: Prevent kernel-infoleak in ovs_ct_put_key() - Revert "vxlan: fix tos value before xmit" - rxrpc: Fix race between recvmsg and sendmsg on immediate call failure - i40e: add num_vectors checker in iwarp handler - i40e: Wrong truncation from u16 to u8 - i40e: Fix of memory leak and integer truncation in i40e_virtchnl.c - i40e: Memory leak in i40e_config_iwarp_qvlist https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.140 - tracepoint: Mark __tracepoint_string's __used - HID: input: Fix devices that return multiple bytes in battery report - cgroup: add missing skcd->no_refcnt check in cgroup_sk_clone() - [x86] mce/inject: Fix a wrong assignment of i_mce.status - sched/fair: Fix NOHZ next idle balance - sched: correct SD_flags returned by tl->sd_flags() - EDAC: Fix reference count leaks - [x86] platform/x86: intel-hid: Fix return value check in check_acpi_dev() - [x86] platform/x86: intel-vbtn: Fix return value check in check_acpi_dev() - [armhf] drm/tilcdc: fix leak & null ref in panel_connector_get_modes - Bluetooth: add a mutex lock to avoid UAF in do_enale_set - loop: be paranoid on exit and prevent new additions / removals - fs/btrfs: Add cond_resched() for try_release_extent_mapping() stalls - drm/amdgpu: avoid dereferencing a NULL pointer - drm/radeon: Fix reference count leaks caused by pm_runtime_get_sync - [x86] crypto: aesni - Fix build with LLVM_IAS=1 - video: fbdev: neofb: fix memory leak in neo_scan_monitor() - md-cluster: fix wild pointer of unlock_all_bitmaps() - [arm64] dts: hisilicon: hikey: fixes to comply with adi, adv7533 DT binding - [armhf] drm/etnaviv: fix ref count leak via pm_runtime_get_sync - drm/nouveau: fix multiple instances of reference count leaks - drm/debugfs: fix plain echo to connector "force" attribute - drm/radeon: disable AGP by default - mm/mmap.c: Add cond_resched() for exit_mmap() CPU stalls - brcmfmac: keep SDIO watchdog running when console_interval is non-zero - brcmfmac: To fix Bss Info flag definition Bug - brcmfmac: set state of hanger slot to FREE when flushing PSQ - iwlegacy: Check the return value of pcie_capability_read_*() - [arm64,armhf] gpu: host1x: debug: Fix multiple channels emitting messages simultaneously - usb: gadget: net2280: fix memory leak on probe error handling paths - dyndbg: fix a BUG_ON in ddebug_describe_flags - bcache: fix super block seq numbers comparision in register_cache_set() - [arm64,x86] ACPICA: Do not increment operation_region reference counts for field units - [arm64] drm/msm: ratelimit crtc event overflow error - [x86] agp/intel: Fix a memory leak on module initialisation failure - ath10k: Acquire tx_lock in tx error paths - [armhf] drm/etnaviv: Fix error path on failure to enable bus clk - [arm64] drm/arm: fix unintentional integer overflow on left shift - drm/mipi: use dcs write for mipi_dsi_dcs_set_tear_scanline - [powerpc*] cxl: Fix kobject memleak - drm/radeon: fix array out-of-bounds read and write issues - ipvs: allow connection reuse for unconfirmed conntrack - xfs: don't eat an EIO/ENOSPC writeback error when scrubbing data fork - xfs: fix reflink quota reservation accounting error - RDMA/rxe: Skip dgid check in loopback mode - PCI: Fix pci_cfg_wait queue locking problem - leds: core: Flush scheduled work for system suspend - [arm64,armhf] drm: panel: simple: Fix bpc for LG LB070WV8 panel - [armhf] phy: exynos5-usbdrd: Calibrating makes sense only for USB2.0 PHY - scsi: scsi_debug: Add check for sdebug_max_queue during module init - mwifiex: Prevent memory corruption handling keys - [powerpc*] vdso: Fix vdso cpu truncation - RDMA/qedr: SRQ's bug fixes - RDMA/rxe: Prevent access to wr->next ptr afrer wr is posted to send queue - [x86] staging: rtl8192u: fix a dubious looking mask before a shift - PCI/ASPM: Add missing newline in sysfs 'policy' - [powerpc*] book3s64/pkeys: Use PVR check instead of cpu feature - USB: serial: iuu_phoenix: fix led-activity helpers - usb: core: fix quirks_param_set() writing to a const pointer - [armhf] thermal: ti-soc-thermal: Fix reversed condition in ti_thermal_expose_sensor() - [mips*] OCTEON: add missing put_device() call in dwc3_octeon_device_init() - [arm*] usb: dwc2: Fix error path in gadget registration - [arm64,armhf] net: dsa: mv88e6xxx: MV88E6097 does not support jumbo configuration - RDMA/core: Fix return error value in _ib_modify_qp() to negative - Bluetooth: hci_h5: Set HCI_UART_RESET_ON_INIT to correct flags - Bluetooth: hci_serdev: Only unregister device if it was registered - [x86] PCI: Release IVRS table in AMD ACS quirk - [s390x] qeth: don't process empty bridge port events - [arm64,armhf] wl1251: fix always return 0 error - [amd64] net: ethernet: aquantia: Fix wrong return value - liquidio: Fix wrong return value in cn23xx_get_pf_num() - dlm: Fix kobject memleak - ocfs2: fix unbalanced locking - [arm64,armhf] pinctrl-single: fix pcs_parse_pinconf() return value - svcrdma: Fix page leak in svc_rdma_recv_read_chunk() - [x86] fsgsbase/64: Fix NULL deref in 86_fsgsbase_read_task - [amd64] crypto: aesni - add compatibility with IAS - af_packet: TPACKET_V3: fix fill status rwlock imbalance - net/nfc/rawsock.c: add CAP_NET_RAW check. - net: Set fput_needed iff FDPUT_FPUT is set - net: refactor bind_bucket fastreuse into helper - net: initialize fastreuse on inet_inherit_port - USB: serial: cp210x: re-enable auto-RTS on open - USB: serial: cp210x: enable usb generic throttle/unthrottle - [x86] ALSA: hda - fix the micmute led status for Lenovo ThinkCentre AIO - ALSA: usb-audio: Creative USB X-Fi Pro SB1095 volume knob support - ALSA: usb-audio: fix overeager device match for MacroSilicon MS2109 - ALSA: usb-audio: work around streaming quirk for MacroSilicon MS2109 - [x86] crypto: qat - fix double free in qat_uclo_create_batch_init_list - [x86] crypto: ccp - Fix use of merged scatterlists - [arm64] crypto: cpt - don't sleep of CRYPTO_TFM_REQ_MAY_SLEEP was not specified - bitfield.h: don't compile-time validate _val in FIELD_FIT - fs/minix: check return value of sb_getblk() - fs/minix: don't allow getting deleted inodes - fs/minix: reject too-large maximum file size - ALSA: usb-audio: add quirk for Pioneer DDJ-RB - 9p: Fix memory leak in v9fs_mount - drm/ttm/nouveau: don't call tt destroy callback on alloc failure. - NFS: Don't move layouts to plh_return_segs list while in use - NFS: Don't return layout segments that are in use - [arm64] cpufreq: dt: fix oops on armada37xx - include/asm-generic/vmlinux.lds.h: align ro_after_init - spi: spidev: Align buffers for DMA - [x86] irqdomain/treewide: Free firmware node after domain removal - xen/balloon: fix accounting in alloc_xenballooned_pages error path - xen/balloon: make the balloon wait interruptible https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.141 - smb3: warn on confusing error scenario with sec=krb5 - genirq/affinity: Make affinity setting if activated opt-in - [arm64,x86] PCI: hotplug: ACPI: Fix context refcounting in acpiphp_grab_context() - PCI: Mark AMD Navi10 GPU rev 0x00 ATS as broken - PCI: Add device even if driver attach failed - [arm64] PCI: qcom: Define some PARF params needed for ipq8064 SoC - [arm64] PCI: qcom: Add support for tx term offset for rev 2.1.0 - PCI: Probe bridge window attributes once at enumeration-time - btrfs: free anon block device right after subvolume deletion - btrfs: don't allocate anonymous block device for user invisible roots - btrfs: ref-verify: fix memory leak in add_block_entry - btrfs: don't traverse into the seed devices in show_devname - btrfs: open device without device_list_mutex - btrfs: fix messages after changing compression level by remount - btrfs: only search for left_info if there is no right_info in try_merge_free_space (CVE-2019-19448) - btrfs: fix memory leaks after failure to lookup checksums during inode logging - btrfs: fix return value mixup in btrfs_get_extent - cifs: Fix leak when handling lease break for cached root fid - [powerpc*] Allow 4224 bytes of stack expansion for the signal frame - [powerpc*] Fix circular dependency between percpu.h and mmu.h - [arm64] net: ethernet: stmmac: Disable hardware multicast filter - [arm64,armhf] net: stmmac: dwmac1000: provide multicast filter fallback - net/compat: Add missing sock updates for SCM_RIGHTS - md/raid5: Fix Force reconstruct-write io stuck in degraded raid5 - bcache: allocate meta data pages as compound pages - bcache: fix overflow in offset_to_stripe() - mac80211: fix misplaced while instead of if - driver core: Avoid binding drivers to dead devices - [mips*] CPU#0 is not hotpluggable - ocfs2: change slot number type s16 to u16 - mm/page_counter.c: fix protection usage propagation - ftrace: Setup correct FTRACE_FL_REGS flags for module - kprobes: Fix NULL pointer dereference at kprobe_ftrace_handler - tracing/hwlat: Honor the tracing_cpumask - tracing: Use trace_sched_process_free() instead of exit() for pid tracing - [x86] watchdog: f71808e_wdt: indicate WDIOF_CARDRESET support in watchdog_info.options - [x86] watchdog: f71808e_wdt: remove use of wrong watchdog_info option - [x86] watchdog: f71808e_wdt: clear watchdog timeout occurred flag - [powerpc*] pseries: Fix 64 bit logical memory block panic - module: Correctly truncate sysfs sections output - [armhf] drm/imx: imx-ldb: Disable both channels for split mode in enc->disable() - RDMA/ipoib: Return void from ipoib_ib_dev_stop() - RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() - USB: serial: ftdi_sio: make process-packet buffer unsigned - USB: serial: ftdi_sio: clean up receive processing - [armhf] gpu: ipu-v3: image-convert: Combine rotate/no-rotate irq handlers - dm rq: don't call blk_mq_queue_stopped() in dm_stop_queue() - [amd64] iommu/vt-d: Enforce PASID devTLB field mask - scsi: lpfc: nvmet: Avoid hang / use-after-free again when destroying targetport - watchdog: initialize device before misc_register - Input: sentelic - fix error return when fsp_reg_write fails - [x86] drm/vmwgfx: Use correct vmw_legacy_display_unit pointer - [x86] drm/vmwgfx: Fix two list_for_each loop exit tests - [arm64] net: qcom/emac: add missed clk_disable_unprepare in error path of emac_clks_phase1_init - nfs: Fix getxattr kernel panic and memory overflow (CVE-2020-25212) - fs/minix: set s_maxbytes correctly - fs/minix: fix block limit check for V1 filesystems - fs/minix: remove expected error message in block_to_path() - fs/ufs: avoid potential u32 multiplication overflow - khugepaged: retract_page_tables() remember to test exit - [arm64] dts: marvell: espressobin: add ethernet alias - [x86] drm: Added orientation quirk for ASUS tablet model T103HAF https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.142 - drm/vgem: Replace opencoded version of drm_gem_dumb_map_offset() - perf probe: Fix memory leakage when the probe point is not found - khugepaged: khugepaged_test_exit() check mmget_still_valid() - khugepaged: adjust VM_BUG_ON_MM() in __khugepaged_enter() - btrfs: export helpers for subvolume name/id resolution - btrfs: don't show full path of bind mounts in subvol= - btrfs: Move free_pages_out label in inline extent handling branch in compress_file_range - btrfs: inode: fix NULL pointer dereference if inode doesn't need compression - btrfs: sysfs: use NOFS for device creation - romfs: fix uninitialized memory leak in romfs_dev_read() - kernel/relay.c: fix memleak on destroy relay channel - mm: include CMA pages in lowmem_reserve at boot - mm, page_alloc: fix core hung in free_pcppages_bulk() - ext4: fix checking of directory entry validity for inline directories - jbd2: add the missing unlock_buffer() in the error path of jbd2_write_superblock() - [s390x] scsi: zfcp: Fix use-after-free in request timeout handlers - kthread: Do not preempt current task if it is going to call schedule() - spi: Prevent adding devices below an unregistering controller - scsi: ufs: Add DELAY_BEFORE_LPM quirk for Micron devices - [arm*] scsi: target: tcmu: Fix crash in tcmu_flush_dcache_range on ARM - media: budget-core: Improve exception handling in budget_register() - Input: psmouse - add a newline when printing 'proto' by sysfs - svcrdma: Fix another Receive buffer leak - xfs: fix inode quota reservation checks - jffs2: fix UAF problem - ceph: fix use-after-free for fsc->mdsc - [x86] cpufreq: intel_pstate: Fix cpuinfo_max_freq when MSR_TURBO_RATIO_LIMIT is 0 - scsi: libfc: Free skb in fc_disc_gpn_id_resp() for valid cases - virtio_ring: Avoid loop when vq is broken in virtqueue_poll - xfs: Fix UBSAN null-ptr-deref in xfs_sysfs_init - fs/signalfd.c: fix inconsistent return codes for signalfd4 - ext4: fix potential negative array index in do_split() (CVE-2020-14314) - ext4: don't allow overlapping system zones - i40e: Set RX_ONLY mode for unicast promiscuous on VLAN - i40e: Fix crash during removing i40e driver - [armhf] net: fec: correct the error path for regulator disable in probe - bonding: show saner speed for broadcast mode - bonding: fix a potential double-unregister - [s390x] runtime_instrumentation: fix storage key handling - [s390x] ptrace: fix storage key handling - [x86] ASoC: intel: Fix memleak in sst_media_open - [amd64,arm64] vfio/type1: Add proper error unwind for vfio_iommu_replay() - [x86] kvm: Toggling CR4.SMAP does not load PDPTEs in PAE mode - [x86] kvm: Toggling CR4.PKE does not load PDPTEs in PAE mode - efi: avoid error message when booting under Xen - afs: Fix NULL deref in afs_dynroot_depopulate() - bonding: fix active-backup failover for current ARP slave - net: ena: Prevent reset after device destruction - [x86] hv_netvsc: Fix the queue_mapping in netvsc_vf_xmit() - [armhf] net: dsa: b53: check for timeout - [powerpc*] pseries: Do not initiate shutdown when system is running on UPS - efi: add missed destroy_workqueue when efisubsys_init fails - epoll: Keep a reference on files added to the check list - do_epoll_ctl(): clean the failure exits up a bit - mm/hugetlb: fix calculation of adjust_range_if_pmd_sharing_possible - xen: don't reschedule in preemption off sections - clk: Evict unregistered clks from parent caches - KVM: Pass MMU notifier range flags to kvm_unmap_hva_range() - [arm64] KVM: Only reschedule if MMU_NOTIFIER_RANGE_BLOCKABLE is not set https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.143 - [powerpc*] 64s: Don't init FSCR_DSCR in __init_FSCR() - gre6: Fix reception with IP6_TNL_F_RCV_DSCP_COPY - net: Fix potential wrong skb->protocol in skb_vlan_untag() - net/smc: Prevent kernel-infoleak in __smc_diag_dump() - tipc: fix uninit skb->data in tipc_nl_compat_dumpit() - net: ena: Make missed_tx stat incremental - ipvlan: fix device features - [x86] mfd: intel-lpss: Add Intel Emmitsburg PCH PCI IDs - [powerpc*] xive: Ignore kmemleak false positives - media: pci: ttpci: av7110: fix possible buffer overflow caused by bad DMA value in debiirq() - blktrace: ensure our debugfs dir exists - scsi: target: tcmu: Fix crash on ARM during cmd completion - [arm*] iommu/iova: Don't BUG on invalid PFNs - [amd64] drm/amdkfd: Fix reference count leaks. - drm/radeon: fix multiple reference count leak - drm/amdgpu: fix ref count leak in amdgpu_driver_open_kms - drm/amd/display: fix ref count leak in amdgpu_drm_ioctl - drm/amdgpu: fix ref count leak in amdgpu_display_crtc_set_config - drm/amdgpu/display: fix ref count leak when pm_runtime_get_sync fails - scsi: lpfc: Fix shost refcount mismatch when deleting vport - xfs: Don't allow logging of XFS_ISTALE inodes - f2fs: fix error path in do_recover_data() - PCI: Fix pci_create_slot() reference count leak - rtlwifi: rtl8192cu: Prevent leaking urb - [mips*] vdso: Fix resource leaks in genvdso.c - cec-api: prevent leaking memory through hole in structure - HID: quirks: add NOGET quirk for Logitech GROUP - f2fs: fix use-after-free issue - drm/nouveau/drm/noveau: fix reference count leak in nouveau_fbcon_open - drm/nouveau: fix reference count leak in nv50_disp_atomic_commit - drm/nouveau: Fix reference count leak in nouveau_connector_detect - btrfs: file: reserve qgroup space after the hole punch range is locked - scsi: iscsi: Do not put host in iscsi_set_flashnode_param() - ceph: fix potential mdsc use-after-free crash - scsi: fcoe: Memory leak fix in fcoe_sysfs_fcf_del() - [x86] EDAC/ie31200: Fallback if host bridge device is already initialized - [arm64] KVM: Fix symbol dependency in __hyp_call_panic_nvhe - USB: sisusbvga: Fix a potential UB casued by left shifting a negative value - [arm64] drm/msm/adreno: fix updating ring fence - nvme-fc: Fix wrong return value in __nvme_fc_init_request() - null_blk: fix passing of REQ_FUA flag in null_handle_rq - jbd2: make sure jh have b_transaction set in refile/unfile_buffer - ext4: don't BUG on inconsistent journal feature - ext4: handle read only external journal device - jbd2: abort journal if free a async write error metadata buffer - ext4: handle option set by mount flags correctly - ext4: handle error of ext4_setup_system_zone() on remount - ext4: correctly restore system zone info when remount fails - fs: prevent BUG_ON in submit_bh_wbc() - [s390x] cio: add cond_resched() in the slow_eval_known_fn() loop - scsi: fcoe: Fix I/O path allocation - scsi: ufs: Fix possible infinite loop in ufshcd_hold - scsi: ufs: Improve interrupt handling for shared interrupts - scsi: ufs: Clean up completed request without interrupt notification - scsi: qla2xxx: Check if FW supports MQ before enabling - scsi: qla2xxx: Fix null pointer access during disconnect from subsystem - Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_command" - macvlan: validate setting of multiple remote source MAC addresses - [powerpc*] perf: Fix soft lockups due to missed interrupt accounting - block: loop: set discard granularity and alignment for block device backed loop - [arm64,x86] HID: i2c-hid: Always sleep 60ms after I2C_HID_PWR_ON commands - blk-mq: order adding requests to hctx->dispatch and checking SCHED_RESTART - btrfs: reset compression level for lzo on remount - btrfs: fix space cache memory leak after transaction abort - fbcon: prevent user font height or width change from causing potential out-of-bounds access - vt: defer kfree() of vc_screenbuf in vc_do_resize() - vt_ioctl: change VT_RESIZEX ioctl to check for error return from vc_resize() - [armhf] serial: samsung: Removes the IRQ not found warning - [arm*] serial: pl011: Fix oops on -EPROBE_DEFER - [arm*] serial: pl011: Don't leak amba_ports entry on driver register error - serial: 8250_exar: Fix number of ports for Commtech PCIe cards - serial: 8250: change lock order in serial8250_do_startup() - writeback: Protect inode->i_io_list with inode->i_lock - writeback: Avoid skipping inode writeback - writeback: Fix sync livelock due to b_dirty_time processing - XEN uses irqdesc::irq_data_common::handler_data to store a per interrupt XEN data pointer which contains XEN specific information. - usb: host: xhci: fix ep context print mismatch in debugfs - xhci: Do warm-reset when both CAS and XDEV_RESUME are set - xhci: Always restore EP_SOFT_CLEAR_TOGGLE even if ep reset failed - PM: sleep: core: Fix the handling of pending runtime resume requests - device property: Fix the secondary firmware node handling in set_primary_fwnode() - [x86] genirq/matrix: Deal with the sillyness of for_each_cpu() on UP - drm/amdgpu: Fix buffer overflow in INFO ioctl - USB: yurex: Fix bad gfp argument - USB: quirks: Add no-lpm quirk for another Raydium touchscreen - USB: quirks: Ignore duplicate endpoint on Sound Devices MixPre-D - [armhf] usb: host: ohci-exynos: Fix error handling in exynos_ohci_probe() - USB: gadget: f_ncm: add bounds checks to ncm_unwrap_ntb() - USB: cdc-acm: rework notification_buffer resizing - btrfs: check the right error variable in btrfs_del_dir_entries_in_log - [arm64,armhf] usb: dwc3: gadget: Don't setup more than requested - [arm64,armhf] usb: dwc3: gadget: Fix handling ZLP - [arm64,armhf] usb: dwc3: gadget: Handle ZLP for sg requests - [arm64,x86] tpm: Unify the mismatching TPM space buffer sizes - HID: hiddev: Fix slab-out-of-bounds write in hiddev_ioctl_usage() https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.144 - HID: core: Correctly handle ReportSize being zero - HID: core: Sanitize event code and type when mapping input - scsi: target: tcmu: Fix size in calls to tcmu_flush_dcache_range - scsi: target: tcmu: Optimize use of flush_dcache_page - [arm64] drm/msm: add shutdown support for display platform_driver - [x86] hwmon: (applesmc) check status earlier. - nvmet: Disable keep-alive timer when kato is cleared to 0h - [arm64] drm/msm/a6xx: fix gmu start on newer firmware - ceph: don't allow setlease on cephfs - cpuidle: Fixup IRQ state - [s390x] don't trace preemption in percpu macros - xen/xenbus: Fix granting of vmalloc'd memory - dmaengine: of-dma: Fix of_dma_router_xlate's of_dma_xlate handling - batman-adv: Avoid uninitialized chaddr when handling DHCP - batman-adv: bla: use netif_rx_ni when not in interrupt context - [mips*] mm: BMIPS5000 has inclusive physical caches - netfilter: nf_tables: add NFTA_SET_USERDATA if not null - netfilter: nf_tables: incorrect enum nft_list_attributes definition - netfilter: nf_tables: fix destination register zeroing - [arm64] net: hns: Fix memleak in hns_nic_dev_probe - [arm64,armhf] dmaengine: pl330: Fix burst length if burst size is smaller than bus width - gtp: add GTPA_LINK info to msg sent to userspace - bnxt_en: Don't query FW when netif_running() is false. - bnxt_en: Check for zero dir entries in NVRAM. - bnxt_en: Fix PCI AER error recovery flow - bnxt_en: fix HWRM error when querying VF temperature - xfs: fix boundary test in xfs_attr_shortform_verify (CVE-2020-14385) - bnxt: don't enable NAPI until rings are ready - netfilter: nfnetlink: nfnetlink_unicast() reports EAGAIN instead of ENOBUFS - nvmet-fc: Fix a missed _irqsave version of spin_lock in 'nvmet_fc_fod_op_done()' - net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() - fix regression in "epoll: Keep a reference on files added to the check list" - xfs: fix xfs_bmap_validate_extent_raw when checking attr fork of rt files - tg3: Fix soft lockup when tg3_reset_task() fails. - [amd64] x86, fakenuma: Fix invalid starting node ID - [amd64] iommu/vt-d: Serialize IOMMU GCMD register modifications - [armhf] thermal: ti-soc-thermal: Fix bogus thermal shutdowns for omap4430 - xfs: don't update mtime on COW faults - btrfs: drop path before adding new uuid tree entry - vfio/type1: Support faulting PFNMAP vmas - vfio-pci: Fault mmaps to enable vma tracking - vfio-pci: Invalidate mmaps and block MMIO access on disabled memory (CVE-2020-12888) - btrfs: Remove redundant extent_buffer_get in get_old_root - btrfs: Remove extraneous extent_buffer_get from tree_mod_log_rewind - btrfs: set the lockdep class for log tree extent buffers - uaccess: Add non-pagefault user-space read functions - uaccess: Add non-pagefault user-space write function - btrfs: fix potential deadlock in the search ioctl - net: usb: qmi_wwan: add Telit 0x1050 composition - usb: qmi_wwan: add D-Link DWM-222 A2 device ID - ALSA: ca0106: fix error code handling - ALSA: pcm: oss: Remove superfluous WARN_ON() for mulaw sanity check - [x86] ALSA: hda/hdmi: always check pin power status in i915 pin fixup - ALSA: firewire-digi00x: exclude Avid Adrenaline from detection - [x86] ALSA: hda - Fix silent audio output and corrupted input on MSI X570-A PRO - media: rc: do not access device via sysfs after rc_unregister_device() - media: rc: uevent sysfs file races with rc_unregister_device() - affs: fix basic permission bits to actually work - block: allow for_each_bvec to support zero len bvec - libata: implement ATA_HORKAGE_MAX_TRIM_128M and apply to Sandisks - dm writecache: handle DAX to partitions on persistent memory correctly - dm cache metadata: Avoid returning cmd->bm wild pointer on error - dm thin metadata: Avoid returning cmd->bm wild pointer on error - mm: slub: fix conversion of freelist_corrupted() - [arm64] KVM: Add kvm_extable for vaxorcism code - [arm64] KVM: Defer guest entry when an asynchronous exception is pending - [arm64] KVM: Survive synchronous exceptions caused by AT instructions - [arm64] KVM: Set HCR_EL2.PTW to prevent AT taking synchronous exception - vfio/pci: Fix SR-IOV VF handling with MMIO blocking - checkpatch: fix the usage of capture group ( ... ) - mm/hugetlb: fix a race between hugetlb sysctl handlers (CVE-2020-25285) - cfg80211: regulatory: reject invalid hints - net: usb: Fix uninit-was-stored issue in asix_read_phy_addr() https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.145 - ALSA; firewire-tascam: exclude Tascam FE-8 from detection - block: ensure bdi->io_pages is always initialized - net: usb: dm9601: Add USB ID of Keenetic Plus DSL - sctp: not disable bh in the whole sctp_get_port_local() - tipc: fix shutdown() of connectionless socket - net: disable netpoll on fresh napis - [arm64,armhf] net/mlx5e: Don't support phys switch id if not in switchdev mode https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.146 - RDMA/rxe: Fix memleak in rxe_mem_init_user - RDMA/rxe: Drop pointless checks in rxe_init_ports - [armhf] drm/sun4i: Fix dsi dcs long write function - scsi: libsas: Set data_dir as DMA_NONE if libata marks qc as NODATA - RDMA/core: Fix reported speed and width - [arm64] mmc: sdhci-msm: Add retries when all tuning phases are found valid - [arm64,x86] dmaengine: acpi: Put the CSRT table after using it - netfilter: conntrack: allow sctp hearbeat after connection re-use - [x86] firestream: Fix memleak in fs_open - [arm64,armhf] ALSA: hda: Fix 2 channel swapping for Tegra - xfs: initialize the shortform attr header padding entry - nvme-fabrics: don't check state NVME_CTRL_NEW for request acceptance - nvme-rdma: serialize controller teardown sequences - HID: quirks: Set INCREMENT_USAGE_ON_DUPLICATE for all Saitek X52 devices - [ppc64el,x86] drivers/net/wan/hdlc_cisco: Add hard_header_len - HID: elan: Fix memleak in elan_input_configured - [x86] cpufreq: intel_pstate: Refuse to turn off with HWP enabled - [x86] cpufreq: intel_pstate: Fix intel_pstate_get_hwp_max() for turbo disabled - ALSA: hda: fix a runtime pm issue in SOF when integrated GPU is disabled - [amd64] iommu/amd: Do not use IOMMUv2 functionality when SME is active - [x86] iio:accel:bmc150-accel: Fix timestamp alignment and prevent data leak. - [x86] iio:magnetometer:ak8975 Fix alignment and data leak issues. - [armhf] iio:accel:mma8452: Fix timestamp alignment and prevent data leak. - [x86] staging: wlan-ng: fix out of bounds read in prism2sta_probe_usb() - btrfs: require only sector size alignment for parent eb bytenr - btrfs: fix lockdep splat in add_missing_dev - btrfs: fix wrong address when faulting in pages in the search ioctl - regulator: push allocation in set_consumer_device_supply() out of lock - scsi: target: iscsi: Fix data digest calculation - scsi: target: iscsi: Fix hang in iscsit_access_np() when getting tpg->np_login_sem - [arm64] drm/msm: Disable preemption on all 5xx targets - rbd: require global CAP_SYS_ADMIN for mapping and unmapping (CVE-2020-25284) - RDMA/rxe: Fix the parent sysfs read when the interface has 15 chars - vgacon: remove software scrollback support - fbcon: remove soft scrollback code (CVE-2020-14390) - fbcon: remove now unusued 'softback_lines' cursor() argument - [x86] KVM: VMX: Don't freeze guest when event delivery causes an APIC-access exit - [x86] video: fbdev: fix OOB read in vga_8planes_imageblit() - [arm64] phy: qcom-qmp: Use correct values for ipq8074 PCIe Gen2 PHY init - usb: core: fix slab-out-of-bounds Read in read_descriptors - USB: serial: ftdi_sio: add IDs for Xsens Mti USB converter - USB: serial: option: support dynamic Quectel USB compositions - USB: serial: option: add support for SIM7070/SIM7080/SIM7090 modules - usb: Fix out of sync data toggle if a configured device is reconfigured - [x86] usb: typec: ucsi: acpi: Check the _DEP dependencies . [ Salvatore Bonaccorso ] * Bump ABI to 11 * Drop 'Revert "mips: Add udelay lpj numbers adjustment"' * [rt] Update to 4.19.135-rt60 * [rt] Refresh "net: Use skbufhead with raw lock" for context changes in 4.19.136 * [rt] Refresh "timers: Prepare for full preemption" for context changes in 4.19.138 * [rt] Refresh "timers: Redo the notification of canceling timers on -RT" for context changes in 4.19.138 * [rt] Refresh "watchdog: prevent deferral of watchdogd wakeup on RT" for context changes in 4.19.141 * Refresh "net: ena: fix crash during ena_remove()" for context changes in 4.19.142 * [rt] Refresh "Split IRQ-off and zone->lock while freeing pages from PCP list #1" for context changes in 4.19.142 * ACPI: configfs: Disallow loading ACPI tables when locked down (CVE-2020-15780) * [rt] Update to 4.19.142-rt63 * net/packet: fix overflow in tpacket_rcv (CVE-2020-14386) * debian/tests/python: pycodestyle: Increase max-line-length to 100. * gfs2: initialize transaction tr_ailX_lists earlier (Closes: #968567) linux-latest (105+deb10u6) buster; urgency=medium . * Update to 4.19.0-11 linux-signed-amd64 (4.19.146+1) buster; urgency=medium . * Sign kernel from linux 4.19.146-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.133 - [s390x] KVM: s390: reduce number of IO pins to 1 - regmap: fix alignment issue - [arm64,armhf] drm/tegra: hub: Do not enable orphaned window group - [arm64,armhf] gpu: host1x: Detach driver on unregister - spi: spidev: fix a race between spidev_release and spidev_remove - spi: spidev: fix a potential use-after-free in spidev_release() - ixgbe: protect ring accesses with READ- and WRITE_ONCE - i40e: protect ring accesses with READ- and WRITE_ONCE - [x86] drm: panel-orientation-quirks: Add quirk for Asus T101HA panel - [x86] drm: panel-orientation-quirks: Use generic orientation-data for Acer S1003 - cifs: update ctime and mtime during truncate - [armhf] imx6: add missing put_device() call in imx6q_suspend_init() - scsi: mptscsih: Fix read sense data size - [arm64] usb: dwc3: pci: Fix reference count leak in dwc3_pci_resume_work - block: release bip in a right way in error path - nvme-rdma: assign completion vector correctly - [x86] entry: Increase entry_stack size to a full page - net: cxgb4: fix return error value in t4_prep_fw - smsc95xx: check return value of smsc95xx_reset - smsc95xx: avoid memory leak in smsc95xx_bind - [arm64] net: hns3: fix use-after-free when doing self test - [x86] ALSA: compress: fix partial_drain completion state - nbd: Fix memory leak in nbd_add_socket - cxgb4: fix all-mask IP address comparison - bnxt_en: fix NULL dereference in case SR-IOV configuration fails - [arm64] net: macb: mark device wake capable when "magic-packet" property present - ALSA: opl3: fix infoleak in opl3 - ALSA: hda - let hs_mic be picked ahead of hp_mic - ALSA: usb-audio: add quirk for MacroSilicon MS2109 - [arm64] KVM: Fix definition of PAGE_HYP_DEVICE - [arm64] KVM: Stop clobbering x0 for HVC_SOFT_RESTART - [x86] KVM: bit 8 of non-leaf PDPEs is not reserved - [x86] KVM: Inject #GP if guest attempts to toggle CR4.LA57 in 64-bit mode - [x86] KVM: Mark CR4.TSD as being possibly owned by the guest - kallsyms: Refactor kallsyms_show_value() to take cred - kernel: module: Use struct_size() helper - module: Refactor section attr into bin attribute - module: Do not expose section addresses to non-CAP_SYSLOG - kprobes: Do not expose probe addresses to non-CAP_SYSLOG - bpf: Check correct cred for CAP_SYSLOG in bpf_dump_raw_ok() - btrfs: fix fatal extent_buffer readahead vs releasepage race - drm/radeon: fix double free - dm: use noio when sending kobject event - [s390x] mm: fix huge pte soft dirty copying https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.134 - perf: Make perf able to build with latest libbfd - genetlink: remove genl_bind - ipv4: fill fl4_icmp_{type,code} in ping_v4_sendmsg - l2tp: remove skb_dst_set() from l2tp_xmit_skb() - llc: make sure applications use ARPHRD_ETHER - net: Added pointer check for dst->ops->neigh_lookup in dst_neigh_lookup_skb - net_sched: fix a memory leak in atm_tc_init() - net: usb: qmi_wwan: add support for Quectel EG95 LTE modem - tcp: fix SO_RCVLOWAT possible hangs under high mem pressure - tcp: make sure listeners don't initialize congestion-control state - tcp: md5: add missing memory barriers in tcp_md5_do_add()/tcp_md5_hash_key() - tcp: md5: do not send silly options in SYNCOOKIES - tcp: md5: refine tcp_md5_do_add()/tcp_md5_hash_key() barriers - tcp: md5: allow changing MD5 keys in all socket states - cgroup: fix cgroup_sk_alloc() for sk_clone_lock() (CVE-2020-14356) (Closes: #966846) - cgroup: Fix sock_cgroup_data on big-endian. - sched: consistently handle layer3 header accesses in the presence of VLANs - vlan: consolidate VLAN parsing code and limit max parsing depth - [arm64] drm/msm: fix potential memleak in error branch - [arm64] alternatives: use subsections for replacement sequences - [arm64,x86] tpm_tis: extra chip->ops check on error path in tpm_tis_core_init - gfs2: read-only mounts should grab the sd_freeze_gl glock - [i386] i2c: eg20t: Load module automatically if ID matches - [arm64] alternatives: don't patch up internal branches - [armhf] iio: mma8452: Add missed iio_device_unregister() call in mma8452_probe() - [armhf] net: dsa: bcm_sf2: Fix node reference count - of: of_mdio: Correct loop scanning logic - Revert "usb/ohci-platform: Fix a warning when hibernating" - [arm64,armhf] Revert "usb/xhci-plat: Set PM runtime as active on resume" - Revert "usb/ehci-platform: Set PM runtime as active on resume" - [arm64,armhf] net: sfp: add support for module quirks - [arm64,armhf] net: sfp: add some quirks for GPON modules - HID: quirks: Remove ITE 8595 entry from hid_have_special_driver - ALSA: usb-audio: Create a registration quirk for Kingston HyperX Amp (0951:16d8) - mmc: sdhci: do not enable card detect interrupt for gpio cd type - ALSA: usb-audio: Rewrite registration quirk handling - [x86] ACPI: video: Use native backlight on Acer Aspire 5783z - ALSA: usb-audio: Add registration quirk for Kingston HyperX Cloud Alpha S - [x86] ACPI: video: Use native backlight on Acer TravelMate 5735Z - ALSA: usb-audio: Add registration quirk for Kingston HyperX Cloud Flight S - [arm64,armhf] phy: sun4i-usb: fix dereference of pointer phy0 before it is null checked - [armhf] spi: spi-sun6i: sun6i_spi_transfer_one(): fix setting of clock rate - [x86] staging: comedi: verify array index is correct before using it - regmap: debugfs: Don't sleep while atomic for fast_io regmaps - [x86] copy_xstate_to_kernel: Fix typo which caused GDB regression - apparmor: ensure that dfa state tables have entries - perf stat: Zero all the 'ena' and 'run' array slot stats for interval mode - [armhf] mtd: rawnand: marvell: Use nand_cleanup() when the device is not yet registered - [armhf] mtd: rawnand: marvell: Fix probe error path - mtd: rawnand: timings: Fix default tR_max and tCCS_min timings - HID: magicmouse: do not set up autorepeat - HID: quirks: Always poll Obins Anne Pro 2 keyboard - HID: quirks: Ignore Simply Automated UPB PIM - ALSA: line6: Perform sanity check for each URB creation - ALSA: line6: Sync the pending work cancel at disconnection - ALSA: usb-audio: Fix race against the error recovery URB submission - [x86] ALSA: hda/realtek - change to suitable link model for ASUS platform - [x86] ALSA: hda/realtek - Enable Speaker for ASUS UX533 and UX534 - [arm*] usb: dwc2: Fix shutdown callback in platform - [arm64,armhf] usb: chipidea: core: add wakeup support for extcon - USB: serial: iuu_phoenix: fix memory corruption - USB: serial: cypress_m8: enable Simply Automated UPB PIM - USB: serial: ch341: add new Product ID for CH340 - USB: serial: option: add GosunCn GM500 series - USB: serial: option: add Quectel EG95 LTE modem - [x86] virt: vbox: Fix VBGL_IOCTL_VMMDEV_REQUEST_BIG and _LOG req numbers to match upstream - [x86] virt: vbox: Fix guest capabilities mask check - [arm64] virtio: virtio_console: add missing MODULE_DEVICE_TABLE() for rproc serial - ovl: inode reference leak in ovl_is_inuse true case. - ovl: relax WARN_ON() when decoding lower directory file handle - ovl: fix unneeded call to ovl_change_flags() - fuse: Fix parameter for FS_IOC_{GET,SET}FLAGS - Revert "zram: convert remaining CLASS_ATTR() to CLASS_ATTR_RO()" (CVE-2020-10781) - [x86] mei: bus: don't clean driver pointer - timer: Prevent base->clk from moving backward - timer: Fix wheel index calculation on last level - [mips*] Fix build for LTS kernel caused by backporting lpj adjustment - hwmon: (emc2103) fix unable to change fan pwm1_enable attribute - [powerpc*] book3s64/pkeys: Fix pkey_access_permitted() for execute disable pkey - [x86] intel_th: pci: Add Jasper Lake CPU support - [x86] intel_th: pci: Add Tiger Lake PCH-H support - [x86] intel_th: pci: Add Emmitsburg PCH support - [x86] intel_th: Fix a NULL dereference when hub driver is not loaded - [arm*] thermal/drivers/cpufreq_cooling: Fix wrong frequency converted from power - [arm64] ptrace: Override SPSR.SS when single-stepping is enabled - [arm64] ptrace: Consistently use pseudo-singlestep exceptions - [arm64] compat: Ensure upper 32 bits of x0 are zero on syscall return - sched: Fix unreliable rseq cpu_id for new tasks - sched/fair: handle case of task_h_load() returning 0 - genirq/affinity: Handle affinity setting on inactive interrupts correctly - printk: queue wake_up_klogd irq_work only if per-CPU areas are ready - libceph: don't omit recovery_deletes in target_copy() - rxrpc: Fix trace string https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.135 - mac80211: allow rx of mesh eapol frames with default rx key - scsi: scsi_transport_spi: Fix function pointer check - net: sky2: initialize return of gm_phy_read - drm/nouveau/i2c/g94-: increase NV_PMGR_DP_AUXCTL_TRANSACTREQ timeout - fuse: fix weird page warning - [x86] irqdomain/treewide: Keep firmware node unconditionally allocated - SUNRPC reverting d03727b248d0 ("NFSv4 fix CLOSE not waiting for direct IO compeletion") - tipc: clean up skb list lock handling on send path - IB/umem: fix reference count leak in ib_umem_odp_get() - uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression - ALSA: info: Drop WARN_ON() from buffer NULL sanity check - btrfs: fix double free on ulist after backref resolution failure - btrfs: fix mount failure caused by race with umount - btrfs: fix page leaks after failure to lock page for delalloc - bnxt_en: Fix race when modifying pause settings. - [x86] hippi: Fix a size used in a 'pci_free_consistent()' in an error handling path - ax88172a: fix ax88172a_unbind() failures - ieee802154: fix one possible memleak in adf7242_probe - [arm64,armhf] drm: sun4i: hdmi: Fix inverted HPD result - [arm64,armhf] net: smc91x: Fix possible memory leak in smc_drv_probe() - bonding: check error value of register_netdevice() immediately - qed: suppress "don't support RoCE & iWARP" flooding on HW init - ipvs: fix the connection sync failed in some cases - bonding: check return value of register_netdevice() in bond_newlink() - serial: exar: Fix GPIO configuration for Sealevel cards based on XR17V35X - [arm64,x86] HID: i2c-hid: add Mediacom FlexBook edge13 to descriptor override - HID: alps: support devices with report id 2 - HID: steam: fixes race in handling device list. - HID: apple: Disable Fn-key key-re-mapping on clone keyboards - [arm64] dmaengine: tegra210-adma: Fix runtime PM imbalance on error - Input: add `SW_MACHINE_COVER` - regmap: dev_get_regmap_match(): fix string comparison - hwmon: (aspeed-pwm-tacho) Avoid possible buffer overflow - [amd64] dmaengine: ioat setting ioat timeout as module parameter - [x86] Input: synaptics - enable InterTouch for ThinkPad X1E 1st gen - [arm64] Use test_tsk_thread_flag() for checking TIF_SINGLESTEP - [arm*] binder: Don't use mmput() from shrinker function. - usb: xhci: Fix ASM2142/ASM3142 DMA addressing - Revert "cifs: Fix the target file was deleted when rename failed." (Closes: #966917) - [x86] staging: wlan-ng: properly check endpoint types - [x86] staging: comedi: addi_apci_1032: check INSN_CONFIG_DIGITAL_TRIG shift - [x86] staging: comedi: ni_6527: fix INSN_CONFIG_DIGITAL_TRIG support - [x86] staging: comedi: addi_apci_1500: check INSN_CONFIG_DIGITAL_TRIG shift - [x86] staging: comedi: addi_apci_1564: check INSN_CONFIG_DIGITAL_TRIG shift - serial: 8250: fix null-ptr-deref in serial8250_start_tx() - fbdev: Detect integer underflow at "struct fbcon_ops"->clear_margins. - vt: Reject zero-sized screen buffer size. - mm/memcg: fix refcount error while moving and swapping - mm: memcg/slab: synchronize access to kmem_cache dying flag using a spinlock - mm: memcg/slab: fix memory leak at non-root kmem_cache destroy - io-mapping: indicate mapping failure - drm/amdgpu: Fix NULL dereference in dpm sysfs handlers - [x86] vmlinux.lds: Page-align end of ..page_aligned sections - [x86] ASoC: rt5670: Add new gpio1_is_ext_spk_en quirk and enable it on the Lenovo Miix 2 10 - dm integrity: fix integrity recalculation that is improperly skipped - ath9k: Fix general protection fault in ath9k_hif_usb_rx_cb - ath9k: Fix regression with Atheros 9271 https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.136 - AX.25: Fix out-of-bounds read in ax25_connect() - AX.25: Prevent out-of-bounds read in ax25_sendmsg() - dev: Defer free of skbs in flush_backlog - ip6_gre: fix null-ptr-deref in ip6gre_init_net() - net-sysfs: add a newline when printing 'tx_timeout' by sysfs - net: udp: Fix wrong clean up for IS_UDPLITE macro - rxrpc: Fix sendmsg() returning EPIPE due to recvmsg() returning ENODATA - tcp: allow at most one TLP probe per flight - AX.25: Prevent integer overflows in connect and sendmsg - sctp: shrink stream outq only when new outcnt < old outcnt - sctp: shrink stream outq when fails to do addstream reconf - udp: Copy has_conns in reuseport_grow(). - udp: Improve load balancing for SO_REUSEPORT. - rtnetlink: Fix memory(net_device) leak when ->newlink fails - regmap: debugfs: check count when read regmap file https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.137 - [x86] crypto: ccp - Release all allocated memory if sha type is invalid (CVE-2019-18808) - media: rc: prevent memory leak in cx23888_ir_probe (CVE-2019-19054) - iio: imu: adis16400: fix memory leak (CVE-2019-19061) - [x86] drm/amdgpu: fix multiple memory leaks in acp_hw_init (CVE-2019-19067) - tracing: Have error path in predicate_parse() free its allocated memory (CVE-2019-19072) - ath9k_htc: release allocated buffer if timed out (CVE-2019-19073) - ath9k: release allocated buffer if timed out (CVE-2019-19074) - drm/amd/display: prevent memory leak (CVE-2019-19082) - btrfs: inode: Verify inode mode to avoid NULL pointer dereference (CVE-2019-19813, CVE-2019-19816) - sctp: implement memory accounting on tx path (CVE-2019-3874) - Btrfs: fix selftests failure due to uninitialized i_mode in test inodes - PCI/ASPM: Disable ASPM on ASMedia ASM1083/1085 PCIe-to-PCI bridge - 9p/trans_fd: Fix concurrency del of req_list in p9_fd_cancelled/p9_read_work - wireless: Use offsetof instead of custom macro. - [armel,armhf] 8986/1: hw_breakpoint: Don't invoke overflow handler on uaccess watchpoints - Revert "drm/amdgpu: Fix NULL dereference in dpm sysfs handlers" - drm/amdgpu: Prevent kernel-infoleak in amdgpu_info_ioctl() - drm: hold gem reference until object is no longer accessed - rds: Prevent kernel-infoleak in rds_notify_queue_get() - xfs: fix missed wakeup on l_flush_wait - xfrm: Fix crash when the hold queue is used. - net/mlx5: Verify Hardware supports requested ptp function on a given pin - net: lan78xx: add missing endpoint sanity check - net: lan78xx: fix transfer-buffer memory leak - mlx4: disable device on shutdown - bpf: Fix map leak in HASH_OF_MAPS map - mac80211: mesh: Free ie data when leaving mesh - mac80211: mesh: Free pending skb when destroying a mpath - [arm64] alternatives: move length validation inside the subsection - [arm64] csum: Fix handling of bad packets - Bluetooth: fix kernel oops in store_pending_adv_report - net/mlx5e: fix bpf_prog reference count leaks in mlx5e_alloc_rq - qed: Disable "MFW indication via attention" SPAM every 5 minutes - [amd64] x86/unwind/orc: Fix ORC for newly forked tasks - cxgb4: add missing release on skb in uld_send() - xen-netfront: fix potential deadlock in xennet_remove() - [x86] KVM: LAPIC: Prevent setting the tscdeadline timer if the lapic is hw disabled - [x86] i8259: Use printk_deferred() to prevent deadlock https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.138 - random32: update the net random state on interrupt and activity (CVE-2020-16166) - [armel] ARM: percpu.h: fix build error - random: fix circular include dependency on arm64 after addition of percpu.h - random32: remove net_rand_state from the latent entropy gcc plugin - random32: move the pseudo-random 32-bit definitions to prandom.h - ext4: fix direct I/O read error https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.139 - USB: serial: qcserial: add EM7305 QDL product ID - USB: iowarrior: fix up report size handling for some devices - usb: xhci: define IDs for various ASMedia host controllers - usb: xhci: Fix ASMedia ASM1142 DMA addressing - Revert "ALSA: hda: call runtime_allow() for all hda controllers" - [arm*] staging: android: ashmem: Fix lockdep warning for write operation - Bluetooth: Fix slab-out-of-bounds read in hci_extended_inquiry_result_evt() - Bluetooth: Prevent out-of-bounds read in hci_inquiry_result_evt() - Bluetooth: Prevent out-of-bounds read in hci_inquiry_result_with_rssi_evt() - [arm*] binder: Prevent context manager from incrementing ref 0 - vgacon: Fix for missing check in scrollback handling (CVE-2020-14331) - mtd: properly check all write ioctls for permissions - net/9p: validate fds in p9_fd_open - drm/nouveau/fbcon: fix module unload when fbcon init has failed for some reason - drm/nouveau/fbcon: zero-initialise the mode_cmd2 structure - usb: hso: check for return value in hso_serial_common_create() - firmware: Fix a reference count leak. - cfg80211: check vendor command doit pointer before use - igb: reinit_locked() should be called with rtnl_lock - atm: fix atm_dev refcnt leaks in atmtcp_remove_persistent - tools lib traceevent: Fix memory leak in process_dynamic_array_len - [x86] Drivers: hv: vmbus: Ignore CHANNELMSG_TL_CONNECT_RESULT(23) - xattr: break delegations in {set,remove}xattr - ipv4: Silence suspicious RCU usage warning - ipv6: fix memory leaks on IPV6_ADDRFORM path - vxlan: Ensure FDB dump is performed under RCU - net: lan78xx: replace bogus endpoint lookup - [x86] hv_netvsc: do not use VF device if link is down - net: gre: recompute gre csum for sctp over gre tunnels - [arm64] net: thunderx: use spin_lock_bh in nicvf_set_rx_mode_task() - openvswitch: Prevent kernel-infoleak in ovs_ct_put_key() - Revert "vxlan: fix tos value before xmit" - rxrpc: Fix race between recvmsg and sendmsg on immediate call failure - i40e: add num_vectors checker in iwarp handler - i40e: Wrong truncation from u16 to u8 - i40e: Fix of memory leak and integer truncation in i40e_virtchnl.c - i40e: Memory leak in i40e_config_iwarp_qvlist https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.140 - tracepoint: Mark __tracepoint_string's __used - HID: input: Fix devices that return multiple bytes in battery report - cgroup: add missing skcd->no_refcnt check in cgroup_sk_clone() - [x86] mce/inject: Fix a wrong assignment of i_mce.status - sched/fair: Fix NOHZ next idle balance - sched: correct SD_flags returned by tl->sd_flags() - EDAC: Fix reference count leaks - [x86] platform/x86: intel-hid: Fix return value check in check_acpi_dev() - [x86] platform/x86: intel-vbtn: Fix return value check in check_acpi_dev() - [armhf] drm/tilcdc: fix leak & null ref in panel_connector_get_modes - Bluetooth: add a mutex lock to avoid UAF in do_enale_set - loop: be paranoid on exit and prevent new additions / removals - fs/btrfs: Add cond_resched() for try_release_extent_mapping() stalls - drm/amdgpu: avoid dereferencing a NULL pointer - drm/radeon: Fix reference count leaks caused by pm_runtime_get_sync - [x86] crypto: aesni - Fix build with LLVM_IAS=1 - video: fbdev: neofb: fix memory leak in neo_scan_monitor() - md-cluster: fix wild pointer of unlock_all_bitmaps() - [arm64] dts: hisilicon: hikey: fixes to comply with adi, adv7533 DT binding - [armhf] drm/etnaviv: fix ref count leak via pm_runtime_get_sync - drm/nouveau: fix multiple instances of reference count leaks - drm/debugfs: fix plain echo to connector "force" attribute - drm/radeon: disable AGP by default - mm/mmap.c: Add cond_resched() for exit_mmap() CPU stalls - brcmfmac: keep SDIO watchdog running when console_interval is non-zero - brcmfmac: To fix Bss Info flag definition Bug - brcmfmac: set state of hanger slot to FREE when flushing PSQ - iwlegacy: Check the return value of pcie_capability_read_*() - [arm64,armhf] gpu: host1x: debug: Fix multiple channels emitting messages simultaneously - usb: gadget: net2280: fix memory leak on probe error handling paths - dyndbg: fix a BUG_ON in ddebug_describe_flags - bcache: fix super block seq numbers comparision in register_cache_set() - [arm64,x86] ACPICA: Do not increment operation_region reference counts for field units - [arm64] drm/msm: ratelimit crtc event overflow error - [x86] agp/intel: Fix a memory leak on module initialisation failure - ath10k: Acquire tx_lock in tx error paths - [armhf] drm/etnaviv: Fix error path on failure to enable bus clk - [arm64] drm/arm: fix unintentional integer overflow on left shift - drm/mipi: use dcs write for mipi_dsi_dcs_set_tear_scanline - [powerpc*] cxl: Fix kobject memleak - drm/radeon: fix array out-of-bounds read and write issues - ipvs: allow connection reuse for unconfirmed conntrack - xfs: don't eat an EIO/ENOSPC writeback error when scrubbing data fork - xfs: fix reflink quota reservation accounting error - RDMA/rxe: Skip dgid check in loopback mode - PCI: Fix pci_cfg_wait queue locking problem - leds: core: Flush scheduled work for system suspend - [arm64,armhf] drm: panel: simple: Fix bpc for LG LB070WV8 panel - [armhf] phy: exynos5-usbdrd: Calibrating makes sense only for USB2.0 PHY - scsi: scsi_debug: Add check for sdebug_max_queue during module init - mwifiex: Prevent memory corruption handling keys - [powerpc*] vdso: Fix vdso cpu truncation - RDMA/qedr: SRQ's bug fixes - RDMA/rxe: Prevent access to wr->next ptr afrer wr is posted to send queue - [x86] staging: rtl8192u: fix a dubious looking mask before a shift - PCI/ASPM: Add missing newline in sysfs 'policy' - [powerpc*] book3s64/pkeys: Use PVR check instead of cpu feature - USB: serial: iuu_phoenix: fix led-activity helpers - usb: core: fix quirks_param_set() writing to a const pointer - [armhf] thermal: ti-soc-thermal: Fix reversed condition in ti_thermal_expose_sensor() - [mips*] OCTEON: add missing put_device() call in dwc3_octeon_device_init() - [arm*] usb: dwc2: Fix error path in gadget registration - [arm64,armhf] net: dsa: mv88e6xxx: MV88E6097 does not support jumbo configuration - RDMA/core: Fix return error value in _ib_modify_qp() to negative - Bluetooth: hci_h5: Set HCI_UART_RESET_ON_INIT to correct flags - Bluetooth: hci_serdev: Only unregister device if it was registered - [x86] PCI: Release IVRS table in AMD ACS quirk - [s390x] qeth: don't process empty bridge port events - [arm64,armhf] wl1251: fix always return 0 error - [amd64] net: ethernet: aquantia: Fix wrong return value - liquidio: Fix wrong return value in cn23xx_get_pf_num() - dlm: Fix kobject memleak - ocfs2: fix unbalanced locking - [arm64,armhf] pinctrl-single: fix pcs_parse_pinconf() return value - svcrdma: Fix page leak in svc_rdma_recv_read_chunk() - [x86] fsgsbase/64: Fix NULL deref in 86_fsgsbase_read_task - [amd64] crypto: aesni - add compatibility with IAS - af_packet: TPACKET_V3: fix fill status rwlock imbalance - net/nfc/rawsock.c: add CAP_NET_RAW check. - net: Set fput_needed iff FDPUT_FPUT is set - net: refactor bind_bucket fastreuse into helper - net: initialize fastreuse on inet_inherit_port - USB: serial: cp210x: re-enable auto-RTS on open - USB: serial: cp210x: enable usb generic throttle/unthrottle - [x86] ALSA: hda - fix the micmute led status for Lenovo ThinkCentre AIO - ALSA: usb-audio: Creative USB X-Fi Pro SB1095 volume knob support - ALSA: usb-audio: fix overeager device match for MacroSilicon MS2109 - ALSA: usb-audio: work around streaming quirk for MacroSilicon MS2109 - [x86] crypto: qat - fix double free in qat_uclo_create_batch_init_list - [x86] crypto: ccp - Fix use of merged scatterlists - [arm64] crypto: cpt - don't sleep of CRYPTO_TFM_REQ_MAY_SLEEP was not specified - bitfield.h: don't compile-time validate _val in FIELD_FIT - fs/minix: check return value of sb_getblk() - fs/minix: don't allow getting deleted inodes - fs/minix: reject too-large maximum file size - ALSA: usb-audio: add quirk for Pioneer DDJ-RB - 9p: Fix memory leak in v9fs_mount - drm/ttm/nouveau: don't call tt destroy callback on alloc failure. - NFS: Don't move layouts to plh_return_segs list while in use - NFS: Don't return layout segments that are in use - [arm64] cpufreq: dt: fix oops on armada37xx - include/asm-generic/vmlinux.lds.h: align ro_after_init - spi: spidev: Align buffers for DMA - [x86] irqdomain/treewide: Free firmware node after domain removal - xen/balloon: fix accounting in alloc_xenballooned_pages error path - xen/balloon: make the balloon wait interruptible https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.141 - smb3: warn on confusing error scenario with sec=krb5 - genirq/affinity: Make affinity setting if activated opt-in - [arm64,x86] PCI: hotplug: ACPI: Fix context refcounting in acpiphp_grab_context() - PCI: Mark AMD Navi10 GPU rev 0x00 ATS as broken - PCI: Add device even if driver attach failed - [arm64] PCI: qcom: Define some PARF params needed for ipq8064 SoC - [arm64] PCI: qcom: Add support for tx term offset for rev 2.1.0 - PCI: Probe bridge window attributes once at enumeration-time - btrfs: free anon block device right after subvolume deletion - btrfs: don't allocate anonymous block device for user invisible roots - btrfs: ref-verify: fix memory leak in add_block_entry - btrfs: don't traverse into the seed devices in show_devname - btrfs: open device without device_list_mutex - btrfs: fix messages after changing compression level by remount - btrfs: only search for left_info if there is no right_info in try_merge_free_space (CVE-2019-19448) - btrfs: fix memory leaks after failure to lookup checksums during inode logging - btrfs: fix return value mixup in btrfs_get_extent - cifs: Fix leak when handling lease break for cached root fid - [powerpc*] Allow 4224 bytes of stack expansion for the signal frame - [powerpc*] Fix circular dependency between percpu.h and mmu.h - [arm64] net: ethernet: stmmac: Disable hardware multicast filter - [arm64,armhf] net: stmmac: dwmac1000: provide multicast filter fallback - net/compat: Add missing sock updates for SCM_RIGHTS - md/raid5: Fix Force reconstruct-write io stuck in degraded raid5 - bcache: allocate meta data pages as compound pages - bcache: fix overflow in offset_to_stripe() - mac80211: fix misplaced while instead of if - driver core: Avoid binding drivers to dead devices - [mips*] CPU#0 is not hotpluggable - ocfs2: change slot number type s16 to u16 - mm/page_counter.c: fix protection usage propagation - ftrace: Setup correct FTRACE_FL_REGS flags for module - kprobes: Fix NULL pointer dereference at kprobe_ftrace_handler - tracing/hwlat: Honor the tracing_cpumask - tracing: Use trace_sched_process_free() instead of exit() for pid tracing - [x86] watchdog: f71808e_wdt: indicate WDIOF_CARDRESET support in watchdog_info.options - [x86] watchdog: f71808e_wdt: remove use of wrong watchdog_info option - [x86] watchdog: f71808e_wdt: clear watchdog timeout occurred flag - [powerpc*] pseries: Fix 64 bit logical memory block panic - module: Correctly truncate sysfs sections output - [armhf] drm/imx: imx-ldb: Disable both channels for split mode in enc->disable() - RDMA/ipoib: Return void from ipoib_ib_dev_stop() - RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() - USB: serial: ftdi_sio: make process-packet buffer unsigned - USB: serial: ftdi_sio: clean up receive processing - [armhf] gpu: ipu-v3: image-convert: Combine rotate/no-rotate irq handlers - dm rq: don't call blk_mq_queue_stopped() in dm_stop_queue() - [amd64] iommu/vt-d: Enforce PASID devTLB field mask - scsi: lpfc: nvmet: Avoid hang / use-after-free again when destroying targetport - watchdog: initialize device before misc_register - Input: sentelic - fix error return when fsp_reg_write fails - [x86] drm/vmwgfx: Use correct vmw_legacy_display_unit pointer - [x86] drm/vmwgfx: Fix two list_for_each loop exit tests - [arm64] net: qcom/emac: add missed clk_disable_unprepare in error path of emac_clks_phase1_init - nfs: Fix getxattr kernel panic and memory overflow (CVE-2020-25212) - fs/minix: set s_maxbytes correctly - fs/minix: fix block limit check for V1 filesystems - fs/minix: remove expected error message in block_to_path() - fs/ufs: avoid potential u32 multiplication overflow - khugepaged: retract_page_tables() remember to test exit - [arm64] dts: marvell: espressobin: add ethernet alias - [x86] drm: Added orientation quirk for ASUS tablet model T103HAF https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.142 - drm/vgem: Replace opencoded version of drm_gem_dumb_map_offset() - perf probe: Fix memory leakage when the probe point is not found - khugepaged: khugepaged_test_exit() check mmget_still_valid() - khugepaged: adjust VM_BUG_ON_MM() in __khugepaged_enter() - btrfs: export helpers for subvolume name/id resolution - btrfs: don't show full path of bind mounts in subvol= - btrfs: Move free_pages_out label in inline extent handling branch in compress_file_range - btrfs: inode: fix NULL pointer dereference if inode doesn't need compression - btrfs: sysfs: use NOFS for device creation - romfs: fix uninitialized memory leak in romfs_dev_read() - kernel/relay.c: fix memleak on destroy relay channel - mm: include CMA pages in lowmem_reserve at boot - mm, page_alloc: fix core hung in free_pcppages_bulk() - ext4: fix checking of directory entry validity for inline directories - jbd2: add the missing unlock_buffer() in the error path of jbd2_write_superblock() - [s390x] scsi: zfcp: Fix use-after-free in request timeout handlers - kthread: Do not preempt current task if it is going to call schedule() - spi: Prevent adding devices below an unregistering controller - scsi: ufs: Add DELAY_BEFORE_LPM quirk for Micron devices - [arm*] scsi: target: tcmu: Fix crash in tcmu_flush_dcache_range on ARM - media: budget-core: Improve exception handling in budget_register() - Input: psmouse - add a newline when printing 'proto' by sysfs - svcrdma: Fix another Receive buffer leak - xfs: fix inode quota reservation checks - jffs2: fix UAF problem - ceph: fix use-after-free for fsc->mdsc - [x86] cpufreq: intel_pstate: Fix cpuinfo_max_freq when MSR_TURBO_RATIO_LIMIT is 0 - scsi: libfc: Free skb in fc_disc_gpn_id_resp() for valid cases - virtio_ring: Avoid loop when vq is broken in virtqueue_poll - xfs: Fix UBSAN null-ptr-deref in xfs_sysfs_init - fs/signalfd.c: fix inconsistent return codes for signalfd4 - ext4: fix potential negative array index in do_split() (CVE-2020-14314) - ext4: don't allow overlapping system zones - i40e: Set RX_ONLY mode for unicast promiscuous on VLAN - i40e: Fix crash during removing i40e driver - [armhf] net: fec: correct the error path for regulator disable in probe - bonding: show saner speed for broadcast mode - bonding: fix a potential double-unregister - [s390x] runtime_instrumentation: fix storage key handling - [s390x] ptrace: fix storage key handling - [x86] ASoC: intel: Fix memleak in sst_media_open - [amd64,arm64] vfio/type1: Add proper error unwind for vfio_iommu_replay() - [x86] kvm: Toggling CR4.SMAP does not load PDPTEs in PAE mode - [x86] kvm: Toggling CR4.PKE does not load PDPTEs in PAE mode - efi: avoid error message when booting under Xen - afs: Fix NULL deref in afs_dynroot_depopulate() - bonding: fix active-backup failover for current ARP slave - net: ena: Prevent reset after device destruction - [x86] hv_netvsc: Fix the queue_mapping in netvsc_vf_xmit() - [armhf] net: dsa: b53: check for timeout - [powerpc*] pseries: Do not initiate shutdown when system is running on UPS - efi: add missed destroy_workqueue when efisubsys_init fails - epoll: Keep a reference on files added to the check list - do_epoll_ctl(): clean the failure exits up a bit - mm/hugetlb: fix calculation of adjust_range_if_pmd_sharing_possible - xen: don't reschedule in preemption off sections - clk: Evict unregistered clks from parent caches - KVM: Pass MMU notifier range flags to kvm_unmap_hva_range() - [arm64] KVM: Only reschedule if MMU_NOTIFIER_RANGE_BLOCKABLE is not set https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.143 - [powerpc*] 64s: Don't init FSCR_DSCR in __init_FSCR() - gre6: Fix reception with IP6_TNL_F_RCV_DSCP_COPY - net: Fix potential wrong skb->protocol in skb_vlan_untag() - net/smc: Prevent kernel-infoleak in __smc_diag_dump() - tipc: fix uninit skb->data in tipc_nl_compat_dumpit() - net: ena: Make missed_tx stat incremental - ipvlan: fix device features - [x86] mfd: intel-lpss: Add Intel Emmitsburg PCH PCI IDs - [powerpc*] xive: Ignore kmemleak false positives - media: pci: ttpci: av7110: fix possible buffer overflow caused by bad DMA value in debiirq() - blktrace: ensure our debugfs dir exists - scsi: target: tcmu: Fix crash on ARM during cmd completion - [arm*] iommu/iova: Don't BUG on invalid PFNs - [amd64] drm/amdkfd: Fix reference count leaks. - drm/radeon: fix multiple reference count leak - drm/amdgpu: fix ref count leak in amdgpu_driver_open_kms - drm/amd/display: fix ref count leak in amdgpu_drm_ioctl - drm/amdgpu: fix ref count leak in amdgpu_display_crtc_set_config - drm/amdgpu/display: fix ref count leak when pm_runtime_get_sync fails - scsi: lpfc: Fix shost refcount mismatch when deleting vport - xfs: Don't allow logging of XFS_ISTALE inodes - f2fs: fix error path in do_recover_data() - PCI: Fix pci_create_slot() reference count leak - rtlwifi: rtl8192cu: Prevent leaking urb - [mips*] vdso: Fix resource leaks in genvdso.c - cec-api: prevent leaking memory through hole in structure - HID: quirks: add NOGET quirk for Logitech GROUP - f2fs: fix use-after-free issue - drm/nouveau/drm/noveau: fix reference count leak in nouveau_fbcon_open - drm/nouveau: fix reference count leak in nv50_disp_atomic_commit - drm/nouveau: Fix reference count leak in nouveau_connector_detect - btrfs: file: reserve qgroup space after the hole punch range is locked - scsi: iscsi: Do not put host in iscsi_set_flashnode_param() - ceph: fix potential mdsc use-after-free crash - scsi: fcoe: Memory leak fix in fcoe_sysfs_fcf_del() - [x86] EDAC/ie31200: Fallback if host bridge device is already initialized - [arm64] KVM: Fix symbol dependency in __hyp_call_panic_nvhe - USB: sisusbvga: Fix a potential UB casued by left shifting a negative value - [arm64] drm/msm/adreno: fix updating ring fence - nvme-fc: Fix wrong return value in __nvme_fc_init_request() - null_blk: fix passing of REQ_FUA flag in null_handle_rq - jbd2: make sure jh have b_transaction set in refile/unfile_buffer - ext4: don't BUG on inconsistent journal feature - ext4: handle read only external journal device - jbd2: abort journal if free a async write error metadata buffer - ext4: handle option set by mount flags correctly - ext4: handle error of ext4_setup_system_zone() on remount - ext4: correctly restore system zone info when remount fails - fs: prevent BUG_ON in submit_bh_wbc() - [s390x] cio: add cond_resched() in the slow_eval_known_fn() loop - scsi: fcoe: Fix I/O path allocation - scsi: ufs: Fix possible infinite loop in ufshcd_hold - scsi: ufs: Improve interrupt handling for shared interrupts - scsi: ufs: Clean up completed request without interrupt notification - scsi: qla2xxx: Check if FW supports MQ before enabling - scsi: qla2xxx: Fix null pointer access during disconnect from subsystem - Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_command" - macvlan: validate setting of multiple remote source MAC addresses - [powerpc*] perf: Fix soft lockups due to missed interrupt accounting - block: loop: set discard granularity and alignment for block device backed loop - [arm64,x86] HID: i2c-hid: Always sleep 60ms after I2C_HID_PWR_ON commands - blk-mq: order adding requests to hctx->dispatch and checking SCHED_RESTART - btrfs: reset compression level for lzo on remount - btrfs: fix space cache memory leak after transaction abort - fbcon: prevent user font height or width change from causing potential out-of-bounds access - vt: defer kfree() of vc_screenbuf in vc_do_resize() - vt_ioctl: change VT_RESIZEX ioctl to check for error return from vc_resize() - [armhf] serial: samsung: Removes the IRQ not found warning - [arm*] serial: pl011: Fix oops on -EPROBE_DEFER - [arm*] serial: pl011: Don't leak amba_ports entry on driver register error - serial: 8250_exar: Fix number of ports for Commtech PCIe cards - serial: 8250: change lock order in serial8250_do_startup() - writeback: Protect inode->i_io_list with inode->i_lock - writeback: Avoid skipping inode writeback - writeback: Fix sync livelock due to b_dirty_time processing - XEN uses irqdesc::irq_data_common::handler_data to store a per interrupt XEN data pointer which contains XEN specific information. - usb: host: xhci: fix ep context print mismatch in debugfs - xhci: Do warm-reset when both CAS and XDEV_RESUME are set - xhci: Always restore EP_SOFT_CLEAR_TOGGLE even if ep reset failed - PM: sleep: core: Fix the handling of pending runtime resume requests - device property: Fix the secondary firmware node handling in set_primary_fwnode() - [x86] genirq/matrix: Deal with the sillyness of for_each_cpu() on UP - drm/amdgpu: Fix buffer overflow in INFO ioctl - USB: yurex: Fix bad gfp argument - USB: quirks: Add no-lpm quirk for another Raydium touchscreen - USB: quirks: Ignore duplicate endpoint on Sound Devices MixPre-D - [armhf] usb: host: ohci-exynos: Fix error handling in exynos_ohci_probe() - USB: gadget: f_ncm: add bounds checks to ncm_unwrap_ntb() - USB: cdc-acm: rework notification_buffer resizing - btrfs: check the right error variable in btrfs_del_dir_entries_in_log - [arm64,armhf] usb: dwc3: gadget: Don't setup more than requested - [arm64,armhf] usb: dwc3: gadget: Fix handling ZLP - [arm64,armhf] usb: dwc3: gadget: Handle ZLP for sg requests - [arm64,x86] tpm: Unify the mismatching TPM space buffer sizes - HID: hiddev: Fix slab-out-of-bounds write in hiddev_ioctl_usage() https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.144 - HID: core: Correctly handle ReportSize being zero - HID: core: Sanitize event code and type when mapping input - scsi: target: tcmu: Fix size in calls to tcmu_flush_dcache_range - scsi: target: tcmu: Optimize use of flush_dcache_page - [arm64] drm/msm: add shutdown support for display platform_driver - [x86] hwmon: (applesmc) check status earlier. - nvmet: Disable keep-alive timer when kato is cleared to 0h - [arm64] drm/msm/a6xx: fix gmu start on newer firmware - ceph: don't allow setlease on cephfs - cpuidle: Fixup IRQ state - [s390x] don't trace preemption in percpu macros - xen/xenbus: Fix granting of vmalloc'd memory - dmaengine: of-dma: Fix of_dma_router_xlate's of_dma_xlate handling - batman-adv: Avoid uninitialized chaddr when handling DHCP - batman-adv: bla: use netif_rx_ni when not in interrupt context - [mips*] mm: BMIPS5000 has inclusive physical caches - netfilter: nf_tables: add NFTA_SET_USERDATA if not null - netfilter: nf_tables: incorrect enum nft_list_attributes definition - netfilter: nf_tables: fix destination register zeroing - [arm64] net: hns: Fix memleak in hns_nic_dev_probe - [arm64,armhf] dmaengine: pl330: Fix burst length if burst size is smaller than bus width - gtp: add GTPA_LINK info to msg sent to userspace - bnxt_en: Don't query FW when netif_running() is false. - bnxt_en: Check for zero dir entries in NVRAM. - bnxt_en: Fix PCI AER error recovery flow - bnxt_en: fix HWRM error when querying VF temperature - xfs: fix boundary test in xfs_attr_shortform_verify (CVE-2020-14385) - bnxt: don't enable NAPI until rings are ready - netfilter: nfnetlink: nfnetlink_unicast() reports EAGAIN instead of ENOBUFS - nvmet-fc: Fix a missed _irqsave version of spin_lock in 'nvmet_fc_fod_op_done()' - net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() - fix regression in "epoll: Keep a reference on files added to the check list" - xfs: fix xfs_bmap_validate_extent_raw when checking attr fork of rt files - tg3: Fix soft lockup when tg3_reset_task() fails. - [amd64] x86, fakenuma: Fix invalid starting node ID - [amd64] iommu/vt-d: Serialize IOMMU GCMD register modifications - [armhf] thermal: ti-soc-thermal: Fix bogus thermal shutdowns for omap4430 - xfs: don't update mtime on COW faults - btrfs: drop path before adding new uuid tree entry - vfio/type1: Support faulting PFNMAP vmas - vfio-pci: Fault mmaps to enable vma tracking - vfio-pci: Invalidate mmaps and block MMIO access on disabled memory (CVE-2020-12888) - btrfs: Remove redundant extent_buffer_get in get_old_root - btrfs: Remove extraneous extent_buffer_get from tree_mod_log_rewind - btrfs: set the lockdep class for log tree extent buffers - uaccess: Add non-pagefault user-space read functions - uaccess: Add non-pagefault user-space write function - btrfs: fix potential deadlock in the search ioctl - net: usb: qmi_wwan: add Telit 0x1050 composition - usb: qmi_wwan: add D-Link DWM-222 A2 device ID - ALSA: ca0106: fix error code handling - ALSA: pcm: oss: Remove superfluous WARN_ON() for mulaw sanity check - [x86] ALSA: hda/hdmi: always check pin power status in i915 pin fixup - ALSA: firewire-digi00x: exclude Avid Adrenaline from detection - [x86] ALSA: hda - Fix silent audio output and corrupted input on MSI X570-A PRO - media: rc: do not access device via sysfs after rc_unregister_device() - media: rc: uevent sysfs file races with rc_unregister_device() - affs: fix basic permission bits to actually work - block: allow for_each_bvec to support zero len bvec - libata: implement ATA_HORKAGE_MAX_TRIM_128M and apply to Sandisks - dm writecache: handle DAX to partitions on persistent memory correctly - dm cache metadata: Avoid returning cmd->bm wild pointer on error - dm thin metadata: Avoid returning cmd->bm wild pointer on error - mm: slub: fix conversion of freelist_corrupted() - [arm64] KVM: Add kvm_extable for vaxorcism code - [arm64] KVM: Defer guest entry when an asynchronous exception is pending - [arm64] KVM: Survive synchronous exceptions caused by AT instructions - [arm64] KVM: Set HCR_EL2.PTW to prevent AT taking synchronous exception - vfio/pci: Fix SR-IOV VF handling with MMIO blocking - checkpatch: fix the usage of capture group ( ... ) - mm/hugetlb: fix a race between hugetlb sysctl handlers (CVE-2020-25285) - cfg80211: regulatory: reject invalid hints - net: usb: Fix uninit-was-stored issue in asix_read_phy_addr() https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.145 - ALSA; firewire-tascam: exclude Tascam FE-8 from detection - block: ensure bdi->io_pages is always initialized - net: usb: dm9601: Add USB ID of Keenetic Plus DSL - sctp: not disable bh in the whole sctp_get_port_local() - tipc: fix shutdown() of connectionless socket - net: disable netpoll on fresh napis - [arm64,armhf] net/mlx5e: Don't support phys switch id if not in switchdev mode https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.146 - RDMA/rxe: Fix memleak in rxe_mem_init_user - RDMA/rxe: Drop pointless checks in rxe_init_ports - [armhf] drm/sun4i: Fix dsi dcs long write function - scsi: libsas: Set data_dir as DMA_NONE if libata marks qc as NODATA - RDMA/core: Fix reported speed and width - [arm64] mmc: sdhci-msm: Add retries when all tuning phases are found valid - [arm64,x86] dmaengine: acpi: Put the CSRT table after using it - netfilter: conntrack: allow sctp hearbeat after connection re-use - [x86] firestream: Fix memleak in fs_open - [arm64,armhf] ALSA: hda: Fix 2 channel swapping for Tegra - xfs: initialize the shortform attr header padding entry - nvme-fabrics: don't check state NVME_CTRL_NEW for request acceptance - nvme-rdma: serialize controller teardown sequences - HID: quirks: Set INCREMENT_USAGE_ON_DUPLICATE for all Saitek X52 devices - [ppc64el,x86] drivers/net/wan/hdlc_cisco: Add hard_header_len - HID: elan: Fix memleak in elan_input_configured - [x86] cpufreq: intel_pstate: Refuse to turn off with HWP enabled - [x86] cpufreq: intel_pstate: Fix intel_pstate_get_hwp_max() for turbo disabled - ALSA: hda: fix a runtime pm issue in SOF when integrated GPU is disabled - [amd64] iommu/amd: Do not use IOMMUv2 functionality when SME is active - [x86] iio:accel:bmc150-accel: Fix timestamp alignment and prevent data leak. - [x86] iio:magnetometer:ak8975 Fix alignment and data leak issues. - [armhf] iio:accel:mma8452: Fix timestamp alignment and prevent data leak. - [x86] staging: wlan-ng: fix out of bounds read in prism2sta_probe_usb() - btrfs: require only sector size alignment for parent eb bytenr - btrfs: fix lockdep splat in add_missing_dev - btrfs: fix wrong address when faulting in pages in the search ioctl - regulator: push allocation in set_consumer_device_supply() out of lock - scsi: target: iscsi: Fix data digest calculation - scsi: target: iscsi: Fix hang in iscsit_access_np() when getting tpg->np_login_sem - [arm64] drm/msm: Disable preemption on all 5xx targets - rbd: require global CAP_SYS_ADMIN for mapping and unmapping (CVE-2020-25284) - RDMA/rxe: Fix the parent sysfs read when the interface has 15 chars - vgacon: remove software scrollback support - fbcon: remove soft scrollback code (CVE-2020-14390) - fbcon: remove now unusued 'softback_lines' cursor() argument - [x86] KVM: VMX: Don't freeze guest when event delivery causes an APIC-access exit - [x86] video: fbdev: fix OOB read in vga_8planes_imageblit() - [arm64] phy: qcom-qmp: Use correct values for ipq8074 PCIe Gen2 PHY init - usb: core: fix slab-out-of-bounds Read in read_descriptors - USB: serial: ftdi_sio: add IDs for Xsens Mti USB converter - USB: serial: option: support dynamic Quectel USB compositions - USB: serial: option: add support for SIM7070/SIM7080/SIM7090 modules - usb: Fix out of sync data toggle if a configured device is reconfigured - [x86] usb: typec: ucsi: acpi: Check the _DEP dependencies . [ Salvatore Bonaccorso ] * Bump ABI to 11 * Drop 'Revert "mips: Add udelay lpj numbers adjustment"' * [rt] Update to 4.19.135-rt60 * [rt] Refresh "net: Use skbufhead with raw lock" for context changes in 4.19.136 * [rt] Refresh "timers: Prepare for full preemption" for context changes in 4.19.138 * [rt] Refresh "timers: Redo the notification of canceling timers on -RT" for context changes in 4.19.138 * [rt] Refresh "watchdog: prevent deferral of watchdogd wakeup on RT" for context changes in 4.19.141 * Refresh "net: ena: fix crash during ena_remove()" for context changes in 4.19.142 * [rt] Refresh "Split IRQ-off and zone->lock while freeing pages from PCP list #1" for context changes in 4.19.142 * ACPI: configfs: Disallow loading ACPI tables when locked down (CVE-2020-15780) * [rt] Update to 4.19.142-rt63 * net/packet: fix overflow in tpacket_rcv (CVE-2020-14386) * debian/tests/python: pycodestyle: Increase max-line-length to 100. * gfs2: initialize transaction tr_ailX_lists earlier (Closes: #968567) linux-signed-arm64 (4.19.146+1) buster; urgency=medium . * Sign kernel from linux 4.19.146-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.133 - [s390x] KVM: s390: reduce number of IO pins to 1 - regmap: fix alignment issue - [arm64,armhf] drm/tegra: hub: Do not enable orphaned window group - [arm64,armhf] gpu: host1x: Detach driver on unregister - spi: spidev: fix a race between spidev_release and spidev_remove - spi: spidev: fix a potential use-after-free in spidev_release() - ixgbe: protect ring accesses with READ- and WRITE_ONCE - i40e: protect ring accesses with READ- and WRITE_ONCE - [x86] drm: panel-orientation-quirks: Add quirk for Asus T101HA panel - [x86] drm: panel-orientation-quirks: Use generic orientation-data for Acer S1003 - cifs: update ctime and mtime during truncate - [armhf] imx6: add missing put_device() call in imx6q_suspend_init() - scsi: mptscsih: Fix read sense data size - [arm64] usb: dwc3: pci: Fix reference count leak in dwc3_pci_resume_work - block: release bip in a right way in error path - nvme-rdma: assign completion vector correctly - [x86] entry: Increase entry_stack size to a full page - net: cxgb4: fix return error value in t4_prep_fw - smsc95xx: check return value of smsc95xx_reset - smsc95xx: avoid memory leak in smsc95xx_bind - [arm64] net: hns3: fix use-after-free when doing self test - [x86] ALSA: compress: fix partial_drain completion state - nbd: Fix memory leak in nbd_add_socket - cxgb4: fix all-mask IP address comparison - bnxt_en: fix NULL dereference in case SR-IOV configuration fails - [arm64] net: macb: mark device wake capable when "magic-packet" property present - ALSA: opl3: fix infoleak in opl3 - ALSA: hda - let hs_mic be picked ahead of hp_mic - ALSA: usb-audio: add quirk for MacroSilicon MS2109 - [arm64] KVM: Fix definition of PAGE_HYP_DEVICE - [arm64] KVM: Stop clobbering x0 for HVC_SOFT_RESTART - [x86] KVM: bit 8 of non-leaf PDPEs is not reserved - [x86] KVM: Inject #GP if guest attempts to toggle CR4.LA57 in 64-bit mode - [x86] KVM: Mark CR4.TSD as being possibly owned by the guest - kallsyms: Refactor kallsyms_show_value() to take cred - kernel: module: Use struct_size() helper - module: Refactor section attr into bin attribute - module: Do not expose section addresses to non-CAP_SYSLOG - kprobes: Do not expose probe addresses to non-CAP_SYSLOG - bpf: Check correct cred for CAP_SYSLOG in bpf_dump_raw_ok() - btrfs: fix fatal extent_buffer readahead vs releasepage race - drm/radeon: fix double free - dm: use noio when sending kobject event - [s390x] mm: fix huge pte soft dirty copying https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.134 - perf: Make perf able to build with latest libbfd - genetlink: remove genl_bind - ipv4: fill fl4_icmp_{type,code} in ping_v4_sendmsg - l2tp: remove skb_dst_set() from l2tp_xmit_skb() - llc: make sure applications use ARPHRD_ETHER - net: Added pointer check for dst->ops->neigh_lookup in dst_neigh_lookup_skb - net_sched: fix a memory leak in atm_tc_init() - net: usb: qmi_wwan: add support for Quectel EG95 LTE modem - tcp: fix SO_RCVLOWAT possible hangs under high mem pressure - tcp: make sure listeners don't initialize congestion-control state - tcp: md5: add missing memory barriers in tcp_md5_do_add()/tcp_md5_hash_key() - tcp: md5: do not send silly options in SYNCOOKIES - tcp: md5: refine tcp_md5_do_add()/tcp_md5_hash_key() barriers - tcp: md5: allow changing MD5 keys in all socket states - cgroup: fix cgroup_sk_alloc() for sk_clone_lock() (CVE-2020-14356) (Closes: #966846) - cgroup: Fix sock_cgroup_data on big-endian. - sched: consistently handle layer3 header accesses in the presence of VLANs - vlan: consolidate VLAN parsing code and limit max parsing depth - [arm64] drm/msm: fix potential memleak in error branch - [arm64] alternatives: use subsections for replacement sequences - [arm64,x86] tpm_tis: extra chip->ops check on error path in tpm_tis_core_init - gfs2: read-only mounts should grab the sd_freeze_gl glock - [i386] i2c: eg20t: Load module automatically if ID matches - [arm64] alternatives: don't patch up internal branches - [armhf] iio: mma8452: Add missed iio_device_unregister() call in mma8452_probe() - [armhf] net: dsa: bcm_sf2: Fix node reference count - of: of_mdio: Correct loop scanning logic - Revert "usb/ohci-platform: Fix a warning when hibernating" - [arm64,armhf] Revert "usb/xhci-plat: Set PM runtime as active on resume" - Revert "usb/ehci-platform: Set PM runtime as active on resume" - [arm64,armhf] net: sfp: add support for module quirks - [arm64,armhf] net: sfp: add some quirks for GPON modules - HID: quirks: Remove ITE 8595 entry from hid_have_special_driver - ALSA: usb-audio: Create a registration quirk for Kingston HyperX Amp (0951:16d8) - mmc: sdhci: do not enable card detect interrupt for gpio cd type - ALSA: usb-audio: Rewrite registration quirk handling - [x86] ACPI: video: Use native backlight on Acer Aspire 5783z - ALSA: usb-audio: Add registration quirk for Kingston HyperX Cloud Alpha S - [x86] ACPI: video: Use native backlight on Acer TravelMate 5735Z - ALSA: usb-audio: Add registration quirk for Kingston HyperX Cloud Flight S - [arm64,armhf] phy: sun4i-usb: fix dereference of pointer phy0 before it is null checked - [armhf] spi: spi-sun6i: sun6i_spi_transfer_one(): fix setting of clock rate - [x86] staging: comedi: verify array index is correct before using it - regmap: debugfs: Don't sleep while atomic for fast_io regmaps - [x86] copy_xstate_to_kernel: Fix typo which caused GDB regression - apparmor: ensure that dfa state tables have entries - perf stat: Zero all the 'ena' and 'run' array slot stats for interval mode - [armhf] mtd: rawnand: marvell: Use nand_cleanup() when the device is not yet registered - [armhf] mtd: rawnand: marvell: Fix probe error path - mtd: rawnand: timings: Fix default tR_max and tCCS_min timings - HID: magicmouse: do not set up autorepeat - HID: quirks: Always poll Obins Anne Pro 2 keyboard - HID: quirks: Ignore Simply Automated UPB PIM - ALSA: line6: Perform sanity check for each URB creation - ALSA: line6: Sync the pending work cancel at disconnection - ALSA: usb-audio: Fix race against the error recovery URB submission - [x86] ALSA: hda/realtek - change to suitable link model for ASUS platform - [x86] ALSA: hda/realtek - Enable Speaker for ASUS UX533 and UX534 - [arm*] usb: dwc2: Fix shutdown callback in platform - [arm64,armhf] usb: chipidea: core: add wakeup support for extcon - USB: serial: iuu_phoenix: fix memory corruption - USB: serial: cypress_m8: enable Simply Automated UPB PIM - USB: serial: ch341: add new Product ID for CH340 - USB: serial: option: add GosunCn GM500 series - USB: serial: option: add Quectel EG95 LTE modem - [x86] virt: vbox: Fix VBGL_IOCTL_VMMDEV_REQUEST_BIG and _LOG req numbers to match upstream - [x86] virt: vbox: Fix guest capabilities mask check - [arm64] virtio: virtio_console: add missing MODULE_DEVICE_TABLE() for rproc serial - ovl: inode reference leak in ovl_is_inuse true case. - ovl: relax WARN_ON() when decoding lower directory file handle - ovl: fix unneeded call to ovl_change_flags() - fuse: Fix parameter for FS_IOC_{GET,SET}FLAGS - Revert "zram: convert remaining CLASS_ATTR() to CLASS_ATTR_RO()" (CVE-2020-10781) - [x86] mei: bus: don't clean driver pointer - timer: Prevent base->clk from moving backward - timer: Fix wheel index calculation on last level - [mips*] Fix build for LTS kernel caused by backporting lpj adjustment - hwmon: (emc2103) fix unable to change fan pwm1_enable attribute - [powerpc*] book3s64/pkeys: Fix pkey_access_permitted() for execute disable pkey - [x86] intel_th: pci: Add Jasper Lake CPU support - [x86] intel_th: pci: Add Tiger Lake PCH-H support - [x86] intel_th: pci: Add Emmitsburg PCH support - [x86] intel_th: Fix a NULL dereference when hub driver is not loaded - [arm*] thermal/drivers/cpufreq_cooling: Fix wrong frequency converted from power - [arm64] ptrace: Override SPSR.SS when single-stepping is enabled - [arm64] ptrace: Consistently use pseudo-singlestep exceptions - [arm64] compat: Ensure upper 32 bits of x0 are zero on syscall return - sched: Fix unreliable rseq cpu_id for new tasks - sched/fair: handle case of task_h_load() returning 0 - genirq/affinity: Handle affinity setting on inactive interrupts correctly - printk: queue wake_up_klogd irq_work only if per-CPU areas are ready - libceph: don't omit recovery_deletes in target_copy() - rxrpc: Fix trace string https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.135 - mac80211: allow rx of mesh eapol frames with default rx key - scsi: scsi_transport_spi: Fix function pointer check - net: sky2: initialize return of gm_phy_read - drm/nouveau/i2c/g94-: increase NV_PMGR_DP_AUXCTL_TRANSACTREQ timeout - fuse: fix weird page warning - [x86] irqdomain/treewide: Keep firmware node unconditionally allocated - SUNRPC reverting d03727b248d0 ("NFSv4 fix CLOSE not waiting for direct IO compeletion") - tipc: clean up skb list lock handling on send path - IB/umem: fix reference count leak in ib_umem_odp_get() - uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression - ALSA: info: Drop WARN_ON() from buffer NULL sanity check - btrfs: fix double free on ulist after backref resolution failure - btrfs: fix mount failure caused by race with umount - btrfs: fix page leaks after failure to lock page for delalloc - bnxt_en: Fix race when modifying pause settings. - [x86] hippi: Fix a size used in a 'pci_free_consistent()' in an error handling path - ax88172a: fix ax88172a_unbind() failures - ieee802154: fix one possible memleak in adf7242_probe - [arm64,armhf] drm: sun4i: hdmi: Fix inverted HPD result - [arm64,armhf] net: smc91x: Fix possible memory leak in smc_drv_probe() - bonding: check error value of register_netdevice() immediately - qed: suppress "don't support RoCE & iWARP" flooding on HW init - ipvs: fix the connection sync failed in some cases - bonding: check return value of register_netdevice() in bond_newlink() - serial: exar: Fix GPIO configuration for Sealevel cards based on XR17V35X - [arm64,x86] HID: i2c-hid: add Mediacom FlexBook edge13 to descriptor override - HID: alps: support devices with report id 2 - HID: steam: fixes race in handling device list. - HID: apple: Disable Fn-key key-re-mapping on clone keyboards - [arm64] dmaengine: tegra210-adma: Fix runtime PM imbalance on error - Input: add `SW_MACHINE_COVER` - regmap: dev_get_regmap_match(): fix string comparison - hwmon: (aspeed-pwm-tacho) Avoid possible buffer overflow - [amd64] dmaengine: ioat setting ioat timeout as module parameter - [x86] Input: synaptics - enable InterTouch for ThinkPad X1E 1st gen - [arm64] Use test_tsk_thread_flag() for checking TIF_SINGLESTEP - [arm*] binder: Don't use mmput() from shrinker function. - usb: xhci: Fix ASM2142/ASM3142 DMA addressing - Revert "cifs: Fix the target file was deleted when rename failed." (Closes: #966917) - [x86] staging: wlan-ng: properly check endpoint types - [x86] staging: comedi: addi_apci_1032: check INSN_CONFIG_DIGITAL_TRIG shift - [x86] staging: comedi: ni_6527: fix INSN_CONFIG_DIGITAL_TRIG support - [x86] staging: comedi: addi_apci_1500: check INSN_CONFIG_DIGITAL_TRIG shift - [x86] staging: comedi: addi_apci_1564: check INSN_CONFIG_DIGITAL_TRIG shift - serial: 8250: fix null-ptr-deref in serial8250_start_tx() - fbdev: Detect integer underflow at "struct fbcon_ops"->clear_margins. - vt: Reject zero-sized screen buffer size. - mm/memcg: fix refcount error while moving and swapping - mm: memcg/slab: synchronize access to kmem_cache dying flag using a spinlock - mm: memcg/slab: fix memory leak at non-root kmem_cache destroy - io-mapping: indicate mapping failure - drm/amdgpu: Fix NULL dereference in dpm sysfs handlers - [x86] vmlinux.lds: Page-align end of ..page_aligned sections - [x86] ASoC: rt5670: Add new gpio1_is_ext_spk_en quirk and enable it on the Lenovo Miix 2 10 - dm integrity: fix integrity recalculation that is improperly skipped - ath9k: Fix general protection fault in ath9k_hif_usb_rx_cb - ath9k: Fix regression with Atheros 9271 https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.136 - AX.25: Fix out-of-bounds read in ax25_connect() - AX.25: Prevent out-of-bounds read in ax25_sendmsg() - dev: Defer free of skbs in flush_backlog - ip6_gre: fix null-ptr-deref in ip6gre_init_net() - net-sysfs: add a newline when printing 'tx_timeout' by sysfs - net: udp: Fix wrong clean up for IS_UDPLITE macro - rxrpc: Fix sendmsg() returning EPIPE due to recvmsg() returning ENODATA - tcp: allow at most one TLP probe per flight - AX.25: Prevent integer overflows in connect and sendmsg - sctp: shrink stream outq only when new outcnt < old outcnt - sctp: shrink stream outq when fails to do addstream reconf - udp: Copy has_conns in reuseport_grow(). - udp: Improve load balancing for SO_REUSEPORT. - rtnetlink: Fix memory(net_device) leak when ->newlink fails - regmap: debugfs: check count when read regmap file https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.137 - [x86] crypto: ccp - Release all allocated memory if sha type is invalid (CVE-2019-18808) - media: rc: prevent memory leak in cx23888_ir_probe (CVE-2019-19054) - iio: imu: adis16400: fix memory leak (CVE-2019-19061) - [x86] drm/amdgpu: fix multiple memory leaks in acp_hw_init (CVE-2019-19067) - tracing: Have error path in predicate_parse() free its allocated memory (CVE-2019-19072) - ath9k_htc: release allocated buffer if timed out (CVE-2019-19073) - ath9k: release allocated buffer if timed out (CVE-2019-19074) - drm/amd/display: prevent memory leak (CVE-2019-19082) - btrfs: inode: Verify inode mode to avoid NULL pointer dereference (CVE-2019-19813, CVE-2019-19816) - sctp: implement memory accounting on tx path (CVE-2019-3874) - Btrfs: fix selftests failure due to uninitialized i_mode in test inodes - PCI/ASPM: Disable ASPM on ASMedia ASM1083/1085 PCIe-to-PCI bridge - 9p/trans_fd: Fix concurrency del of req_list in p9_fd_cancelled/p9_read_work - wireless: Use offsetof instead of custom macro. - [armel,armhf] 8986/1: hw_breakpoint: Don't invoke overflow handler on uaccess watchpoints - Revert "drm/amdgpu: Fix NULL dereference in dpm sysfs handlers" - drm/amdgpu: Prevent kernel-infoleak in amdgpu_info_ioctl() - drm: hold gem reference until object is no longer accessed - rds: Prevent kernel-infoleak in rds_notify_queue_get() - xfs: fix missed wakeup on l_flush_wait - xfrm: Fix crash when the hold queue is used. - net/mlx5: Verify Hardware supports requested ptp function on a given pin - net: lan78xx: add missing endpoint sanity check - net: lan78xx: fix transfer-buffer memory leak - mlx4: disable device on shutdown - bpf: Fix map leak in HASH_OF_MAPS map - mac80211: mesh: Free ie data when leaving mesh - mac80211: mesh: Free pending skb when destroying a mpath - [arm64] alternatives: move length validation inside the subsection - [arm64] csum: Fix handling of bad packets - Bluetooth: fix kernel oops in store_pending_adv_report - net/mlx5e: fix bpf_prog reference count leaks in mlx5e_alloc_rq - qed: Disable "MFW indication via attention" SPAM every 5 minutes - [amd64] x86/unwind/orc: Fix ORC for newly forked tasks - cxgb4: add missing release on skb in uld_send() - xen-netfront: fix potential deadlock in xennet_remove() - [x86] KVM: LAPIC: Prevent setting the tscdeadline timer if the lapic is hw disabled - [x86] i8259: Use printk_deferred() to prevent deadlock https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.138 - random32: update the net random state on interrupt and activity (CVE-2020-16166) - [armel] ARM: percpu.h: fix build error - random: fix circular include dependency on arm64 after addition of percpu.h - random32: remove net_rand_state from the latent entropy gcc plugin - random32: move the pseudo-random 32-bit definitions to prandom.h - ext4: fix direct I/O read error https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.139 - USB: serial: qcserial: add EM7305 QDL product ID - USB: iowarrior: fix up report size handling for some devices - usb: xhci: define IDs for various ASMedia host controllers - usb: xhci: Fix ASMedia ASM1142 DMA addressing - Revert "ALSA: hda: call runtime_allow() for all hda controllers" - [arm*] staging: android: ashmem: Fix lockdep warning for write operation - Bluetooth: Fix slab-out-of-bounds read in hci_extended_inquiry_result_evt() - Bluetooth: Prevent out-of-bounds read in hci_inquiry_result_evt() - Bluetooth: Prevent out-of-bounds read in hci_inquiry_result_with_rssi_evt() - [arm*] binder: Prevent context manager from incrementing ref 0 - vgacon: Fix for missing check in scrollback handling (CVE-2020-14331) - mtd: properly check all write ioctls for permissions - net/9p: validate fds in p9_fd_open - drm/nouveau/fbcon: fix module unload when fbcon init has failed for some reason - drm/nouveau/fbcon: zero-initialise the mode_cmd2 structure - usb: hso: check for return value in hso_serial_common_create() - firmware: Fix a reference count leak. - cfg80211: check vendor command doit pointer before use - igb: reinit_locked() should be called with rtnl_lock - atm: fix atm_dev refcnt leaks in atmtcp_remove_persistent - tools lib traceevent: Fix memory leak in process_dynamic_array_len - [x86] Drivers: hv: vmbus: Ignore CHANNELMSG_TL_CONNECT_RESULT(23) - xattr: break delegations in {set,remove}xattr - ipv4: Silence suspicious RCU usage warning - ipv6: fix memory leaks on IPV6_ADDRFORM path - vxlan: Ensure FDB dump is performed under RCU - net: lan78xx: replace bogus endpoint lookup - [x86] hv_netvsc: do not use VF device if link is down - net: gre: recompute gre csum for sctp over gre tunnels - [arm64] net: thunderx: use spin_lock_bh in nicvf_set_rx_mode_task() - openvswitch: Prevent kernel-infoleak in ovs_ct_put_key() - Revert "vxlan: fix tos value before xmit" - rxrpc: Fix race between recvmsg and sendmsg on immediate call failure - i40e: add num_vectors checker in iwarp handler - i40e: Wrong truncation from u16 to u8 - i40e: Fix of memory leak and integer truncation in i40e_virtchnl.c - i40e: Memory leak in i40e_config_iwarp_qvlist https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.140 - tracepoint: Mark __tracepoint_string's __used - HID: input: Fix devices that return multiple bytes in battery report - cgroup: add missing skcd->no_refcnt check in cgroup_sk_clone() - [x86] mce/inject: Fix a wrong assignment of i_mce.status - sched/fair: Fix NOHZ next idle balance - sched: correct SD_flags returned by tl->sd_flags() - EDAC: Fix reference count leaks - [x86] platform/x86: intel-hid: Fix return value check in check_acpi_dev() - [x86] platform/x86: intel-vbtn: Fix return value check in check_acpi_dev() - [armhf] drm/tilcdc: fix leak & null ref in panel_connector_get_modes - Bluetooth: add a mutex lock to avoid UAF in do_enale_set - loop: be paranoid on exit and prevent new additions / removals - fs/btrfs: Add cond_resched() for try_release_extent_mapping() stalls - drm/amdgpu: avoid dereferencing a NULL pointer - drm/radeon: Fix reference count leaks caused by pm_runtime_get_sync - [x86] crypto: aesni - Fix build with LLVM_IAS=1 - video: fbdev: neofb: fix memory leak in neo_scan_monitor() - md-cluster: fix wild pointer of unlock_all_bitmaps() - [arm64] dts: hisilicon: hikey: fixes to comply with adi, adv7533 DT binding - [armhf] drm/etnaviv: fix ref count leak via pm_runtime_get_sync - drm/nouveau: fix multiple instances of reference count leaks - drm/debugfs: fix plain echo to connector "force" attribute - drm/radeon: disable AGP by default - mm/mmap.c: Add cond_resched() for exit_mmap() CPU stalls - brcmfmac: keep SDIO watchdog running when console_interval is non-zero - brcmfmac: To fix Bss Info flag definition Bug - brcmfmac: set state of hanger slot to FREE when flushing PSQ - iwlegacy: Check the return value of pcie_capability_read_*() - [arm64,armhf] gpu: host1x: debug: Fix multiple channels emitting messages simultaneously - usb: gadget: net2280: fix memory leak on probe error handling paths - dyndbg: fix a BUG_ON in ddebug_describe_flags - bcache: fix super block seq numbers comparision in register_cache_set() - [arm64,x86] ACPICA: Do not increment operation_region reference counts for field units - [arm64] drm/msm: ratelimit crtc event overflow error - [x86] agp/intel: Fix a memory leak on module initialisation failure - ath10k: Acquire tx_lock in tx error paths - [armhf] drm/etnaviv: Fix error path on failure to enable bus clk - [arm64] drm/arm: fix unintentional integer overflow on left shift - drm/mipi: use dcs write for mipi_dsi_dcs_set_tear_scanline - [powerpc*] cxl: Fix kobject memleak - drm/radeon: fix array out-of-bounds read and write issues - ipvs: allow connection reuse for unconfirmed conntrack - xfs: don't eat an EIO/ENOSPC writeback error when scrubbing data fork - xfs: fix reflink quota reservation accounting error - RDMA/rxe: Skip dgid check in loopback mode - PCI: Fix pci_cfg_wait queue locking problem - leds: core: Flush scheduled work for system suspend - [arm64,armhf] drm: panel: simple: Fix bpc for LG LB070WV8 panel - [armhf] phy: exynos5-usbdrd: Calibrating makes sense only for USB2.0 PHY - scsi: scsi_debug: Add check for sdebug_max_queue during module init - mwifiex: Prevent memory corruption handling keys - [powerpc*] vdso: Fix vdso cpu truncation - RDMA/qedr: SRQ's bug fixes - RDMA/rxe: Prevent access to wr->next ptr afrer wr is posted to send queue - [x86] staging: rtl8192u: fix a dubious looking mask before a shift - PCI/ASPM: Add missing newline in sysfs 'policy' - [powerpc*] book3s64/pkeys: Use PVR check instead of cpu feature - USB: serial: iuu_phoenix: fix led-activity helpers - usb: core: fix quirks_param_set() writing to a const pointer - [armhf] thermal: ti-soc-thermal: Fix reversed condition in ti_thermal_expose_sensor() - [mips*] OCTEON: add missing put_device() call in dwc3_octeon_device_init() - [arm*] usb: dwc2: Fix error path in gadget registration - [arm64,armhf] net: dsa: mv88e6xxx: MV88E6097 does not support jumbo configuration - RDMA/core: Fix return error value in _ib_modify_qp() to negative - Bluetooth: hci_h5: Set HCI_UART_RESET_ON_INIT to correct flags - Bluetooth: hci_serdev: Only unregister device if it was registered - [x86] PCI: Release IVRS table in AMD ACS quirk - [s390x] qeth: don't process empty bridge port events - [arm64,armhf] wl1251: fix always return 0 error - [amd64] net: ethernet: aquantia: Fix wrong return value - liquidio: Fix wrong return value in cn23xx_get_pf_num() - dlm: Fix kobject memleak - ocfs2: fix unbalanced locking - [arm64,armhf] pinctrl-single: fix pcs_parse_pinconf() return value - svcrdma: Fix page leak in svc_rdma_recv_read_chunk() - [x86] fsgsbase/64: Fix NULL deref in 86_fsgsbase_read_task - [amd64] crypto: aesni - add compatibility with IAS - af_packet: TPACKET_V3: fix fill status rwlock imbalance - net/nfc/rawsock.c: add CAP_NET_RAW check. - net: Set fput_needed iff FDPUT_FPUT is set - net: refactor bind_bucket fastreuse into helper - net: initialize fastreuse on inet_inherit_port - USB: serial: cp210x: re-enable auto-RTS on open - USB: serial: cp210x: enable usb generic throttle/unthrottle - [x86] ALSA: hda - fix the micmute led status for Lenovo ThinkCentre AIO - ALSA: usb-audio: Creative USB X-Fi Pro SB1095 volume knob support - ALSA: usb-audio: fix overeager device match for MacroSilicon MS2109 - ALSA: usb-audio: work around streaming quirk for MacroSilicon MS2109 - [x86] crypto: qat - fix double free in qat_uclo_create_batch_init_list - [x86] crypto: ccp - Fix use of merged scatterlists - [arm64] crypto: cpt - don't sleep of CRYPTO_TFM_REQ_MAY_SLEEP was not specified - bitfield.h: don't compile-time validate _val in FIELD_FIT - fs/minix: check return value of sb_getblk() - fs/minix: don't allow getting deleted inodes - fs/minix: reject too-large maximum file size - ALSA: usb-audio: add quirk for Pioneer DDJ-RB - 9p: Fix memory leak in v9fs_mount - drm/ttm/nouveau: don't call tt destroy callback on alloc failure. - NFS: Don't move layouts to plh_return_segs list while in use - NFS: Don't return layout segments that are in use - [arm64] cpufreq: dt: fix oops on armada37xx - include/asm-generic/vmlinux.lds.h: align ro_after_init - spi: spidev: Align buffers for DMA - [x86] irqdomain/treewide: Free firmware node after domain removal - xen/balloon: fix accounting in alloc_xenballooned_pages error path - xen/balloon: make the balloon wait interruptible https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.141 - smb3: warn on confusing error scenario with sec=krb5 - genirq/affinity: Make affinity setting if activated opt-in - [arm64,x86] PCI: hotplug: ACPI: Fix context refcounting in acpiphp_grab_context() - PCI: Mark AMD Navi10 GPU rev 0x00 ATS as broken - PCI: Add device even if driver attach failed - [arm64] PCI: qcom: Define some PARF params needed for ipq8064 SoC - [arm64] PCI: qcom: Add support for tx term offset for rev 2.1.0 - PCI: Probe bridge window attributes once at enumeration-time - btrfs: free anon block device right after subvolume deletion - btrfs: don't allocate anonymous block device for user invisible roots - btrfs: ref-verify: fix memory leak in add_block_entry - btrfs: don't traverse into the seed devices in show_devname - btrfs: open device without device_list_mutex - btrfs: fix messages after changing compression level by remount - btrfs: only search for left_info if there is no right_info in try_merge_free_space (CVE-2019-19448) - btrfs: fix memory leaks after failure to lookup checksums during inode logging - btrfs: fix return value mixup in btrfs_get_extent - cifs: Fix leak when handling lease break for cached root fid - [powerpc*] Allow 4224 bytes of stack expansion for the signal frame - [powerpc*] Fix circular dependency between percpu.h and mmu.h - [arm64] net: ethernet: stmmac: Disable hardware multicast filter - [arm64,armhf] net: stmmac: dwmac1000: provide multicast filter fallback - net/compat: Add missing sock updates for SCM_RIGHTS - md/raid5: Fix Force reconstruct-write io stuck in degraded raid5 - bcache: allocate meta data pages as compound pages - bcache: fix overflow in offset_to_stripe() - mac80211: fix misplaced while instead of if - driver core: Avoid binding drivers to dead devices - [mips*] CPU#0 is not hotpluggable - ocfs2: change slot number type s16 to u16 - mm/page_counter.c: fix protection usage propagation - ftrace: Setup correct FTRACE_FL_REGS flags for module - kprobes: Fix NULL pointer dereference at kprobe_ftrace_handler - tracing/hwlat: Honor the tracing_cpumask - tracing: Use trace_sched_process_free() instead of exit() for pid tracing - [x86] watchdog: f71808e_wdt: indicate WDIOF_CARDRESET support in watchdog_info.options - [x86] watchdog: f71808e_wdt: remove use of wrong watchdog_info option - [x86] watchdog: f71808e_wdt: clear watchdog timeout occurred flag - [powerpc*] pseries: Fix 64 bit logical memory block panic - module: Correctly truncate sysfs sections output - [armhf] drm/imx: imx-ldb: Disable both channels for split mode in enc->disable() - RDMA/ipoib: Return void from ipoib_ib_dev_stop() - RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() - USB: serial: ftdi_sio: make process-packet buffer unsigned - USB: serial: ftdi_sio: clean up receive processing - [armhf] gpu: ipu-v3: image-convert: Combine rotate/no-rotate irq handlers - dm rq: don't call blk_mq_queue_stopped() in dm_stop_queue() - [amd64] iommu/vt-d: Enforce PASID devTLB field mask - scsi: lpfc: nvmet: Avoid hang / use-after-free again when destroying targetport - watchdog: initialize device before misc_register - Input: sentelic - fix error return when fsp_reg_write fails - [x86] drm/vmwgfx: Use correct vmw_legacy_display_unit pointer - [x86] drm/vmwgfx: Fix two list_for_each loop exit tests - [arm64] net: qcom/emac: add missed clk_disable_unprepare in error path of emac_clks_phase1_init - nfs: Fix getxattr kernel panic and memory overflow (CVE-2020-25212) - fs/minix: set s_maxbytes correctly - fs/minix: fix block limit check for V1 filesystems - fs/minix: remove expected error message in block_to_path() - fs/ufs: avoid potential u32 multiplication overflow - khugepaged: retract_page_tables() remember to test exit - [arm64] dts: marvell: espressobin: add ethernet alias - [x86] drm: Added orientation quirk for ASUS tablet model T103HAF https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.142 - drm/vgem: Replace opencoded version of drm_gem_dumb_map_offset() - perf probe: Fix memory leakage when the probe point is not found - khugepaged: khugepaged_test_exit() check mmget_still_valid() - khugepaged: adjust VM_BUG_ON_MM() in __khugepaged_enter() - btrfs: export helpers for subvolume name/id resolution - btrfs: don't show full path of bind mounts in subvol= - btrfs: Move free_pages_out label in inline extent handling branch in compress_file_range - btrfs: inode: fix NULL pointer dereference if inode doesn't need compression - btrfs: sysfs: use NOFS for device creation - romfs: fix uninitialized memory leak in romfs_dev_read() - kernel/relay.c: fix memleak on destroy relay channel - mm: include CMA pages in lowmem_reserve at boot - mm, page_alloc: fix core hung in free_pcppages_bulk() - ext4: fix checking of directory entry validity for inline directories - jbd2: add the missing unlock_buffer() in the error path of jbd2_write_superblock() - [s390x] scsi: zfcp: Fix use-after-free in request timeout handlers - kthread: Do not preempt current task if it is going to call schedule() - spi: Prevent adding devices below an unregistering controller - scsi: ufs: Add DELAY_BEFORE_LPM quirk for Micron devices - [arm*] scsi: target: tcmu: Fix crash in tcmu_flush_dcache_range on ARM - media: budget-core: Improve exception handling in budget_register() - Input: psmouse - add a newline when printing 'proto' by sysfs - svcrdma: Fix another Receive buffer leak - xfs: fix inode quota reservation checks - jffs2: fix UAF problem - ceph: fix use-after-free for fsc->mdsc - [x86] cpufreq: intel_pstate: Fix cpuinfo_max_freq when MSR_TURBO_RATIO_LIMIT is 0 - scsi: libfc: Free skb in fc_disc_gpn_id_resp() for valid cases - virtio_ring: Avoid loop when vq is broken in virtqueue_poll - xfs: Fix UBSAN null-ptr-deref in xfs_sysfs_init - fs/signalfd.c: fix inconsistent return codes for signalfd4 - ext4: fix potential negative array index in do_split() (CVE-2020-14314) - ext4: don't allow overlapping system zones - i40e: Set RX_ONLY mode for unicast promiscuous on VLAN - i40e: Fix crash during removing i40e driver - [armhf] net: fec: correct the error path for regulator disable in probe - bonding: show saner speed for broadcast mode - bonding: fix a potential double-unregister - [s390x] runtime_instrumentation: fix storage key handling - [s390x] ptrace: fix storage key handling - [x86] ASoC: intel: Fix memleak in sst_media_open - [amd64,arm64] vfio/type1: Add proper error unwind for vfio_iommu_replay() - [x86] kvm: Toggling CR4.SMAP does not load PDPTEs in PAE mode - [x86] kvm: Toggling CR4.PKE does not load PDPTEs in PAE mode - efi: avoid error message when booting under Xen - afs: Fix NULL deref in afs_dynroot_depopulate() - bonding: fix active-backup failover for current ARP slave - net: ena: Prevent reset after device destruction - [x86] hv_netvsc: Fix the queue_mapping in netvsc_vf_xmit() - [armhf] net: dsa: b53: check for timeout - [powerpc*] pseries: Do not initiate shutdown when system is running on UPS - efi: add missed destroy_workqueue when efisubsys_init fails - epoll: Keep a reference on files added to the check list - do_epoll_ctl(): clean the failure exits up a bit - mm/hugetlb: fix calculation of adjust_range_if_pmd_sharing_possible - xen: don't reschedule in preemption off sections - clk: Evict unregistered clks from parent caches - KVM: Pass MMU notifier range flags to kvm_unmap_hva_range() - [arm64] KVM: Only reschedule if MMU_NOTIFIER_RANGE_BLOCKABLE is not set https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.143 - [powerpc*] 64s: Don't init FSCR_DSCR in __init_FSCR() - gre6: Fix reception with IP6_TNL_F_RCV_DSCP_COPY - net: Fix potential wrong skb->protocol in skb_vlan_untag() - net/smc: Prevent kernel-infoleak in __smc_diag_dump() - tipc: fix uninit skb->data in tipc_nl_compat_dumpit() - net: ena: Make missed_tx stat incremental - ipvlan: fix device features - [x86] mfd: intel-lpss: Add Intel Emmitsburg PCH PCI IDs - [powerpc*] xive: Ignore kmemleak false positives - media: pci: ttpci: av7110: fix possible buffer overflow caused by bad DMA value in debiirq() - blktrace: ensure our debugfs dir exists - scsi: target: tcmu: Fix crash on ARM during cmd completion - [arm*] iommu/iova: Don't BUG on invalid PFNs - [amd64] drm/amdkfd: Fix reference count leaks. - drm/radeon: fix multiple reference count leak - drm/amdgpu: fix ref count leak in amdgpu_driver_open_kms - drm/amd/display: fix ref count leak in amdgpu_drm_ioctl - drm/amdgpu: fix ref count leak in amdgpu_display_crtc_set_config - drm/amdgpu/display: fix ref count leak when pm_runtime_get_sync fails - scsi: lpfc: Fix shost refcount mismatch when deleting vport - xfs: Don't allow logging of XFS_ISTALE inodes - f2fs: fix error path in do_recover_data() - PCI: Fix pci_create_slot() reference count leak - rtlwifi: rtl8192cu: Prevent leaking urb - [mips*] vdso: Fix resource leaks in genvdso.c - cec-api: prevent leaking memory through hole in structure - HID: quirks: add NOGET quirk for Logitech GROUP - f2fs: fix use-after-free issue - drm/nouveau/drm/noveau: fix reference count leak in nouveau_fbcon_open - drm/nouveau: fix reference count leak in nv50_disp_atomic_commit - drm/nouveau: Fix reference count leak in nouveau_connector_detect - btrfs: file: reserve qgroup space after the hole punch range is locked - scsi: iscsi: Do not put host in iscsi_set_flashnode_param() - ceph: fix potential mdsc use-after-free crash - scsi: fcoe: Memory leak fix in fcoe_sysfs_fcf_del() - [x86] EDAC/ie31200: Fallback if host bridge device is already initialized - [arm64] KVM: Fix symbol dependency in __hyp_call_panic_nvhe - USB: sisusbvga: Fix a potential UB casued by left shifting a negative value - [arm64] drm/msm/adreno: fix updating ring fence - nvme-fc: Fix wrong return value in __nvme_fc_init_request() - null_blk: fix passing of REQ_FUA flag in null_handle_rq - jbd2: make sure jh have b_transaction set in refile/unfile_buffer - ext4: don't BUG on inconsistent journal feature - ext4: handle read only external journal device - jbd2: abort journal if free a async write error metadata buffer - ext4: handle option set by mount flags correctly - ext4: handle error of ext4_setup_system_zone() on remount - ext4: correctly restore system zone info when remount fails - fs: prevent BUG_ON in submit_bh_wbc() - [s390x] cio: add cond_resched() in the slow_eval_known_fn() loop - scsi: fcoe: Fix I/O path allocation - scsi: ufs: Fix possible infinite loop in ufshcd_hold - scsi: ufs: Improve interrupt handling for shared interrupts - scsi: ufs: Clean up completed request without interrupt notification - scsi: qla2xxx: Check if FW supports MQ before enabling - scsi: qla2xxx: Fix null pointer access during disconnect from subsystem - Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_command" - macvlan: validate setting of multiple remote source MAC addresses - [powerpc*] perf: Fix soft lockups due to missed interrupt accounting - block: loop: set discard granularity and alignment for block device backed loop - [arm64,x86] HID: i2c-hid: Always sleep 60ms after I2C_HID_PWR_ON commands - blk-mq: order adding requests to hctx->dispatch and checking SCHED_RESTART - btrfs: reset compression level for lzo on remount - btrfs: fix space cache memory leak after transaction abort - fbcon: prevent user font height or width change from causing potential out-of-bounds access - vt: defer kfree() of vc_screenbuf in vc_do_resize() - vt_ioctl: change VT_RESIZEX ioctl to check for error return from vc_resize() - [armhf] serial: samsung: Removes the IRQ not found warning - [arm*] serial: pl011: Fix oops on -EPROBE_DEFER - [arm*] serial: pl011: Don't leak amba_ports entry on driver register error - serial: 8250_exar: Fix number of ports for Commtech PCIe cards - serial: 8250: change lock order in serial8250_do_startup() - writeback: Protect inode->i_io_list with inode->i_lock - writeback: Avoid skipping inode writeback - writeback: Fix sync livelock due to b_dirty_time processing - XEN uses irqdesc::irq_data_common::handler_data to store a per interrupt XEN data pointer which contains XEN specific information. - usb: host: xhci: fix ep context print mismatch in debugfs - xhci: Do warm-reset when both CAS and XDEV_RESUME are set - xhci: Always restore EP_SOFT_CLEAR_TOGGLE even if ep reset failed - PM: sleep: core: Fix the handling of pending runtime resume requests - device property: Fix the secondary firmware node handling in set_primary_fwnode() - [x86] genirq/matrix: Deal with the sillyness of for_each_cpu() on UP - drm/amdgpu: Fix buffer overflow in INFO ioctl - USB: yurex: Fix bad gfp argument - USB: quirks: Add no-lpm quirk for another Raydium touchscreen - USB: quirks: Ignore duplicate endpoint on Sound Devices MixPre-D - [armhf] usb: host: ohci-exynos: Fix error handling in exynos_ohci_probe() - USB: gadget: f_ncm: add bounds checks to ncm_unwrap_ntb() - USB: cdc-acm: rework notification_buffer resizing - btrfs: check the right error variable in btrfs_del_dir_entries_in_log - [arm64,armhf] usb: dwc3: gadget: Don't setup more than requested - [arm64,armhf] usb: dwc3: gadget: Fix handling ZLP - [arm64,armhf] usb: dwc3: gadget: Handle ZLP for sg requests - [arm64,x86] tpm: Unify the mismatching TPM space buffer sizes - HID: hiddev: Fix slab-out-of-bounds write in hiddev_ioctl_usage() https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.144 - HID: core: Correctly handle ReportSize being zero - HID: core: Sanitize event code and type when mapping input - scsi: target: tcmu: Fix size in calls to tcmu_flush_dcache_range - scsi: target: tcmu: Optimize use of flush_dcache_page - [arm64] drm/msm: add shutdown support for display platform_driver - [x86] hwmon: (applesmc) check status earlier. - nvmet: Disable keep-alive timer when kato is cleared to 0h - [arm64] drm/msm/a6xx: fix gmu start on newer firmware - ceph: don't allow setlease on cephfs - cpuidle: Fixup IRQ state - [s390x] don't trace preemption in percpu macros - xen/xenbus: Fix granting of vmalloc'd memory - dmaengine: of-dma: Fix of_dma_router_xlate's of_dma_xlate handling - batman-adv: Avoid uninitialized chaddr when handling DHCP - batman-adv: bla: use netif_rx_ni when not in interrupt context - [mips*] mm: BMIPS5000 has inclusive physical caches - netfilter: nf_tables: add NFTA_SET_USERDATA if not null - netfilter: nf_tables: incorrect enum nft_list_attributes definition - netfilter: nf_tables: fix destination register zeroing - [arm64] net: hns: Fix memleak in hns_nic_dev_probe - [arm64,armhf] dmaengine: pl330: Fix burst length if burst size is smaller than bus width - gtp: add GTPA_LINK info to msg sent to userspace - bnxt_en: Don't query FW when netif_running() is false. - bnxt_en: Check for zero dir entries in NVRAM. - bnxt_en: Fix PCI AER error recovery flow - bnxt_en: fix HWRM error when querying VF temperature - xfs: fix boundary test in xfs_attr_shortform_verify (CVE-2020-14385) - bnxt: don't enable NAPI until rings are ready - netfilter: nfnetlink: nfnetlink_unicast() reports EAGAIN instead of ENOBUFS - nvmet-fc: Fix a missed _irqsave version of spin_lock in 'nvmet_fc_fod_op_done()' - net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() - fix regression in "epoll: Keep a reference on files added to the check list" - xfs: fix xfs_bmap_validate_extent_raw when checking attr fork of rt files - tg3: Fix soft lockup when tg3_reset_task() fails. - [amd64] x86, fakenuma: Fix invalid starting node ID - [amd64] iommu/vt-d: Serialize IOMMU GCMD register modifications - [armhf] thermal: ti-soc-thermal: Fix bogus thermal shutdowns for omap4430 - xfs: don't update mtime on COW faults - btrfs: drop path before adding new uuid tree entry - vfio/type1: Support faulting PFNMAP vmas - vfio-pci: Fault mmaps to enable vma tracking - vfio-pci: Invalidate mmaps and block MMIO access on disabled memory (CVE-2020-12888) - btrfs: Remove redundant extent_buffer_get in get_old_root - btrfs: Remove extraneous extent_buffer_get from tree_mod_log_rewind - btrfs: set the lockdep class for log tree extent buffers - uaccess: Add non-pagefault user-space read functions - uaccess: Add non-pagefault user-space write function - btrfs: fix potential deadlock in the search ioctl - net: usb: qmi_wwan: add Telit 0x1050 composition - usb: qmi_wwan: add D-Link DWM-222 A2 device ID - ALSA: ca0106: fix error code handling - ALSA: pcm: oss: Remove superfluous WARN_ON() for mulaw sanity check - [x86] ALSA: hda/hdmi: always check pin power status in i915 pin fixup - ALSA: firewire-digi00x: exclude Avid Adrenaline from detection - [x86] ALSA: hda - Fix silent audio output and corrupted input on MSI X570-A PRO - media: rc: do not access device via sysfs after rc_unregister_device() - media: rc: uevent sysfs file races with rc_unregister_device() - affs: fix basic permission bits to actually work - block: allow for_each_bvec to support zero len bvec - libata: implement ATA_HORKAGE_MAX_TRIM_128M and apply to Sandisks - dm writecache: handle DAX to partitions on persistent memory correctly - dm cache metadata: Avoid returning cmd->bm wild pointer on error - dm thin metadata: Avoid returning cmd->bm wild pointer on error - mm: slub: fix conversion of freelist_corrupted() - [arm64] KVM: Add kvm_extable for vaxorcism code - [arm64] KVM: Defer guest entry when an asynchronous exception is pending - [arm64] KVM: Survive synchronous exceptions caused by AT instructions - [arm64] KVM: Set HCR_EL2.PTW to prevent AT taking synchronous exception - vfio/pci: Fix SR-IOV VF handling with MMIO blocking - checkpatch: fix the usage of capture group ( ... ) - mm/hugetlb: fix a race between hugetlb sysctl handlers (CVE-2020-25285) - cfg80211: regulatory: reject invalid hints - net: usb: Fix uninit-was-stored issue in asix_read_phy_addr() https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.145 - ALSA; firewire-tascam: exclude Tascam FE-8 from detection - block: ensure bdi->io_pages is always initialized - net: usb: dm9601: Add USB ID of Keenetic Plus DSL - sctp: not disable bh in the whole sctp_get_port_local() - tipc: fix shutdown() of connectionless socket - net: disable netpoll on fresh napis - [arm64,armhf] net/mlx5e: Don't support phys switch id if not in switchdev mode https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.146 - RDMA/rxe: Fix memleak in rxe_mem_init_user - RDMA/rxe: Drop pointless checks in rxe_init_ports - [armhf] drm/sun4i: Fix dsi dcs long write function - scsi: libsas: Set data_dir as DMA_NONE if libata marks qc as NODATA - RDMA/core: Fix reported speed and width - [arm64] mmc: sdhci-msm: Add retries when all tuning phases are found valid - [arm64,x86] dmaengine: acpi: Put the CSRT table after using it - netfilter: conntrack: allow sctp hearbeat after connection re-use - [x86] firestream: Fix memleak in fs_open - [arm64,armhf] ALSA: hda: Fix 2 channel swapping for Tegra - xfs: initialize the shortform attr header padding entry - nvme-fabrics: don't check state NVME_CTRL_NEW for request acceptance - nvme-rdma: serialize controller teardown sequences - HID: quirks: Set INCREMENT_USAGE_ON_DUPLICATE for all Saitek X52 devices - [ppc64el,x86] drivers/net/wan/hdlc_cisco: Add hard_header_len - HID: elan: Fix memleak in elan_input_configured - [x86] cpufreq: intel_pstate: Refuse to turn off with HWP enabled - [x86] cpufreq: intel_pstate: Fix intel_pstate_get_hwp_max() for turbo disabled - ALSA: hda: fix a runtime pm issue in SOF when integrated GPU is disabled - [amd64] iommu/amd: Do not use IOMMUv2 functionality when SME is active - [x86] iio:accel:bmc150-accel: Fix timestamp alignment and prevent data leak. - [x86] iio:magnetometer:ak8975 Fix alignment and data leak issues. - [armhf] iio:accel:mma8452: Fix timestamp alignment and prevent data leak. - [x86] staging: wlan-ng: fix out of bounds read in prism2sta_probe_usb() - btrfs: require only sector size alignment for parent eb bytenr - btrfs: fix lockdep splat in add_missing_dev - btrfs: fix wrong address when faulting in pages in the search ioctl - regulator: push allocation in set_consumer_device_supply() out of lock - scsi: target: iscsi: Fix data digest calculation - scsi: target: iscsi: Fix hang in iscsit_access_np() when getting tpg->np_login_sem - [arm64] drm/msm: Disable preemption on all 5xx targets - rbd: require global CAP_SYS_ADMIN for mapping and unmapping (CVE-2020-25284) - RDMA/rxe: Fix the parent sysfs read when the interface has 15 chars - vgacon: remove software scrollback support - fbcon: remove soft scrollback code (CVE-2020-14390) - fbcon: remove now unusued 'softback_lines' cursor() argument - [x86] KVM: VMX: Don't freeze guest when event delivery causes an APIC-access exit - [x86] video: fbdev: fix OOB read in vga_8planes_imageblit() - [arm64] phy: qcom-qmp: Use correct values for ipq8074 PCIe Gen2 PHY init - usb: core: fix slab-out-of-bounds Read in read_descriptors - USB: serial: ftdi_sio: add IDs for Xsens Mti USB converter - USB: serial: option: support dynamic Quectel USB compositions - USB: serial: option: add support for SIM7070/SIM7080/SIM7090 modules - usb: Fix out of sync data toggle if a configured device is reconfigured - [x86] usb: typec: ucsi: acpi: Check the _DEP dependencies . [ Salvatore Bonaccorso ] * Bump ABI to 11 * Drop 'Revert "mips: Add udelay lpj numbers adjustment"' * [rt] Update to 4.19.135-rt60 * [rt] Refresh "net: Use skbufhead with raw lock" for context changes in 4.19.136 * [rt] Refresh "timers: Prepare for full preemption" for context changes in 4.19.138 * [rt] Refresh "timers: Redo the notification of canceling timers on -RT" for context changes in 4.19.138 * [rt] Refresh "watchdog: prevent deferral of watchdogd wakeup on RT" for context changes in 4.19.141 * Refresh "net: ena: fix crash during ena_remove()" for context changes in 4.19.142 * [rt] Refresh "Split IRQ-off and zone->lock while freeing pages from PCP list #1" for context changes in 4.19.142 * ACPI: configfs: Disallow loading ACPI tables when locked down (CVE-2020-15780) * [rt] Update to 4.19.142-rt63 * net/packet: fix overflow in tpacket_rcv (CVE-2020-14386) * debian/tests/python: pycodestyle: Increase max-line-length to 100. * gfs2: initialize transaction tr_ailX_lists earlier (Closes: #968567) linux-signed-i386 (4.19.146+1) buster; urgency=medium . * Sign kernel from linux 4.19.146-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.133 - [s390x] KVM: s390: reduce number of IO pins to 1 - regmap: fix alignment issue - [arm64,armhf] drm/tegra: hub: Do not enable orphaned window group - [arm64,armhf] gpu: host1x: Detach driver on unregister - spi: spidev: fix a race between spidev_release and spidev_remove - spi: spidev: fix a potential use-after-free in spidev_release() - ixgbe: protect ring accesses with READ- and WRITE_ONCE - i40e: protect ring accesses with READ- and WRITE_ONCE - [x86] drm: panel-orientation-quirks: Add quirk for Asus T101HA panel - [x86] drm: panel-orientation-quirks: Use generic orientation-data for Acer S1003 - cifs: update ctime and mtime during truncate - [armhf] imx6: add missing put_device() call in imx6q_suspend_init() - scsi: mptscsih: Fix read sense data size - [arm64] usb: dwc3: pci: Fix reference count leak in dwc3_pci_resume_work - block: release bip in a right way in error path - nvme-rdma: assign completion vector correctly - [x86] entry: Increase entry_stack size to a full page - net: cxgb4: fix return error value in t4_prep_fw - smsc95xx: check return value of smsc95xx_reset - smsc95xx: avoid memory leak in smsc95xx_bind - [arm64] net: hns3: fix use-after-free when doing self test - [x86] ALSA: compress: fix partial_drain completion state - nbd: Fix memory leak in nbd_add_socket - cxgb4: fix all-mask IP address comparison - bnxt_en: fix NULL dereference in case SR-IOV configuration fails - [arm64] net: macb: mark device wake capable when "magic-packet" property present - ALSA: opl3: fix infoleak in opl3 - ALSA: hda - let hs_mic be picked ahead of hp_mic - ALSA: usb-audio: add quirk for MacroSilicon MS2109 - [arm64] KVM: Fix definition of PAGE_HYP_DEVICE - [arm64] KVM: Stop clobbering x0 for HVC_SOFT_RESTART - [x86] KVM: bit 8 of non-leaf PDPEs is not reserved - [x86] KVM: Inject #GP if guest attempts to toggle CR4.LA57 in 64-bit mode - [x86] KVM: Mark CR4.TSD as being possibly owned by the guest - kallsyms: Refactor kallsyms_show_value() to take cred - kernel: module: Use struct_size() helper - module: Refactor section attr into bin attribute - module: Do not expose section addresses to non-CAP_SYSLOG - kprobes: Do not expose probe addresses to non-CAP_SYSLOG - bpf: Check correct cred for CAP_SYSLOG in bpf_dump_raw_ok() - btrfs: fix fatal extent_buffer readahead vs releasepage race - drm/radeon: fix double free - dm: use noio when sending kobject event - [s390x] mm: fix huge pte soft dirty copying https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.134 - perf: Make perf able to build with latest libbfd - genetlink: remove genl_bind - ipv4: fill fl4_icmp_{type,code} in ping_v4_sendmsg - l2tp: remove skb_dst_set() from l2tp_xmit_skb() - llc: make sure applications use ARPHRD_ETHER - net: Added pointer check for dst->ops->neigh_lookup in dst_neigh_lookup_skb - net_sched: fix a memory leak in atm_tc_init() - net: usb: qmi_wwan: add support for Quectel EG95 LTE modem - tcp: fix SO_RCVLOWAT possible hangs under high mem pressure - tcp: make sure listeners don't initialize congestion-control state - tcp: md5: add missing memory barriers in tcp_md5_do_add()/tcp_md5_hash_key() - tcp: md5: do not send silly options in SYNCOOKIES - tcp: md5: refine tcp_md5_do_add()/tcp_md5_hash_key() barriers - tcp: md5: allow changing MD5 keys in all socket states - cgroup: fix cgroup_sk_alloc() for sk_clone_lock() (CVE-2020-14356) (Closes: #966846) - cgroup: Fix sock_cgroup_data on big-endian. - sched: consistently handle layer3 header accesses in the presence of VLANs - vlan: consolidate VLAN parsing code and limit max parsing depth - [arm64] drm/msm: fix potential memleak in error branch - [arm64] alternatives: use subsections for replacement sequences - [arm64,x86] tpm_tis: extra chip->ops check on error path in tpm_tis_core_init - gfs2: read-only mounts should grab the sd_freeze_gl glock - [i386] i2c: eg20t: Load module automatically if ID matches - [arm64] alternatives: don't patch up internal branches - [armhf] iio: mma8452: Add missed iio_device_unregister() call in mma8452_probe() - [armhf] net: dsa: bcm_sf2: Fix node reference count - of: of_mdio: Correct loop scanning logic - Revert "usb/ohci-platform: Fix a warning when hibernating" - [arm64,armhf] Revert "usb/xhci-plat: Set PM runtime as active on resume" - Revert "usb/ehci-platform: Set PM runtime as active on resume" - [arm64,armhf] net: sfp: add support for module quirks - [arm64,armhf] net: sfp: add some quirks for GPON modules - HID: quirks: Remove ITE 8595 entry from hid_have_special_driver - ALSA: usb-audio: Create a registration quirk for Kingston HyperX Amp (0951:16d8) - mmc: sdhci: do not enable card detect interrupt for gpio cd type - ALSA: usb-audio: Rewrite registration quirk handling - [x86] ACPI: video: Use native backlight on Acer Aspire 5783z - ALSA: usb-audio: Add registration quirk for Kingston HyperX Cloud Alpha S - [x86] ACPI: video: Use native backlight on Acer TravelMate 5735Z - ALSA: usb-audio: Add registration quirk for Kingston HyperX Cloud Flight S - [arm64,armhf] phy: sun4i-usb: fix dereference of pointer phy0 before it is null checked - [armhf] spi: spi-sun6i: sun6i_spi_transfer_one(): fix setting of clock rate - [x86] staging: comedi: verify array index is correct before using it - regmap: debugfs: Don't sleep while atomic for fast_io regmaps - [x86] copy_xstate_to_kernel: Fix typo which caused GDB regression - apparmor: ensure that dfa state tables have entries - perf stat: Zero all the 'ena' and 'run' array slot stats for interval mode - [armhf] mtd: rawnand: marvell: Use nand_cleanup() when the device is not yet registered - [armhf] mtd: rawnand: marvell: Fix probe error path - mtd: rawnand: timings: Fix default tR_max and tCCS_min timings - HID: magicmouse: do not set up autorepeat - HID: quirks: Always poll Obins Anne Pro 2 keyboard - HID: quirks: Ignore Simply Automated UPB PIM - ALSA: line6: Perform sanity check for each URB creation - ALSA: line6: Sync the pending work cancel at disconnection - ALSA: usb-audio: Fix race against the error recovery URB submission - [x86] ALSA: hda/realtek - change to suitable link model for ASUS platform - [x86] ALSA: hda/realtek - Enable Speaker for ASUS UX533 and UX534 - [arm*] usb: dwc2: Fix shutdown callback in platform - [arm64,armhf] usb: chipidea: core: add wakeup support for extcon - USB: serial: iuu_phoenix: fix memory corruption - USB: serial: cypress_m8: enable Simply Automated UPB PIM - USB: serial: ch341: add new Product ID for CH340 - USB: serial: option: add GosunCn GM500 series - USB: serial: option: add Quectel EG95 LTE modem - [x86] virt: vbox: Fix VBGL_IOCTL_VMMDEV_REQUEST_BIG and _LOG req numbers to match upstream - [x86] virt: vbox: Fix guest capabilities mask check - [arm64] virtio: virtio_console: add missing MODULE_DEVICE_TABLE() for rproc serial - ovl: inode reference leak in ovl_is_inuse true case. - ovl: relax WARN_ON() when decoding lower directory file handle - ovl: fix unneeded call to ovl_change_flags() - fuse: Fix parameter for FS_IOC_{GET,SET}FLAGS - Revert "zram: convert remaining CLASS_ATTR() to CLASS_ATTR_RO()" (CVE-2020-10781) - [x86] mei: bus: don't clean driver pointer - timer: Prevent base->clk from moving backward - timer: Fix wheel index calculation on last level - [mips*] Fix build for LTS kernel caused by backporting lpj adjustment - hwmon: (emc2103) fix unable to change fan pwm1_enable attribute - [powerpc*] book3s64/pkeys: Fix pkey_access_permitted() for execute disable pkey - [x86] intel_th: pci: Add Jasper Lake CPU support - [x86] intel_th: pci: Add Tiger Lake PCH-H support - [x86] intel_th: pci: Add Emmitsburg PCH support - [x86] intel_th: Fix a NULL dereference when hub driver is not loaded - [arm*] thermal/drivers/cpufreq_cooling: Fix wrong frequency converted from power - [arm64] ptrace: Override SPSR.SS when single-stepping is enabled - [arm64] ptrace: Consistently use pseudo-singlestep exceptions - [arm64] compat: Ensure upper 32 bits of x0 are zero on syscall return - sched: Fix unreliable rseq cpu_id for new tasks - sched/fair: handle case of task_h_load() returning 0 - genirq/affinity: Handle affinity setting on inactive interrupts correctly - printk: queue wake_up_klogd irq_work only if per-CPU areas are ready - libceph: don't omit recovery_deletes in target_copy() - rxrpc: Fix trace string https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.135 - mac80211: allow rx of mesh eapol frames with default rx key - scsi: scsi_transport_spi: Fix function pointer check - net: sky2: initialize return of gm_phy_read - drm/nouveau/i2c/g94-: increase NV_PMGR_DP_AUXCTL_TRANSACTREQ timeout - fuse: fix weird page warning - [x86] irqdomain/treewide: Keep firmware node unconditionally allocated - SUNRPC reverting d03727b248d0 ("NFSv4 fix CLOSE not waiting for direct IO compeletion") - tipc: clean up skb list lock handling on send path - IB/umem: fix reference count leak in ib_umem_odp_get() - uprobes: Change handle_swbp() to send SIGTRAP with si_code=SI_KERNEL, to fix GDB regression - ALSA: info: Drop WARN_ON() from buffer NULL sanity check - btrfs: fix double free on ulist after backref resolution failure - btrfs: fix mount failure caused by race with umount - btrfs: fix page leaks after failure to lock page for delalloc - bnxt_en: Fix race when modifying pause settings. - [x86] hippi: Fix a size used in a 'pci_free_consistent()' in an error handling path - ax88172a: fix ax88172a_unbind() failures - ieee802154: fix one possible memleak in adf7242_probe - [arm64,armhf] drm: sun4i: hdmi: Fix inverted HPD result - [arm64,armhf] net: smc91x: Fix possible memory leak in smc_drv_probe() - bonding: check error value of register_netdevice() immediately - qed: suppress "don't support RoCE & iWARP" flooding on HW init - ipvs: fix the connection sync failed in some cases - bonding: check return value of register_netdevice() in bond_newlink() - serial: exar: Fix GPIO configuration for Sealevel cards based on XR17V35X - [arm64,x86] HID: i2c-hid: add Mediacom FlexBook edge13 to descriptor override - HID: alps: support devices with report id 2 - HID: steam: fixes race in handling device list. - HID: apple: Disable Fn-key key-re-mapping on clone keyboards - [arm64] dmaengine: tegra210-adma: Fix runtime PM imbalance on error - Input: add `SW_MACHINE_COVER` - regmap: dev_get_regmap_match(): fix string comparison - hwmon: (aspeed-pwm-tacho) Avoid possible buffer overflow - [amd64] dmaengine: ioat setting ioat timeout as module parameter - [x86] Input: synaptics - enable InterTouch for ThinkPad X1E 1st gen - [arm64] Use test_tsk_thread_flag() for checking TIF_SINGLESTEP - [arm*] binder: Don't use mmput() from shrinker function. - usb: xhci: Fix ASM2142/ASM3142 DMA addressing - Revert "cifs: Fix the target file was deleted when rename failed." (Closes: #966917) - [x86] staging: wlan-ng: properly check endpoint types - [x86] staging: comedi: addi_apci_1032: check INSN_CONFIG_DIGITAL_TRIG shift - [x86] staging: comedi: ni_6527: fix INSN_CONFIG_DIGITAL_TRIG support - [x86] staging: comedi: addi_apci_1500: check INSN_CONFIG_DIGITAL_TRIG shift - [x86] staging: comedi: addi_apci_1564: check INSN_CONFIG_DIGITAL_TRIG shift - serial: 8250: fix null-ptr-deref in serial8250_start_tx() - fbdev: Detect integer underflow at "struct fbcon_ops"->clear_margins. - vt: Reject zero-sized screen buffer size. - mm/memcg: fix refcount error while moving and swapping - mm: memcg/slab: synchronize access to kmem_cache dying flag using a spinlock - mm: memcg/slab: fix memory leak at non-root kmem_cache destroy - io-mapping: indicate mapping failure - drm/amdgpu: Fix NULL dereference in dpm sysfs handlers - [x86] vmlinux.lds: Page-align end of ..page_aligned sections - [x86] ASoC: rt5670: Add new gpio1_is_ext_spk_en quirk and enable it on the Lenovo Miix 2 10 - dm integrity: fix integrity recalculation that is improperly skipped - ath9k: Fix general protection fault in ath9k_hif_usb_rx_cb - ath9k: Fix regression with Atheros 9271 https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.136 - AX.25: Fix out-of-bounds read in ax25_connect() - AX.25: Prevent out-of-bounds read in ax25_sendmsg() - dev: Defer free of skbs in flush_backlog - ip6_gre: fix null-ptr-deref in ip6gre_init_net() - net-sysfs: add a newline when printing 'tx_timeout' by sysfs - net: udp: Fix wrong clean up for IS_UDPLITE macro - rxrpc: Fix sendmsg() returning EPIPE due to recvmsg() returning ENODATA - tcp: allow at most one TLP probe per flight - AX.25: Prevent integer overflows in connect and sendmsg - sctp: shrink stream outq only when new outcnt < old outcnt - sctp: shrink stream outq when fails to do addstream reconf - udp: Copy has_conns in reuseport_grow(). - udp: Improve load balancing for SO_REUSEPORT. - rtnetlink: Fix memory(net_device) leak when ->newlink fails - regmap: debugfs: check count when read regmap file https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.137 - [x86] crypto: ccp - Release all allocated memory if sha type is invalid (CVE-2019-18808) - media: rc: prevent memory leak in cx23888_ir_probe (CVE-2019-19054) - iio: imu: adis16400: fix memory leak (CVE-2019-19061) - [x86] drm/amdgpu: fix multiple memory leaks in acp_hw_init (CVE-2019-19067) - tracing: Have error path in predicate_parse() free its allocated memory (CVE-2019-19072) - ath9k_htc: release allocated buffer if timed out (CVE-2019-19073) - ath9k: release allocated buffer if timed out (CVE-2019-19074) - drm/amd/display: prevent memory leak (CVE-2019-19082) - btrfs: inode: Verify inode mode to avoid NULL pointer dereference (CVE-2019-19813, CVE-2019-19816) - sctp: implement memory accounting on tx path (CVE-2019-3874) - Btrfs: fix selftests failure due to uninitialized i_mode in test inodes - PCI/ASPM: Disable ASPM on ASMedia ASM1083/1085 PCIe-to-PCI bridge - 9p/trans_fd: Fix concurrency del of req_list in p9_fd_cancelled/p9_read_work - wireless: Use offsetof instead of custom macro. - [armel,armhf] 8986/1: hw_breakpoint: Don't invoke overflow handler on uaccess watchpoints - Revert "drm/amdgpu: Fix NULL dereference in dpm sysfs handlers" - drm/amdgpu: Prevent kernel-infoleak in amdgpu_info_ioctl() - drm: hold gem reference until object is no longer accessed - rds: Prevent kernel-infoleak in rds_notify_queue_get() - xfs: fix missed wakeup on l_flush_wait - xfrm: Fix crash when the hold queue is used. - net/mlx5: Verify Hardware supports requested ptp function on a given pin - net: lan78xx: add missing endpoint sanity check - net: lan78xx: fix transfer-buffer memory leak - mlx4: disable device on shutdown - bpf: Fix map leak in HASH_OF_MAPS map - mac80211: mesh: Free ie data when leaving mesh - mac80211: mesh: Free pending skb when destroying a mpath - [arm64] alternatives: move length validation inside the subsection - [arm64] csum: Fix handling of bad packets - Bluetooth: fix kernel oops in store_pending_adv_report - net/mlx5e: fix bpf_prog reference count leaks in mlx5e_alloc_rq - qed: Disable "MFW indication via attention" SPAM every 5 minutes - [amd64] x86/unwind/orc: Fix ORC for newly forked tasks - cxgb4: add missing release on skb in uld_send() - xen-netfront: fix potential deadlock in xennet_remove() - [x86] KVM: LAPIC: Prevent setting the tscdeadline timer if the lapic is hw disabled - [x86] i8259: Use printk_deferred() to prevent deadlock https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.138 - random32: update the net random state on interrupt and activity (CVE-2020-16166) - [armel] ARM: percpu.h: fix build error - random: fix circular include dependency on arm64 after addition of percpu.h - random32: remove net_rand_state from the latent entropy gcc plugin - random32: move the pseudo-random 32-bit definitions to prandom.h - ext4: fix direct I/O read error https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.139 - USB: serial: qcserial: add EM7305 QDL product ID - USB: iowarrior: fix up report size handling for some devices - usb: xhci: define IDs for various ASMedia host controllers - usb: xhci: Fix ASMedia ASM1142 DMA addressing - Revert "ALSA: hda: call runtime_allow() for all hda controllers" - [arm*] staging: android: ashmem: Fix lockdep warning for write operation - Bluetooth: Fix slab-out-of-bounds read in hci_extended_inquiry_result_evt() - Bluetooth: Prevent out-of-bounds read in hci_inquiry_result_evt() - Bluetooth: Prevent out-of-bounds read in hci_inquiry_result_with_rssi_evt() - [arm*] binder: Prevent context manager from incrementing ref 0 - vgacon: Fix for missing check in scrollback handling (CVE-2020-14331) - mtd: properly check all write ioctls for permissions - net/9p: validate fds in p9_fd_open - drm/nouveau/fbcon: fix module unload when fbcon init has failed for some reason - drm/nouveau/fbcon: zero-initialise the mode_cmd2 structure - usb: hso: check for return value in hso_serial_common_create() - firmware: Fix a reference count leak. - cfg80211: check vendor command doit pointer before use - igb: reinit_locked() should be called with rtnl_lock - atm: fix atm_dev refcnt leaks in atmtcp_remove_persistent - tools lib traceevent: Fix memory leak in process_dynamic_array_len - [x86] Drivers: hv: vmbus: Ignore CHANNELMSG_TL_CONNECT_RESULT(23) - xattr: break delegations in {set,remove}xattr - ipv4: Silence suspicious RCU usage warning - ipv6: fix memory leaks on IPV6_ADDRFORM path - vxlan: Ensure FDB dump is performed under RCU - net: lan78xx: replace bogus endpoint lookup - [x86] hv_netvsc: do not use VF device if link is down - net: gre: recompute gre csum for sctp over gre tunnels - [arm64] net: thunderx: use spin_lock_bh in nicvf_set_rx_mode_task() - openvswitch: Prevent kernel-infoleak in ovs_ct_put_key() - Revert "vxlan: fix tos value before xmit" - rxrpc: Fix race between recvmsg and sendmsg on immediate call failure - i40e: add num_vectors checker in iwarp handler - i40e: Wrong truncation from u16 to u8 - i40e: Fix of memory leak and integer truncation in i40e_virtchnl.c - i40e: Memory leak in i40e_config_iwarp_qvlist https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.140 - tracepoint: Mark __tracepoint_string's __used - HID: input: Fix devices that return multiple bytes in battery report - cgroup: add missing skcd->no_refcnt check in cgroup_sk_clone() - [x86] mce/inject: Fix a wrong assignment of i_mce.status - sched/fair: Fix NOHZ next idle balance - sched: correct SD_flags returned by tl->sd_flags() - EDAC: Fix reference count leaks - [x86] platform/x86: intel-hid: Fix return value check in check_acpi_dev() - [x86] platform/x86: intel-vbtn: Fix return value check in check_acpi_dev() - [armhf] drm/tilcdc: fix leak & null ref in panel_connector_get_modes - Bluetooth: add a mutex lock to avoid UAF in do_enale_set - loop: be paranoid on exit and prevent new additions / removals - fs/btrfs: Add cond_resched() for try_release_extent_mapping() stalls - drm/amdgpu: avoid dereferencing a NULL pointer - drm/radeon: Fix reference count leaks caused by pm_runtime_get_sync - [x86] crypto: aesni - Fix build with LLVM_IAS=1 - video: fbdev: neofb: fix memory leak in neo_scan_monitor() - md-cluster: fix wild pointer of unlock_all_bitmaps() - [arm64] dts: hisilicon: hikey: fixes to comply with adi, adv7533 DT binding - [armhf] drm/etnaviv: fix ref count leak via pm_runtime_get_sync - drm/nouveau: fix multiple instances of reference count leaks - drm/debugfs: fix plain echo to connector "force" attribute - drm/radeon: disable AGP by default - mm/mmap.c: Add cond_resched() for exit_mmap() CPU stalls - brcmfmac: keep SDIO watchdog running when console_interval is non-zero - brcmfmac: To fix Bss Info flag definition Bug - brcmfmac: set state of hanger slot to FREE when flushing PSQ - iwlegacy: Check the return value of pcie_capability_read_*() - [arm64,armhf] gpu: host1x: debug: Fix multiple channels emitting messages simultaneously - usb: gadget: net2280: fix memory leak on probe error handling paths - dyndbg: fix a BUG_ON in ddebug_describe_flags - bcache: fix super block seq numbers comparision in register_cache_set() - [arm64,x86] ACPICA: Do not increment operation_region reference counts for field units - [arm64] drm/msm: ratelimit crtc event overflow error - [x86] agp/intel: Fix a memory leak on module initialisation failure - ath10k: Acquire tx_lock in tx error paths - [armhf] drm/etnaviv: Fix error path on failure to enable bus clk - [arm64] drm/arm: fix unintentional integer overflow on left shift - drm/mipi: use dcs write for mipi_dsi_dcs_set_tear_scanline - [powerpc*] cxl: Fix kobject memleak - drm/radeon: fix array out-of-bounds read and write issues - ipvs: allow connection reuse for unconfirmed conntrack - xfs: don't eat an EIO/ENOSPC writeback error when scrubbing data fork - xfs: fix reflink quota reservation accounting error - RDMA/rxe: Skip dgid check in loopback mode - PCI: Fix pci_cfg_wait queue locking problem - leds: core: Flush scheduled work for system suspend - [arm64,armhf] drm: panel: simple: Fix bpc for LG LB070WV8 panel - [armhf] phy: exynos5-usbdrd: Calibrating makes sense only for USB2.0 PHY - scsi: scsi_debug: Add check for sdebug_max_queue during module init - mwifiex: Prevent memory corruption handling keys - [powerpc*] vdso: Fix vdso cpu truncation - RDMA/qedr: SRQ's bug fixes - RDMA/rxe: Prevent access to wr->next ptr afrer wr is posted to send queue - [x86] staging: rtl8192u: fix a dubious looking mask before a shift - PCI/ASPM: Add missing newline in sysfs 'policy' - [powerpc*] book3s64/pkeys: Use PVR check instead of cpu feature - USB: serial: iuu_phoenix: fix led-activity helpers - usb: core: fix quirks_param_set() writing to a const pointer - [armhf] thermal: ti-soc-thermal: Fix reversed condition in ti_thermal_expose_sensor() - [mips*] OCTEON: add missing put_device() call in dwc3_octeon_device_init() - [arm*] usb: dwc2: Fix error path in gadget registration - [arm64,armhf] net: dsa: mv88e6xxx: MV88E6097 does not support jumbo configuration - RDMA/core: Fix return error value in _ib_modify_qp() to negative - Bluetooth: hci_h5: Set HCI_UART_RESET_ON_INIT to correct flags - Bluetooth: hci_serdev: Only unregister device if it was registered - [x86] PCI: Release IVRS table in AMD ACS quirk - [s390x] qeth: don't process empty bridge port events - [arm64,armhf] wl1251: fix always return 0 error - [amd64] net: ethernet: aquantia: Fix wrong return value - liquidio: Fix wrong return value in cn23xx_get_pf_num() - dlm: Fix kobject memleak - ocfs2: fix unbalanced locking - [arm64,armhf] pinctrl-single: fix pcs_parse_pinconf() return value - svcrdma: Fix page leak in svc_rdma_recv_read_chunk() - [x86] fsgsbase/64: Fix NULL deref in 86_fsgsbase_read_task - [amd64] crypto: aesni - add compatibility with IAS - af_packet: TPACKET_V3: fix fill status rwlock imbalance - net/nfc/rawsock.c: add CAP_NET_RAW check. - net: Set fput_needed iff FDPUT_FPUT is set - net: refactor bind_bucket fastreuse into helper - net: initialize fastreuse on inet_inherit_port - USB: serial: cp210x: re-enable auto-RTS on open - USB: serial: cp210x: enable usb generic throttle/unthrottle - [x86] ALSA: hda - fix the micmute led status for Lenovo ThinkCentre AIO - ALSA: usb-audio: Creative USB X-Fi Pro SB1095 volume knob support - ALSA: usb-audio: fix overeager device match for MacroSilicon MS2109 - ALSA: usb-audio: work around streaming quirk for MacroSilicon MS2109 - [x86] crypto: qat - fix double free in qat_uclo_create_batch_init_list - [x86] crypto: ccp - Fix use of merged scatterlists - [arm64] crypto: cpt - don't sleep of CRYPTO_TFM_REQ_MAY_SLEEP was not specified - bitfield.h: don't compile-time validate _val in FIELD_FIT - fs/minix: check return value of sb_getblk() - fs/minix: don't allow getting deleted inodes - fs/minix: reject too-large maximum file size - ALSA: usb-audio: add quirk for Pioneer DDJ-RB - 9p: Fix memory leak in v9fs_mount - drm/ttm/nouveau: don't call tt destroy callback on alloc failure. - NFS: Don't move layouts to plh_return_segs list while in use - NFS: Don't return layout segments that are in use - [arm64] cpufreq: dt: fix oops on armada37xx - include/asm-generic/vmlinux.lds.h: align ro_after_init - spi: spidev: Align buffers for DMA - [x86] irqdomain/treewide: Free firmware node after domain removal - xen/balloon: fix accounting in alloc_xenballooned_pages error path - xen/balloon: make the balloon wait interruptible https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.141 - smb3: warn on confusing error scenario with sec=krb5 - genirq/affinity: Make affinity setting if activated opt-in - [arm64,x86] PCI: hotplug: ACPI: Fix context refcounting in acpiphp_grab_context() - PCI: Mark AMD Navi10 GPU rev 0x00 ATS as broken - PCI: Add device even if driver attach failed - [arm64] PCI: qcom: Define some PARF params needed for ipq8064 SoC - [arm64] PCI: qcom: Add support for tx term offset for rev 2.1.0 - PCI: Probe bridge window attributes once at enumeration-time - btrfs: free anon block device right after subvolume deletion - btrfs: don't allocate anonymous block device for user invisible roots - btrfs: ref-verify: fix memory leak in add_block_entry - btrfs: don't traverse into the seed devices in show_devname - btrfs: open device without device_list_mutex - btrfs: fix messages after changing compression level by remount - btrfs: only search for left_info if there is no right_info in try_merge_free_space (CVE-2019-19448) - btrfs: fix memory leaks after failure to lookup checksums during inode logging - btrfs: fix return value mixup in btrfs_get_extent - cifs: Fix leak when handling lease break for cached root fid - [powerpc*] Allow 4224 bytes of stack expansion for the signal frame - [powerpc*] Fix circular dependency between percpu.h and mmu.h - [arm64] net: ethernet: stmmac: Disable hardware multicast filter - [arm64,armhf] net: stmmac: dwmac1000: provide multicast filter fallback - net/compat: Add missing sock updates for SCM_RIGHTS - md/raid5: Fix Force reconstruct-write io stuck in degraded raid5 - bcache: allocate meta data pages as compound pages - bcache: fix overflow in offset_to_stripe() - mac80211: fix misplaced while instead of if - driver core: Avoid binding drivers to dead devices - [mips*] CPU#0 is not hotpluggable - ocfs2: change slot number type s16 to u16 - mm/page_counter.c: fix protection usage propagation - ftrace: Setup correct FTRACE_FL_REGS flags for module - kprobes: Fix NULL pointer dereference at kprobe_ftrace_handler - tracing/hwlat: Honor the tracing_cpumask - tracing: Use trace_sched_process_free() instead of exit() for pid tracing - [x86] watchdog: f71808e_wdt: indicate WDIOF_CARDRESET support in watchdog_info.options - [x86] watchdog: f71808e_wdt: remove use of wrong watchdog_info option - [x86] watchdog: f71808e_wdt: clear watchdog timeout occurred flag - [powerpc*] pseries: Fix 64 bit logical memory block panic - module: Correctly truncate sysfs sections output - [armhf] drm/imx: imx-ldb: Disable both channels for split mode in enc->disable() - RDMA/ipoib: Return void from ipoib_ib_dev_stop() - RDMA/ipoib: Fix ABBA deadlock with ipoib_reap_ah() - USB: serial: ftdi_sio: make process-packet buffer unsigned - USB: serial: ftdi_sio: clean up receive processing - [armhf] gpu: ipu-v3: image-convert: Combine rotate/no-rotate irq handlers - dm rq: don't call blk_mq_queue_stopped() in dm_stop_queue() - [amd64] iommu/vt-d: Enforce PASID devTLB field mask - scsi: lpfc: nvmet: Avoid hang / use-after-free again when destroying targetport - watchdog: initialize device before misc_register - Input: sentelic - fix error return when fsp_reg_write fails - [x86] drm/vmwgfx: Use correct vmw_legacy_display_unit pointer - [x86] drm/vmwgfx: Fix two list_for_each loop exit tests - [arm64] net: qcom/emac: add missed clk_disable_unprepare in error path of emac_clks_phase1_init - nfs: Fix getxattr kernel panic and memory overflow (CVE-2020-25212) - fs/minix: set s_maxbytes correctly - fs/minix: fix block limit check for V1 filesystems - fs/minix: remove expected error message in block_to_path() - fs/ufs: avoid potential u32 multiplication overflow - khugepaged: retract_page_tables() remember to test exit - [arm64] dts: marvell: espressobin: add ethernet alias - [x86] drm: Added orientation quirk for ASUS tablet model T103HAF https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.142 - drm/vgem: Replace opencoded version of drm_gem_dumb_map_offset() - perf probe: Fix memory leakage when the probe point is not found - khugepaged: khugepaged_test_exit() check mmget_still_valid() - khugepaged: adjust VM_BUG_ON_MM() in __khugepaged_enter() - btrfs: export helpers for subvolume name/id resolution - btrfs: don't show full path of bind mounts in subvol= - btrfs: Move free_pages_out label in inline extent handling branch in compress_file_range - btrfs: inode: fix NULL pointer dereference if inode doesn't need compression - btrfs: sysfs: use NOFS for device creation - romfs: fix uninitialized memory leak in romfs_dev_read() - kernel/relay.c: fix memleak on destroy relay channel - mm: include CMA pages in lowmem_reserve at boot - mm, page_alloc: fix core hung in free_pcppages_bulk() - ext4: fix checking of directory entry validity for inline directories - jbd2: add the missing unlock_buffer() in the error path of jbd2_write_superblock() - [s390x] scsi: zfcp: Fix use-after-free in request timeout handlers - kthread: Do not preempt current task if it is going to call schedule() - spi: Prevent adding devices below an unregistering controller - scsi: ufs: Add DELAY_BEFORE_LPM quirk for Micron devices - [arm*] scsi: target: tcmu: Fix crash in tcmu_flush_dcache_range on ARM - media: budget-core: Improve exception handling in budget_register() - Input: psmouse - add a newline when printing 'proto' by sysfs - svcrdma: Fix another Receive buffer leak - xfs: fix inode quota reservation checks - jffs2: fix UAF problem - ceph: fix use-after-free for fsc->mdsc - [x86] cpufreq: intel_pstate: Fix cpuinfo_max_freq when MSR_TURBO_RATIO_LIMIT is 0 - scsi: libfc: Free skb in fc_disc_gpn_id_resp() for valid cases - virtio_ring: Avoid loop when vq is broken in virtqueue_poll - xfs: Fix UBSAN null-ptr-deref in xfs_sysfs_init - fs/signalfd.c: fix inconsistent return codes for signalfd4 - ext4: fix potential negative array index in do_split() (CVE-2020-14314) - ext4: don't allow overlapping system zones - i40e: Set RX_ONLY mode for unicast promiscuous on VLAN - i40e: Fix crash during removing i40e driver - [armhf] net: fec: correct the error path for regulator disable in probe - bonding: show saner speed for broadcast mode - bonding: fix a potential double-unregister - [s390x] runtime_instrumentation: fix storage key handling - [s390x] ptrace: fix storage key handling - [x86] ASoC: intel: Fix memleak in sst_media_open - [amd64,arm64] vfio/type1: Add proper error unwind for vfio_iommu_replay() - [x86] kvm: Toggling CR4.SMAP does not load PDPTEs in PAE mode - [x86] kvm: Toggling CR4.PKE does not load PDPTEs in PAE mode - efi: avoid error message when booting under Xen - afs: Fix NULL deref in afs_dynroot_depopulate() - bonding: fix active-backup failover for current ARP slave - net: ena: Prevent reset after device destruction - [x86] hv_netvsc: Fix the queue_mapping in netvsc_vf_xmit() - [armhf] net: dsa: b53: check for timeout - [powerpc*] pseries: Do not initiate shutdown when system is running on UPS - efi: add missed destroy_workqueue when efisubsys_init fails - epoll: Keep a reference on files added to the check list - do_epoll_ctl(): clean the failure exits up a bit - mm/hugetlb: fix calculation of adjust_range_if_pmd_sharing_possible - xen: don't reschedule in preemption off sections - clk: Evict unregistered clks from parent caches - KVM: Pass MMU notifier range flags to kvm_unmap_hva_range() - [arm64] KVM: Only reschedule if MMU_NOTIFIER_RANGE_BLOCKABLE is not set https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.143 - [powerpc*] 64s: Don't init FSCR_DSCR in __init_FSCR() - gre6: Fix reception with IP6_TNL_F_RCV_DSCP_COPY - net: Fix potential wrong skb->protocol in skb_vlan_untag() - net/smc: Prevent kernel-infoleak in __smc_diag_dump() - tipc: fix uninit skb->data in tipc_nl_compat_dumpit() - net: ena: Make missed_tx stat incremental - ipvlan: fix device features - [x86] mfd: intel-lpss: Add Intel Emmitsburg PCH PCI IDs - [powerpc*] xive: Ignore kmemleak false positives - media: pci: ttpci: av7110: fix possible buffer overflow caused by bad DMA value in debiirq() - blktrace: ensure our debugfs dir exists - scsi: target: tcmu: Fix crash on ARM during cmd completion - [arm*] iommu/iova: Don't BUG on invalid PFNs - [amd64] drm/amdkfd: Fix reference count leaks. - drm/radeon: fix multiple reference count leak - drm/amdgpu: fix ref count leak in amdgpu_driver_open_kms - drm/amd/display: fix ref count leak in amdgpu_drm_ioctl - drm/amdgpu: fix ref count leak in amdgpu_display_crtc_set_config - drm/amdgpu/display: fix ref count leak when pm_runtime_get_sync fails - scsi: lpfc: Fix shost refcount mismatch when deleting vport - xfs: Don't allow logging of XFS_ISTALE inodes - f2fs: fix error path in do_recover_data() - PCI: Fix pci_create_slot() reference count leak - rtlwifi: rtl8192cu: Prevent leaking urb - [mips*] vdso: Fix resource leaks in genvdso.c - cec-api: prevent leaking memory through hole in structure - HID: quirks: add NOGET quirk for Logitech GROUP - f2fs: fix use-after-free issue - drm/nouveau/drm/noveau: fix reference count leak in nouveau_fbcon_open - drm/nouveau: fix reference count leak in nv50_disp_atomic_commit - drm/nouveau: Fix reference count leak in nouveau_connector_detect - btrfs: file: reserve qgroup space after the hole punch range is locked - scsi: iscsi: Do not put host in iscsi_set_flashnode_param() - ceph: fix potential mdsc use-after-free crash - scsi: fcoe: Memory leak fix in fcoe_sysfs_fcf_del() - [x86] EDAC/ie31200: Fallback if host bridge device is already initialized - [arm64] KVM: Fix symbol dependency in __hyp_call_panic_nvhe - USB: sisusbvga: Fix a potential UB casued by left shifting a negative value - [arm64] drm/msm/adreno: fix updating ring fence - nvme-fc: Fix wrong return value in __nvme_fc_init_request() - null_blk: fix passing of REQ_FUA flag in null_handle_rq - jbd2: make sure jh have b_transaction set in refile/unfile_buffer - ext4: don't BUG on inconsistent journal feature - ext4: handle read only external journal device - jbd2: abort journal if free a async write error metadata buffer - ext4: handle option set by mount flags correctly - ext4: handle error of ext4_setup_system_zone() on remount - ext4: correctly restore system zone info when remount fails - fs: prevent BUG_ON in submit_bh_wbc() - [s390x] cio: add cond_resched() in the slow_eval_known_fn() loop - scsi: fcoe: Fix I/O path allocation - scsi: ufs: Fix possible infinite loop in ufshcd_hold - scsi: ufs: Improve interrupt handling for shared interrupts - scsi: ufs: Clean up completed request without interrupt notification - scsi: qla2xxx: Check if FW supports MQ before enabling - scsi: qla2xxx: Fix null pointer access during disconnect from subsystem - Revert "scsi: qla2xxx: Fix crash on qla2x00_mailbox_command" - macvlan: validate setting of multiple remote source MAC addresses - [powerpc*] perf: Fix soft lockups due to missed interrupt accounting - block: loop: set discard granularity and alignment for block device backed loop - [arm64,x86] HID: i2c-hid: Always sleep 60ms after I2C_HID_PWR_ON commands - blk-mq: order adding requests to hctx->dispatch and checking SCHED_RESTART - btrfs: reset compression level for lzo on remount - btrfs: fix space cache memory leak after transaction abort - fbcon: prevent user font height or width change from causing potential out-of-bounds access - vt: defer kfree() of vc_screenbuf in vc_do_resize() - vt_ioctl: change VT_RESIZEX ioctl to check for error return from vc_resize() - [armhf] serial: samsung: Removes the IRQ not found warning - [arm*] serial: pl011: Fix oops on -EPROBE_DEFER - [arm*] serial: pl011: Don't leak amba_ports entry on driver register error - serial: 8250_exar: Fix number of ports for Commtech PCIe cards - serial: 8250: change lock order in serial8250_do_startup() - writeback: Protect inode->i_io_list with inode->i_lock - writeback: Avoid skipping inode writeback - writeback: Fix sync livelock due to b_dirty_time processing - XEN uses irqdesc::irq_data_common::handler_data to store a per interrupt XEN data pointer which contains XEN specific information. - usb: host: xhci: fix ep context print mismatch in debugfs - xhci: Do warm-reset when both CAS and XDEV_RESUME are set - xhci: Always restore EP_SOFT_CLEAR_TOGGLE even if ep reset failed - PM: sleep: core: Fix the handling of pending runtime resume requests - device property: Fix the secondary firmware node handling in set_primary_fwnode() - [x86] genirq/matrix: Deal with the sillyness of for_each_cpu() on UP - drm/amdgpu: Fix buffer overflow in INFO ioctl - USB: yurex: Fix bad gfp argument - USB: quirks: Add no-lpm quirk for another Raydium touchscreen - USB: quirks: Ignore duplicate endpoint on Sound Devices MixPre-D - [armhf] usb: host: ohci-exynos: Fix error handling in exynos_ohci_probe() - USB: gadget: f_ncm: add bounds checks to ncm_unwrap_ntb() - USB: cdc-acm: rework notification_buffer resizing - btrfs: check the right error variable in btrfs_del_dir_entries_in_log - [arm64,armhf] usb: dwc3: gadget: Don't setup more than requested - [arm64,armhf] usb: dwc3: gadget: Fix handling ZLP - [arm64,armhf] usb: dwc3: gadget: Handle ZLP for sg requests - [arm64,x86] tpm: Unify the mismatching TPM space buffer sizes - HID: hiddev: Fix slab-out-of-bounds write in hiddev_ioctl_usage() https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.144 - HID: core: Correctly handle ReportSize being zero - HID: core: Sanitize event code and type when mapping input - scsi: target: tcmu: Fix size in calls to tcmu_flush_dcache_range - scsi: target: tcmu: Optimize use of flush_dcache_page - [arm64] drm/msm: add shutdown support for display platform_driver - [x86] hwmon: (applesmc) check status earlier. - nvmet: Disable keep-alive timer when kato is cleared to 0h - [arm64] drm/msm/a6xx: fix gmu start on newer firmware - ceph: don't allow setlease on cephfs - cpuidle: Fixup IRQ state - [s390x] don't trace preemption in percpu macros - xen/xenbus: Fix granting of vmalloc'd memory - dmaengine: of-dma: Fix of_dma_router_xlate's of_dma_xlate handling - batman-adv: Avoid uninitialized chaddr when handling DHCP - batman-adv: bla: use netif_rx_ni when not in interrupt context - [mips*] mm: BMIPS5000 has inclusive physical caches - netfilter: nf_tables: add NFTA_SET_USERDATA if not null - netfilter: nf_tables: incorrect enum nft_list_attributes definition - netfilter: nf_tables: fix destination register zeroing - [arm64] net: hns: Fix memleak in hns_nic_dev_probe - [arm64,armhf] dmaengine: pl330: Fix burst length if burst size is smaller than bus width - gtp: add GTPA_LINK info to msg sent to userspace - bnxt_en: Don't query FW when netif_running() is false. - bnxt_en: Check for zero dir entries in NVRAM. - bnxt_en: Fix PCI AER error recovery flow - bnxt_en: fix HWRM error when querying VF temperature - xfs: fix boundary test in xfs_attr_shortform_verify (CVE-2020-14385) - bnxt: don't enable NAPI until rings are ready - netfilter: nfnetlink: nfnetlink_unicast() reports EAGAIN instead of ENOBUFS - nvmet-fc: Fix a missed _irqsave version of spin_lock in 'nvmet_fc_fod_op_done()' - net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init() - fix regression in "epoll: Keep a reference on files added to the check list" - xfs: fix xfs_bmap_validate_extent_raw when checking attr fork of rt files - tg3: Fix soft lockup when tg3_reset_task() fails. - [amd64] x86, fakenuma: Fix invalid starting node ID - [amd64] iommu/vt-d: Serialize IOMMU GCMD register modifications - [armhf] thermal: ti-soc-thermal: Fix bogus thermal shutdowns for omap4430 - xfs: don't update mtime on COW faults - btrfs: drop path before adding new uuid tree entry - vfio/type1: Support faulting PFNMAP vmas - vfio-pci: Fault mmaps to enable vma tracking - vfio-pci: Invalidate mmaps and block MMIO access on disabled memory (CVE-2020-12888) - btrfs: Remove redundant extent_buffer_get in get_old_root - btrfs: Remove extraneous extent_buffer_get from tree_mod_log_rewind - btrfs: set the lockdep class for log tree extent buffers - uaccess: Add non-pagefault user-space read functions - uaccess: Add non-pagefault user-space write function - btrfs: fix potential deadlock in the search ioctl - net: usb: qmi_wwan: add Telit 0x1050 composition - usb: qmi_wwan: add D-Link DWM-222 A2 device ID - ALSA: ca0106: fix error code handling - ALSA: pcm: oss: Remove superfluous WARN_ON() for mulaw sanity check - [x86] ALSA: hda/hdmi: always check pin power status in i915 pin fixup - ALSA: firewire-digi00x: exclude Avid Adrenaline from detection - [x86] ALSA: hda - Fix silent audio output and corrupted input on MSI X570-A PRO - media: rc: do not access device via sysfs after rc_unregister_device() - media: rc: uevent sysfs file races with rc_unregister_device() - affs: fix basic permission bits to actually work - block: allow for_each_bvec to support zero len bvec - libata: implement ATA_HORKAGE_MAX_TRIM_128M and apply to Sandisks - dm writecache: handle DAX to partitions on persistent memory correctly - dm cache metadata: Avoid returning cmd->bm wild pointer on error - dm thin metadata: Avoid returning cmd->bm wild pointer on error - mm: slub: fix conversion of freelist_corrupted() - [arm64] KVM: Add kvm_extable for vaxorcism code - [arm64] KVM: Defer guest entry when an asynchronous exception is pending - [arm64] KVM: Survive synchronous exceptions caused by AT instructions - [arm64] KVM: Set HCR_EL2.PTW to prevent AT taking synchronous exception - vfio/pci: Fix SR-IOV VF handling with MMIO blocking - checkpatch: fix the usage of capture group ( ... ) - mm/hugetlb: fix a race between hugetlb sysctl handlers (CVE-2020-25285) - cfg80211: regulatory: reject invalid hints - net: usb: Fix uninit-was-stored issue in asix_read_phy_addr() https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.145 - ALSA; firewire-tascam: exclude Tascam FE-8 from detection - block: ensure bdi->io_pages is always initialized - net: usb: dm9601: Add USB ID of Keenetic Plus DSL - sctp: not disable bh in the whole sctp_get_port_local() - tipc: fix shutdown() of connectionless socket - net: disable netpoll on fresh napis - [arm64,armhf] net/mlx5e: Don't support phys switch id if not in switchdev mode https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.146 - RDMA/rxe: Fix memleak in rxe_mem_init_user - RDMA/rxe: Drop pointless checks in rxe_init_ports - [armhf] drm/sun4i: Fix dsi dcs long write function - scsi: libsas: Set data_dir as DMA_NONE if libata marks qc as NODATA - RDMA/core: Fix reported speed and width - [arm64] mmc: sdhci-msm: Add retries when all tuning phases are found valid - [arm64,x86] dmaengine: acpi: Put the CSRT table after using it - netfilter: conntrack: allow sctp hearbeat after connection re-use - [x86] firestream: Fix memleak in fs_open - [arm64,armhf] ALSA: hda: Fix 2 channel swapping for Tegra - xfs: initialize the shortform attr header padding entry - nvme-fabrics: don't check state NVME_CTRL_NEW for request acceptance - nvme-rdma: serialize controller teardown sequences - HID: quirks: Set INCREMENT_USAGE_ON_DUPLICATE for all Saitek X52 devices - [ppc64el,x86] drivers/net/wan/hdlc_cisco: Add hard_header_len - HID: elan: Fix memleak in elan_input_configured - [x86] cpufreq: intel_pstate: Refuse to turn off with HWP enabled - [x86] cpufreq: intel_pstate: Fix intel_pstate_get_hwp_max() for turbo disabled - ALSA: hda: fix a runtime pm issue in SOF when integrated GPU is disabled - [amd64] iommu/amd: Do not use IOMMUv2 functionality when SME is active - [x86] iio:accel:bmc150-accel: Fix timestamp alignment and prevent data leak. - [x86] iio:magnetometer:ak8975 Fix alignment and data leak issues. - [armhf] iio:accel:mma8452: Fix timestamp alignment and prevent data leak. - [x86] staging: wlan-ng: fix out of bounds read in prism2sta_probe_usb() - btrfs: require only sector size alignment for parent eb bytenr - btrfs: fix lockdep splat in add_missing_dev - btrfs: fix wrong address when faulting in pages in the search ioctl - regulator: push allocation in set_consumer_device_supply() out of lock - scsi: target: iscsi: Fix data digest calculation - scsi: target: iscsi: Fix hang in iscsit_access_np() when getting tpg->np_login_sem - [arm64] drm/msm: Disable preemption on all 5xx targets - rbd: require global CAP_SYS_ADMIN for mapping and unmapping (CVE-2020-25284) - RDMA/rxe: Fix the parent sysfs read when the interface has 15 chars - vgacon: remove software scrollback support - fbcon: remove soft scrollback code (CVE-2020-14390) - fbcon: remove now unusued 'softback_lines' cursor() argument - [x86] KVM: VMX: Don't freeze guest when event delivery causes an APIC-access exit - [x86] video: fbdev: fix OOB read in vga_8planes_imageblit() - [arm64] phy: qcom-qmp: Use correct values for ipq8074 PCIe Gen2 PHY init - usb: core: fix slab-out-of-bounds Read in read_descriptors - USB: serial: ftdi_sio: add IDs for Xsens Mti USB converter - USB: serial: option: support dynamic Quectel USB compositions - USB: serial: option: add support for SIM7070/SIM7080/SIM7090 modules - usb: Fix out of sync data toggle if a configured device is reconfigured - [x86] usb: typec: ucsi: acpi: Check the _DEP dependencies . [ Salvatore Bonaccorso ] * Bump ABI to 11 * Drop 'Revert "mips: Add udelay lpj numbers adjustment"' * [rt] Update to 4.19.135-rt60 * [rt] Refresh "net: Use skbufhead with raw lock" for context changes in 4.19.136 * [rt] Refresh "timers: Prepare for full preemption" for context changes in 4.19.138 * [rt] Refresh "timers: Redo the notification of canceling timers on -RT" for context changes in 4.19.138 * [rt] Refresh "watchdog: prevent deferral of watchdogd wakeup on RT" for context changes in 4.19.141 * Refresh "net: ena: fix crash during ena_remove()" for context changes in 4.19.142 * [rt] Refresh "Split IRQ-off and zone->lock while freeing pages from PCP list #1" for context changes in 4.19.142 * ACPI: configfs: Disallow loading ACPI tables when locked down (CVE-2020-15780) * [rt] Update to 4.19.142-rt63 * net/packet: fix overflow in tpacket_rcv (CVE-2020-14386) * debian/tests/python: pycodestyle: Increase max-line-length to 100. * gfs2: initialize transaction tr_ailX_lists earlier (Closes: #968567) llvm-toolchain-7 (1:7.0.1-8+deb10u2) buster; urgency=medium . * Non-maintainer upload. . [ Aurelien Jarno ] * Include upstream patch D71028 to add support for min/max/umin/umax atomics, fixing rust mips tests (Closes: #946874). llvm-toolchain-7 (1:7.0.1-8+deb10u1) buster; urgency=medium . * Non-maintainer upload. * Fix for unordered cmpxchg instructions when building rustc. * Disable nomadd4 instructions on mips*. lucene-solr (3.6.2+dfsg-20+deb10u2) buster; urgency=medium . * Team upload. * Fix CVE-2019-0193: The DataImportHandler, an optional but popular module to pull in data from databases and other sources, has a feature in which the whole DIH configuration can come from a request's "dataConfig" parameter. The debug mode of the DIH admin screen uses this to allow convenient debugging / development of a DIH config. Since a DIH config can contain scripts, this parameter is a security risk. Starting from now on, use of this parameter requires setting the Java System property "enable.dih.dataConfigParam" to true. For example this can be achieved with solr-tomcat by adding -Denable.dih.dataConfigParam=true to JAVA_OPTS in /etc/default/tomcat9. milkytracker (1.02.00+dfsg-1+deb10u1) buster; urgency=medium . * CVE-2020-15569 (Closes: #964797) * CVE-2019-14464, CVE-2019-14496, CVE-2019-14497 (Closes: #933964) modsecurity (3.0.3-1+deb10u2) buster-security; urgency=medium . * Add patch by Ervin Hegedüs to fix CVE-2020-15598. mupdf (1.14.0+ds1-4+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Heap-based buffer overflow in fz_append_display_node (CVE-2019-13290) (Closes: #931475) net-snmp (5.7.3+dfsg-5+deb10u1) buster-security; urgency=high . * snmpd: Make EXTEND-MIB readonly access Fixes CVE-2020-15862 Closes: #965166 * snmpd: Do not cache MIB directory Fixes CVE-2020-15861 Closes: #966599 nginx (1.14.2-2+deb10u3) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * bugfix: prevented request smuggling in the ngx.location.capture API (CVE-2020-11724) (Closes: #964950) node-bl (1.1.2-1+deb10u1) buster; urgency=medium . * Team upload * Add patch to fix over-read vulnerability (Closes: #969309, CVE-2020-8244) node-elliptic (6.4.1~dfsg-1+deb10u1) buster; urgency=medium . * Prevent malleability and overflows (Closes: CVE-2020-13822) node-mysql (2.16.0-1+deb10u1) buster; urgency=medium . * Team upload * Add localInfile option to control LOAD DATA LOCAL INFILE (Closes: #934712, CVE-2019-14939) node-url-parse (1.2.0-2+deb10u1) buster; urgency=medium . * Add missing test dependency: mocha * Fix insufficient validation and sanitization of user input (Closes: CVE-2020-8124) npm (5.8.0+ds6-4+deb10u2) buster; urgency=medium . * Team upload * Don't show password in logs (Closes: CVE-2020-15095) openexr (2.2.1-4.1+deb10u1) buster-security; urgency=medium . * CVE-2017-9115 CVE-2017-9114 CVE-2017-9113 CVE-2017-9111 CVE-2020-11765 CVE-2020-11764 CVE-2020-11763 CVE-2020-11762 CVE-2020-11761 CVE-2020-11760 CVE-2020-11759 CVE-2020-11758 CVE-2020-15306 CVE-2020-15305 openjdk-11 (11.0.8+10-1~deb10u1) buster-security; urgency=medium . * Rebuild for Buster openjdk-11 (11.0.7+10-3) unstable; urgency=high . * Backport the fix for JDK-8214571, -Xdoclint of array serialField gives "error: array type not allowed here". Introduced with 11.0.7. * Enable running the testsuite on release architectures. openjdk-11 (11.0.7+10-3~deb10u1) buster-security; urgency=medium . * Rebuild for buster-security openjdk-11 (11.0.7+10-2) unstable; urgency=high . * Backport the fix for 8228407, JVM crashes with shared archive file mismatch. * Enable again bootcycle build for all hotspot architectures. * Build again with -march=zEC12 on Ubuntu/s390x. . openjdk-11 (11.0.7+10-1) unstable; urgency=high . * OpenJDK 11.0.7+10 build (release). * Security fixes - JDK-8223898, CVE-2020-2754: Forward references to Nashorn - JDK-8223904, CVE-2020-2755: Improve Nashorn matching - JDK-8224541, CVE-2020-2756: Better mapping of serial ENUMs - JDK-8224549, CVE-2020-2757: Less Blocking Array Queues - JDK-8225603: Enhancement for big integers - JDK-8226346: Build better binary builders - JDK-8227467: Better class method invocations - JDK-8227542: Manifest improved jar headers - JDK-8229733: TLS message handling improvements - JDK-8231415, CVE-2020-2773: Better signatures in XML - JDK-8231785: Improved socket permissions - JDK-8232424, CVE-2020-2778: More constrained algorithms - JDK-8232581, CVE-2020-2767: Improve TLS verification - JDK-8233250: Better X11 rendering - JDK-8233410: Better Build Scripting - JDK-8234027: Better JCEKS key support - JDK-8234408, CVE-2020-2781: Improve TLS session handling - JDK-8234825, CVE-2020-2800: Better Headings for HTTP Servers - JDK-8234841, CVE-2020-2803: Enhance buffering of byte buffers - JDK-8235274, CVE-2020-2805: Enhance typing of methods - JDK-8235691, CVE-2020-2816: Enhance TLS connectivity - JDK-8236201, CVE-2020-2830: Better Scanner conversions - JDK-8238960: linux-i586 builds are inconsistent as the newly build jdk is not able to reserve enough space for object heap . [ Matthias Klose ] * Refresh patches. * Configure --with-jtreg=/usr/share/jtreg. * Enable the buildwatch script on sh4 (Adrian Glaubitz). Closes: #956728. * Build with -march=z13 -mtune=z15 on Ubuntu/s390x. openjdk-11 (11.0.7+10-1) unstable; urgency=medium . * OpenJDK 11.0.7+10 build (release). - S8160926: FLAGS_COMPILER_CHECK_ARGUMENTS doesn't handle cross-compilation - S8189861: Refactor CacheFind - S8204551: Event descriptions are truncated in logs - S8210459: Add support for generating compile_commands.json - S8214534: Setting of THIS_FILE in the build is broken - S8217728: Speed up incremental rerun of "make hotspot" - S8219597: (bf) Heap buffer state changes could provoke unexpected exceptions - S8220613: java/util/Arrays/TimSortStackSize2.java times out with fastdebug build - S8221851: Use of THIS_FILE in hotspot invalidates precompiled header on Linux/GCC - S8222264: Windows incremental build is broken with JDK-8217728 - S8223678: Add Visual Studio Code workspace generation support (for native code) - S8223898: Forward references to Nashorn - S8223904: Improve Nashorn matching - S8224541: Better mapping of serial ENUMs - S8224549: Less Blocking Array Queues - S8225603: Enhancement for big integers - S8226346: Build better binary builders - S8227467: Better class method invocations - S8227542: Manifest improved jar headers - S8229733: TLS message handling improvements - S8231415: Better signatures in XML - S8231785: Improved socket permissions - S8232424: More constrained algorithms - S8232581: Improve TLS verification - S8233250: Better X11 rendering - S8233383: Various minor fixes - S8233410: Better Build Scripting - S8234027: Better JCEKS key support - S8234408: Improve TLS session handling - S8234825: Better Headings for HTTP Servers - S8234841: Enhance buffering of byte buffers - S8235274: Enhance typing of methods - S8235691: Enhance TLS connectivity - S8236201: Better Scanner conversions - S8237879: make 4.3 breaks build - S8238960: linux-i586 builds are inconsistent as the newly build jdk is not able to reserve enough space for object heap . [ Matthias Klose ] * Refresh patches. * Configure --with-jtreg=/usr/share/jtreg. * Enable the buildwatch script on sh4 (Adrian Glaubitz). Closes: #956728. * Build with -march=z13 -mtune=z15 on Ubuntu/s390x. openjdk-11 (11.0.7+9-1) unstable; urgency=medium . * OpenJDK 11.0.7+9 build (early access). * Make autopkgtests cross-test-friendly (Steve Langasek). LP: #1861467. * d/tests/jtreg-autopkgtest.in: keep generated hs_err log files with test artifacts to improve later debug (Tiago Stürmer Daitx). * d/tests/jtdiff-autopkgtest.in: set default vm to correctly locate (Tiago Stürmer Daitx) * jhsdb isn't built on sh4 (Adrian Glaubitz). Closes: #951774. openjdk-11 (11.0.6+10-2) unstable; urgency=medium . * Fix FTCBFS (Helmut Grohne). Addresses: #949460. - Missing Build-Depends: zlib1g-dev:native. - Use triplet-prefixed objcopy and strip. * Bump standards version. openjdk-11 (11.0.6+10-1) unstable; urgency=high . * OpenJDK 11.0.5+10 build (release). - S8220598: Malformed copyright year range in a few files in java.base. - S8224909, CVE-2020-2583: Unlink Set of LinkedHashSets. - S8225261: Better method resolutions. - S8225279: Better XRender interpolation. - S8226352, CVE-2020-2590: Improve Kerberos interop capabilities. - S8227758: More valid PKIX processing. - S8227816: More Colorful ICC profiles. - S8228548, CVE-2020-2593: Normalize normalization for all. - S8229728: Implement negotiation parameters. - S8229951, CVE-2020-2601: Better Ticket Granting Services. - S8230279: Improve Pack200 file reading. - S8230318: Better trust store usage. - S8230967: Improve Registry support of clients. - S8231139: Improved keystore support. - S8231422, CVE-2020-2604: Better serial filter handling. - S8231780, CVE-2020-2655: Better TLS messaging support. - S8231790: Provide better FileSystemProviders. - S8232419: Improve Registry registration. - S8234037, CVE-2020-2654: Improve Object Identifier Processing. * Disable zero on sparc64 (Adrian Glaubitz). Closes: #942030. * Make the generated character data source files reproducible (Emmanuel Bourg). Closes: #933339. * Make the generated module-info.java files reproducible (Emmanuel Bourg). Closes: #933342. * Make the generated copyright headers reproducible (Emmanuel Bourg). Closes: #933349. * Make the build user reproducible (Emmanuel Bourg). Closes: #933373. orocos-kdl (1.4.0-7+deb10u2) buster; urgency=medium . * Add patch for include path KDLConfig.cmake exports ${CMAKE_CURRENT_LIST_DIR}/../../../include as an include path, which resolves to /usr/include. This breaks with gcc > 5 and cmake < 3.16 as discussed in https://github.com/ros/rosdistro/issues/26526. As /usr/include is a default include path, the patch simply removes the extra path. postgresql-11 (11.9-0+deb10u1) buster; urgency=medium . * New upstream version. + Set a secure search_path in logical replication walsenders and apply workers (Noah Misch) . A malicious user of either the publisher or subscriber database could potentially cause execution of arbitrary SQL code by the role running replication, which is often a superuser. Some of the risks here are equivalent to those described in CVE-2018-1058, and are mitigated in this patch by ensuring that the replication sender and receiver execute with empty search_path settings. (As with CVE-2018-1058, that change might cause problems for under-qualified names used in replicated tables' DDL.) Other risks are inherent in replicating objects that belong to untrusted roles; the most we can do is document that there is a hazard to consider. (CVE-2020-14349) . + Make contrib modules' installation scripts more secure (Tom Lane) . Attacks similar to those described in CVE-2018-1058 could be carried out against an extension installation script, if the attacker can create objects in either the extension's target schema or the schema of some prerequisite extension. Since extensions often require superuser privilege to install, this can open a path to obtaining superuser privilege. To mitigate this risk, be more careful about the search_path used to run an installation script; disable check_function_bodies within the script; and fix catalog-adjustment queries used in some contrib modules to ensure they are secure. Also provide documentation to help third-party extension authors make their installation scripts secure. This is not a complete solution; extensions that depend on other extensions can still be at risk if installed carelessly. (CVE-2020-14350) postgresql-common (200+deb10u4) buster; urgency=medium . * t/170_extensions.t: Don't drop plpgsql before testing extensions. A recent security fix in the PostgreSQL server (CVE-2020-14350) makes use of plpgsql DO blocks in various extension creation scripts without declaring a formal dependency on it, so change tests not to drop plpgsql. pyzmq (17.1.2-2+deb10u1) buster; urgency=medium . * Non-maintainer upload. * asyncio: wait for POLLOUT on sender in can_connect (Closes: #970567) qemu (1:3.1+dfsg-8+deb10u8) buster-security; urgency=medium . * mention fixing of CVE-2020-13765 in 3.1+dfsg-8+deb10u6 * xgmac-fix-buffer-overflow-in-xgmac_enet_send-CVE-2020-15863.patch ARM-only XGMAC NIC, possible buffer overflow during packet transmission Closes: CVE-2020-15863 * sm501 OOB read/write due to integer overflow in sm501_2d_operation() List of patches: sm501-convert-printf-abort-to-qemu_log_mask.patch sm501-shorten-long-variable-names-in-sm501_2d_operation.patch sm501-use-BIT-macro-to-shorten-constant.patch sm501-clean-up-local-variables-in-sm501_2d_operation.patch sm501-replace-hand-written-implementation-with-pixman-CVE-2020-12829.patch Closes: #961451, CVE-2020-12829 * usb-fix-setup_len-init-CVE-2020-14364.patch Fix OOB r/w access in USB emulation Closes: #968947, CVE-2020-14364 * net-assertion-in-net_tx_pkt_add_raw_fragment-CVE-2020-16092.patch Fix net_tx_pkt_add_raw_fragment assertion in e1000e & vmxnet3 Closes: CVE-2020-16092 qt4-x11 (4:4.8.7+dfsg-18+deb10u1) buster; urgency=medium . * Backport upstream patch to fix buffer overflow in XBM parser, CVE-2020-17507 (Closes: #970308). qtbase-opensource-src (5.11.3+dfsg1-1+deb10u4) buster; urgency=medium . [ Dmitry Shachnev ] * Backport upstream patch to fix buffer overflow in XBM parser (CVE-2020-17507, closes: #968444). . [ Lisandro Damián Nicanor Pérez Meyer ] * Backport XCB_Fix_clipboard_breaking_when_timer_wraps_after_50_days.patch (Closes: #961293). Thanks Nicolás for pointing us to the bug fix. ros-actionlib (1.11.15-1+deb10u1) buster; urgency=high . * Add https://github.com/ros/actionlib/pull/171 (Fix CVE-2020-10289) roundcube (1.3.15+dfsg.1-1~deb10u1) buster-security; urgency=high . * New upstream release, with security fix for CVE-2020-16145: Cross-site scripting (XSS) vulnerability via HTML messages with malicious svg or math content. (Closes: #968216) ruby-kramdown (1.17.0-1+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Add option forbidden_inline_options (CVE-2020-14001) (Closes: #965305) ruby-ronn (0.8.0-2+deb10u1) buster; urgency=medium . * Team upload. * Fix handling of UTF-8 content in manpages (Closes: #965294) rust-cbindgen (0.14.4-1~deb10u1) buster; urgency=medium . * Non-maintainer upload. * Backport to buster. * Vendor dependencies, they are not available in buster. * Only build the cbindgen binary. * Lower dh-cargo build-dep. * Bump rustc and cargo build-deps. rust-cbindgen (0.14.3-1) unstable; urgency=medium . * Package cbindgen 0.14.3 from crates.io using debcargo 2.4.3 rust-cbindgen (0.14.2-1) unstable; urgency=medium . * Package cbindgen 0.14.2 from crates.io using debcargo 2.4.2 rust-cbindgen (0.14.1-1) unstable; urgency=medium . * Package cbindgen 0.14.1 from crates.io using debcargo 2.4.2 rust-cbindgen (0.14.0-3) unstable; urgency=medium . * Package cbindgen 0.14.0 from crates.io using debcargo 2.4.0 * Only run the testssuite on the binary rust-cbindgen (0.14.0-2) unstable; urgency=medium . * Don't run autopkgtest for now. It needs g++ and I cannot add it as dep as debcargo doesn't manage that yet. WIP https://salsa.debian.org/rust-team/debcargo/-/merge_requests/24 rust-cbindgen (0.14.0-1) unstable; urgency=medium . * Package cbindgen 0.14.0 from crates.io using debcargo 2.4.0 * Cherry-pick upstream page to fix autopkgtest rust-cbindgen (0.13.1-2) unstable; urgency=medium . * Package cbindgen 0.13.1 from crates.io using debcargo 2.4.0 * Upload to unstable. Still blocked by NEW. rust-cbindgen (0.13.1-1) experimental; urgency=medium . * Team upload. * Package cbindgen 0.13.1 from crates.io using debcargo 2.4.2 rust-cbindgen (0.12.1-1) unstable; urgency=medium . * Package cbindgen 0.12.1 from crates.io using debcargo 2.4.0 rust-cbindgen (0.12.0-1) unstable; urgency=medium . * Package cbindgen 0.12.0 from crates.io using debcargo 2.4.0 rust-cbindgen (0.11.1-1) unstable; urgency=medium . * Package cbindgen 0.11.1 from crates.io using debcargo 2.4.0 rust-cbindgen (0.11.0-1) unstable; urgency=medium . * Package cbindgen 0.11.0 from crates.io using debcargo 2.4.0 rust-cbindgen (0.10.0-1) unstable; urgency=medium . * Package cbindgen 0.10.0 from crates.io using debcargo 2.4.0 rust-cbindgen (0.9.1-1) unstable; urgency=medium . * Package cbindgen 0.9.1 from crates.io using debcargo 2.4.0 rust-cbindgen (0.9.0-1) unstable; urgency=medium . * Package cbindgen 0.9.0 from crates.io using debcargo 2.3.1-alpha.0 * Remove testsuite-fix.patch (merged upstream) rustc (1.41.1+dfsg1-1~deb10u1) buster; urgency=medium . * Non-maintainer upload. * Backport to buster. * stage0 build. - Use arm-unknown-linux-gnueabi target for armel. * Use LLVM 7. * Disable wasm. * Reduce debugging symbols on i386 to avoid FTBFS due to OOM. rustc (1.40.0+dfsg1-5) unstable; urgency=medium . * More python 2 -> 3 fixes. * Allow 24 failing tests on riscv64. * Reenable debuginfo for rustc, not just libstd. * Reenable backtraces during tests. rustc (1.40.0+dfsg1-4) unstable; urgency=medium . * Experimental riscv64 support. rustc (1.40.0+dfsg1-3) unstable; urgency=medium . * Work around upstream #59264 again. :/ rustc (1.40.0+dfsg1-2) unstable; urgency=medium . * Fix more internal build scripts so they use python3. * Don't add -L/usr/lib/llvm when cross-compiling. (Closes: #941783) rustc (1.40.0+dfsg1-1) unstable; urgency=medium . * Upload to unstable. * Ignore new test failing on arm that also fails in previous versions. rustc (1.40.0+dfsg1-1~exp1) experimental; urgency=medium . * New upstream release. rustc (1.39.0+dfsg1-4) unstable; urgency=medium . * Update to LLVM 9. (Closes: #946886) rustc (1.39.0+dfsg1-3) unstable; urgency=medium . * Fix mips patch involving mxgot for new RUSTFLAGS behaviour. rustc (1.39.0+dfsg1-2) unstable; urgency=medium . * Include reproducibility patch for compiler-builtins. * Use python3 instead of python to run rustbuild. (Closes: #938422) * Expand d-ignore-error-detail-diff.patch for unfixed upstream #53081. rustc (1.39.0+dfsg1-1) unstable; urgency=medium . * New upstream release. rustc (1.38.0+dfsg1-2) unstable; urgency=medium . * Fix building with rustc 1.38.0 * Fix building with cargo 0.40.0 rustc (1.38.0+dfsg1-1) unstable; urgency=medium . * New upstream release. rustc (1.37.0+dfsg1-1) unstable; urgency=medium . * Upload to unstable. * Fix a typo in debian/rules regex causing FTBFS on some arches. rustc (1.37.0+dfsg1-1~exp2) experimental; urgency=medium . * Support cross-compiling to wasm32. (Closes: #903110) To do that, install the libstd-rust-dev-wasm32-cross package and give --target wasm32-unknown-unknown. * Drop dependency on system compiler-rt, these new versions of rustc actually don't need it at all. rustc (1.37.0+dfsg1-1~exp1) experimental; urgency=medium . * New upstream release. * Use system compiler-rt. rustc (1.36.0+dfsg1-2) unstable; urgency=medium . * Set CARGO_HOME to debian/cargo_home (instead of $HOME/.cargo) as newer versions of cargo must take a file lock that has to exist. rustc (1.36.0+dfsg1-1) unstable; urgency=medium . * Upload to unstable. rustc (1.36.0+dfsg1-1~exp1) experimental; urgency=medium . * New upstream release. rustc (1.35.0+dfsg1-1) unstable; urgency=medium . * Add entry in 1.34.2+dfsg1-1 to note that it uses LLVM 7. * Add entry in 1.35.0+dfsg1-1~exp2 to note that it uses LLVM 8. * Fix ICE on sparc64 by including upstream PR #61881. rustc (1.35.0+dfsg1-1~exp1) experimental; urgency=medium . * Don't use system compiler-rt, it's not ready yet. * New upstream release. s390-tools (2.3.0-2~deb10u1) buster; urgency=medium . * Upload debootstrap fix to Debian stable. (Closes: #960265) squid (4.6-1+deb10u4) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * SQUID-2020:8 HTTP(S) Request Splitting (CVE-2020-15811) (Closes: #968932) * SQUID-2020:9 Denial of Service processing Cache Digest Response (CVE-2020-24606) (Closes: #968933) * SQUID-2020:10 HTTP(S) Request Smuggling (CVE-2020-15810) (Closes: #968934) teeworlds (0.7.2-5+deb10u1) buster-security; urgency=high . * Team upload. * Fix CVE-2020-12066: A remote attacker was able to shut down the teeworlds server and cause a denial-of-service by crafting a specific server packet. thunderbird (1:68.12.0-1~deb10u1) stable-security; urgency=medium . * Rebuild for buster-security * [32b3711] Revert "d/xpi-pack.sh: adding xpi-pack shell script" * [b50609a] Revert "Drop mozilla-devscripts as B-D" * [fd054fc] Revert "Drop python-{minimal,ply} from B-D" * [5a2a88c] Revert "d/control: tb manually set dep on libnss3 to 2:3.55" thunderbird (1:68.11.0-3) unstable; urgency=medium . * [28707fd] d/xpi-pack.sh: adding xpi-pack shell script As we can't depend on mozilla-devscripts anymore we pick up the shell script from that package as this builds XPI files we need. * [037212e] Drop mozilla-devscripts as B-D mozilla-devscripts isn't ported to Python3 yet and depends on Python2 so. We don't need that package as B-D as we picked the main shell script from that and we can drop that package from the build dependencies. * [31eda41] Drop python-{minimal,ply} from B-D These packages are removed from teh archive and we don't need them for building Thunderbird as long we have python2 as package available. (Closes: #967223) thunderbird (1:68.11.0-2) unstable; urgency=medium . * [110a375] d/control: increase B-D for libnss3 * [73fa23e] d/control: tb manually set dep on libnss3 to 2:3.55 (Closes: #966806) thunderbird (1:68.11.0-1) unstable; urgency=medium . * [093b080] New upstream version 68.11.0 Fixed CVE issues in upstream version 68.11.0 (MFSA 2020-35): CVE-2020-15652: Potential leak of redirect targets when loading scripts in a worker CVE-2020-6514: WebRTC data channel leaks internal address to peer CVE-2020-6463: Use-after-free in ANGLE gl::Texture::onUnbindAsSamplerTexture CVE-2020-15659: Memory safety bugs fixed in Thunderbird 68.11 thunderbird (1:68.11.0-1~deb10u1) stable-security; urgency=medium . * Rebuild for buster-security thunderbird (1:68.10.0-1) unstable; urgency=medium . * [7537684] New upstream version 68.10.0 Fixed CVE issues in upstream version 68.10.0 (MFSA 2020-26): CVE-2020-12417: Memory corruption due to missing sign-extension for ValueTags on ARM64 CVE-2020-12418: Information disclosure due to manipulated URL object CVE-2020-12419: Use-after-free in nsGlobalWindowInner CVE-2020-12420: Use-After-Free when trying to connect to a STUN server MFSA-2020-0001: Automatic account setup leaks Microsoft Exchange login credentials CVE-2020-12421: Add-On updates did not respect the same certificate trust rules as software updates webkit2gtk (2.28.4-1~deb10u1) buster-security; urgency=medium . * Rebuild for buster-security. * debian/patches/force-single-process.patch: + Force the single-process mode in Evolution and Geary * debian/control: + Remove Breaks for Evolution < 3.34.1. + Remove build dependency on libwpebackend-fdo-1.0-dev. + Switch build dependency from libenchant-2-dev to libenchant-dev. webkit2gtk (2.28.3-2) unstable; urgency=high . * The WebKitGTK security advisory WSA-2020-0006 lists the following security fixes in the latest versions of WebKitGTK: + CVE-2020-9802, CVE-2020-9803, CVE-2020-9805, CVE-2020-9806, CVE-2020-9807, CVE-2020-9843, CVE-2020-9850, CVE-2020-13753 (fixed in 2.28.3). * Don't build the documentation in binary-arch builds and with the nodoc build profile (Closes: #962616). + debian/control: - Move gtk-doc-tools and *-doc to Build-Depends-Indep. - Add Build-Profiles: to libwebkit2gtk-4.0-doc + debian/rules: - Use dh_listpackages to decide whether to build the documentation. xorg-server (2:1.20.4-1+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Fix for ZDI-11426 (CVE-2020-14347) (Closes: #968986) * Correct bounds checking in XkbSetNames() (CVE-2020-14345) * Fix XIChangeHierarchy() integer underflow (CVE-2020-14346) * Fix XkbSelectEvents() integer underflow (CVE-2020-14361) * Fix XRecordRegisterClients() Integer underflow (CVE-2020-14362) xrdp (0.9.9-1+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * libscp v1 server set height twice, and not set width * xrdp-sesman can be crashed remotely over port 3350 (CVE-2020-4044) (Closes: #964573) * Fixed CVE-2020-4044 CI errors zeromq3 (4.3.1-4+deb10u2) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * zeromq connects peer before handshake is completed (CVE-2020-15166) ====================================== Sat, 01 Aug 2020 - Debian 10.5 released ====================================== ========================================================================= [Date: Sat, 01 Aug 2020 08:54:01 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: matrix-synapse | 0.99.2-6 | source, all Closed bugs: 959723 ------------------- Reason ------------------- RoM; security issues; unsupportable ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 01 Aug 2020 08:54:20 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: firefoxdriver | 3.14.1-1 | amd64, i386 selenium-firefoxdriver | 3.14.1-1 | source Closed bugs: 960585 ------------------- Reason ------------------- RoQA; does not support firefox beyond 52.0 ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 01 Aug 2020 08:54:51 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: janus | 0.6.1-1 | source, amd64, arm64, armel, armhf, i386, mips, mips64el, mipsel, ppc64el, s390x janus-demos | 0.6.1-1 | all janus-dev | 0.6.1-1 | amd64, arm64, armel, armhf, i386, mips, mips64el, mipsel, ppc64el, s390x janus-doc | 0.6.1-1 | all janus-tools | 0.6.1-1 | amd64, arm64, armel, armhf, i386, mips, mips64el, mipsel, ppc64el, s390x libjs-janus | 0.6.1-1 | all Closed bugs: 962694 ------------------- Reason ------------------- RoM; not supportable for the lifetime of a stable release ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 01 Aug 2020 08:55:10 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: fonts-mathematica | 21 | all mathematica-fonts | 21 | source, all Closed bugs: 964343 ------------------- Reason ------------------- RoQA; relies on unavailable download location ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 01 Aug 2020 08:55:28 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: golang-github-unknwon-cae | 0.0~git20160715.0.c6aac99-4 | source golang-github-unknwon-cae-dev | 0.0~git20160715.0.c6aac99-4 | all Closed bugs: 966454 ------------------- Reason ------------------- RoQA; security issues; unmaintained ---------------------------------------------- ========================================================================= apache-log4j1.2 (1.2.17-8+deb10u1) buster-security; urgency=high . * Team upload. * Fix CVE-2019-17571. (Closes: #947124) Included in Log4j 1.2 is a SocketServer class that is vulnerable to deserialization of untrusted data which can be exploited to remotely execute arbitrary code when combined with a deserialization gadget when listening to untrusted network traffic for log data. appstream-glib (0.7.14-1+deb10u1) buster; urgency=medium . * Non-maintainer upload. * Backport upstream fix for FTBFS in the year 2020. (Closes: #949169) apt (1.8.2.1) buster-security; urgency=high . * SECURITY UPDATE: Out of bounds read in ar, tar implementations (LP: #1878177) - apt-pkg/contrib/arfile.cc: Fix out-of-bounds read in member name - apt-pkg/contrib/arfile.cc: Fix out-of-bounds read on unterminated member names in error path - apt-pkg/contrib/extracttar.cc: Fix out-of-bounds read on unterminated member names in error path - CVE-2020-3810 * .gitlab.ci.yml: Point to debian:buster asunder (2.9.3-3+deb10u1) buster; urgency=medium . * Add patch to use gnudb instead of freedb by default * Add a NEWS item for freedb closing b43-fwcutter (1:019-4+deb10u1) buster; urgency=medium . [ Andreas Beckmann ] * QA upload. * Run firmware removal commands under LC_ALL=C. (Closes: #960791) * Do not fail while removing no longer existing files. (Closes: #956858) * Add dependency on pciutils for lspci. . [ Raphaël Hertzog ] * Add ca-certificates to Depends so that we can download over https. balsa (2.5.6-2+deb10u1) buster; urgency=medium . * Provide server identity when validating certificates (allows to verify certs with a glib-networking patch for CVE-2020-13645). Patch taken from Ubuntu. Closes: #961792. base-files (10.3+deb10u5) buster; urgency=medium . * Change /etc/debian_version to 10.5, for Debian 10.5 point release. batik (1.10-2+deb10u1) buster; urgency=medium . * Non-maintainer upload. * CVE-2019-17566: Server-side request forgery via xlink:href attributes. (Closes: #964510) bind9 (1:9.11.5.P4+dfsg-5.1+deb10u1) buster-security; urgency=high . * [CVE-2019-6477]: TCP-pipelined queries can bypass tcp-clients limit. (Closes: #945171) * [CVE-2020-8616]: Fix NXNSATTACK amplification attack on BIND 9 * [CVE-2020-8617]: Fix assertion failure in TSIG processing code borgbackup (1.1.9-2+deb10u1) buster; urgency=medium . * Fix index corruption bug leading to data loss (Closes: #953615). bundler (1.17.3-3+deb10u1) buster; urgency=medium . * Non-maintainer upload. . [ Utkarsh Gupta ] * Bump minimum version of ruby-molinillo in ruby-bundler (Closes: #945481) c-icap-modules (1:0.5.3-1+deb10u1) buster; urgency=medium . * Non-maintainer upload. * Backport support for ClamAV 0.102. (Closes: #952009) cacti (1.2.2+ds1-2+deb10u3) buster; urgency=medium . * Unix timestamps after Sep 13 2020 are rejected as graph start/end arguments (Upstream bug #3245) * CVE-2020-7237: Remote Code Execution (by privileged users) via shell metacharacters in the Performance Boost Debug Log field of poller_automation.php. OS commands are executed when a new poller cycle begins. The attacker must be authenticated, and must have access to modify the Performance Settings of the product. (Closes: #949997) * CVE-2020-7106: XSS in data_sources.php, color_templates_item.php, graphs.php, graph_items.php, lib/api_automation.php, user_admin.php, and user_group_admin.php, as demonstrated by the description parameter in data_sources.php (a raw string from the database that is displayed by $header to trigger the XSS). (Closes: #949996) * CVE-2020-13230: Disabling an user account does not immediately invalidate any permissions granted to that account (e.g., permission to view logs) * CVE-2020-13231: auth_profile.php?action=edit allows CSRF for an admin email change calamares-settings-debian (10.0.20-1+deb10u3) buster; urgency=medium . * Use xdg-user-dir to specify Desktop directory (Closes: #959541) calamares-settings-debian (10.0.20-1+deb10u2) buster; urgency=medium . * Fix type in previous entry (s/desk/disk) * Enable displaymanager module, fixing autologin options (Closes: #934503, #934504) chromium (83.0.4103.116-1~deb10u3) buster-security; urgency=medium . * Fix crashes when a connection error occurs (closes: #963548). chromium (83.0.4103.116-1~deb10u2) buster-security; urgency=medium . * Rebuild with optimization (closes: #964145). chromium (83.0.4103.116-1~deb10u1) buster-security; urgency=medium . * New upstream stable release. - CVE-2020-6423: Use after free in audio. Reported by Anonymous - CVE-2020-6430: Type Confusion in V8. Reported by Avihay Cohen - CVE-2020-6431: Insufficient policy enforcement in full screen. Reported by Luan Herrera - CVE-2020-6432: Insufficient policy enforcement in navigations. Reported by David Erceg - CVE-2020-6433: Insufficient policy enforcement in extensions. Reported by David Erceg - CVE-2020-6434: Use after free in devtools. Reported by HyungSeok Han - CVE-2020-6435: Insufficient policy enforcement in extensions. Reported by Sergei Glazunov - CVE-2020-6436: Use after free in window management. Reported by Igor Bukanov - CVE-2020-6437: Inappropriate implementation in WebView. Reported by Jann Horn - CVE-2020-6438: Insufficient policy enforcement in extensions. Reported by Ng Yik Phang - CVE-2020-6439: Insufficient policy enforcement in navigations. Reported by remkoboonstra - CVE-2020-6440: Inappropriate implementation in extensions. Reported by David Erceg - CVE-2020-6441: Insufficient policy enforcement in omnibox. Reported by David Erceg - CVE-2020-6442: Inappropriate implementation in cache. Reported by B@rMey - CVE-2020-6443: Insufficient data validation in developer tools. Reported by @lovasoa - CVE-2020-6444: Uninitialized use in WebRTC. Reported by mlfbrown - CVE-2020-6445: Insufficient policy enforcement in trusted types. Reported by Jun Kokatsu - CVE-2020-6446: Insufficient policy enforcement in trusted types. Reported by Jun Kokatsu - CVE-2020-6447: Inappropriate implementation in developer tools. Reported by David Erceg - CVE-2020-6448: Use after free in V8. Reported by Guang Gong - CVE-2020-6454: Use after free in extensions. Reported by leecraso and Guang Gong - CVE-2020-6455: Out of bounds read in WebSQL. Reported by Nan Wang and Guang Gong - CVE-2020-6456: Insufficient validation of untrusted input in clipboard. Reported by Michał Bentkowski - CVE-2020-6457: Use after free in speech recognizer. Reported by Leecraso and Guang Gong - CVE-2020-6458: Out of bounds read and write in PDFium. Reported by Aleksandar Nikolic - CVE-2020-6459: Use after free in payments. Reported by Zhe Jin - CVE-2020-6460: Insufficient data validation in URL formatting. Reported by Anonymous - CVE-2020-6461: Use after free in storage. Reported by Zhe Jin - CVE-2020-6462: Use after free in task scheduling. Reported by Zhe Jin - CVE-2020-6463: Use after free in ANGLE. Reported by Pawel Wylecial - CVE-2020-6464: Type Confusion in Blink. Reported by Looben Yang - CVE-2020-6465: Use after free in reader mode. Reported by Woojin Oh - CVE-2020-6466: Use after free in media. Reported by Zhe Jin - CVE-2020-6467: Use after free in WebRTC. Reported by ZhanJia Song - CVE-2020-6468: Type Confusion in V8. Reported by Chris Salls and Jake Corina - CVE-2020-6469: Insufficient policy enforcement in developer tools. Reported by David Erceg - CVE-2020-6470: Insufficient validation of untrusted input in clipboard. Reported by Michał Bentkowski - CVE-2020-6471: Insufficient policy enforcement in developer tools. Reported by David Erceg - CVE-2020-6472: Insufficient policy enforcement in developer tools. Reported by David Erceg - CVE-2020-6473: Insufficient policy enforcement in Blink. Reported by Soroush Karami and Panagiotis Ilia - CVE-2020-6474: Use after free in Blink. Reported by Zhe Jin - CVE-2020-6475: Incorrect security UI in full screen. Reported by Khalil Zhani - CVE-2020-6476: Insufficient policy enforcement in tab strip. Reported by Alexandre Le Borgne - CVE-2020-6478: Inappropriate implementation in full screen. Reported by Khalil Zhani - CVE-2020-6479: Inappropriate implementation in sharing. Reported by Zhong Zhaochen - CVE-2020-6480: Insufficient policy enforcement in enterprise. Reported by Marvin Witt - CVE-2020-6481: Insufficient policy enforcement in URL formatting. Reported by Rayyan Bijoora - CVE-2020-6482: Insufficient policy enforcement in developer tools. Reported by Abdulrahman Alqabandi - CVE-2020-6483: Insufficient policy enforcement in payments. Reported by Jun Kokatsu - CVE-2020-6484: Insufficient data validation in ChromeDriver. Reported by Artem Zinenko - CVE-2020-6485: Insufficient data validation in media router. Reported by Sergei Glazunov - CVE-2020-6486: Insufficient policy enforcement in navigations. Reported by David Erceg - CVE-2020-6487: Insufficient policy enforcement in downloads. Reported by Jun Kokatsu - CVE-2020-6488: Insufficient policy enforcement in downloads. Reported by David Erceg - CVE-2020-6489: Inappropriate implementation in developer tools. Reported by @lovasoa - CVE-2020-6490: Insufficient data validation in loader. Reported by Twitter - CVE-2020-6491: Incorrect security UI in site information. Reported by Sultan Haikal - CVE-2020-6493: Use after free in WebAuthentication. Reported by Anonymous - CVE-2020-6494: Incorrect security UI in payments. Reported by Juho Nurminen - CVE-2020-6495: Insufficient policy enforcement in developer tools. Reported by David Erceg - CVE-2020-6496: Use after free in payments. Reported by Khalil Zhani - CVE-2020-6497: Insufficient policy enforcement in Omnibox. Reported by Rayyan Bijoora - CVE-2020-6498: Incorrect security UI in progress display. Reported by Rayyan Bijoora - CVE-2020-6505: Use after free in speech. Reported by Khalil Zhani - CVE-2020-6506: Insufficient policy enforcement in WebView. Reported by Alesandro Ortiz - CVE-2020-6507: Out of bounds write in V8. Reported by Sergei Glazunov - CVE-2020-6509: Use after free in extensions. Reported by Anonymous - CVE-2020-6831: Stack buffer overflow in SCTP. Reported by Natalie Silvanovich chromium (83.0.4103.106-1) unstable; urgency=medium . * New upstream security release. - CVE-2020-6493: Use after free in WebAuthentication. Reported by Anonymous - CVE-2020-6494: Incorrect security UI in payments. Reported by Juho Nurminen - CVE-2020-6495: Insufficient policy enforcement in developer tools. Reported by David Erceg - CVE-2020-6496: Use after free in payments. Reported by Khalil Zhani - CVE-2020-6497: Insufficient policy enforcement in Omnibox. Reported by Rayyan Bijoora - CVE-2020-6498: Incorrect security UI in progress display. Reported by Rayyan Bijoora - CVE-2020-6505: Use after free in speech. Reported by Khalil Zhani - CVE-2020-6506: Insufficient policy enforcement in WebView. Reported by Alesandro Ortiz - CVE-2020-6507: Out of bounds write in V8. Reported by Sergei Glazunov * Conflict with ffmpeg 4.3 (closes: #963080). * Support building with icu 67 (closes: #960236). * Support building with re2 20200501 (closes: #960361). chromium (83.0.4103.83-1) unstable; urgency=medium . * New upstream stable release. - CVE-2020-6457: Use after free in speech recognizer. Reported by Leecraso and Guang Gong - CVE-2020-6458: Out of bounds read and write in PDFium. Reported by Aleksandar Nikolic - CVE-2020-6459: Use after free in payments. Reported by Zhe Jin - CVE-2020-6460: Insufficient data validation in URL formatting. Reported by Anonymous - CVE-2020-6461: Use after free in storage. Reported by Zhe Jin - CVE-2020-6462: Use after free in task scheduling. Reported by Zhe Jin - CVE-2020-6463: Use after free in ANGLE. Reported by Pawel Wylecial - CVE-2020-6464: Type Confusion in Blink. Reported by Looben Yang - CVE-2020-6465: Use after free in reader mode. Reported by Woojin Oh - CVE-2020-6466: Use after free in media. Reported by Zhe Jin - CVE-2020-6467: Use after free in WebRTC. Reported by ZhanJia Song - CVE-2020-6468: Type Confusion in V8. Reported by Chris Salls and Jake Corina - CVE-2020-6469: Insufficient policy enforcement in developer tools. Reported by David Erceg - CVE-2020-6470: Insufficient validation of untrusted input in clipboard. Reported by Michał Bentkowski - CVE-2020-6471: Insufficient policy enforcement in developer tools. Reported by David Erceg - CVE-2020-6472: Insufficient policy enforcement in developer tools. Reported by David Erceg - CVE-2020-6473: Insufficient policy enforcement in Blink. Reported by Soroush Karami and Panagiotis Ilia - CVE-2020-6474: Use after free in Blink. Reported by Zhe Jin - CVE-2020-6475: Incorrect security UI in full screen. Reported by Khalil Zhani - CVE-2020-6476: Insufficient policy enforcement in tab strip. Reported by Alexandre Le Borgne - CVE-2020-6478: Inappropriate implementation in full screen. Reported by Khalil Zhani - CVE-2020-6479: Inappropriate implementation in sharing. Reported by Zhong Zhaochen - CVE-2020-6480: Insufficient policy enforcement in enterprise. Reported by Marvin Witt - CVE-2020-6481: Insufficient policy enforcement in URL formatting. Reported by Rayyan Bijoora - CVE-2020-6482: Insufficient policy enforcement in developer tools. Reported by Abdulrahman Alqabandi - CVE-2020-6483: Insufficient policy enforcement in payments. Reported by Jun Kokatsu - CVE-2020-6484: Insufficient data validation in ChromeDriver. Reported by Artem Zinenko - CVE-2020-6485: Insufficient data validation in media router. Reported by Sergei Glazunov - CVE-2020-6486: Insufficient policy enforcement in navigations. Reported by David Erceg - CVE-2020-6487: Insufficient policy enforcement in downloads. Reported by Jun Kokatsu - CVE-2020-6488: Insufficient policy enforcement in downloads. Reported by David Erceg - CVE-2020-6489: Inappropriate implementation in developer tools. Reported by @lovasoa - CVE-2020-6490: Insufficient data validation in loader. Reported by Twitter - CVE-2020-6491: Incorrect security UI in site information. Reported by Sultan Haikal - CVE-2020-6831: Stack buffer overflow in SCTP. Reported by Natalie Silvanovich chromium (81.0.4044.92-1) unstable; urgency=medium . * New upstream stable release. - CVE-2020-6423: Use after free in audio. Reported by Anonymous - CVE-2020-6430: Type Confusion in V8. Reported by Avihay Cohen - CVE-2020-6431: Insufficient policy enforcement in full screen. Reported by Luan Herrera - CVE-2020-6432: Insufficient policy enforcement in navigations. Reported by David Erceg - CVE-2020-6433: Insufficient policy enforcement in extensions. Reported by David Erceg - CVE-2020-6434: Use after free in devtools. Reported by HyungSeok Han - CVE-2020-6435: Insufficient policy enforcement in extensions. Reported by Sergei Glazunov - CVE-2020-6436: Use after free in window management. Reported by Igor Bukanov - CVE-2020-6437: Inappropriate implementation in WebView. Reported by Jann Horn - CVE-2020-6438: Insufficient policy enforcement in extensions. Reported by Ng Yik Phang - CVE-2020-6439: Insufficient policy enforcement in navigations. Reported by remkoboonstra - CVE-2020-6440: Inappropriate implementation in extensions. Reported by David Erceg - CVE-2020-6441: Insufficient policy enforcement in omnibox. Reported by David Erceg - CVE-2020-6442: Inappropriate implementation in cache. Reported by B@rMey - CVE-2020-6443: Insufficient data validation in developer tools. Reported by @lovasoa - CVE-2020-6444: Uninitialized use in WebRTC. Reported by mlfbrown - CVE-2020-6445: Insufficient policy enforcement in trusted types. Reported by Jun Kokatsu - CVE-2020-6446: Insufficient policy enforcement in trusted types. Reported by Jun Kokatsu - CVE-2020-6447: Inappropriate implementation in developer tools. Reported by David Erceg - CVE-2020-6448: Use after free in V8. Reported by Guang Gong - CVE-2020-6454: Use after free in extensions. Reported by leecraso and Guang Gong - CVE-2020-6455: Out of bounds read in WebSQL. Reported by Nan Wang and Guang Gong - CVE-2020-6456: Insufficient validation of untrusted input in clipboard. Reported by Michał Bentkowski chromium (81.0.4044.62-1) experimental; urgency=medium . * New upstream beta release. chromium (80.0.3987.162-1) unstable; urgency=medium . * New upstream security release. - CVE-2020-6450: Use after free in WebAudio. Reported by Man Yue Mo - CVE-2020-6451: Use after free in WebAudio. Reported by Man Yue Mo - CVE-2020-6452: Heap buffer overflow in media. Reported by asnine clamav (0.102.4+dfsg-0+deb10u1) buster; urgency=medium . * Import 0.102.4 - CVE-2020-3350 (A malicious user trick clamav into moving a different file). - CVE-2020-3327 (A vulnerability in the ARJ archive parsing module). - CVE-2020-3481 (A vulnerability in the EGG archive module). * Update symbol file. clamav (0.102.3+dfsg-1) unstable; urgency=medium . * Import 0.102.3 - CVE-2020-3327 (A vulnerability in the ARJ archive parsing module) - CVE-2020-3341 (A vulnerability in the PDF parsing module) * Update symbol file. clamav (0.102.3+dfsg-0+deb10u1) buster; urgency=medium . [ Sebastian Andrzej Siewior ] * Import 0.102.3 - CVE-2020-3327 (A vulnerability in the ARJ archive parsing module) - CVE-2020-3341 (A vulnerability in the PDF parsing module) * Update symbol file. . [ Scott Kitterman ] * Add Suggests for unversioned libclamunrar package on clamav-daemon and clamav binaries clamav (0.102.3+dfsg-0~deb9u1) stretch; urgency=medium . [ Sebastian Andrzej Siewior ] * Import 0.102.3 - CVE-2020-3327 (A vulnerability in the ARJ archive parsing module) - CVE-2020-3341 (A vulnerability in the PDF parsing module) * Update symbol file. . [ Scott Kitterman ] * Add Suggests for unversioned libclamunrar package on clamav-daemon and clamav binaries clamav (0.102.2+dfsg-2) unstable; urgency=medium . * Add a patch to let freshclam consider CURL_CA_BUNDLE environment variable to set the CA bundle (like curl does) (Closes: #951057). * Recommend ca-certificates, new freshclash uses https by default. * Bump standards-version to 4.5.0 without further change * Use dh-compat level 12. clamav (0.102.2+dfsg-1) unstable; urgency=medium . * Import 0.102.2 - CVE-2020-3123 (DoS may occur in the optional DLP feature) (Closes: 950944). * Update symbol file. * Set ReceiveTimeout to 0 which is upstream default. cloud-init (20.2-2~deb10u1) buster; urgency=medium . * Release for buster. No further changes. . cloud-init (20.2-2) unstable; urgency=medium . * Add missing Build-Dep on python3-pytest . cloud-init (20.2-1) unstable; urgency=medium . * New upstream version * Drop patches that have been merged upstream * Switch to pytest for running tests, per upstream change . cloud-init (20.1-2) unstable; urgency=medium . * Fix python 3.8 incompatibility (Closes: #954276) * Cherry-pick fa1abfec2705 (ec2: only redact token request headers in logs, avoid altering request) from upstream. (Closes: #954363) * Cherry-pick 1f860e5ac7eb (ec2: Do not fallback to IMDSv1 on EC2) from upstream. . cloud-init (20.1-1) unstable; urgency=medium . * New upstream release * Remove patches applied upstream: - CVE-2020-8631.patch - CVE-2020-8632.patch * Refresh patches: - 0009-Drop-all-unused-extended-version-handling.patch * Reduce cloud-guest-utils from Depends to Recommends * Bump standards version to 4.5.0 (no changes needed) * Remove Charles Plessy from uploaders, as he is no longer active in the cloud team. . cloud-init (19.4-2) unstable; urgency=medium . * Import upstream fix for CVE-2020-8632. rand_user_password generates passwords of insufficient length. (Closes: #951363) * Import upstream fix for CVE-2020-8631. Cloud-init uses an insufficient source of randomness when generating passwords. (Closes: #951362) . cloud-init (19.4-1) unstable; urgency=medium . * New upstream release. * Update debian/copyright to note dual-dual license status (Closes: #866613) . cloud-init (19.3-2) unstable; urgency=medium . * Build-depends on python3-pep8 instead of just pep8 (Closes: #949940). . cloud-init (19.3-1) unstable; urgency=medium . * New upstream release. . cloud-init (19.2-4) unstable; urgency=medium . * Removed the last bit of Python2 build-depends (Closes: #942968). . cloud-init (19.2-3) unstable; urgency=medium . * Remove the patch for sources.list, and activate the option to preserve the sources.list by default (ie: apt_preserve_sources_list: true). . cloud-init (19.2-2) unstable; urgency=medium . * Comment out backports by default in apt/sources.list. * Standards-Version bump to 4.4.1. . cloud-init (19.2-1) unstable; urgency=medium . * New upstream release. (Closes: #931173, #936030) * Drop 0008-opennebula-also-exclude-epochseconds-from-changed-en.patch applied upstream. * Drop CVE-2019-0816_Filter_list_of_ssh_keys_pulled_from_fabric.patch also applied upstream. * Rebased patches: - 0009-Drop-all-unused-extended-version-handling.patch - 0012-Fix-message-when-a-local-is-missing.patch cloud-init (20.2-2~bpo10+1) buster-backports; urgency=medium . * Rebuild for buster-backports. cloud-init (20.2-1) unstable; urgency=medium . * New upstream version * Drop patches that have been merged upstream * Switch to pytest for running tests, per upstream change cloud-init (20.1-2) unstable; urgency=medium . * Fix python 3.8 incompatibility (Closes: #954276) * Cherry-pick fa1abfec2705 (ec2: only redact token request headers in logs, avoid altering request) from upstream. (Closes: #954363) * Cherry-pick 1f860e5ac7eb (ec2: Do not fallback to IMDSv1 on EC2) from upstream. cloud-init (20.1-1) unstable; urgency=medium . * New upstream release * Remove patches applied upstream: - CVE-2020-8631.patch - CVE-2020-8632.patch * Refresh patches: - 0009-Drop-all-unused-extended-version-handling.patch * Reduce cloud-guest-utils from Depends to Recommends * Bump standards version to 4.5.0 (no changes needed) * Remove Charles Plessy from uploaders, as he is no longer active in the cloud team. cloud-init (19.4-2) unstable; urgency=medium . * Import upstream fix for CVE-2020-8632. rand_user_password generates passwords of insufficient length. (Closes: #951363) * Import upstream fix for CVE-2020-8631. Cloud-init uses an insufficient source of randomness when generating passwords. (Closes: #951362) cloud-init (19.4-1) unstable; urgency=medium . * New upstream release. * Update debian/copyright to note dual-dual license status (Closes: #866613) cloud-init (19.3-2) unstable; urgency=medium . * Build-depends on python3-pep8 instead of just pep8 (Closes: #949940). cloud-init (19.3-1) unstable; urgency=medium . * New upstream release. cloud-init (19.2-4) unstable; urgency=medium . * Removed the last bit of Python2 build-depends (Closes: #942968). cloud-init (19.2-3) unstable; urgency=medium . * Remove the patch for sources.list, and activate the option to preserve the sources.list by default (ie: apt_preserve_sources_list: true). cloud-init (19.2-2) unstable; urgency=medium . * Comment out backports by default in apt/sources.list. * Standards-Version bump to 4.4.1. cloud-init (19.2-1) unstable; urgency=medium . * New upstream release. * Drop 0008-opennebula-also-exclude-epochseconds-from-changed-en.patch applied upstream. * Drop CVE-2019-0816_Filter_list_of_ssh_keys_pulled_from_fabric.patch also applied upstream. * Rebased patches: - 0009-Drop-all-unused-extended-version-handling.patch - 0012-Fix-message-when-a-local-is-missing.patch commons-configuration2 (2.2-1+deb10u1) buster; urgency=medium . * CVE-2020-1953 (Closes: #954713) confget (2.2.0-4+deb10u1) buster; urgency=medium . * Fix the Python module's handling of values containing "=": - add the test-ini-eq patch to add a test for such values - add the python-value-eq patch to fix the problem - Closes: #959887 coturn (4.5.1.1-1.1+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * specially crafted HTTP POST request can lead to heap overflow which can result in information leak (CVE-2020-6061) (Closes: #951876) * specially crafted HTTP POST request can lead to server crash and denial of service (CVE-2020-6062) (Closes: #951876) * init with zero any new or reused stun buffers (CVE-2020-4067) dbus (1.12.20-0+deb10u1) buster; urgency=medium . * New upstream stable release - CVE-2020-12049: Prevent a denial of service attack in which a local user can make the system dbus-daemon run out of file descriptors - Prevent use-after-free if two usernames share a uid - d/p/dbus-daemon-test-Don-t-test-fd-limits-if-in-an-unprivileg.patch: Drop patch, applied upstream. * d/gbp.conf: Configure for debian/buster dbus (1.12.18-1) unstable; urgency=medium . [ Simon McVittie ] * New upstream stable release - CVE-2020-12049: Prevent a denial of service attack in which a local user can make the system dbus-daemon run out of file descriptors - d/p/dbus-daemon-test-Don-t-test-fd-limits-if-in-an-unprivileg.patch: Drop patch, applied upstream. * Switch to debhelper-compat 12 - Don't restart systemd units on upgrade. Previously, this was handled by the dh_installinit override. - Add ${misc:Pre-Depends} to all binary packages. This is required for dbus for dh_installsystemd under dh compat level 12, and is harmless for the others. * dbus: Remove an unused Lintian override. Lintian used to warn twice for the statically-enabled dbus.service unit, but now only warns once. * dbus-tests: Silence package-contains-documentation-outside-usr-share-doc Lintian tag. The tests contain some READMEs that describe what is in their directory. * d/tests: Remove compatibility with deprecated ADTTMP. autopkgtest has supported AUTOPKGTEST_TMP long enough to use it unconditionally. * Introduce noinsttest build profile. This disables dbus-tests, and when combined with nocheck it disables the circular GLib dependency. * Remove non-standard pkg.dbus.minimal build profile. It was not a "safe" build profile (it altered the contents of binary packages, notably dropping LSM and systemd support, which could result in dependent packages being broken), and the combination of nocheck, nodoc and noinsttest achieves most of the same build-dependency reductions. * Explicitly build-depend on pkg-config. Previously, this was pulled in by libglib2.0-dev. (Closes: #945201) * d/upstream/metadata: Distinguish between Bug-Submit and Bug-Database * Change system bus socket to /run/dbus/system_bus_socket. The interoperable cross-distro path is /var/run/dbus/system_bus_socket, so this remains the upstream default for the benefit of distributions where /var/run and /run are (problematically) not guaranteed to be equivalent. However, Debian Policy since at least v4.1.5 guarantees that /var/run is a symlink to /run, and this has been implemented for several stable releases (since at least initscripts 2.88dsf-29 in 2012, in the sysvinit case), so it is harmless to prefer the path in /run, which has advantages in a few corner cases (ability to unmount /var is the main one) and avoids warnings from systemd. (Closes: #783321, #857678, #932105, #958289) * Standards-Version: 4.5.0 - Note that the user for `dbus-daemon --system` is still named 'messagebus' for historical reasons. If it was added today, we'd call it _dbus as per Policy §9.2.1, but this is not the right package to be experimenting with renaming system users. * d/dbus-udeb.postinst: Remove #DEBHELPER# token. debhelper doesn't actually substitute this in udebs, making it just an ordinary comment. . [ Debian Janitor ] * Remove trailing whitespace in d/changelog. * Use secure URI in Homepage field. * Re-export upstream signing key without extra signatures. * Set upstream metadata fields: Bug-Submit (from ./configure), Repository, Repository-Browse. dbus (1.12.16-2) unstable; urgency=medium . * Add bug number to previous changelog entry * Standards-Version: 4.4.1 (no changes required) - Note that dbus-user-session still has its previous dependencies, and has deliberately not been switched to the new default-logind virtual package. dbus-user-session relies on systemd --user: it is not enough to have systemd-logind or a compatible replacement like elogind. * d/dbus.init: Work around #940971 in libnss-systemd. If we are booting with a non-systemd init but libnss-systemd is still installed, tell libnss-systemd not to try to connect to dbus-daemon, which is never going to work well from inside dbus-daemon. * dbus.postinst: Append dbus to /run/reboot-required.pkgs on upgrade (Closes: #867263) debian-edu-config (2.10.65+deb10u6) buster; urgency=medium . [ Wolfgang Schweer ] * Fix loss of dynamically allocated v4 IP address. (Closes: #966129) - Drop etc/network/if-up.d/wpad-proxy-update. This script fails to work due to changed behaviour of the ifupdown/dhclient/systemd combination and now also causes the loss of a dynamically allocated ipv4 IP address about 30 minutes after booting. - Add code to d/debian-edu-config.postinstall to implement the intended proxy setting update after a WPAD change just after rebooting the system. (It would otherwise happen at first DHCP lease renewal ~15 minutes later.) - Adjust Makefile and debian/dirs. debian-installer (20190702+deb10u5) buster; urgency=medium . * Bump Linux ABI to 4.19.0-10. debian-installer-netboot-images (20190702+deb10u5) buster; urgency=medium . * Update to 20190702+deb10u5, from buster-proposed-updates. debian-ports-archive-keyring (2019.11.05~deb10u1) buster; urgency=medium . * Upload to buster. Closes: #952655. debian-security-support (2020.06.21~deb10u1) buster; urgency=medium . * Rebuild for buster. . debian-security-support (2020.06.21) unstable; urgency=medium . [ Mike Gabriel ] * Add cinder (OpenStack component) to security-support-ended.deb8. . debian-security-support (2020.06.11) unstable; urgency=medium . * Also add unbound to security-support-ended.deb8 - see DSA 4694-1 and https://lists.debian.org/debian-lts/2020/06/msg00024.html and follow-ups. . debian-security-support (2020.06.09) unstable; urgency=medium . [ Salvatore Bonaccorso ] * Add unbound to security-support-ended.deb9 (see DSA 4694-1). . debian-security-support (2020.05.22) unstable; urgency=medium . * Add pdns-recursor to security-support-ended.deb9 as explained in DSA-4691-1. . debian-security-support (2020.05.08) unstable; urgency=medium . [ Chris Lamb ] * Mark OpenStack packages as being unsupported in LTS; "jessie lost support from upstream just a few weeks after the release." debian-security-support (2020.06.21~deb9u1) stretch; urgency=medium . * This update for stretch only contains changes to the files security-support-limited and security-support-ended.deb(8|9|10) from version 2020.06.21 from unstable, the changes in detail are: - from 2020.06.21: * Add cinder (OpenStack component) to security-support-ended.deb8. - from 2020.06.11: * Also add unbound to security-support-ended.deb8 - see DSA 4694-1 and https://lists.debian.org/debian-lts/2020/06/msg00024.html and follow-ups. - from 2020.06.09: * Add unbound to security-support-ended.deb9 (see DSA 4694-1). - from 2020.05.22: * Add pdns-recursor to security-support-ended.deb9 as explained in DSA-4691-1. - from 2020.05.08: * Mark OpenStack packages as being unsupported in LTS; "jessie lost support from upstream just a few weeks after the release." - from 2020.04.16: * Add tor to security-support-ended.deb8 as well, see DSA 4644-1. * Add libperlspeak-perl to security-support-ended.deb(8|9|10), because of CVE-2020-10674 (#954238), also see #954297, #954298 and #954299. - from 2020.03.22: * Add tor to security-support-ended.deb9, see DSA 4644-1. - from 2020.03.15: * security-support-limited/zoneminder: declare limited support behind an authenticated HTTP zone (see #922724). - from 2020.03.05: * Add xen to security-support-ended.deb8. - from 2020.02.21: * Add nodejs to security-support-ended.deb8 and .deb9. - from 2020.01.21: * Add nethack to security-support-ended.deb8. * Mark xen as end-of-life for Stretch (DSA 4602-1). debian-security-support (2020.06.11) unstable; urgency=medium . * Also add unbound to security-support-ended.deb8 - see DSA 4694-1 and https://lists.debian.org/debian-lts/2020/06/msg00024.html and follow-ups. debian-security-support (2020.06.09) unstable; urgency=medium . [ Salvatore Bonaccorso ] * Add unbound to security-support-ended.deb9 (see DSA 4694-1). debian-security-support (2020.05.22) unstable; urgency=medium . * Add pdns-recursor to security-support-ended.deb9 as explained in DSA-4691-1. debian-security-support (2020.05.08) unstable; urgency=medium . [ Chris Lamb ] * Mark OpenStack packages as being unsupported in LTS; "jessie lost support from upstream just a few weeks after the release." debian-security-support (2020.04.16) unstable; urgency=medium . * Add tor to security-support-ended.deb8 as well, see DSA 4644-1. * Add libperlspeak-perl to security-support-ended.deb(8|9|10), because of CVE-2020-10674 (#954238), also see #954297, #954298 and #954299. docker.io (18.09.1+dfsg1-7.1+deb10u2) buster-security; urgency=medium . * Add upstream patch for CVE-2020-13401 (Closes: #962141) dovecot (1:2.3.4.1-5+deb10u2) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Apply upstream fixes for CVE-2020-10957, CVE-2020-10958 and CVE-2020-10967 (Closes: #960963) - lib-smtp: smtp-server-cmd-vrfy - Restructure parameter parsing. - lib-smtp: smtp-syntax - Do not allow NULL return parameters for smtp_string_parse(). - lib-smtp: smtp-syntax - Do not allow NULL return parameters for smtp_xtext_parse(). - lib-smtp: syntax: Fix smtp_ehlo_line_parse() to also record the last parameter. - lib-smtp: smtp-syntax - Do not allow NULL return parameters for smtp_ehlo_line_parse(). - lib-smtp: smtp-syntax - Return 0 for smtp_string_parse() with empty input. - lib-smtp: Add tests for smtp_string_parse() and smtp_string_write(). - lib-smtp: test-smtp-server-errors - Add tests for VRFY and NOOP commands with invalid parameters. - lib-smtp: server: command: Move core of smtp_server_command_submit_reply() into a separate function. - lib-smtp: smtp-server-command - Assign cmd->reg immediately. - lib-smtp: smtp-server-command - Guarantee that non-destroy hooks aren't called for an ended command. - lib-smtp: smtp-server-command - Perform initial command execution in separate function. - lib-smtp: smtp-server-connection - Hold a command reference while executing a command. - lib-smtp: test-smtp-server-errors - Add tests for large series of empty and bad commands. - lib-smtp: smtp-address - Don't return NULL from smtp_address_clone*() unless the input is NULL. - lib-smtp: smtp-address - Don't recognize an address with empty localpart as <>. - lmtp: lmtp-commands - Explicity prohibit empty RCPT path. dpdk (18.11.8-1~deb10u1) buster; urgency=medium . * New upstream version 18.11.8; For a list of changes see http://doc.dpdk.org/guides-18.11/rel_notes/release_18_11.html * Drop CVE patches, merged upstream * Drop 0008-Revert-common-octeontx-add-missing-public-symbol.patch, merged upstream * Refresh 0004-build-bump-minimum-Meson-version-to-0.47.1.patch for 18.11.8 * Add missing symbol from mapfile in librte-cfgfile . dpdk (18.11.6-1~deb10u2) buster-security; urgency=high . * Backport patches to fix CVE-2020-10722, CVE-2020-10723, CVE-2020-10724 which affect the vhost driver. dpdk (18.11.6-1) unstable; urgency=medium . [ Luca Boccassi ] * New upstream version 18.11.6; For a list of changes see http://doc.dpdk.org/guides-18.11/rel_notes/release_18_11.html * Drop avoid-as-needed-as-it-causes-overlinking.patch, merged upstream. * Refresh remaining patches to remove fuzz from 18.11.6. * Add patch to avoid changing stable symbol version, breaking ABI. * Update librte-eal18.11.symbols with new experimental symbol from 18.11.6 . [ Christian Ehrhardt ] * d/*.lintian-overrides: add overrides for a few known but accepted deficiencies . [ Luca Boccassi ] * Use chrpath to strip RPATH from dpdk-test binary * Add missing librte-gro symbols file dpdk (18.11.6-1~deb10u2) buster-security; urgency=high . * Backport patches to fix CVE-2020-10722, CVE-2020-10723, CVE-2020-10724 which affect the vhost driver. evolution-data-server (3.30.5-1+deb10u1) buster-security; urgency=medium . * CVE-2020-14928: Response Injection via STARTTLS in SMTP and POP3. exim4 (4.92-8+deb10u4) buster-security; urgency=high . * Fix authentication bypass in SPA authenticator due to out-of-bound buffer read. https://bugs.exim.org/show_bug.cgi?id=2571 CVE-2020-12783 exiv2 (0.25-4+deb10u1) buster; urgency=medium . * Non-maintainer upload by the Security Team. * Minor adjustment to the patch for CVE-2018-10958 and CVE-2018-10999. The initial patch was overly restrictive in counting PNG image chunks. * CVE-2018-16336: remote denial of service (heap-based buffer over-read) via a crafted image file. fdroidserver (1.1.7-1~deb10u1) buster; urgency=medium . * New upstream release targeted for Debian/buster (Closes: #954070) * Remove "Recommends" test, ci.debian.net do not support binfmt_misc: https://salsa.debian.org/ci-team/debian-ci-config/-/issues/1 fdroidserver (1.1.7-1~deb10u1~bpo9+1) stretch-backports; urgency=medium . * Rebuild for stretch-backports. fdroidserver (1.1.6-4) unstable; urgency=medium . * fix running Recommends: test in containers fdroidserver (1.1.6-2) unstable; urgency=medium . * fix autopkgtest: run in VM so binfmt can be properly setup (Closes: #954395) fdroidserver (1.1.6-1) unstable; urgency=medium . * New upstream release targeted for Debian/buster fdroidserver (1.1.6-1~bpo9+1) stretch-backports; urgency=medium . * Rebuild for stretch-backports. . fdroidserver (1.1.6-1) unstable; urgency=medium . * New upstream release targeted for Debian/buster . fdroidserver (1.1.4-1) unstable; urgency=medium . * New upstream release targeted for Debian/buster * remove upstreamed patches . fdroidserver (1.1.3-3) unstable; urgency=medium . * conditionally disable tests that can't work with apksigner . fdroidserver (1.1.3-2) unstable; urgency=medium . * fix Recommends test, MD5 test fails with apksigner present . fdroidserver (1.1.3-1) unstable; urgency=medium . * New upstream version 1.1.3 to fix test suite . fdroidserver (1.1.2-1) unstable; urgency=medium . * New upstream version 1.1.2 (Closes: #929905) . fdroidserver (1.1.1-1) unstable; urgency=medium . * New upstream release * Recommends: apksigner to support APK Signature v2 and v3 . fdroidserver (1.1-1) unstable; urgency=medium . * New upstream release . fdroidserver (1.0.10-1) unstable; urgency=medium . * New upstream version . fdroidserver (1.0.9-1) unstable; urgency=medium . * New upstream version . fdroidserver (1.0.8-3) unstable; urgency=medium . * hack to get autopkgtest to skip failing gpg test . fdroidserver (1.0.8-2) unstable; urgency=medium . * autopkgtest: explicitly purge gnupg so tests pass . fdroidserver (1.0.8-1) unstable; urgency=medium . * New upstream version * remove python3-distutils, it is no longer needed . fdroidserver (1.0.7-2) unstable; urgency=medium . * Depends: python3-distutils so its always there . fdroidserver (1.0.7-1) unstable; urgency=medium . * New upstream release * fix autopkgtest . fdroidserver (1.0.6-1) unstable; urgency=medium . * New upstream release . fdroidserver (1.0.4-3) unstable; urgency=medium . * fix autopkgtest run: working dir, and UTF-8 environment . fdroidserver (1.0.4-2) unstable; urgency=medium . * run upstream testsuite using autopkgtest . fdroidserver (1.0.4-1) unstable; urgency=medium . * New upstream version 1.0.4 * Standards-Version: 4.1.4 no changes * support all the Java 10 and 11 packages * works with only androguard, removed optional deps * add debian/upstream/metadata file * Depends: androguard only on arches where it works . fdroidserver (1.0.3-2) unstable; urgency=medium . * only depend on aapt/androguard/zipalign on arches where available . fdroidserver (1.0.3-1) unstable; urgency=medium . * New upstream version * tighten up Depends to install fewer packages . fdroidserver (1.0.2-1) unstable; urgency=medium . * New upstream version . fdroidserver (1.0.0-1) unstable; urgency=medium . * New upstream version 1.0.0 . fdroidserver (0.9.1-1) unstable; urgency=medium . * New upstream release . fdroidserver (0.8-1) unstable; urgency=medium . * New upstream release fdroidserver (1.1.4-1) unstable; urgency=medium . * New upstream release targeted for Debian/buster * remove upstreamed patches ffmpeg (7:4.1.6-1~deb10u1) buster-security; urgency=medium . * New upstream release ffmpeg (7:4.1.4-1) unstable; urgency=medium . [ James Cowgill ] * New upstream release. (LP: #1837480) - avformat/aadec: Check for scanf() failure (CVE-2019-12730) (Closes: #932469) . * d/copyright: Remove paragraph containing license files. * d/control: Bump standards version to 4.4.0. * d/ffmpeg-doc.doc-base*: - Move API docs to Programming/C section. - Index the main manual pages as well. Thanks to 積丹尼 Dan Jacobson for the suggestion. (Closes: #924528) * d/rules: - Disable crystalhd. (Closes: #917292) - Generate index.html file for the HTML manual pages. . [ Ondřej Nový ] * d/control: - Use debhelper-compat instead of debian/compat. file-roller (3.30.1-2+deb10u1) buster; urgency=medium . * CVE-2020-11736 (Closes: #956638) firefox-esr (68.10.0esr-1~deb10u1) buster-security; urgency=medium . * New upstream release * Fixes for mfsa2020-25, also known as: CVE-2020-12417, CVE-2020-12418, CVE-2020-12419, CVE-2020-12420, CVE-2020-12421. firefox-esr (68.10.0esr-1~deb9u1) stretch-security; urgency=medium . * New upstream release * Fixes for mfsa2020-25, also known as: CVE-2020-12417, CVE-2020-12418, CVE-2020-12419, CVE-2020-12420, CVE-2020-12421. firefox-esr (68.9.0esr-1) unstable; urgency=medium . * New upstream release * Fixes for mfsa2020-21, also known as: CVE-2020-12399, CVE-2020-12405, CVE-2020-12406, CVE-2020-12410. . * debian/rules: Force using old PKCS11 API when building against newer NSS releases. Closes: #961762. * debian/control*: Bump nss build dependencies. firefox-esr (68.9.0esr-1~deb10u1) buster-security; urgency=medium . * New upstream release * Fixes for mfsa2020-21, also known as: CVE-2020-12399, CVE-2020-12405, CVE-2020-12406, CVE-2020-12410. . * debian/rules: Force using old PKCS11 API when building against newer NSS releases. Closes: #961762. * debian/control*: Bump nss build dependencies. firefox-esr (68.9.0esr-1~deb9u1) stretch-security; urgency=medium . * New upstream release * Fixes for mfsa2020-21, also known as: CVE-2020-12399, CVE-2020-12405, CVE-2020-12406, CVE-2020-12410. . * debian/rules: Force using old PKCS11 API when building against newer NSS releases. Closes: #961762. * debian/control*: Bump nss build dependencies. firefox-esr (68.8.0esr-1) unstable; urgency=medium . * New upstream release * Fixes for mfsa2020-17, also known as: CVE-2020-12387, CVE-2020-6831, CVE-2020-12392, CVE-2020-12395. firefox-esr (68.8.0esr-1~deb10u1) buster-security; urgency=medium . * New upstream release * Fixes for mfsa2020-17, also known as: CVE-2020-12387, CVE-2020-6831, CVE-2020-12392, CVE-2020-12395. firefox-esr (68.8.0esr-1~deb9u1) stretch-security; urgency=medium . * New upstream release * Fixes for mfsa2020-17, also known as: CVE-2020-12387, CVE-2020-6831, CVE-2020-12392, CVE-2020-12395. firefox-esr (68.7.0esr-1) unstable; urgency=medium . * New upstream release * Fixes for mfsa2020-13, also known as: CVE-2020-6821, CVE-2020-6822, CVE-2020-6825. freerdp2 (2.0.0~git20190204.1.2693389a+dfsg1-1+deb10u2) buster; urgency=medium . [ Bernhard Miklautz ] * debian/patches - security releated backports from upstream * Add 0003-Fixed-6007-Boundary-checks-in-rdp_read_flow_control.patch * Add 0004-Fixed-6009-Bounds-checks-in-autodetect_recv_bandwidt.patch * Add 0005-Fixed-6006-bounds-checks-in-update_read_synchronize.patch * Add 0006-Fixed-6005-Bounds-checks-in-update_read_bitmap_data.patch * Add 0007-Fixed-6011-Bounds-check-in-rdp_read_font_capability.patch * Add 0008-Fixed-6013-Check-new-length-is-0.patch * Add 0009-Fix-6010-Check-length-in-read_icon_info.patch * Add 0010-Use-substreams-to-parse-gcc_read_server_data_blocks.patch * Add 0011-Fixed-Stream_-macros-bracing-arguments.patch * Add 0012-Use-safe-seek-for-capability-parsing.patch * Add 0013-Fixed-CVE-2020-11525-Out-of-bounds-read-in-bitmap_ca.patch (CVE-2020-11525). * Add 0014-Fixed-6012-CVE-2020-11526-Out-of-bounds-read-in-upda.patch (CVE-2020-11526). * Add 0015-Fix-CVE-2020-11523-clamp-invalid-rectangles-to-size-.patch (CVE-2020-11523). * Add 0016-Fix-CVE-2020-11524-out-of-bounds-access-in-interleav.patch (CVE-2020-11524). * Add 0017-Fixed-CVE-2020-11522-Limit-number-of-DELTA_RECT-to-4.patch (CVE-2020-11522). * Add 0018-Fixed-CVE-2020-11521-Out-of-bounds-write-in-planar-c.patch (CVE-2020-11521). * Add 0019-Fixed-possible-NULL-access.patch * Add 0020-Check-for-int-overflow-in-gdi_InvalidateRegion.patch . [ Mike Gabriel ] * debian/patches: + Add 0002_fix-channels-smartcard-fix-statusw-call.patch. Fix smartcard login failures. (Closes: #919281). fwupd (1.2.13-2) buster; urgency=medium . * No-change upload to pick up rotated Debian signing keys fwupd (1.2.13-1) stable; urgency=medium . * Update to 1.2.13 stable release. - Fixes issues on stable release (Closes: #961490) - Fixes vendor id hard requirement (Closes: #946623) - Fixes CVE-2020-10759 (Closes: #962517) * Add patch to revert new libxmlb requirement to allow working with libxmlb available in Buster. * debian/* changes backported from testing: - Refresh symbols - Install fwupdoffline binary - Install fwupd shutdown systemd unit - Refresh dependencies for modem manager plugin - Update copyright for new new contributors - Update watch file for correct upstream URL. fwupd (1.2.10-2) unstable; urgency=medium . [ Steve McIntyre ] * Add Built-Using for the fwupd-*-signed packages. Closes: #932757 fwupd (1.2.10-1) unstable; urgency=medium . * New upstream version (1.2.10) fwupd (1.2.9-1) unstable; urgency=medium . * New upstream version (1.2.9) fwupd (1.2.6-1) unstable; urgency=medium . * New upstream version (1.2.6) * debian/control: - Add new build depends related to Modem Manager fwupd-amd64-signed (1.2.13+2) buster; urgency=medium . * Update to fwupd version 1.2.13-2 fwupd-amd64-signed (1.2.13+1) stable; urgency=medium . * Update to fwupd version 1.2.13-1 fwupd-amd64-signed (1.2.10+2) unstable; urgency=medium . * Update to fwupd version 1.2.10-2 fwupd-amd64-signed (1.2.10+1) unstable; urgency=medium . * Update to fwupd version 1.2.10-1 fwupd-amd64-signed (1.2.9+1) unstable; urgency=medium . * Update to fwupd version 1.2.9-1 fwupd-amd64-signed (1.2.6+1) unstable; urgency=medium . * Update to fwupd version 1.2.6-1 fwupd-arm64-signed (1.2.13+2) buster; urgency=medium . * Update to fwupd version 1.2.13-2 fwupd-arm64-signed (1.2.13+1) stable; urgency=medium . * Update to fwupd version 1.2.13-1 fwupd-arm64-signed (1.2.10+2) unstable; urgency=medium . * Update to fwupd version 1.2.10-2 fwupd-arm64-signed (1.2.10+1) unstable; urgency=medium . * Update to fwupd version 1.2.10-1 fwupd-arm64-signed (1.2.9+1) unstable; urgency=medium . * Update to fwupd version 1.2.9-1 fwupd-arm64-signed (1.2.6+1) unstable; urgency=medium . * Update to fwupd version 1.2.6-1 fwupd-armhf-signed (1.2.13+2) buster; urgency=medium . * Update to fwupd version 1.2.13-2 fwupd-armhf-signed (1.2.13+1) stable; urgency=medium . * Update to fwupd version 1.2.13-1 fwupd-armhf-signed (1.2.10+2) unstable; urgency=medium . * Update to fwupd version 1.2.10-2 fwupd-armhf-signed (1.2.10+1) unstable; urgency=medium . * Update to fwupd version 1.2.10-1 fwupd-armhf-signed (1.2.9+1) unstable; urgency=medium . * Update to fwupd version 1.2.9-1 fwupd-armhf-signed (1.2.6+1) unstable; urgency=medium . * Update to fwupd version 1.2.6-1 fwupd-i386-signed (1.2.13+2) buster; urgency=medium . * Update to fwupd version 1.2.13-2 fwupd-i386-signed (1.2.13+1) stable; urgency=medium . * Update to fwupd version 1.2.13-1 fwupd-i386-signed (1.2.10+2) unstable; urgency=medium . * Update to fwupd version 1.2.10-2 fwupd-i386-signed (1.2.10+1) unstable; urgency=medium . * Update to fwupd version 1.2.10-1 fwupd-i386-signed (1.2.9+1) unstable; urgency=medium . * Update to fwupd version 1.2.9-1 fwupd-i386-signed (1.2.6+1) unstable; urgency=medium . * Update to fwupd version 1.2.6-1 fwupdate (12-4+deb10u1) buster; urgency=medium fwupdate-amd64-signed (12+4+deb10u1) buster; urgency=medium . * Update to fwupdate version 12-4+deb10u1 fwupdate-arm64-signed (12+4+deb10u1) buster; urgency=medium . * Update to fwupdate version 12-4+deb10u1 fwupdate-armhf-signed (12+4+deb10u1) buster; urgency=medium . * Update to fwupdate version 12-4+deb10u1 fwupdate-i386-signed (12+4+deb10u1) buster; urgency=medium . * Update to fwupdate version 12-4+deb10u1 gist (5.0.0-2+deb10u1) buster; urgency=medium . * Avoid deprecated authorization API (Closes: #964544) glib-networking (2.58.0-2+deb10u2) buster; urgency=medium . * Break balsa older than 2.5.6-2+deb10u1 as the fix for CVE-2020-13645 breaks balsa's certificate verification (see #961792). glib-networking (2.58.0-2+deb10u1) buster; urgency=medium . * Team upload * d/p/Return-bad-identity-error-if-identity-is-unset.patch: Backport fix for CVE-2020-13645 from upstream (Closes: #961756) gnutls28 (3.6.7-4+deb10u5) buster; urgency=medium . * 42_rel3.6.11_10-session-tickets-parse-extension-during-session-resum.patch from GNUTLS 3.6.11: Fix TL1.2 resumption errors. Closes: #956649 * 47_rel3.6.13_10-session_pack-fix-leak-in-error-path.patch from GNUTLS 3.6.14: One line fix for memory leak. Closes: #958704 * Rename 44_rel3.6.14_01-stek-differentiate-initial-state-from-valid-time-win.patch (security upload) to 44_rel3.6.14_90_... to be able to pull earlier fixes from 3.6.14 and have correct patch filename order. * 44_rel3.6.14_10-Update-session_ticket.c-to-add-support-for-zero-leng.patch from GnuTLS 3.6.14: Handle zero length session tickets, fixing connection errors on TLS1.2 sessions to some big hosting providers. (See LP 1876286) * 44_rel3.6.14_15-_gnutls_pkcs11_verify_crt_status-check-validity-agai.patch 44_rel3.6.14_16-x509-trigger-fallback-verification-path-when-cert-is.patch 44_rel3.6.14_17-tests-add-test-case-for-certificate-chain-supersedin.patch backported from GnuTLS 3.6.14: Fix verification error with alternate chains. Closes: #961889 gnutls28 (3.6.7-4+deb10u4) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * GNUTLS-SA-2020-06-03: Flaw in TLS session ticket key construction (CVE-2020-13777) (Closes: #962289) graphicsmagick (1.4+really1.3.35-1~deb10u1) buster-security; urgency=high . * Security backport for Buster. * Relax Standards-Version to 4.3.0 . . graphicsmagick (1.4+really1.3.35-1) unstable; urgency=high . * New upstream release, fixing the following security issues among others: - ReadSVGImage(): Fix dereference of NULL pointer when stopping image timer, - DrawImage(): Fix integer-overflow in DrawPolygonPrimitive() . * Update library symbols for this release. . [ Nicolas Boulenguez ] * mime: improve formatting. * mime: adjust priority for all images (closes: #951758). . graphicsmagick (1.4+really1.3.34+hg16230-1) unstable; urgency=medium . * Mercurial snapshot, fixing the following security issues: - WritePICTImage(): Eliminating small buffer overrun when run-length encoding pixels, - WriteOneJNGImage(): Detect when JPEG encoder has failed, and throw exception, - DecodeImage(): Fix heap buffer over-reads, - DecodeImage(): Allocate extra scanline memory to allow small RLE overrun. * Update library symbols for this release. * Update Standards-Version to 4.5.0 . . graphicsmagick (1.4+really1.3.34+hg16181-1) unstable; urgency=medium . * Mercurial snapshot, fixing the following security issue: - WritePCXImage(): Fix heap overflow in PCX writer when bytes per line value overflows its 16-bit storage unit. * Fix definition of ResourceInfinity. . [ Nicolas Boulenguez ] * Lower MIME priority for PS/PDF (closes: #935099). . graphicsmagick (1.4+really1.3.34-2) unstable; urgency=medium . * Still use glibc malloc allocator. . graphicsmagick (1.4+really1.3.34-1) unstable; urgency=high . * New upstream release, fixing the following security issues among others: - PNMInteger(): Place a generous arbitrary limit on the amount of PNM comment text to avoid DoS opportunity, - MagickClearException(): Destroy any existing exception info before re-initializing the exception info or else there will be a memory leak, - HuffmanDecodeImage(): Fix signed overflow on range check which leads to heap overflow, - ReadMNGImage(): Only magnify the image if the requested magnification methods are supported, - GenerateEXIFAttribute(): Add validations to prevent heap buffer overflow, - DrawPatternPath(): Don't leak memory if fill_pattern or stroke_pattern of cloned draw_info are not null, - CVE-2019-19953: PICT: Throw a writer exception if the PICT width limit is exceeded (closes: #947311). * Build with Google Thread-Caching Malloc library. * Update Standards-Version to 4.4.1 . . graphicsmagick (1.4+really1.3.33+hg16117-1) unstable; urgency=high . * Mercurial snapshot, fixing the following security issue: - CVE-2019-16709: ReadDPSImage(): Fix memory leak when OpenBlob() reports failure. . graphicsmagick (1.4+really1.3.33+hg16115-1) unstable; urgency=high . * Mercurial snapshot, fixing the following security issues: - ReadMNGImage(): skip coalescing layers if there is only one layer, - DrawStrokePolygon(): handle case where TraceStrokePolygon() returns NULL, - DrawDashPolygon(): handle case where DrawStrokePolygon() returns MagickFail, - TraceBezier(): detect arithmetic overflow and return errors via normal error path rather than exiting, - ExtractTokensBetweenPushPop(): fix non-terminal parsing loop, - GenerateEXIFAttribute(): check that we are not being directed to read an IFD that we are already parsing and quit in order to avoid a loop, - ReallocColormap(): avoid dereferencing a NULL pointer if image->colormap is NULL, - png_read_raw_profile(): fix validation of raw profile length, - TraceArcPath(): substitute a lineto command when tracing arc is impossible, - GenerateEXIFAttribute(): skip unsupported/invalid format 0. . graphicsmagick (1.4+really1.3.33-1) unstable; urgency=medium . * New upstream release, including many security fixes. . graphicsmagick (1.4+really1.3.32-1) unstable; urgency=high . * New upstream release, fixing the following security issues among others: - DrawImage(): Terminate drawing if DrawCompositeMask() reports failure, - DrawImage(): Detect an error in TracePath() and quit rather than forging on. * Backport security fixes: - ReadTIFFImage(): Fix typo in initialization of 'tile' pointer variable, - WriteDIBImage(): Detect arithmetic overflow of image_size, - WriteBMPImage(): Detect arithmetic overflow of image_size, - WriteBMPImage(): Assure that chromaticity uses double-precision for multiply before casting to unsigned integer. . graphicsmagick (1.4~hg16039-1) unstable; urgency=high . * Mercurial snapshot, fixing the following security issues: - ImportRLEPixels(): Fix heap overflow caused by a typo in the code. Also fix undefined behavior caused by large left shifts of an unsigned char, - ThrowException(), ThrowLoggedException(): Handle the case where some passed character strings refer to existing exception character strings, - PICT: Allocate output buffer used by ExpandBuffer() on DecodeImage() stack, - WritePDFImage(): Allocate working buffer on stack and pass as argument to EscapeParenthesis() to eliminate a thread safety problem, - TranslateTextEx(): Remove support for reading from a file using '@filename' syntax, - DrawImage(): Only support '@filename' syntax to read drawing primitive from a file if we are not already drawing. * Update library symbols for this release. graphicsmagick (1.4+really1.3.34+hg16230-1) unstable; urgency=medium . * Mercurial snapshot, fixing the following security issues: - WritePICTImage(): Eliminating small buffer overrun when run-length encoding pixels, - WriteOneJNGImage(): Detect when JPEG encoder has failed, and throw exception, - DecodeImage(): Fix heap buffer over-reads, - DecodeImage(): Allocate extra scanline memory to allow small RLE overrun. * Update library symbols for this release. * Update Standards-Version to 4.5.0 . graphicsmagick (1.4+really1.3.34+hg16181-1) unstable; urgency=medium . * Mercurial snapshot, fixing the following security issue: - WritePCXImage(): Fix heap overflow in PCX writer when bytes per line value overflows its 16-bit storage unit. * Fix definition of ResourceInfinity. . [ Nicolas Boulenguez ] * Lower MIME priority for PS/PDF (closes: #935099). graphicsmagick (1.4+really1.3.34-2) unstable; urgency=medium . * Still use glibc malloc allocator. graphicsmagick (1.4+really1.3.34-1) unstable; urgency=high . * New upstream release, fixing the following security issues among others: - PNMInteger(): Place a generous arbitrary limit on the amount of PNM comment text to avoid DoS opportunity, - MagickClearException(): Destroy any existing exception info before re-initializing the exception info or else there will be a memory leak, - HuffmanDecodeImage(): Fix signed overflow on range check which leads to heap overflow, - ReadMNGImage(): Only magnify the image if the requested magnification methods are supported, - GenerateEXIFAttribute(): Add validations to prevent heap buffer overflow, - DrawPatternPath(): Don't leak memory if fill_pattern or stroke_pattern of cloned draw_info are not null, - CVE-2019-19953: PICT: Throw a writer exception if the PICT width limit is exceeded (closes: #947311). * Build with Google Thread-Caching Malloc library. * Update Standards-Version to 4.4.1 . graphicsmagick (1.4+really1.3.33+hg16117-1) unstable; urgency=high . * Mercurial snapshot, fixing the following security issue: - CVE-2019-16709: ReadDPSImage(): Fix memory leak when OpenBlob() reports failure. graphicsmagick (1.4+really1.3.33+hg16115-1) unstable; urgency=high . * Mercurial snapshot, fixing the following security issues: - ReadMNGImage(): skip coalescing layers if there is only one layer, - DrawStrokePolygon(): handle case where TraceStrokePolygon() returns NULL, - DrawDashPolygon(): handle case where DrawStrokePolygon() returns MagickFail, - TraceBezier(): detect arithmetic overflow and return errors via normal error path rather than exiting, - ExtractTokensBetweenPushPop(): fix non-terminal parsing loop, - GenerateEXIFAttribute(): check that we are not being directed to read an IFD that we are already parsing and quit in order to avoid a loop, - ReallocColormap(): avoid dereferencing a NULL pointer if image->colormap is NULL, - png_read_raw_profile(): fix validation of raw profile length, - TraceArcPath(): substitute a lineto command when tracing arc is impossible, - GenerateEXIFAttribute(): skip unsupported/invalid format 0. graphicsmagick (1.4+really1.3.33-1) unstable; urgency=medium . * New upstream release, including many security fixes. graphicsmagick (1.4+really1.3.32-1) unstable; urgency=high . * New upstream release, fixing the following security issues among others: - DrawImage(): Terminate drawing if DrawCompositeMask() reports failure, - DrawImage(): Detect an error in TracePath() and quit rather than forging on. * Backport security fixes: - ReadTIFFImage(): Fix typo in initialization of 'tile' pointer variable, - WriteDIBImage(): Detect arithmetic overflow of image_size, - WriteBMPImage(): Detect arithmetic overflow of image_size, - WriteBMPImage(): Assure that chromaticity uses double-precision for multiply before casting to unsigned integer. graphicsmagick (1.4~hg16039-1) unstable; urgency=high . * Mercurial snapshot, fixing the following security issues: - ImportRLEPixels(): Fix heap overflow caused by a typo in the code. Also fix undefined behavior caused by large left shifts of an unsigned char, - ThrowException(), ThrowLoggedException(): Handle the case where some passed character strings refer to existing exception character strings, - PICT: Allocate output buffer used by ExpandBuffer() on DecodeImage() stack, - WritePDFImage(): Allocate working buffer on stack and pass as argument to EscapeParenthesis() to eliminate a thread safety problem, - TranslateTextEx(): Remove support for reading from a file using '@filename' syntax, - DrawImage(): Only support '@filename' syntax to read drawing primitive from a file if we are not already drawing. * Update library symbols for this release. grub-efi-amd64-signed (1+2.02+dfsg1+20+deb10u2) buster-security; urgency=high . * Update to grub2 2.02+dfsg1-20+deb10u2 grub-efi-amd64-signed (1+2.02+dfsg1+20+deb10u1) buster-security; urgency=high . * Update to grub2 2.02+dfsg1-20+deb10u1 grub-efi-arm64-signed (1+2.02+dfsg1+20+deb10u2) buster-security; urgency=high . * Update to grub2 2.02+dfsg1-20+deb10u2 grub-efi-arm64-signed (1+2.02+dfsg1+20+deb10u1) buster-security; urgency=high . * Update to grub2 2.02+dfsg1-20+deb10u1 grub-efi-ia32-signed (1+2.02+dfsg1+20+deb10u2) buster-security; urgency=high . * Update to grub2 2.02+dfsg1-20+deb10u2 grub-efi-ia32-signed (1+2.02+dfsg1+20+deb10u1) buster-security; urgency=high . * Update to grub2 2.02+dfsg1-20+deb10u1 grub2 (2.02+dfsg1-20+deb10u2) buster-security; urgency=high . * Fix a regression caused by "efi: fix some malformed device path arithmetic errors" (thanks, Chris Coulson and Steve McIntyre; closes: #966554). grub2 (2.02+dfsg1-20+deb10u1) buster-security; urgency=high . * Backport security patch series from upstream: - CVE-2020-10713: yylex: Make lexer fatal errors actually be fatal - safemath: Add some arithmetic primitives that check for overflow - calloc: Make sure we always have an overflow-checking calloc() available - CVE-2020-14308: calloc: Use calloc() at most places - CVE-2020-14309, CVE-2020-14310, CVE-2020-14311: malloc: Use overflow checking primitives where we do complex allocations - iso9660: Don't leak memory on realloc() failures - font: Do not load more than one NAME section - gfxmenu: Fix double free in load_image() - xnu: Fix double free in grub_xnu_devprop_add_property() - lzma: Make sure we don't dereference past array - term: Fix overflow on user inputs - udf: Fix memory leak - tftp: Do not use priority queue - relocator: Protect grub_relocator_alloc_chunk_addr() input args against integer underflow/overflow - relocator: Protect grub_relocator_alloc_chunk_align() max_addr against integer underflow - script: Remove unused fields from grub_script_function struct - CVE-2020-15706: script: Avoid a use-after-free when redefining a function during execution - relocator: Fix grub_relocator_alloc_chunk_align() top memory allocation - hfsplus: fix two more overflows - lvm: fix two more potential data-dependent alloc overflows - emu: make grub_free(NULL) safe - efi: fix some malformed device path arithmetic errors - update safemath with fallback code for gcc older than 5.1 - efi: Fix use-after-free in halt/reboot path - linux loader: avoid overflow on initrd size calculation - CVE-2020-15707: linux: Fix integer overflows in initrd size handling * Apply overflow checking to allocations in Debian patches: - CVE-2020-15707: efilinux: Fix integer overflows in grub_cmd_initrd - bootp: Fix integer overflow in parse_dhcp6_option - unix/config: Fix integer overflow in grub_util_load_config - deviceiter: Fix integer overflow in grub_util_iterate_devices imagemagick (8:6.9.10.23+dfsg-2.1+deb10u1) buster-security; urgency=medium . * CVE-2019-10649 * CVE-2019-11470 (Closes: #927830) * CVE-2019-11472 (Closes: #927828) * CVE-2019-11597 (Closes: #928207) * CVE-2019-11598 (Closes: #928206) * CVE-2019-12974 (Closes: #931196) * CVE-2019-12975 (Closes: #931193) * CVE-2019-12976 (Closes: #931192) * CVE-2019-12977 (Closes: #931191) * CVE-2019-12978 (Closes: #931190) * CVE-2019-12979 (Closes: #931189) * CVE-2019-13135 (Closes: #932079) * CVE-2019-13137 (Closes: #931342) * CVE-2019-13295 (Closes: #931457) * CVE-2019-13297 (Closes: #931455) * CVE-2019-13300 (Closes: #931454) * CVE-2019-13301 * CVE-2019-13304 (Closes: #931453) * CVE-2019-13305 (Closes: #931452) * CVE-2019-13307 (Closes: #931448) * CVE-2019-13308 (Closes: #931447) * CVE-2019-13309 * CVE-2019-13311 * CVE-2019-13454 (Closes: #931740) * CVE-2019-14981 (Closes: #955025) * CVE-2019-15139 (Closes: #941670) * CVE-2019-15140 (Closes: #941671) * CVE-2019-16708 * CVE-2019-16710 * CVE-2019-16711 * CVE-2019-16713 * CVE-2019-7175 * CVE-2019-7395 * CVE-2019-7396 * CVE-2019-7397 * CVE-2019-7398 * CVE-2019-19948 (Closes: #947308) * CVE-2019-19949 (Closes: #947309) Thanks for Marc Deslauriers for patches from the 19.10 USN update (same base version) intel-microcode (3.20200616.1~deb10u1) buster; urgency=high . * Rebuild for Debian stable (buster), no changes . intel-microcode (3.20200616.1) unstable; urgency=high . * New upstream microcode datafile 20200616 + Downgraded microcodes (to a previously shipped revision): sig 0x000406e3, pf_mask 0xc0, 2019-10-03, rev 0x00d6, size 101376 sig 0x000506e3, pf_mask 0x36, 2019-10-03, rev 0x00d6, size 101376 * Works around hangs on boot on Skylake-U/Y and Skylake Xeon E3, https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/issues/31 * This update *removes* the SRBDS mitigations from the above processors * Note that Debian had already downgraded 0x406e3 in release 3.20200609.2 intel-microcode (3.20200616.1~deb9u1) stretch; urgency=high . * Rebuild for Debian oldstable (stretch), no changes . intel-microcode (3.20200616.1) unstable; urgency=high . * New upstream microcode datafile 20200616 + Downgraded microcodes (to a previously shipped revision): sig 0x000406e3, pf_mask 0xc0, 2019-10-03, rev 0x00d6, size 101376 sig 0x000506e3, pf_mask 0x36, 2019-10-03, rev 0x00d6, size 101376 * Works around hangs on boot on Skylake-U/Y and Skylake Xeon E3, https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/issues/31 * This update *removes* the SRBDS mitigations from the above processors * Note that Debian had already downgraded 0x406e3 in release 3.20200609.2 intel-microcode (3.20200609.2) unstable; urgency=medium . * REGRESSION FIX: 0x406e3: rollback to rev 0xd6 and document regression * Microcode rollbacks (closes: LP#1883002) sig 0x000406e3, pf_mask 0xc0, 2019-10-03, rev 0x00d6, size 101376 * THIS REMOVES THE SECURITY FIXES FOR SKYLAKE-U/Y PROCESSORS * Avoid hangs on boot on (some?) Skylake-U/Y processors, https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/issues/31 * ucode-blacklist: blacklist models 0x8e and 0x9e from late-loading, just in case. Note that Debian does not do late loading by itself. Refer to LP#1883002 for the report, 0x806ec hangs upon late load. intel-microcode (3.20200609.2~deb10u1) buster-security; urgency=high . * Rebuild for buster-security, no changes Refer to changelog entries for 3.20200609.2 and 3.20200609.1 for details . intel-microcode (3.20200609.2) unstable; urgency=medium . * REGRESSION FIX: 0x406e3: rollback to rev 0xd6 and document regression * Microcode rollbacks (closes: LP#1883002) sig 0x000406e3, pf_mask 0xc0, 2019-10-03, rev 0x00d6, size 101376 * THIS REMOVES THE SECURITY FIXES FOR SKYLAKE-U/Y PROCESSORS * Avoid hangs on boot on (some?) Skylake-U/Y processors, https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/issues/31 * ucode-blacklist: blacklist models 0x8e and 0x9e from late-loading, just in case. Note that Debian does not do late loading by itself. Refer to LP#1883002 for the report, 0x806ec hangs upon late load. . intel-microcode (3.20200609.1) unstable; urgency=high . * SECURITY UPDATE * For most processors: SRBDS and/or VRDS, L1DCES mitigations depending on the processor model * For Skylake HEDT and Skylake Xeons with signature 0x50654: VRDS and L1DCES mitigations, plus mitigations described in the changelog entry for package release 3.20191112.1. * Expect some performance impact, the mitigations are enabled by default. A Linux kernel update will be issued that allows one to selectively disable the mitigations. * New upstream microcode datafile 20200609 * Implements mitigation for CVE-2020-0543 Special Register Buffer Data Sampling (SRBDS), INTEL-SA-00320, CROSSTalk * Implements mitigation for CVE-2020-0548 Vector Register Data Sampling (VRDS), INTEL-SA-00329 * Implements mitigation for CVE-2020-0549 L1D Cache Eviction Sampling (L1DCES), INTEL-SA-00329 * Known to fix the regression introduced in release 2019-11-12 (sig 0x50564, rev. 0x2000065), which would cause several systems with Skylake Xeon, Skylake HEDT processors to hang while rebooting * Updated Microcodes: sig 0x000306c3, pf_mask 0x32, 2019-11-12, rev 0x0028, size 23552 sig 0x000306d4, pf_mask 0xc0, 2019-11-12, rev 0x002f, size 19456 sig 0x00040651, pf_mask 0x72, 2019-11-12, rev 0x0026, size 22528 sig 0x00040661, pf_mask 0x32, 2019-11-12, rev 0x001c, size 25600 sig 0x00040671, pf_mask 0x22, 2019-11-12, rev 0x0022, size 14336 sig 0x000406e3, pf_mask 0xc0, 2020-04-27, rev 0x00dc, size 104448 sig 0x00050653, pf_mask 0x97, 2020-04-24, rev 0x1000157, size 32768 sig 0x00050654, pf_mask 0xb7, 2020-04-24, rev 0x2006906, size 34816 sig 0x00050656, pf_mask 0xbf, 2020-04-23, rev 0x4002f01, size 52224 sig 0x00050657, pf_mask 0xbf, 2020-04-23, rev 0x5002f01, size 52224 sig 0x000506e3, pf_mask 0x36, 2020-04-27, rev 0x00dc, size 104448 sig 0x000806e9, pf_mask 0x10, 2020-04-27, rev 0x00d6, size 103424 sig 0x000806e9, pf_mask 0xc0, 2020-04-27, rev 0x00d6, size 103424 sig 0x000806ea, pf_mask 0xc0, 2020-04-27, rev 0x00d6, size 103424 sig 0x000806eb, pf_mask 0xd0, 2020-04-27, rev 0x00d6, size 103424 sig 0x000806ec, pf_mask 0x94, 2020-04-23, rev 0x00d6, size 103424 sig 0x000906e9, pf_mask 0x2a, 2020-04-23, rev 0x00d6, size 103424 sig 0x000906ea, pf_mask 0x22, 2020-04-27, rev 0x00d6, size 102400 sig 0x000906eb, pf_mask 0x02, 2020-04-23, rev 0x00d6, size 103424 sig 0x000906ec, pf_mask 0x22, 2020-04-27, rev 0x00d6, size 102400 sig 0x000906ed, pf_mask 0x22, 2020-04-23, rev 0x00d6, size 103424 * Restores the microcode-level fixes that were reverted by release 3.20191115.2 for sig 0x50654 (Skylake Xeon, Skylake HEDT) . intel-microcode (3.20200520.1) unstable; urgency=medium . * New upstream microcode datafile 20200520 + Updated Microcodes: sig 0x000206d6, pf_mask 0x6d, 2020-03-04, rev 0x0621, size 18432 sig 0x000206d7, pf_mask 0x6d, 2020-03-24, rev 0x071a, size 19456 . intel-microcode (3.20200508.1) unstable; urgency=medium . * New upstream microcode datafile 20200508 + Updated Microcodes: sig 0x000706e5, pf_mask 0x80, 2020-03-12, rev 0x0078, size 107520 * Likely fixes several critical errata on IceLake-U/Y causing system hangs intel-microcode (3.20200609.2~deb9u1) stretch-security; urgency=high . * Rebuild for stretch-security, no changes Refer to changelog entries for 3.20200609.2 and 3.20200609.1 for details . intel-microcode (3.20200609.2) unstable; urgency=medium . * REGRESSION FIX: 0x406e3: rollback to rev 0xd6 and document regression * Microcode rollbacks (closes: LP#1883002) sig 0x000406e3, pf_mask 0xc0, 2019-10-03, rev 0x00d6, size 101376 * THIS REMOVES THE SECURITY FIXES FOR SKYLAKE-U/Y PROCESSORS * Avoid hangs on boot on (some?) Skylake-U/Y processors, https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/issues/31 * ucode-blacklist: blacklist models 0x8e and 0x9e from late-loading, just in case. Note that Debian does not do late loading by itself. Refer to LP#1883002 for the report, 0x806ec hangs upon late load. . intel-microcode (3.20200609.1) unstable; urgency=high . * SECURITY UPDATE * For most processors: SRBDS and/or VRDS, L1DCES mitigations depending on the processor model * For Skylake HEDT and Skylake Xeons with signature 0x50654: VRDS and L1DCES mitigations, plus mitigations described in the changelog entry for package release 3.20191112.1. * Expect some performance impact, the mitigations are enabled by default. A Linux kernel update will be issued that allows one to selectively disable the mitigations. * New upstream microcode datafile 20200609 * Implements mitigation for CVE-2020-0543 Special Register Buffer Data Sampling (SRBDS), INTEL-SA-00320, CROSSTalk * Implements mitigation for CVE-2020-0548 Vector Register Data Sampling (VRDS), INTEL-SA-00329 * Implements mitigation for CVE-2020-0549 L1D Cache Eviction Sampling (L1DCES), INTEL-SA-00329 * Known to fix the regression introduced in release 2019-11-12 (sig 0x50564, rev. 0x2000065), which would cause several systems with Skylake Xeon, Skylake HEDT processors to hang while rebooting * Updated Microcodes: sig 0x000306c3, pf_mask 0x32, 2019-11-12, rev 0x0028, size 23552 sig 0x000306d4, pf_mask 0xc0, 2019-11-12, rev 0x002f, size 19456 sig 0x00040651, pf_mask 0x72, 2019-11-12, rev 0x0026, size 22528 sig 0x00040661, pf_mask 0x32, 2019-11-12, rev 0x001c, size 25600 sig 0x00040671, pf_mask 0x22, 2019-11-12, rev 0x0022, size 14336 sig 0x000406e3, pf_mask 0xc0, 2020-04-27, rev 0x00dc, size 104448 sig 0x00050653, pf_mask 0x97, 2020-04-24, rev 0x1000157, size 32768 sig 0x00050654, pf_mask 0xb7, 2020-04-24, rev 0x2006906, size 34816 sig 0x00050656, pf_mask 0xbf, 2020-04-23, rev 0x4002f01, size 52224 sig 0x00050657, pf_mask 0xbf, 2020-04-23, rev 0x5002f01, size 52224 sig 0x000506e3, pf_mask 0x36, 2020-04-27, rev 0x00dc, size 104448 sig 0x000806e9, pf_mask 0x10, 2020-04-27, rev 0x00d6, size 103424 sig 0x000806e9, pf_mask 0xc0, 2020-04-27, rev 0x00d6, size 103424 sig 0x000806ea, pf_mask 0xc0, 2020-04-27, rev 0x00d6, size 103424 sig 0x000806eb, pf_mask 0xd0, 2020-04-27, rev 0x00d6, size 103424 sig 0x000806ec, pf_mask 0x94, 2020-04-23, rev 0x00d6, size 103424 sig 0x000906e9, pf_mask 0x2a, 2020-04-23, rev 0x00d6, size 103424 sig 0x000906ea, pf_mask 0x22, 2020-04-27, rev 0x00d6, size 102400 sig 0x000906eb, pf_mask 0x02, 2020-04-23, rev 0x00d6, size 103424 sig 0x000906ec, pf_mask 0x22, 2020-04-27, rev 0x00d6, size 102400 sig 0x000906ed, pf_mask 0x22, 2020-04-23, rev 0x00d6, size 103424 * Restores the microcode-level fixes that were reverted by release 3.20191115.2 for sig 0x50654 (Skylake Xeon, Skylake HEDT) . intel-microcode (3.20200520.1) unstable; urgency=medium . * New upstream microcode datafile 20200520 + Updated Microcodes: sig 0x000206d6, pf_mask 0x6d, 2020-03-04, rev 0x0621, size 18432 sig 0x000206d7, pf_mask 0x6d, 2020-03-24, rev 0x071a, size 19456 . intel-microcode (3.20200508.1) unstable; urgency=medium . * New upstream microcode datafile 20200508 + Updated Microcodes: sig 0x000706e5, pf_mask 0x80, 2020-03-12, rev 0x0078, size 107520 * Likely fixes several critical errata on IceLake-U/Y causing system hangs intel-microcode (3.20200609.1) unstable; urgency=high . * SECURITY UPDATE * For most processors: SRBDS and/or VRDS, L1DCES mitigations depending on the processor model * For Skylake HEDT and Skylake Xeons with signature 0x50654: VRDS and L1DCES mitigations, plus mitigations described in the changelog entry for package release 3.20191112.1. * Expect some performance impact, the mitigations are enabled by default. A Linux kernel update will be issued that allows one to selectively disable the mitigations. * New upstream microcode datafile 20200609 * Implements mitigation for CVE-2020-0543 Special Register Buffer Data Sampling (SRBDS), INTEL-SA-00320, CROSSTalk * Implements mitigation for CVE-2020-0548 Vector Register Data Sampling (VRDS), INTEL-SA-00329 * Implements mitigation for CVE-2020-0549 L1D Cache Eviction Sampling (L1DCES), INTEL-SA-00329 * Known to fix the regression introduced in release 2019-11-12 (sig 0x50564, rev. 0x2000065), which would cause several systems with Skylake Xeon, Skylake HEDT processors to hang while rebooting * Updated Microcodes: sig 0x000306c3, pf_mask 0x32, 2019-11-12, rev 0x0028, size 23552 sig 0x000306d4, pf_mask 0xc0, 2019-11-12, rev 0x002f, size 19456 sig 0x00040651, pf_mask 0x72, 2019-11-12, rev 0x0026, size 22528 sig 0x00040661, pf_mask 0x32, 2019-11-12, rev 0x001c, size 25600 sig 0x00040671, pf_mask 0x22, 2019-11-12, rev 0x0022, size 14336 sig 0x000406e3, pf_mask 0xc0, 2020-04-27, rev 0x00dc, size 104448 sig 0x00050653, pf_mask 0x97, 2020-04-24, rev 0x1000157, size 32768 sig 0x00050654, pf_mask 0xb7, 2020-04-24, rev 0x2006906, size 34816 sig 0x00050656, pf_mask 0xbf, 2020-04-23, rev 0x4002f01, size 52224 sig 0x00050657, pf_mask 0xbf, 2020-04-23, rev 0x5002f01, size 52224 sig 0x000506e3, pf_mask 0x36, 2020-04-27, rev 0x00dc, size 104448 sig 0x000806e9, pf_mask 0x10, 2020-04-27, rev 0x00d6, size 103424 sig 0x000806e9, pf_mask 0xc0, 2020-04-27, rev 0x00d6, size 103424 sig 0x000806ea, pf_mask 0xc0, 2020-04-27, rev 0x00d6, size 103424 sig 0x000806eb, pf_mask 0xd0, 2020-04-27, rev 0x00d6, size 103424 sig 0x000806ec, pf_mask 0x94, 2020-04-23, rev 0x00d6, size 103424 sig 0x000906e9, pf_mask 0x2a, 2020-04-23, rev 0x00d6, size 103424 sig 0x000906ea, pf_mask 0x22, 2020-04-27, rev 0x00d6, size 102400 sig 0x000906eb, pf_mask 0x02, 2020-04-23, rev 0x00d6, size 103424 sig 0x000906ec, pf_mask 0x22, 2020-04-27, rev 0x00d6, size 102400 sig 0x000906ed, pf_mask 0x22, 2020-04-23, rev 0x00d6, size 103424 * Restores the microcode-level fixes that were reverted by release 3.20191115.2 for sig 0x50654 (Skylake Xeon, Skylake HEDT) intel-microcode (3.20200609.1~deb10u1) buster-security; urgency=high . * Rebuild for buster-security, no changes . intel-microcode (3.20200609.1) unstable; urgency=high . * SECURITY UPDATE * For most processors: SRBDS and/or VRDS, L1DCES mitigations depending on the processor model * For Skylake HEDT and Skylake Xeons with signature 0x50654: VRDS and L1DCES mitigations, plus mitigations described in the changelog entry for package release 3.20191112.1. * Expect some performance impact, the mitigations are enabled by default. A Linux kernel update will be issued that allows one to selectively disable the mitigations. * New upstream microcode datafile 20200609 * Implements mitigation for CVE-2020-0543 Special Register Buffer Data Sampling (SRBDS), INTEL-SA-00320, CROSSTalk * Implements mitigation for CVE-2020-0548 Vector Register Data Sampling (VRDS), INTEL-SA-00329 * Implements mitigation for CVE-2020-0549 L1D Cache Eviction Sampling (L1DCES), INTEL-SA-00329 * Known to fix the regression introduced in release 2019-11-12 (sig 0x50564, rev. 0x2000065), which would cause several systems with Skylake Xeon, Skylake HEDT processors to hang while rebooting * Updated Microcodes: sig 0x000306c3, pf_mask 0x32, 2019-11-12, rev 0x0028, size 23552 sig 0x000306d4, pf_mask 0xc0, 2019-11-12, rev 0x002f, size 19456 sig 0x00040651, pf_mask 0x72, 2019-11-12, rev 0x0026, size 22528 sig 0x00040661, pf_mask 0x32, 2019-11-12, rev 0x001c, size 25600 sig 0x00040671, pf_mask 0x22, 2019-11-12, rev 0x0022, size 14336 sig 0x000406e3, pf_mask 0xc0, 2020-04-27, rev 0x00dc, size 104448 sig 0x00050653, pf_mask 0x97, 2020-04-24, rev 0x1000157, size 32768 sig 0x00050654, pf_mask 0xb7, 2020-04-24, rev 0x2006906, size 34816 sig 0x00050656, pf_mask 0xbf, 2020-04-23, rev 0x4002f01, size 52224 sig 0x00050657, pf_mask 0xbf, 2020-04-23, rev 0x5002f01, size 52224 sig 0x000506e3, pf_mask 0x36, 2020-04-27, rev 0x00dc, size 104448 sig 0x000806e9, pf_mask 0x10, 2020-04-27, rev 0x00d6, size 103424 sig 0x000806e9, pf_mask 0xc0, 2020-04-27, rev 0x00d6, size 103424 sig 0x000806ea, pf_mask 0xc0, 2020-04-27, rev 0x00d6, size 103424 sig 0x000806eb, pf_mask 0xd0, 2020-04-27, rev 0x00d6, size 103424 sig 0x000806ec, pf_mask 0x94, 2020-04-23, rev 0x00d6, size 103424 sig 0x000906e9, pf_mask 0x2a, 2020-04-23, rev 0x00d6, size 103424 sig 0x000906ea, pf_mask 0x22, 2020-04-27, rev 0x00d6, size 102400 sig 0x000906eb, pf_mask 0x02, 2020-04-23, rev 0x00d6, size 103424 sig 0x000906ec, pf_mask 0x22, 2020-04-27, rev 0x00d6, size 102400 sig 0x000906ed, pf_mask 0x22, 2020-04-23, rev 0x00d6, size 103424 * Restores the microcode-level fixes that were reverted by release 3.20191115.2 for sig 0x50654 (Skylake Xeon, Skylake HEDT) . intel-microcode (3.20200520.1) unstable; urgency=medium . * New upstream microcode datafile 20200520 + Updated Microcodes: sig 0x000206d6, pf_mask 0x6d, 2020-03-04, rev 0x0621, size 18432 sig 0x000206d7, pf_mask 0x6d, 2020-03-24, rev 0x071a, size 19456 . intel-microcode (3.20200508.1) unstable; urgency=medium . * New upstream microcode datafile 20200508 + Updated Microcodes: sig 0x000706e5, pf_mask 0x80, 2020-03-12, rev 0x0078, size 107520 * Likely fixes several critical errata on IceLake-U/Y causing system hangs intel-microcode (3.20200609.1~deb9u1) stretch-security; urgency=high . * Rebuild for stretch-security, no changes . intel-microcode (3.20200609.1) unstable; urgency=high . * SECURITY UPDATE * For most processors: SRBDS and/or VRDS, L1DCES mitigations depending on the processor model * For Skylake HEDT and Skylake Xeons with signature 0x50654: VRDS and L1DCES mitigations, plus mitigations described in the changelog entry for package release 3.20191112.1. * Expect some performance impact, the mitigations are enabled by default. A Linux kernel update will be issued that allows one to selectively disable the mitigations. * New upstream microcode datafile 20200609 * Implements mitigation for CVE-2020-0543 Special Register Buffer Data Sampling (SRBDS), INTEL-SA-00320, CROSSTalk * Implements mitigation for CVE-2020-0548 Vector Register Data Sampling (VRDS), INTEL-SA-00329 * Implements mitigation for CVE-2020-0549 L1D Cache Eviction Sampling (L1DCES), INTEL-SA-00329 * Known to fix the regression introduced in release 2019-11-12 (sig 0x50564, rev. 0x2000065), which would cause several systems with Skylake Xeon, Skylake HEDT processors to hang while rebooting * Updated Microcodes: sig 0x000306c3, pf_mask 0x32, 2019-11-12, rev 0x0028, size 23552 sig 0x000306d4, pf_mask 0xc0, 2019-11-12, rev 0x002f, size 19456 sig 0x00040651, pf_mask 0x72, 2019-11-12, rev 0x0026, size 22528 sig 0x00040661, pf_mask 0x32, 2019-11-12, rev 0x001c, size 25600 sig 0x00040671, pf_mask 0x22, 2019-11-12, rev 0x0022, size 14336 sig 0x000406e3, pf_mask 0xc0, 2020-04-27, rev 0x00dc, size 104448 sig 0x00050653, pf_mask 0x97, 2020-04-24, rev 0x1000157, size 32768 sig 0x00050654, pf_mask 0xb7, 2020-04-24, rev 0x2006906, size 34816 sig 0x00050656, pf_mask 0xbf, 2020-04-23, rev 0x4002f01, size 52224 sig 0x00050657, pf_mask 0xbf, 2020-04-23, rev 0x5002f01, size 52224 sig 0x000506e3, pf_mask 0x36, 2020-04-27, rev 0x00dc, size 104448 sig 0x000806e9, pf_mask 0x10, 2020-04-27, rev 0x00d6, size 103424 sig 0x000806e9, pf_mask 0xc0, 2020-04-27, rev 0x00d6, size 103424 sig 0x000806ea, pf_mask 0xc0, 2020-04-27, rev 0x00d6, size 103424 sig 0x000806eb, pf_mask 0xd0, 2020-04-27, rev 0x00d6, size 103424 sig 0x000806ec, pf_mask 0x94, 2020-04-23, rev 0x00d6, size 103424 sig 0x000906e9, pf_mask 0x2a, 2020-04-23, rev 0x00d6, size 103424 sig 0x000906ea, pf_mask 0x22, 2020-04-27, rev 0x00d6, size 102400 sig 0x000906eb, pf_mask 0x02, 2020-04-23, rev 0x00d6, size 103424 sig 0x000906ec, pf_mask 0x22, 2020-04-27, rev 0x00d6, size 102400 sig 0x000906ed, pf_mask 0x22, 2020-04-23, rev 0x00d6, size 103424 * Restores the microcode-level fixes that were reverted by release 3.20191115.2 for sig 0x50654 (Skylake Xeon, Skylake HEDT) . intel-microcode (3.20200520.1) unstable; urgency=medium . * New upstream microcode datafile 20200520 + Updated Microcodes: sig 0x000206d6, pf_mask 0x6d, 2020-03-04, rev 0x0621, size 18432 sig 0x000206d7, pf_mask 0x6d, 2020-03-24, rev 0x071a, size 19456 . intel-microcode (3.20200508.1) unstable; urgency=medium . * New upstream microcode datafile 20200508 + Updated Microcodes: sig 0x000706e5, pf_mask 0x80, 2020-03-12, rev 0x0078, size 107520 * Likely fixes several critical errata on IceLake-U/Y causing system hangs intel-microcode (3.20200520.1) unstable; urgency=medium . * New upstream microcode datafile 20200520 + Updated Microcodes: sig 0x000206d6, pf_mask 0x6d, 2020-03-04, rev 0x0621, size 18432 sig 0x000206d7, pf_mask 0x6d, 2020-03-24, rev 0x071a, size 19456 intel-microcode (3.20200508.1) unstable; urgency=medium . * New upstream microcode datafile 20200508 + Updated Microcodes: sig 0x000706e5, pf_mask 0x80, 2020-03-12, rev 0x0078, size 107520 * Likely fixes several critical errata on IceLake-U/Y causing system hangs intel-microcode (3.20191115.2) unstable; urgency=medium . * Microcode rollbacks (closes: #946515, LP#1854764): sig 0x00050654, pf_mask 0xb7, 2019-07-31, rev 0x2000064, size 33792 * Avoids hangs on warm reboots (cold boots work fine) on HEDT and Xeon processors with signature 0x50654. https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/issues/21 jackson-databind (2.9.8-3+deb10u2) buster; urgency=medium . * Add multiple-CVE-BeanDeserializerFactory.patch and block more classes from polymorphic deserialization. This fixes 20 CVE that currently affect the package namely, CVE-2020-9548, CVE-2020-9547, CVE-2020-9546, CVE-2020-8840, CVE-2020-14195, CVE-2020-14062, CVE-2020-14061, CVE-2020-14060, CVE-2020-11620, CVE-2020-11619, CVE-2020-11113, CVE-2020-11112, CVE-2020-11111, CVE-2020-10969, CVE-2020-10968, CVE-2020-10673, CVE-2020-10672, CVE-2019-20330, CVE-2019-17531 and CVE-2019-17267. jameica (2.8.4+dfsg-1+deb10u1) buster; urgency=medium . * Add mckoisqldb to classpath. This is needed for SynTAX and was accidentally removed in debian/patches/0001-*.patch. jigdo (0.7.3-5+deb10u1) buster; urgency=medium . * Backport more upstream changes to make jigdo-lite and jigdo-mirror support https. Closes: #962776 keystone (2:14.2.0-0+deb10u1) buster-security; urgency=medium . * New upstream point release. * Removed patch applied upstream: - PY3_switch_to_using_unicode_text_values.patch * Removed debian/keystone.cron.hourly: UUID tokens are removed in favor of Fernet tokens, therefore, this cron job is useless. * Add upstream patches to fix grave security bug: EC2 and credential endpoints are not protected from a scoped context (Closes: #959900). - 0001-Add-cadf-auditing-to-credentials.patch - CVE_Check_timestamp_of_signed_EC2_token_request.patch - Ensure_OAuth1_authorized_roles_are_respected.patch - CVE_Fix_security_issues_with_EC2_credentials.patch ksh (93u+20120801-3.4+deb10u1) buster; urgency=high . * Fix for CVE-2019-14868: in ksh version 20120801, a flaw was found in the way it evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables could allow them to exploit this issue remotely. (Closes: #948989) lemonldap-ng (2.0.2+ds-7+deb10u4) buster; urgency=medium . * Fix nginx configuration regression introduced by CVE-2019-19791 fix (Closes: #960392) libapache-mod-jk (1:1.2.46-1+deb10u1) buster; urgency=medium . * Rename httpd-jk.conf to jk.conf to restore compatibility with Debian's Apache helpers a2enmod and a2dismod. (Closes: #928813) libclamunrar (0.102.3-0+deb10u1) buster; urgency=medium . * Import 0.102.3 - Updated libclamunrar to UnRAR 5.9.2. * Provide a libclamunrar meta package which depends on the latest binary package. Suggested by Matus UHLAR - fantomas (Closes: #939824). libclamunrar (0.102.3-0+deb9u1) stretch; urgency=medium . * Import 0.102.3 - Updated libclamunrar to UnRAR 5.9.2. * Provide a libclamunrar meta package which depends on the latest binary package. Suggested by Matus UHLAR - fantomas (Closes: #939824). libembperl-perl (2.5.0-12+deb10u1) buster; urgency=medium . * Non-maintainer upload. * Update debian/patches/apache2.4-compat.patch to work with Apache 2.4.40+ error pages. (Closes: #941926) libexif (0.6.21-5.1+deb10u4) buster; urgency=medium . * Add upstream patches to fix two security issues: - Fix a buffer read overflow in exif_entry_get_value() (CVE-2020-0182). - Fix an unsigned integer overflow in libexif/exif-data.c (CVE-2020-0198) (Closes: #962345). libexif (0.6.21-5.1+deb10u3) buster; urgency=medium . * Add upstream patches to fix multiple security issues: - cve-2020-13112.patch: Fix MakerNote tag size overflow issues at read time (CVE-2020-13112) (Closes: #961407). - cve-2020-13113.patch: Ensure MakerNote data pointers are NULL-initialized (CVE-2020-13113) (Closes: #961409). - cve-2020-13114.patch: Add a failsafe on the maximum number of Canon MakerNote subtags to catch extremely large values in tags (CVE-2020-13114) (Closes: #961410). libexif (0.6.21-5.1+deb10u2) buster; urgency=medium . [ Mike Gabriel ] * Sponsored upload. * debian/patches: Trivial rebase of various patches. . [ Hugh McMaster ] * Team upload. * Add upstream patches to fix two security issues: - cve-2020-12767.patch: Prevent some possible division-by-zero errors in exif_entry_get_value() (CVE-2020-12767) (Closes: #960199). - cve-2020-0093.patch: Prevent read buffer overflow (CVE-2020-0093). libinput (1.12.6-2+deb10u1) buster; urgency=medium . * Non-maintainer upload. * quirks: add trackpoint integration attribute (Closes: #952700) libntlm (1.5-1+deb10u1) buster; urgency=medium . * Non-maintainer upload * Fix buffer overflow. CVE-2019-17455: Libntlm through 1.5 relies on a fixed buffer size for tSmbNtlmAuthRequest, tSmbNtlmAuthChallenge, and tSmbNtlmAuthResponse read and write operations, as demonstrated by a stack-based buffer over-read in buildSmbNtlmAuthRequest in smbutil.c for a crafted NTLM request. Closes: #942145 * Add regression test for CVE-2019-17455 libopenmpt (0.4.3-1+deb10u1) buster-security; urgency=medium . * CVE-2019-14380 / CVE-2019-17113 libpam-radius-auth (1.4.0-3~deb10u1) buster; urgency=medium . * Rebuild for buster. * Revert packaging changes: - Lower Standards-Version to 4.2.0 - Lower Debhelper compat level to 11 . libpam-radius-auth (1.4.0-3) unstable; urgency=medium . * QA upload * Add patch to fix buffer overflow in password field. (Fixes: CVE-2015-9542) (Closes: #951396) * Bump Standards-Version to 4.5.0 and dh-compat to 12 libreswan (3.27-6+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * DoS attack via malicious IKEv1 informational exchange message (CVE-2020-1763) (Closes: #960458) libunwind (1.2.1-10~deb10u1) buster; urgency=medium . * Rebuild on buster. . libunwind (1.2.1-10) unstable; urgency=high . * Manually enable C++ exception support only on i386 and amd64, it is known broken on several other architectures. Thanks to Bernhard Übelacker. (Closes: #923962) * Backport upstream fix for segfaults on mips, thanks to Guillaume Tucker. (Closes: #932725) libyang (0.16.105-1+deb10u1) buster; urgency=medium . * Fix CVE-2019-19333 & CVE-2019-19334 (Closes: #946217) * Fix cache corruption crash (upstream bug 752) linux (4.19.132-1) buster; urgency=medium . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.132 - btrfs: fix a block group ref counter leak after failure to remove block group - mm: fix swap cache node allocation mask - [x86] EDAC/amd64: Read back the scrub rate PCI register on F15h - usbnet: smsc95xx: Fix use-after-free after removal - mm/slub.c: fix corrupted freechain in deactivate_slab() - mm/slub: fix stack overruns with SLUB_STATS - [s390x] debug: avoid kernel warning on too large number of pages - nvme-multipath: set bdi capabilities once - nvme-multipath: fix deadlock between ana_work and scan_work - crypto: af_alg - fix use-after-free in af_alg_accept() due to bh_lock_sock() - [arm64] drm/msm/dpu: fix error return code in dpu_encoder_init - cxgb4: use unaligned conversion for fetching timestamp - cxgb4: parse TC-U32 key values and masks natively - cxgb4: use correct type for all-mask IP address comparison - cxgb4: fix SGE queue dump destination buffer context - [x86] hwmon: (acpi_power_meter) Fix potential memory leak in acpi_power_meter_add() - [arm64,armhf] drm: sun4i: hdmi: Remove extra HPD polling - virtio-blk: free vblk-vqs in error path of virtblk_probe() - SMB3: Honor 'posix' flag for multiuser mounts - nvme: fix a crash in nvme_mpath_add_disk - i2c: algo-pca: Add 0x78 as SCL stuck low status for PCA9665 - Revert "ALSA: usb-audio: Improve frames size computation" - SMB3: Honor 'seal' flag for multiuser mounts - SMB3: Honor persistent/resilient handle flags for multiuser mounts - SMB3: Honor lease disabling for multiuser mounts - cifs: Fix the target file was deleted when rename failed. - [mips*] Add missing EHB in mtc0 -> mfc0 sequence for DSPen - [arm64,armhf] irqchip/gic: Atomically update affinity - dm zoned: assign max_io_len correctly - efi: Make it possible to disable efivar_ssdt entirely . [ Salvatore Bonaccorso ] * [rt] Update to 4.19.132-rt59 * Revert "ath9k: Fix general protection fault in ath9k_hif_usb_rx_cb" (Closes: #964153, #964480) * efi: Restrict efivar_ssdt_load when the kernel is locked down (CVE-2019-20908) * certs: Rotate to use the Debian Secure Boot Signer 2020 certificate * e1000e: Add support for Comet Lake (Closes: #965365) linux (4.19.131-2) buster; urgency=medium . [ Aurelien Jarno ] * Revert "mips: Add udelay lpj numbers adjustment", since it causes the build to fail with CONFIG_CPU_FREQ=y. linux (4.19.131-1) buster; urgency=medium . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.119 - ext4: fix extent_status fragmentation for plain files - [arm64] drm/msm: Use the correct dma_sync calls harder - vti4: removed duplicate log message. - [arm64] Add part number for Neoverse N1 - [arm64] errata: Hide CTR_EL0.DIC on systems affected by Neoverse-N1 #1542419 - [arm64] Fake the IminLine size on systems affected by Neoverse-N1 #1542419 - [arm64] compat: Workaround Neoverse-N1 #1542419 for compat user-space - watchdog: reset last_hw_keepalive time at start - scsi: lpfc: Fix kasan slab-out-of-bounds error in lpfc_unreg_login - scsi: lpfc: Fix crash in target side cable pulls hitting WAIT_FOR_UNREG - ceph: return ceph_mdsc_do_request() errors from __get_parent() - ceph: don't skip updating wanted caps when cap is stale - scsi: iscsi: Report unbind session event when the target has been removed - [x86] ASoC: Intel: atom: Take the drv->lock mutex before calling sst_send_slot_map() - nvme: fix deadlock caused by ANA update wrong locking - ipc/util.c: sysvipc_find_ipc() should increase position index - [s390x] cio: avoid duplicated 'ADD' uevents - loop: Better discard support for block devices - [powerpc*] Revert "powerpc/64: irq_work avoid interrupt when called with hardware irqs enabled" - [arm*] pwm: bcm2835: Dynamically allocate base - perf/core: Disable page faults when getting phys address - [x86] ASoC: Intel: bytcr_rt5640: Add quirk for MPMAN MPWIN895CL tablet - xhci: Ensure link state is U3 after setting USB_SS_PORT_LS_U3 - virtio-blk: improve virtqueue error to BLK_STS - scsi: smartpqi: fix call trace in device discovery - PCI/ASPM: Allow re-enabling Clock PM - [x86] KVM: VMX: Zero out *all* general purpose registers after VM-Exit - cxgb4: fix adapter crash due to wrong MC size - cxgb4: fix large delays in PTP synchronization - ipv6: fix restrict IPV6_ADDRFORM operation - macsec: avoid to set wrong mtu - macvlan: fix null dereference in macvlan_device_event() - net: netrom: Fix potential nr_neigh refcnt leak in nr_add_node - [arm64,armhf] net: stmmac: dwmac-meson8b: Add missing boundary to RGMII TX clock array - sched: etf: do not assume all sockets are full blown - tcp: cache line align MAX_TCP_HEADER - team: fix hang in team_mode_get() - vrf: Fix IPv6 with qdisc and xfrm - [armhf] net: dsa: b53: Lookup VID in ARL searches when VLAN is enabled - [armhf] net: dsa: b53: Fix ARL register definitions - [armhf] net: dsa: b53: Rework ARL bin logic - [armhf] net: dsa: b53: b53_arl_rw_op() needs to select IVL or SVL - xfrm: Always set XFRM_TRANSFORMED in xfrm{4,6}_output_finish - vrf: Check skb for XFRM_TRANSFORMED flag - KEYS: Avoid false positive ENOMEM error on key read - ALSA: hda: Remove ASUS ROG Zenith from the blacklist - ALSA: usb-audio: Add static mapping table for ALC1220-VB-based mobos - ALSA: usb-audio: Add connector notifier delegation - [armhf] iio: st_sensors: rely on odr mask to know if odr can be set - USB: sisusbvga: Change port variable from signed to unsigned - USB: Add USB_QUIRK_DELAY_CTRL_MSG and USB_QUIRK_DELAY_INIT for Corsair K70 RGB RAPIDFIRE - USB: early: Handle AMD's spec-compliant identifiers, too - USB: hub: Fix handling of connect changes during sleep - vmalloc: fix remap_vmalloc_range() bounds checks - mm/hugetlb: fix a addressing exception caused by huge_pte_offset - mm/ksm: fix NULL pointer dereference when KSM zero page is enabled - ALSA: hda/realtek - Fix unexpected init_amp override - ALSA: hda/realtek - Add new codec supported for ALC245 - ALSA: usb-audio: Fix usb audio refcnt leak when getting spdif - ALSA: usb-audio: Filter out unsupported sample rates on Focusrite devices - tpm/tpm_tis: Free IRQ if probing fails - [s390x] KVM: Return last valid slot if approx index is out-of-bounds - KVM: Check validity of resolved slot when searching memslots - [x86] KVM: VMX: Enable machine check support for 32bit targets - tty: hvc: fix buffer overflow during hvc_alloc(). - [x86] tty: rocket, avoid OOB access - usb-storage: Add unusual_devs entry for JMicron JMS566 - audit: check the length of userspace generated audit records - ASoC: dapm: fixup dapm kcontrol widget - iwlwifi: pcie: actually release queue memory in TVQM - iwlwifi: mvm: beacon statistics shouldn't go backwards - [armel,armhf] ARM: imx: provide v7_cpu_resume() only on ARM_CPU_SUSPEND=y - [powerpc*] setup_64: Set cache-line-size based on cache-block-size - [i386] staging: comedi: dt2815: fix writing hi byte of analog output - [x86] staging: comedi: Fix comedi_device refcnt leak in comedi_open - vt: don't hardcode the mem allocation upper bound - vt: don't use kmalloc() for the unicode screen buffer - [x86] staging: vt6656: Don't set RCR_MULTICAST or RCR_BROADCAST by default. - [x86] staging: vt6656: Fix calling conditions of vnt_set_bss_mode - [x86] staging: vt6656: Fix drivers TBTT timing counter. - [x86] staging: vt6656: Fix pairwise key entry save. - [x86] staging: vt6656: Power save stop wake_up_count wrap around. - cdc-acm: close race betrween suspend() and acm_softint - cdc-acm: introduce a cool down - UAS: no use logging any details in case of ENODEV - UAS: fix deadlock in error handling and PM flushing work - [arm64,armhf] usb: dwc3: gadget: Fix request completion check - usb: f_fs: Clear OS Extended descriptor counts to zero in ffs_data_reset() - xhci: prevent bus suspend if a roothub port detected a over-current condition - xfs: Fix deadlock between AGI and AGF with RENAME_WHITEOUT https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.120 - mtd: cfi: fix deadloop in cfi_cmdset_0002.c do_write_buffer - [arm*] binder: take read mode of mmap_sem in binder_alloc_free_page() - [arm64,armhf] usb: dwc3: gadget: Do link recovery for SS and SSP - nfsd: memory corruption in nfsd4_lock() - rxrpc: Fix DATA Tx to disable nofrag for UDP on AF_INET6 socket - net/cxgb4: Check the return from t4_query_params properly - xfs: acquire superblock freeze protection on eofblocks scans - svcrdma: Fix trace point use-after-free race - svcrdma: Fix leak of svc_rdma_recv_ctxt objects - PCI: Avoid ASMedia XHCI USB PME# from D0 defect - [s390x] net/mlx5: Fix failing fw tracer allocation on s390 - perf/core: fix parent pid/tid in task exit events - [i386] bpf, x86_32: Fix incorrect encoding in BPF_LDX zero-extension - mm: shmem: disable interrupt when acquiring info->lock in userfaultfd_copy path - xfs: clear PF_MEMALLOC before exiting xfsaild thread - [x86] bpf, x86: Fix encoding for lower 8-bit registers in BPF_STX BPF_B - [armhf] net: fec: set GPR bit on suspend by DT configuration. - [x86] hyperv: report value of misc_features - xfs: fix partially uninitialized structure in xfs_reflink_remap_extent - ALSA: hda: Keep the controller initialization even if no codecs found - ALSA: hda: Explicitly permit using autosuspend if runtime PM is supported - scsi: target: fix PR IN / READ FULL STATUS for FC - scsi: target: tcmu: reset_ring should reset TCMU_DEV_BIT_BROKEN - xen/xenbus: ensure xenbus_map_ring_valloc() returns proper grant status - ALSA: hda: call runtime_allow() for all hda controllers - [arm64] Delete the space separator in __emit_inst - ext4: use matching invalidatepage in ext4_writepage - ext4: increase wait time needed before reuse of deleted inode numbers - ext4: convert BUG_ON's to WARN_ON's in mballoc.c - hwmon: (jc42) Fix name to have no illegal characters - [i386] bpf, x86_32: Fix clobbering of dst for BPF_JSET - qed: Fix use after free in qed_chain_free - ext4: check for non-zero journal inum in ext4_calculate_overhead https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.121 - drm/edid: Fix off-by-one in DispID DTD pixel clock - drm/qxl: qxl_release leak in qxl_draw_dirty_fb() - drm/qxl: qxl_release leak in qxl_hw_surface_alloc() - drm/qxl: qxl_release use after free - btrfs: fix block group leak when removing fails - ALSA: hda/realtek - Two front mics on a Lenovo ThinkCenter - ALSA: usb-audio: Correct a typo of NuPrime DAC-10 USB ID - ALSA: hda/hdmi: fix without unlocked before return - ALSA: pcm: oss: Place the plugin buffer overflow checks correctly (Closes: #960493) - PM: ACPI: Output correct message on target power state - PM: hibernate: Freeze kernel threads in software_resume() - dm writecache: fix data corruption when reloading the target - dm multipath: use updated MPATHF_QUEUE_IO on mapping for bio-based mpath - scsi: qla2xxx: set UNLOADING before waiting for session deletion - scsi: qla2xxx: check UNLOADING before posting async work - RDMA/mlx5: Set GRH fields in query QP on RoCE - RDMA/mlx4: Initialize ib_spec on the stack - RDMA/core: Prevent mixed use of FDs between shared ufiles - RDMA/core: Fix race between destroy and release FD object - [amd64,arm64] vfio: avoid possible overflow in vfio_iommu_type1_pin_pages - [amd64,arm64] vfio/type1: Fix VA->PA translation for PFNMAP VMAs in vaddr_get_pfn() - [arm64] iommu/qcom: Fix local_base status check - scsi: target/iblock: fix WRITE SAME zeroing - [amd64] iommu/amd: Fix legacy interrupt remapping for x2APIC-enabled system - nfs: Fix potential posix_acl refcnt leak in nfs3_set_acl - btrfs: fix partial loss of prealloc extent past i_size after fsync - btrfs: transaction: Avoid deadlock due to bad initialization timing of fs_info::journal_info - mmc: cqhci: Avoid false "cqhci: CQE stuck on" by not open-coding timeout loop - [arm64] mmc: sdhci-xenon: fix annoying 1.8V regulator warning - mmc: sdhci-pci: Fix eMMC driver strength for BYT-based controllers - [arm64] mmc: sdhci-msm: Enable host capabilities pertains to R1b response - [armhf] mmc: meson-mx-sdio: Set MMC_CAP_WAIT_WHILE_BUSY - [armhf] mmc: meson-mx-sdio: remove the broken ->card_busy() op https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.122 - vhost: vsock: kick send_pkt worker once device is started - [powerpc*] pci/of: Parse unassigned resources - [x86] ASoC: topology: Check return value of pcm_new_ver - [armhf] ASoC: sgtl5000: Fix VAG power-on handling - [arm64,armhf] usb: dwc3: gadget: Properly set maxpacket limit - [x86] ASoC: codecs: hdac_hdmi: Fix incorrect use of list_for_each_entry - wimax/i2400m: Fix potential urb refcnt leak - [armhf] net: stmmac: fix enabling socfpga's ptp_ref_clock - [armhf] net: stmmac: Fix sub-second increment - cifs: protect updating server->dstaddr with a spinlock - [s390x] ftrace: fix potential crashes when switching tracers - sctp: Fix SHUTDOWN CTSN Ack in the peer restart case - drm/amdgpu: Fix oops when pp_funcs is unset in ACPI event - lib: devres: add a helper function for ioremap_uc - [x86] mfd: intel-lpss: Use devm_ioremap_uc for MMIO - ALSA: hda: Match both PCI ID and SSID for driver blacklist - [x86] platform: GPD pocket fan: Fix error message when temp-limits are out of range - mac80211: add ieee80211_is_any_nullfunc() - cgroup, netclassid: remove double cond_resched - drm/atomic: Take the atomic toys away from X https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.123 - USB: serial: qcserial: Add DW5816e support - tracing/kprobes: Fix a double initialization typo - vt: fix unicode console freeing with a common interface - fq_codel: fix TCA_FQ_CODEL_DROP_BATCH_SIZE sanity checks - net: macsec: preserve ingress frame ordering - net/mlx4_core: Fix use of ENOSPC around mlx4_counter_alloc() - net_sched: sch_skbprio: add message validation to skbprio_change() - net: usb: qmi_wwan: add support for DW5816e - sch_choke: avoid potential panic in choke_reset() - sch_sfq: validate silly quantum values - tipc: fix partial topology connection closure - bnxt_en: Fix VLAN acceleration handling in bnxt_fix_features(). - net/mlx5: Fix forced completion access non initialized command entry - net/mlx5: Fix command entry leak in Internal Error State - bnxt_en: Improve AER slot reset. - bnxt_en: Fix VF anti-spoof filter setup. - net: stricter validation of untrusted gso packets - HID: wacom: Read HID_DG_CONTACTMAX directly for non-generic devices - sctp: Fix bundling of SHUTDOWN with COOKIE-ACK - HID: usbhid: Fix race between usbhid_close() and usbhid_stop() - USB: uas: add quirk for LaCie 2Big Quadra - USB: serial: garmin_gps: add sanity checking for data length - tracing: Add a vmalloc_sync_mappings() for safe measure - [arm64,armhf] KVM: vgic: Fix limit condition when writing to GICD_I[CS]ACTIVER - [arm64] KVM: Fix 32bit PC wrap-around - [arm64] hugetlb: avoid potential NULL dereference - mm/page_alloc: fix watchdog soft lockups during set_zone_contiguous() - [x86] KVM: VMX: Explicitly reference RCX as the vmx_vcpu pointer in asm blobs - [x86] KVM: VMX: Mark RCX, RDX and RSI as clobbered in vmx_vcpu_run()'s asm blob - batman-adv: fix batadv_nc_random_weight_tq - batman-adv: Fix refcnt leak in batadv_show_throughput_override - batman-adv: Fix refcnt leak in batadv_store_throughput_override - batman-adv: Fix refcnt leak in batadv_v_ogm_process - [amd64] x86/entry/64: Fix unwind hints in register clearing code - [amd64] x86/entry/64: Fix unwind hints in kernel exit path - [amd64] x86/entry/64: Fix unwind hints in rewind_stack_do_exit() - [amd64] x86/unwind/orc: Don't skip the first frame for inactive tasks - [amd64] x86/unwind/orc: Prevent unwinding before ORC initialization - [amd64] x86/unwind/orc: Fix error path for bad ORC entry type - [amd64] x86/unwind/orc: Fix premature unwind stoppage due to IRET frames - netfilter: nat: never update the UDP checksum when it's 0 - netfilter: nf_osf: avoid passing pointer to local var - scripts/decodecode: fix trapping instruction formatting - ipc/mqueue.c: change __do_notify() to bypass check_kill_permission() https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.124 - [arm64,armhf] net: dsa: Do not make user port errors fatal - shmem: fix possible deadlocks on shmlock_user_lock - virtio-blk: handle block_device_operations callbacks after hot unplug - mmc: sdhci-acpi: Add SDHCI_QUIRK2_BROKEN_64_BIT_DMA for AMDI0040 - net: fix a potential recursive NETDEV_FEAT_CHANGE - net: phy: fix aneg restart in phy_ethtool_set_eee - pppoe: only process PADT targeted at local interfaces - Revert "ipv6: add mtu lock check in __ip6_rt_update_pmtu" - tcp: fix error recovery in tcp_zerocopy_receive() - virtio_net: fix lockdep warning on 32 bit - [x86,arm64] hinic: fix a bug of ndo_stop - net: ipv4: really enforce backoff for redirects - netprio_cgroup: Fix unlimited memory leak of v2 cgroups - net: tcp: fix rx timestamp behavior for tcp_recvmsg - tcp: fix SO_RCVLOWAT hangs with fat skbs - [i386] dmaengine: pch_dma.c: Avoid data race between probe and irq handler - [x86] cpufreq: intel_pstate: Only mention the BIOS disabling turbo mode once - ALSA: hda/hdmi: fix race in monitor detection during probe - drm/qxl: lost qxl_bo_kunmap_atomic_page in qxl_image_init_helper() - ipc/util.c: sysvipc_find_ipc() incorrectly updates position index - ALSA: hda/realtek - Fix S3 pop noise on Dell Wyse - gfs2: Another gfs2_walk_metadata fix - [x86] pinctrl: baytrail: Enable pin configuration setting for GPIO chip - [x86] pinctrl: cherryview: Add missing spinlock usage in chv_gpio_irq_handler - i40iw: Fix error handling in i40iw_manage_arp_cache() - mmc: core: Check request type before completing the request - mmc: block: Fix request completion in the CQE timeout path - NFS: Fix fscache super_cookie index_key from changing after umount - nfs: fscache: use timespec64 in inode auxdata - NFSv4: Fix fscache cookie aux_data to ensure change_attr is included - [arm64] fix the flush_icache_range arguments in machine_kexec - netfilter: nft_set_rbtree: Introduce and use nft_rbtree_interval_start() - IB/mlx4: Test return value of calls to ib_get_cached_pkey - ALSA: hda/realtek - Limit int mic boost for Thinkpad T530 - ALSA: rawmidi: Fix racy buffer resize under concurrent accesses - ALSA: usb-audio: Add control message quirk delay for Kingston HyperX headset - usb: core: hub: limit HUB_QUIRK_DISABLE_AUTOSUSPEND to USB5534B - [arm64,armhf] usb: host: xhci-plat: keep runtime active when removing host - usb: xhci: Fix NULL pointer dereference when enqueuing trbs from urb sg list - cifs: fix leaked reference on requeued write - exec: Move would_dump into flush_old_exec - [arm64,armhf] clk: rockchip: fix incorrect configuration of rk3228 aclk_gpu* clocks - [arm64,armhf] dwc3: Remove check for HWO flag in dwc3_gadget_ep_reclaim_trb_sg() - Revert "ALSA: hda/realtek: Fix pop noise on ALC225" - clk: Unlink clock if failed to prepare or enable - [arm64] dts: rockchip: Replace RK805 PMIC node name with "pmic" on rk3328 boards - [x86] KVM: Fix off-by-one error in kvm_vcpu_ioctl_x86_setup_mce https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.125 - i2c: dev: Fix the race between the release of i2c_dev and cdev - fix multiplication overflow in copy_fdtable() - ubifs: remove broken lazytime support - [amd64] iommu/amd: Fix over-read of ACPI UID from IVRS table - ubi: Fix seq_file usage in detailed_erase_block_info debugfs file - HID: multitouch: add eGalaxTouch P80H84 support - HID: alps: Add AUI1657 device ID - HID: alps: ALPS_1657 is too specific; use U1_UNICORN_LEGACY instead - scsi: qla2xxx: Fix hang when issuing nvme disconnect-all in NPIV - scsi: qla2xxx: Delete all sessions before unregister local nvme port - configfs: fix config_item refcnt leak in configfs_rmdir() - vhost/vsock: fix packet delivery order to monitoring devices - [amd64] aquantia: Fix the media type of AQC100 ethernet controller in the driver - component: Silence bind error on -EPROBE_DEFER - [ppc64el] scsi: ibmvscsi: Fix WARN_ON during event pool release - HID: i2c-hid: reset Synaptics SYNA2393 on resume - [x86] apic: Move TSC deadline timer debug printk - gtp: set NLM_F_MULTI flag in gtp_genl_dump_pdp() - HID: quirks: Add HID_QUIRK_NO_INIT_REPORTS quirk for Dell K12A keyboard-dock - ceph: fix double unlock in handle_cap_export() - [arm64,armhf] stmmac: fix pointer check after utilization in stmmac_interrupt - USB: core: Fix misleading driver bug report - [x86] platform/x86: asus-nb-wmi: Do not load on Asus T100TA and T200TA - padata: Replace delayed timer with immediate workqueue in padata_reorder - padata: initialize pd->cpu with effective cpumask - padata: purge get_cpu and reorder_via_wq from padata_do_serial - ALSA: iec1712: Initialize STDSP24 properly when using the model=staudio option - ALSA: pcm: fix incorrect hw_base increase - ALSA: hda/realtek - Fix silent output on Gigabyte X570 Aorus Xtreme - ALSA: hda/realtek - Add more fixup entries for Clevo machines - [armhf] drm/etnaviv: fix perfmon domain interation - apparmor: Fix use-after-free in aa_audit_rule_init - apparmor: fix potential label refcnt leak in aa_change_profile - apparmor: Fix aa_label refcnt leak in policy_update - [arm64] dmaengine: tegra210-adma: Fix an error handling path in 'tegra_adma_probe()' - [powerpc*] Remove STRICT_KERNEL_RWX incompatibility with RELOCATABLE - [powerpc*] 64s: Disable STRICT_KERNEL_RWX - [amd64,arm64] nfit: Add Hyper-V NVDIMM DSM command set to white list - [x86,arm64] libnvdimm/btt: Remove unnecessary code in btt_freelist_init - [x86,arm64] libnvdimm/btt: Fix LBA masking during 'free list' population - [x86] thunderbolt: Drop duplicated get_switch_at_route() - cxgb4: free mac_hlist properly - cxgb4/cxgb4vf: Fix mac_hlist initialization and free - brcmfmac: abort and release host after error - Revert "gfs2: Don't demote a glock until its revokes are written" - misc: rtsx: Add short delay after exit from ASPM - [x86] mei: release me_cl object reference - rxrpc: Fix a memory leak in rxkad_verify_response() - rxrpc: Trace discarded ACKs - rxrpc: Fix ack discard https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.126 - ax25: fix setsockopt(SO_BINDTODEVICE) - __netif_receive_skb_core: pass skb by reference - net: inet_csk: Fix so_reuseport bind-address cache in tb->fast* - net: ipip: fix wrong address family in init error path - net/mlx5: Add command entry handling completion - net: revert "net: get rid of an signed integer overflow in ip_idents_reserve()" - net sched: fix reporting the first-time use timestamp - r8152: support additional Microsoft Surface Ethernet Adapter variant - sctp: Don't add the shutdown timer if its already been added - sctp: Start shutdown on association restart if in SHUTDOWN-SENT state and socket is closed - net/mlx5e: Update netdev txq on completions during closure - net/mlx5: Annotate mutex destroy for root ns - net: sun: fix missing release regions in cas_init_one(). - net/mlx4_core: fix a memory leak bug. - [armhf] dts: rockchip: fix phy nodename for rk3228-evb - [arm64] dts: rockchip: fix status for &gmac2phy in rk3328-evb.dts - [arm64,armhf] gpio: tegra: mask GPIO IRQs during IRQ shutdown - ALSA: usb-audio: add mapping for ASRock TRX40 Creator - gfs2: move privileged user check to gfs2_quota_lock_check - cachefiles: Fix race between read_waiter and read_copier involving op->to_do - [arm64] usb: dwc3: pci: Enable extcon driver for Intel Merrifield - usb: gadget: legacy: fix redundant initialization warnings - IB/i40iw: Remove bogus call to netdev_master_upper_dev_get() - cifs: Fix null pointer check in cifs_read - Input: usbtouchscreen - add support for BonXeon TP - Input: evdev - call input_flush_device() on release(), not flush() - Input: xpad - add custom init packet for Xbox One S controllers - Input: i8042 - add ThinkPad S230u to i8042 reset list - Input: synaptics-rmi4 - really fix attn_data use-after-free - Input: synaptics-rmi4 - fix error return code in rmi_driver_probe() - [armel,armhf] 8970/1: decompressor: increase tag size - [arm*] 8843/1: use unified assembler in headers - gpio: exar: Fix bad handling for ida_simple_get error path - IB/qib: Call kobject_put() when kobject_init_and_add() fails - [armhf] dts/imx6q-bx50v3: Set display interface clock parents - [armel,armhf] dts: bcm2835-rpi-zero-w: Fix led polarity - mmc: block: Fix use-after-free issue for rpmb - ALSA: hwdep: fix a left shifting 1 by 31 UB bug - ALSA: hda/realtek - Add a model for Thinkpad T570 without DAC workaround - ALSA: usb-audio: mixer: volume quirk for ESS Technology Asus USB DAC - exec: Always set cap_ambient in cap_bprm_set_creds - ALSA: usb-audio: Quirks for Gigabyte TRX40 Aorus Master onboard audio - ALSA: hda/realtek - Add new codec supported for ALC287 - libceph: ignore pool overlay and cache logic on redirects - IB/ipoib: Fix double free of skb in case of multicast traffic in CM mode - mm: remove VM_BUG_ON(PageSlab()) from page_mapcount() - include/asm-generic/topology.h: guard cpumask_of_node() macro argument - iommu: Fix reference count leak in iommu_group_alloc. - mmc: core: Fix recursive locking issue in CQE recovery path - RDMA/core: Fix double destruction of uobject - mac80211: mesh: fix discovery timer re-arming issue / crash - [x86] dma: Fix max PFN arithmetic overflow on 32 bit systems - [x86] copy_xstate_to_kernel(): don't leave parts of destination uninitialized - xfrm: allow to accept packets with ipv6 NEXTHDR_HOP in xfrm_input - xfrm: call xfrm_output_gso when inner_protocol is set in xfrm_output - xfrm interface: fix oops when deleting a x-netns interface - xfrm: fix a warning in xfrm_policy_insert_list - xfrm: fix a NULL-ptr deref in xfrm_local_error - xfrm: fix error in comment - vti4: eliminated some duplicate code. - ip_vti: receive ipip packet by calling ip_tunnel_rcv - netfilter: nft_reject_bridge: enable reject with bridge vlan - netfilter: ipset: Fix subcounter update skip - netfilter: nfnetlink_cthelper: unbreak userspace helper support - netfilter: nf_conntrack_pptp: prevent buffer overflows in debug code - esp6: get the right proto for transport mode in esp6_gso_encap - bnxt_en: Fix accumulation of bp->net_stats_prev. - xsk: Add overflow check for u64 division, stored into u32 - qlcnic: fix missing release in qlcnic_83xx_interrupt_test. - bonding: Fix reference count leak in bond_sysfs_slave_add. - netfilter: nf_conntrack_pptp: fix compilation warning with W=1 build - mm/vmalloc.c: don't dereference possible NULL pointer in __vunmap() https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.127 - Revert "cgroup: Add memory barriers to plug cgroup_rstat_updated() race window" - libnvdimm: Fix endian conversion issues  - HID: sony: Fix for broken buttons on DS3 USB dongles - HID: i2c-hid: add Schneider SCL142ALM to descriptor override - p54usb: add AirVasT USB stick device-id - mmc: fix compilation of user API - scsi: ufs: Release clock if DMA map fails - airo: Fix read overflows sending packets - [x86] drm/i915: fix port checks for MST support on gen >= 11 - [arm64] scsi: hisi_sas: Check sas_port before using it - [powerpc*] powernv: Avoid re-registration of imc debugfs directory - [s390x] ftrace: save traced function caller - drm/edid: Add Oculus Rift S to non-desktop list - [s390x] mm: fix set_huge_pte_at() for empty ptes - null_blk: return error for invalid zone size - [arm64] net: ethernet: stmmac: Enable interface clocks on probe for IPQ806x - [arm64,armhf] net: smsc911x: Fix runtime PM imbalance on error https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.128 - devinet: fix memleak in inetdev_init() - l2tp: add sk_family checks to l2tp_validate_socket - l2tp: do not use inet_hash()/inet_unhash() - net: usb: qmi_wwan: add Telit LE910C1-EUX composition - vsock: fix timeout in vsock_accept() - net: check untrusted gso_size at kernel entry - USB: serial: qcserial: add DW5816e QDL support - USB: serial: usb_wwan: do not resubmit rx urb on fatal errors - USB: serial: option: add Telit LE910C1-EUX compositions - [arm64,armhf] usb: musb: start session in resume for host port - [arm64,armhf] usb: musb: Fix runtime PM imbalance on error - vt: keyboard: avoid signed integer overflow in k_ascii (CVE-2020-13974) - tty: hvc_console, fix crashes on parallel open/close - staging: rtl8712: Fix IEEE80211_ADDBA_PARAM_BUF_SIZE_MASK - CDC-ACM: heed quirk also in error handling - [arm64] nvmem: qfprom: remove incorrect write support - uprobes: ensure that uprobe->offset and ->ref_ctr_offset are properly aligned - Revert "net/mlx5: Annotate mutex destroy for root ns" https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.129 - ipv6: fix IPV6_ADDRFORM operation logic - net_failover: fixed rollback in net_failover_open() - bridge: Avoid infinite loop when suppressing NS messages with invalid options - vxlan: Avoid infinite loop when suppressing NS messages with invalid options - tun: correct header offsets in napi frags mode - make 'user_access_begin()' do 'access_ok()' (CVE-2018-20669) - [x86] uaccess: Inhibit speculation past access_ok() in user_access_begin() - lib: Reduce user_access_begin() boundaries in strncpy_from_user() and strnlen_user() - btrfs: merge btrfs_find_device and find_device (CVE-2019-18885) - btrfs: Detect unbalanced tree with empty leaf before crashing btree operations - [armel,armhf] 8977/1: ptrace: Fix mask for thumb breakpoint hook - sched/fair: Don't NUMA balance for kthreads - Input: synaptics - add a second working PNP_ID for Lenovo T470s - [powerpc*] xive: Clear the page tables for the ESB IO mapping - ath9k_htc: Silence undersized packet warnings - RDMA/uverbs: Make the event_queue fds return POLLERR when disassociated - [x86] cpu/amd: Make erratum #1054 a legacy erratum - perf probe: Accept the instance number of kretprobe event - mm: add kvfree_sensitive() for freeing sensitive data objects - aio: fix async fsync creds - btrfs: tree-checker: Check level for leaves and nodes - [x86] Fix jiffies ODR violation - [x86] PCI: Mark Intel C620 MROMs as having non-compliant BARs - [x86] speculation: Prevent rogue cross-process SSBD shutdown (CVE-2020-10766) - [x86] reboot/quirks: Add MacBook6,1 reboot quirk - efi/efivars: Add missing kobject_put() in sysfs entry creation error path - [i386] ALSA: es1688: Add the missed snd_card_free() - ALSA: hda/realtek - add a pintbl quirk for several Lenovo machines - ALSA: usb-audio: Fix inconsistent card PM state after resume - ALSA: usb-audio: Add vendor, product and profile name for HP Thunderbolt Dock - [arm64,x86] ACPI: sysfs: Fix reference count leak in acpi_sysfs_add_hotplug_profile() - [amd64,arm64] ACPI: CPPC: Fix reference count leak in acpi_cppc_processor_probe() - [arm64] ACPI: GED: add support for _Exx / _Lxx handler methods - [arm64,x86] ACPI: PM: Avoid using power resources if there are none for D0 - cgroup, blkcg: Prepare some symbols for module and !CONFIG_CGROUP usages - nilfs2: fix null pointer dereference at nilfs_segctor_do_construct() - [arm*] spi: bcm2835aux: Fix controller unregister order - PM: runtime: clk: Fix clk_pm_runtime_get() error path - [arm64] crypto: cavium/nitrox - Fix 'nitrox_get_first_device()' when ndevlist is fully iterated - ALSA: pcm: disallow linking stream to itself - [x86] {mce,mm}: Unmap the entire page if the whole page is affected and poisoned - [x86] KVM: Fix APIC page invalidation race - [x86] kvm: Fix L1TF mitigation for shadow MMU - [x86] KVM: x86/mmu: Consolidate "is MMIO SPTE" code - [x86] KVM: only do L1TF workaround on affected processors - [x86] speculation: Change misspelled STIPB to STIBP - [x86] speculation: Add support for STIBP always-on preferred mode - [x86] speculation: Avoid force-disabling IBPB based on STIBP and enhanced IBRS. (CVE-2020-10767) - [x86] speculation: PR_SPEC_FORCE_DISABLE enforcement for indirect branches. (CVE-2020-10768) - spi: No need to assign dummy value in spi_unregister_controller() - spi: Fix controller unregister order - [amd64] spi: pxa2xx: Fix controller unregister order - [arm*] spi: bcm2835: Fix controller unregister order - [amd64] spi: pxa2xx: Balance runtime PM enable/disable on error - [amd64] spi: pxa2xx: Fix runtime PM ref imbalance on probe error - crypto: virtio: Fix use-after-free in virtio_crypto_skcipher_finalize_req() - crypto: virtio: Fix src/dst scatterlist calculation in __virtio_crypto_skcipher_do_req() - crypto: virtio: Fix dest length calculation in __virtio_crypto_skcipher_do_req() - ovl: initialize error in ovl_copy_xattr - proc: Use new_inode not new_inode_pseudo - [x86] KVM: nSVM: fix condition for filtering async PF - [x86] KVM: nSVM: leave ASID aside in copy_vmcb_control_area - [x86] KVM: nVMX: Consult only the "basic" exit reason when routing nested exit - [arm64] KVM: Make vcpu_cp1x() work on Big Endian hosts - scsi: megaraid_sas: TM command refire leads to controller firmware crash - ath9k: Fix use-after-free Read in ath9k_wmi_ctrl_rx - ath9k: Fix use-after-free Write in ath9k_htc_rx_msg - ath9x: Fix stack-out-of-bounds Write in ath9k_hif_usb_rx_cb - ath9k: Fix general protection fault in ath9k_hif_usb_rx_cb - mm/slub: fix a memory leak in sysfs_slab_add() - fat: don't allow to mount if the FAT length == 0 - perf: Add cond_resched() to task_function_call() - [x86] agp/intel: Reinforce the barrier after GTT updates - [arm64] mmc: sdhci-msm: Clear tuning done flag while hs400 tuning - mmc: sdio: Fix potential NULL pointer error in mmc_sdio_init_card() - xen/pvcalls-back: test for errors when calling backend_connect() - [arm64] KVM: Synchronize sysreg state on injecting an AArch32 exception - [arm64] ACPI: GED: use correct trigger type field in _Exx / _Lxx handling - [arm64] drm: bridge: adv7511: Extend list of audio sample rates - [x86] crypto: ccp -- don't "select" CONFIG_DMADEVICES - media: si2157: Better check for running tuner in init - [amd64] spi: pxa2xx: Apply CS clk quirk to BXT - [amd64] net: atlantic: make hw_get_regs optional - net: ena: fix error returning in ena_com_get_hash_function() - [arm64] insn: Fix two bugs in encoding 32-bit logical immediates - ixgbe: Fix XDP redirect on archs with PAGE_SIZE above 4K - Bluetooth: Add SCO fallback for invalid LMP parameters error - [armhf] clocksource: dw_apb_timer: Make CPU-affiliation being optional - [armhf] clocksource: dw_apb_timer_of: Fix missing clockevent timers - btrfs: do not ignore error from btrfs_next_leaf() when inserting checksums - batman-adv: Revert "disable ethtool link speed detection when auto negotiation off" - [armhf] mmc: meson-mx-sdio: trigger a soft reset after a timeout or CRC error - [x86] kvm/hyper-v: Explicitly align hcall param for kvm_hyperv_exit - [x86] net: vmxnet3: fix possible buffer overflow caused by bad DMA value in vmxnet3_get_rss() - brcmfmac: fix wrong location to get firmware feature - e1000: Distribute switch variables for initialization - dt-bindings: display: mediatek: control dpi pins mode to avoid leakage - audit: fix a net reference leak in audit_send_reply() - media: dvb: return -EREMOTEIO on i2c transfer failure. - [mips*] Make sparse_init() using top-down allocation - Bluetooth: btbcm: Add 2 missing models to subver tables - audit: fix a net reference leak in audit_list_rules_send() - netfilter: nft_nat: return EOPNOTSUPP if type or flags are not supported - exit: Move preemption fixup up, move blocking operations down - sched/core: Fix illegal RCU from offline CPUs - drivers/perf: hisi: Fix typo in events attribute array - [armhf] net: allwinner: Fix use correct return type for ndo_start_xmit() - xfs: clean up the error handling in xfs_swap_extents - Crypto/chcr: fix for ccm(aes) failed test - [mips*] cm: Fix an invalid error code of INTVN_*_ERR - xfs: reset buffer write failure state on successful completion - xfs: fix duplicate verification from xfs_qm_dqflush() - [x86] platform/x86: intel-vbtn: Use acpi_evaluate_integer() - [x86] platform/x86: intel-vbtn: Split keymap into buttons and switches parts - [x86] platform/x86: intel-vbtn: Do not advertise switches to userspace if they are not there - [x86] platform/x86: intel-vbtn: Also handle tablet-mode switch on "Detachable" and "Portable" chassis-types - nvme: refine the Qemu Identify CNS quirk - ath10k: Remove msdu from idr when management pkt send fails - [arm64] wcn36xx: Fix error handling path in 'wcn36xx_probe()' - net: qed*: Reduce RX and TX default ring count when running inside kdump kernel - mt76: avoid rx reorder buffer overflow - md: don't flush workqueue unconditionally in md_open - veth: Adjust hard_start offset on redirect XDP frames - net/mlx5e: IPoIB, Drop multicast packets that this interface sent - rtlwifi: Fix a double free in _rtl_usb_tx_urb_setup() - mwifiex: Fix memory corruption in dump_station - [x86] boot: Correct relocation destination on old linkers - [x86] mm: Stop printing BRK addresses - btrfs: qgroup: mark qgroup inconsistent if we're inherting snapshot to a new qgroup - macvlan: Skip loopback packets in RX handler - PCI: Don't disable decoding when mmio_always_on is set - [mips*] Fix IRQ tracing when call handle_fpe() and handle_msa_fpe() - bcache: fix refcount underflow in bcache_device_free() - [arm64] mmc: sdhci-msm: Set SDHCI_QUIRK_MULTIBLOCK_READ_ACMD12 quirk - mmc: via-sdmmc: Respect the cmd->busy_timeout from the mmc core - ixgbe: fix signed-integer-overflow warning - [armhf] mmc: sdhci-esdhc-imx: fix the mask for tuning start point - cpuidle: Fix three reference count leaks - [x86] platform/x86: hp-wmi: Convert simple_strtoul() to kstrtou32() - [x86] platform/x86: intel-hid: Add a quirk to support HP Spectre X2 (2015) - [x86] platform/x86: intel-vbtn: Only blacklist SW_TABLET_MODE on the 9 / "Laptop" chasis-type - btrfs: include non-missing as a qualifier for the latest_bdev - btrfs: send: emit file capabilities after chown - mm: thp: make the THP mapcount atomic against __split_huge_pmd_locked() - mm: initialize deferred pages with interrupts enabled - ext4: fix EXT_MAX_EXTENT/INDEX to check for zeroed eh_max - ext4: fix error pointer dereference - ext4: fix race between ext4_sync_parent() and rename() - PCI: Avoid Pericom USB controller OHCI/EHCI PME# defect - PCI: Avoid FLR for AMD Matisse HD Audio & USB 3.0 - PCI: Avoid FLR for AMD Starship USB 3.0 - PCI: Add ACS quirk for iProc PAXB - PCI: Add ACS quirk for Intel Root Complex Integrated Endpoints - PCI: Remove unused NFP32xx IDs - [x86] hwmon/k10temp, x86/amd_nb: Consolidate shared device IDs - [x86] amd_nb: Add PCI device IDs for family 17h, model 30h - PCI: add USR vendor id and use it in r8169 and w6692 driver - PCI: Move Synopsys HAPS platform device IDs - PCI: Move Rohm Vendor ID to generic list - misc: pci_endpoint_test: Add the layerscape EP device support - misc: pci_endpoint_test: Add support to test PCI EP in AM654x - PCI: Add Synopsys endpoint EDDA Device ID - PCI: Add NVIDIA GPU multi-function power dependencies - PCI: Enable NVIDIA HDA controllers - [x86] amd_nb: Add PCI device IDs for family 17h, model 70h - ALSA: lx6464es - add support for LX6464ESe pci express variant - PCI: Add Genesys Logic, Inc. Vendor ID - PCI: Add Amazon's Annapurna Labs vendor ID - PCI: vmd: Add device id for VMD device 8086:9A0B - [x86] amd_nb: Add Family 19h PCI IDs - PCI: Add Loongson vendor ID - serial: 8250_pci: Move Pericom IDs to pci_ids.h - PCI: Make ACS quirk implementations more uniform - PCI: Unify ACS quirk desired vs provided checking - PCI: Generalize multi-function power dependency device links - btrfs: fix error handling when submitting direct I/O bio - btrfs: fix wrong file range cleanup after an error filling dealloc range - PCI: Program MPS for RCiEP devices - e1000e: Disable TSO for buffer overrun workaround - e1000e: Relax condition to trigger reset for ME workaround - carl9170: remove P2P_GO support - media: go7007: fix a miss of snd_card_free (CVE-2019-20810) - Bluetooth: hci_bcm: fix freeing not-requested IRQ - b43legacy: Fix case where channel status is corrupted - b43: Fix connection problem with WPA3 - b43_legacy: Fix connection problem with WPA3 - igb: Report speed and duplex as unknown when device is runtime suspended - [arm64,armhf] power: vexpress: add suppress_bind_attrs to true - [armhf] pinctrl: samsung: Correct setting of eint wakeup mask on s5pv210 - [armhf] pinctrl: samsung: Save/restore eint_mask over suspend for EINT_TYPE GPIOs - gnss: sirf: fix error return code in sirf_probe() - dm crypt: avoid truncating the logical block size - kernel/cpu_pm: Fix uninitted local in cpu_pm - [armhf] tegra: Correct PL310 Auxiliary Control Register initialization - [powerpc*] 64s: Don't let DT CPU features set FSCR_DSCR - [powerpc*] 64s: Save FSCR to init_task.thread.fscr after feature init - sunrpc: svcauth_gss_register_pseudoflavor must reject duplicate registrations. - sunrpc: clean up properly in gss_mech_unregister() - [armhf] w1: omap-hdq: cleanup to add missing newline for some dev_dbg - perf probe: Do not show the skipped events - perf probe: Fix to check blacklist address correctly - perf probe: Check address correctness by map instead of _etext - perf symbols: Fix debuginfo search for Ubuntu https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.130 - [arm64,armhf] clk: sunxi: Fix incorrect usage of round_down() - [arm64,armhf] ASoC: tegra: tegra_wm8903: Support nvidia, headset property - i2c: piix4: Detect secondary SMBus controller on AMD AM4 chipsets - [x86] iio: pressure: bmp280: Tolerate IRQ before registering - [arm64] clk: qcom: msm8916: Fix the address location of pll->config_reg - [arm64] backlight: lp855x: Ensure regulators are disabled on probe failure - [armhf] ASoC: davinci-mcasp: Fix dma_chan refcnt leak when getting dma type - [armel] integrator: Add some Kconfig selections - scsi: qedi: Check for buffer overflow in qedi_set_path() - ALSA: hda/realtek - Introduce polarity for micmute LED GPIO - [i386] ALSA: isa/wavefront: prevent out of bounds write in ioctl - PCI: Allow pci_resize_resource() for devices on root bus - scsi: qla2xxx: Fix issue with adapter's stopping state - [x86] iio: bmp280: fix compensation of humidity - f2fs: report delalloc reserve as non-free in statfs for project quota - [x86] i2c: pxa: clear all master action bits in i2c_pxa_stop_message() - [armhf] clk: samsung: Mark top ISP and CAM clocks on Exynos542x as critical - usblp: poison URBs upon disconnect - serial: 8250: Fix max baud limit in generic 8250 port - dm mpath: switch paths in dm_blk_ioctl() code path - [arm64] PCI: aardvark: Don't blindly enable ASPM L0s and don't write to read-only register - vfio/pci: fix memory leaks in alloc_perm_bits() - RDMA/mlx5: Add init2init as a modify command - scsi: lpfc: Fix lpfc_nodelist leak when processing unsolicited event - [powerpc*] perf/hv-24x7: Fix inconsistent output values incase multiple hv-24x7 events run - nfsd: Fix svc_xprt refcnt leak when setup callback client failed - [amd64] PCI: vmd: Filter resource type bits from shadow register - [powerpc*] crashkernel: Take "mem=" option into account - yam: fix possible memory leak in yam_init_driver - apparmor: fix introspection of of task mode for unconfined tasks - apparmor: check/put label on apparmor_sk_clone_security() - scsi: sr: Fix sr_probe() missing deallocate of device minor - [powerpc*] scsi: ibmvscsi: Don't send host info in adapter info MAD after LPM - apparmor: fix nnp subset test for unconfined - [x86] purgatory: Disable various profiling and sanitizing options - scsi: qedi: Do not flush offload work if ARP not resolved - [armhf] dts: sun8i-h2-plus-bananapi-m2-zero: Fix led polarity - scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing - [arm64] firmware: qcom_scm: fix bogous abuse of dma-direct internals - ALSA: usb-audio: Improve frames size computation - ALSA: usb-audio: Fix racy list management in output queue - [s390x] qdio: put thinint indicator after early error - tty: hvc: Fix data abort due to race in hvc_open - [armhf] thermal/drivers/ti-soc-thermal: Avoid dereferencing ERR_PTR - [arm64,armhf] usb: dwc3: gadget: Properly handle failed kick_transfer - [mips64el,mipsel] staging: sm750fb: add missing case while setting FB_VISUAL - [arm64,i386] i2c: pxa: fix i2c_pxa_scream_blue_murder() debug output - [arm*] serial: amba-pl011: Make sure we initialize the port.lock spinlock - drivers: base: Fix NULL pointer exception in __platform_driver_probe() if a driver developer is foolish - PCI/ASPM: Allow ASPM on links to PCIe-to-PCI/PCI-X Bridges - scsi: qla2xxx: Fix warning after FC target reset - scsi: mpt3sas: Fix double free warnings - [arm64,armhf] pinctrl: rockchip: fix memleak in rockchip_dt_node_to_map - [armhf] clk: ti: composite: fix memory leak - PCI: Fix pci_register_host_bridge() device_register() error handling - [powerpc*] Don't initialise init_task->thread.regs - tty: n_gsm: Fix SOF skipping - tty: n_gsm: Fix waking up upper tty layer when room available - HID: Add quirks for Trust Panora Graphic Tablet - ipmi: use vzalloc instead of kmalloc for user creation - [powerpc*] pseries/ras: Fix FWNMI_VALID off by one - vfio-pci: Mask cap zero - usb/ohci-platform: Fix a warning when hibernating - [arm64] drm/msm/mdp5: Fix mdp5_init error path for failed mdp5_kms allocation - [x86] ASoC: Intel: bytcr_rt5640: Add quirk for Toshiba Encore WT8-A tablet - [armhf] USB: host: ehci-mxc: Add error handling in ehci_mxc_drv_probe() - tty: n_gsm: Fix bogus i++ in gsm_data_kick - scsi: target: tcmu: Userspace must not complete queued commands - [powerpc*] 64s/pgtable: fix an undefined behaviour - dm zoned: return NULL if dmz_get_zone_for_reclaim() fails to find a zone - PCI/PTM: Inherit Switch Downstream Port PTM settings from Upstream Port - [arm64,armhf] PCI: dwc: Fix inner MSI IRQ domain registration - IB/cma: Fix ports memory leak in cma_configfs - [arm*] usb: dwc2: gadget: move gadget resume after the core is in L0 state - usb: gadget: Fix issue with config_ep_by_speed function - RDMA/iw_cxgb4: cleanup device debugfs entries on ULD remove - [x86] apic: Make TSC deadline timer detection message visible - scsi: target: tcmu: Fix a use after free in tcmu_check_expired_queue_cmd() - [arm*] clk: bcm2835: Fix return type of bcm2835_register_gate - [ppc64el] KVM: Book3S HV: Ignore kmemleak false positives - net: sunrpc: Fix off-by-one issues in 'rpc_ntop6' - NFSv4.1 fix rpc_call_done assignment for BIND_CONN_TO_SESSION - of: Fix a refcounting bug in __of_attach_node_sysfs() - rxrpc: Adjust /proc/net/rxrpc/calls to display call->debug_id not user_ID - gfs2: Allow lock_nolock mount to specify jid=X - scsi: iscsi: Fix reference count leak in iscsi_boot_create_kobj - scsi: ufs: Don't update urgent bkops level when toggling auto bkops - [armhf] pinctrl: freescale: imx: Fix an error handling path in 'imx_pinctrl_probe()' - geneve: change from tx_error to tx_dropped on missing metadata - lib/zlib: remove outdated and incorrect pre-increment optimization - blktrace: use errno instead of bi_status - blktrace: fix endianness in get_pdu_int() - blktrace: fix endianness for blk_log_remap() - gfs2: fix use-after-free on transaction ail lists - drivers/perf: hisi: Fix wrong value for all counters enable - afs: Fix memory leak in afs_put_sysnames() - ASoC: core: only convert non DPCM link to DPCM link - [x86] ASoC: Intel: bytcr_rt5640: Add quirk for Toshiba Encore WT10-A tablet - ASoC: rt5645: Add platform-data for Asus T101HA - [arm64,armhf] drm/sun4i: hdmi ddc clk: Fix size of m divider - [x86] idt: Keep spurious entries unset in system_vectors - net/filter: Permit reading NET in load_bytes_relative when MAC not set - xdp: Fix xsk_generic_xmit errno - [arm64,armhf] usb/xhci-plat: Set PM runtime as active on resume - usb: host: ehci-platform: add a quirk to avoid stuck - usb/ehci-platform: Set PM runtime as active on resume - perf report: Fix NULL pointer dereference in hists__fprintf_nr_sample_events() - ext4: stop overwrite the errcode in ext4_setup_super - bcache: fix potential deadlock problem in btree_gc_coalesce (CVE-2020-12771) - afs: Fix non-setting of mtime when writing into mmap - afs: afs_write_end() should change i_size under the right lock - block: Fix use-after-free in blkdev_get() - [arm64] hw_breakpoint: Don't invoke overflow handler on uaccess watchpoints - libata: Use per port sync for detach - drm: encoder_slave: fix refcouting error for modules - drm/dp_mst: Reformat drm_dp_check_act_status() a bit - drm/qxl: Use correct notify port address when creating cursor ring - selinux: fix double free - ext4: fix partial cluster initialization when splitting extent - ext4: avoid race conditions when remounting with options that change dax - drm/dp_mst: Increase ACT retry timeout to 3s - block: nr_sects_write(): Disable preemption on seqcount write - mtd: rawnand: Pass a nand_chip object to nand_scan() - mtd: rawnand: Pass a nand_chip object to nand_release() - mtd: rawnand: diskonchip: Fix the probe error path - [armel,armhf] mtd: rawnand: orion: Fix the probe error path - [s390x] fix syscall_get_error for compat processes - [x86] drm/i915: Whitelist context-local timestamp in the gen9 cmdparser - [x86] drm/i915/icl+: Fix hotplug interrupt disabling after storm detection - crypto: algif_skcipher - Cap recv SG list at ctx->used - crypto: algboss - don't wait during notifier callback - kprobes: Fix to protect kick_kprobe_optimizer() by kprobe_mutex - e1000e: Do not wake up the system via WOL if device wakeup is disabled - [mips*] net: octeon: mgmt: Repair filling of RX ring - kretprobe: Prevent triggering kretprobe from within kprobe_flush_task - sched/rt, net: Use CONFIG_PREEMPTION.patch - net: core: device_rename: Use rwsem instead of a seqcount - md: add feature flag MD_FEATURE_RAID0_LAYOUT - [x86] kvm: Move kvm_set_mmio_spte_mask() from x86.c to mmu.c - [x86] kvm: Fix reserved bits related calculation errors caused by MKTME - [x86] KVM: x86/mmu: Set mmio_value to '0' if reserved #PF can't be generated https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.131 - net: be more gentle about silly gso requests coming from user - block/bio-integrity: don't free 'buf' if bio_integrity_add_page() failed - fanotify: fix ignore mask logic for events on child and on dir - [armhf] mtd: rawnand: marvell: Fix the condition on a return code - net: sched: export __netdev_watchdog_up() - [x86] EDAC/amd64: Add Family 17h Model 30h PCI IDs - [arm64,armhf] i2c: tegra: Cleanup kerneldoc comments - [arm64,armhf] i2c: tegra: Add missing kerneldoc for some fields - [arm64,armhf] i2c: tegra: Fix Maximum transfer size - ALSA: hda/realtek - Enable the headset of ASUS B9450FA with ALC294 - ALSA: hda/realtek: Enable mute LED on an HP system - ALSA: hda/realtek - Enable micmute LED on and HP system - apparmor: don't try to replace stale label in ptraceme check (Closes: #963493) - [ppc64el] ibmveth: Fix max MTU limit - mld: fix memory leak in ipv6_mc_destroy_dev() - net: bridge: enfore alignment for ethernet address - net: fix memleak in register_netdevice() - net: place xmit recursion in softnet data - net: use correct this_cpu primitive in dev_recursion_level - net: increment xmit_recursion level in dev_direct_xmit() - net: usb: ax88179_178a: fix packet alignment padding - rxrpc: Fix notification call on completion of discarded calls - sctp: Don't advertise IPv4 addresses if ipv6only is set on the socket - tcp: don't ignore ECN CWR on pure ACK - tcp: grow window for OOO packets only for SACK flows - tg3: driver sleeps indefinitely when EEH errors exceed eeh_max_freezes - ip6_gre: fix use-after-free in ip6gre_tunnel_lookup() - net: phy: Check harder for errors in get_phy_id() - ip_tunnel: fix use-after-free in ip_tunnel_lookup() - sch_cake: don't try to reallocate or unshare skb unconditionally - sch_cake: fix a few style nits - tcp_cubic: fix spurious HYSTART_DELAY exit upon drop in min RTT - sch_cake: don't call diffserv parsing code when it is not needed - net: Fix the arp error in some cases - net: Do not clear the sock TX queue in sk_set_socket() - net: core: reduce recursion limit value - [arm*] usb: dwc2: Postponed gadget registration to the udc class driver - usb: add USB_QUIRK_DELAY_INIT for Logitech C922 - USB: ehci: reopen solution for Synopsys HC bug - xhci: Poll for U0 after disabling USB2 LPM - [armhf] usb: host: ehci-exynos: Fix error check in exynos_ehci_probe() - ALSA: usb-audio: add quirk for Denon DCD-1500RE - ALSA: usb-audio: add quirk for Samsung USBC Headset (AKG) - ALSA: usb-audio: Fix OOB access of mixer element list - [s390x] scsi: zfcp: Fix panic on ERP timeout for previously dismissed ERP action - xhci: Fix incorrect EP_STATE_MASK - xhci: Fix enumeration issue when setting max packet size for FS devices. - xhci: Return if xHCI doesn't support LPM - cdc-acm: Add DISABLE_ECHO quirk for Microchip/SMSC chip - loop: replace kill_bdev with invalidate_bdev - IB/mad: Fix use after free when destroying MAD agent - cifs/smb3: Fix data inconsistent when punch hole - cifs/smb3: Fix data inconsistent when zero file range - xfrm: Fix double ESP trailer insertion in IPsec crypto offload. - efi/esrt: Fix reference count leak in esre_create_sysfs_entry. - [armhf] regualtor: pfuze100: correct sw1a/sw2 on pfuze3000 - [armhf] ASoC: fsl_ssi: Fix bclk calculation for mono channel - [armhf] dts: Fix duovero smsc interrupt for suspend - regmap: Fix memory leak from regmap_register_patch - rxrpc: Fix handling of rwind from an ACK packet - RDMA/qedr: Fix KASAN: use-after-free in ucma_event_handler+0x532 - RDMA/cma: Protect bind_list and listen_list while finding matching cm id - RDMA/mad: Fix possible memory leak in ib_mad_post_receive_mads() - net: qed: fix left elements count calculation - net: qed: fix NVMe login fails over VFs - net: qed: fix excessive QM ILT lines consumption - cxgb4: move handling L2T ARP failures to caller - [armhf] imx5: add missing put_device() call in imx_suspend_alloc_ocram() - netfilter: ipset: fix unaligned atomic access - i2c: core: check returned size of emulated smbus block read - sched/deadline: Initialize ->dl_boosted - sched/core: Fix PI boosting between RT and DEADLINE tasks - ata/libata: Fix usage of page address by page_address in ata_scsi_mode_select_xlat function - net: alx: fix race condition in alx_remove - [s390x] ptrace: fix setting syscall number - [s390x] vdso: fix vDSO clock_getres() - kbuild: improve cc-option to clean up all temporary files - blktrace: break out of blktrace setup on concurrent calls - ALSA: hda: Add NVIDIA codec IDs 9a & 9d through a0 to patch table - ALSA: hda/realtek - Add quirk for MSI GE63 laptop - [x86,arm64] ACPI: sysfs: Fix pm_profile_attr type - [x86] KVM: Fix MSR range of APIC registers in X2APIC mode - [x86] KVM: nVMX: Plumb L2 GPA through to PML emulation - [amd64] x86/asm/64: Align start of __clear_user() loop to 16-bytes - btrfs: fix data block group relocation failure due to concurrent scrub - btrfs: fix failure of RWF_NOWAIT write into prealloc extent beyond eof - mm/slab: use memzero_explicit() in kzfree() - ocfs2: avoid inode removal while nfsd is accessing it - ocfs2: load global_inode_alloc - ocfs2: fix value of OCFS2_INVALID_SLOT - ocfs2: fix panic on nfs server over ocfs2 - [arm64] perf: Report the PC value in REGS_ABI_32 mode - tracing: Fix event trigger to accept redundant spaces - ring-buffer: Zero out time extend if it is nested and not absolute - drm/radeon: fix fb_div check in ni_init_smc_spll_table() - [x86,arm64] Staging: rtl8723bs: prevent buffer overflow in update_sta_support_rate() - sunrpc: fixed rollback in rpc_gssd_dummy_populate() - SUNRPC: Properly set the @subbuf parameter of xdr_buf_subsegment() - pNFS/flexfiles: Fix list corruption if the mirror count changes - NFSv4 fix CLOSE not waiting for direct IO compeletion - dm writecache: correct uncommitted_block when discarding uncommitted entry - dm writecache: add cond_resched to loop in persistent_memory_claim() - xfs: add agf freeblocks verify in xfs_agf_verify (CVE-2020-12655) - Revert "tty: hvc: Fix data abort due to race in hvc_open" . [ Salvatore Bonaccorso ] * [rt] Add new signing key for Tom Zanussi * nfsd: apply umask on fs without ACL support (Closes: #962254) * [rt] Update to 4.19.120-rt52: - tasklet: Address a race resulting in double-enqueue - hrtimer: fix logic for when grabbing softirq_expiry_lock can be elided * [rt] Update to 4.19.124-rt53 * [rt] Update to 4.19.127-rt55: - fs/dcache: Include swait.h header - mm: slub: Always flush the delayed empty slubs in flush_all() - tasklet: Fix UP case for tasklet CHAINED state * usb: usbtest: fix missing kfree(dev->buf) in usbtest_disconnect (CVE-2020-15393) . [ Ben Hutchings ] * [rt] Update "net: move xmit_recursion to per-task variable on -RT" to apply on top of "net: place xmit recursion in softnet data" * [rt] Drop "net: Add a mutex around devnet_rename_seq", redundant with "net: Introduce net_rwsem to protect net_namespace_list" * [rt] Drop idle task related parts of "sched: Move mmdrop to RCU on RT", redundant with "sched/core: Fix illegal RCU from offline CPUs" * Bump ABI to 10 . [ YunQiang Su ] * [mips*]: Do not enable MIPS_O32_FP64_SUPPORT, since golang hasn't been migrated to FPXX yet and this breaks the golang packages on Octeon hardware. In turns this disables MSA on 32-bit kernels. . [ Luca Boccassi ] * [cloud] Enable INFINIBAND configs for HyperV/Azure (Closes: #958300) linux (4.19.118-2+deb10u1) buster-security; urgency=high . [ Salvatore Bonaccorso ] * selinux: properly handle multiple messages in selinux_netlink_send() (CVE-2020-10751) * fs/namespace.c: fix mountpoint reference counter race (CVE-2020-12114) * USB: core: Fix free-while-in-use bug in the USB S-Glibrary (CVE-2020-12464) * [x86] KVM: SVM: Fix potential memory leak in svm_cpu_init() (CVE-2020-12768) * scsi: sg: add sg_remove_request in sg_write (CVE-2020-12770) * USB: gadget: fix illegal array access in binding with UDC (CVE-2020-13143) * netlabel: cope with NULL catmap (CVE-2020-10711) * fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() (CVE-2020-10732) * kernel/relay.c: handle alloc_percpu returning NULL in relay_open (CVE-2019-19462) * mm: Fix mremap not considering huge pmd devmap (CVE-2020-10757) * [x86] KVM: nVMX: Always sync GUEST_BNDCFGS when it comes from vmcs01 * KVM: Introduce a new guest mapping API * [arm64] kvm: fix compilation on aarch64 * [s390x] kvm: fix compilation on s390 * [s390x] kvm: fix compile on s390 part 2 * KVM: Properly check if "page" is valid in kvm_vcpu_unmap * [x86] kvm: Introduce kvm_(un)map_gfn() (CVE-2019-3016) * [x86] kvm: Cache gfn to pfn translation (CVE-2019-3016) * [x86] KVM: Make sure KVM_VCPU_FLUSH_TLB flag is not missed (CVE-2019-3016) * [x86] KVM: Clean up host's steal time structure (CVE-2019-3016) * include/uapi/linux/swab.h: fix userspace breakage, use __BITS_PER_LONG for swap (Closes: #960271) . [ Ben Hutchings ] * propagate_one(): mnt_set_mountpoint() needs mount_lock * [x86] Add support for mitigation of Special Register Buffer Data Sampling (SRBDS) (CVE-2020-0543): - x86/cpu: Add 'table' argument to cpu_matches() - x86/speculation: Add Special Register Buffer Data Sampling (SRBDS) mitigation - x86/speculation: Add SRBDS vulnerability and mitigation documentation - x86/speculation: Add Ivy Bridge to affected list * [x86] speculation: Do not match steppings, to avoid an ABI change linux (4.19.118-2+deb10u1~bpo9+1) stretch-backports; urgency=medium . * Rebuild for stretch-backports; no further changes required . linux (4.19.118-2+deb10u1) buster-security; urgency=high . [ Salvatore Bonaccorso ] * selinux: properly handle multiple messages in selinux_netlink_send() (CVE-2020-10751) * fs/namespace.c: fix mountpoint reference counter race (CVE-2020-12114) * USB: core: Fix free-while-in-use bug in the USB S-Glibrary (CVE-2020-12464) * [x86] KVM: SVM: Fix potential memory leak in svm_cpu_init() (CVE-2020-12768) * scsi: sg: add sg_remove_request in sg_write (CVE-2020-12770) * USB: gadget: fix illegal array access in binding with UDC (CVE-2020-13143) * netlabel: cope with NULL catmap (CVE-2020-10711) * fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() (CVE-2020-10732) * kernel/relay.c: handle alloc_percpu returning NULL in relay_open (CVE-2019-19462) * mm: Fix mremap not considering huge pmd devmap (CVE-2020-10757) * [x86] KVM: nVMX: Always sync GUEST_BNDCFGS when it comes from vmcs01 * KVM: Introduce a new guest mapping API * [arm64] kvm: fix compilation on aarch64 * [s390x] kvm: fix compilation on s390 * [s390x] kvm: fix compile on s390 part 2 * KVM: Properly check if "page" is valid in kvm_vcpu_unmap * [x86] kvm: Introduce kvm_(un)map_gfn() (CVE-2019-3016) * [x86] kvm: Cache gfn to pfn translation (CVE-2019-3016) * [x86] KVM: Make sure KVM_VCPU_FLUSH_TLB flag is not missed (CVE-2019-3016) * [x86] KVM: Clean up host's steal time structure (CVE-2019-3016) * include/uapi/linux/swab.h: fix userspace breakage, use __BITS_PER_LONG for swap (Closes: #960271) . [ Ben Hutchings ] * propagate_one(): mnt_set_mountpoint() needs mount_lock * [x86] Add support for mitigation of Special Register Buffer Data Sampling (SRBDS) (CVE-2020-0543): - x86/cpu: Add 'table' argument to cpu_matches() - x86/speculation: Add Special Register Buffer Data Sampling (SRBDS) mitigation - x86/speculation: Add SRBDS vulnerability and mitigation documentation - x86/speculation: Add Ivy Bridge to affected list * [x86] speculation: Do not match steppings, to avoid an ABI change linux-latest (105+deb10u5) buster; urgency=medium . * Update to 4.19.0-10 linux-signed-amd64 (4.19.132+1) buster; urgency=medium . * Sign kernel from linux 4.19.132-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.132 - btrfs: fix a block group ref counter leak after failure to remove block group - mm: fix swap cache node allocation mask - [x86] EDAC/amd64: Read back the scrub rate PCI register on F15h - usbnet: smsc95xx: Fix use-after-free after removal - mm/slub.c: fix corrupted freechain in deactivate_slab() - mm/slub: fix stack overruns with SLUB_STATS - [s390x] debug: avoid kernel warning on too large number of pages - nvme-multipath: set bdi capabilities once - nvme-multipath: fix deadlock between ana_work and scan_work - crypto: af_alg - fix use-after-free in af_alg_accept() due to bh_lock_sock() - [arm64] drm/msm/dpu: fix error return code in dpu_encoder_init - cxgb4: use unaligned conversion for fetching timestamp - cxgb4: parse TC-U32 key values and masks natively - cxgb4: use correct type for all-mask IP address comparison - cxgb4: fix SGE queue dump destination buffer context - [x86] hwmon: (acpi_power_meter) Fix potential memory leak in acpi_power_meter_add() - [arm64,armhf] drm: sun4i: hdmi: Remove extra HPD polling - virtio-blk: free vblk-vqs in error path of virtblk_probe() - SMB3: Honor 'posix' flag for multiuser mounts - nvme: fix a crash in nvme_mpath_add_disk - i2c: algo-pca: Add 0x78 as SCL stuck low status for PCA9665 - Revert "ALSA: usb-audio: Improve frames size computation" - SMB3: Honor 'seal' flag for multiuser mounts - SMB3: Honor persistent/resilient handle flags for multiuser mounts - SMB3: Honor lease disabling for multiuser mounts - cifs: Fix the target file was deleted when rename failed. - [mips*] Add missing EHB in mtc0 -> mfc0 sequence for DSPen - [arm64,armhf] irqchip/gic: Atomically update affinity - dm zoned: assign max_io_len correctly - efi: Make it possible to disable efivar_ssdt entirely . [ Salvatore Bonaccorso ] * [rt] Update to 4.19.132-rt59 * Revert "ath9k: Fix general protection fault in ath9k_hif_usb_rx_cb" (Closes: #964153, #964480) * efi: Restrict efivar_ssdt_load when the kernel is locked down (CVE-2019-20908) * certs: Rotate to use the Debian Secure Boot Signer 2020 certificate * e1000e: Add support for Comet Lake (Closes: #965365) linux-signed-amd64 (4.19.131+2) buster; urgency=medium . * Sign kernel from linux 4.19.131-2 . [ Aurelien Jarno ] * Revert "mips: Add udelay lpj numbers adjustment", since it causes the build to fail with CONFIG_CPU_FREQ=y. linux-signed-amd64 (4.19.131+1) buster; urgency=medium . * Sign kernel from linux 4.19.131-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.119 - ext4: fix extent_status fragmentation for plain files - [arm64] drm/msm: Use the correct dma_sync calls harder - vti4: removed duplicate log message. - [arm64] Add part number for Neoverse N1 - [arm64] errata: Hide CTR_EL0.DIC on systems affected by Neoverse-N1 #1542419 - [arm64] Fake the IminLine size on systems affected by Neoverse-N1 #1542419 - [arm64] compat: Workaround Neoverse-N1 #1542419 for compat user-space - watchdog: reset last_hw_keepalive time at start - scsi: lpfc: Fix kasan slab-out-of-bounds error in lpfc_unreg_login - scsi: lpfc: Fix crash in target side cable pulls hitting WAIT_FOR_UNREG - ceph: return ceph_mdsc_do_request() errors from __get_parent() - ceph: don't skip updating wanted caps when cap is stale - scsi: iscsi: Report unbind session event when the target has been removed - [x86] ASoC: Intel: atom: Take the drv->lock mutex before calling sst_send_slot_map() - nvme: fix deadlock caused by ANA update wrong locking - ipc/util.c: sysvipc_find_ipc() should increase position index - [s390x] cio: avoid duplicated 'ADD' uevents - loop: Better discard support for block devices - [powerpc*] Revert "powerpc/64: irq_work avoid interrupt when called with hardware irqs enabled" - [arm*] pwm: bcm2835: Dynamically allocate base - perf/core: Disable page faults when getting phys address - [x86] ASoC: Intel: bytcr_rt5640: Add quirk for MPMAN MPWIN895CL tablet - xhci: Ensure link state is U3 after setting USB_SS_PORT_LS_U3 - virtio-blk: improve virtqueue error to BLK_STS - scsi: smartpqi: fix call trace in device discovery - PCI/ASPM: Allow re-enabling Clock PM - [x86] KVM: VMX: Zero out *all* general purpose registers after VM-Exit - cxgb4: fix adapter crash due to wrong MC size - cxgb4: fix large delays in PTP synchronization - ipv6: fix restrict IPV6_ADDRFORM operation - macsec: avoid to set wrong mtu - macvlan: fix null dereference in macvlan_device_event() - net: netrom: Fix potential nr_neigh refcnt leak in nr_add_node - [arm64,armhf] net: stmmac: dwmac-meson8b: Add missing boundary to RGMII TX clock array - sched: etf: do not assume all sockets are full blown - tcp: cache line align MAX_TCP_HEADER - team: fix hang in team_mode_get() - vrf: Fix IPv6 with qdisc and xfrm - [armhf] net: dsa: b53: Lookup VID in ARL searches when VLAN is enabled - [armhf] net: dsa: b53: Fix ARL register definitions - [armhf] net: dsa: b53: Rework ARL bin logic - [armhf] net: dsa: b53: b53_arl_rw_op() needs to select IVL or SVL - xfrm: Always set XFRM_TRANSFORMED in xfrm{4,6}_output_finish - vrf: Check skb for XFRM_TRANSFORMED flag - KEYS: Avoid false positive ENOMEM error on key read - ALSA: hda: Remove ASUS ROG Zenith from the blacklist - ALSA: usb-audio: Add static mapping table for ALC1220-VB-based mobos - ALSA: usb-audio: Add connector notifier delegation - [armhf] iio: st_sensors: rely on odr mask to know if odr can be set - USB: sisusbvga: Change port variable from signed to unsigned - USB: Add USB_QUIRK_DELAY_CTRL_MSG and USB_QUIRK_DELAY_INIT for Corsair K70 RGB RAPIDFIRE - USB: early: Handle AMD's spec-compliant identifiers, too - USB: hub: Fix handling of connect changes during sleep - vmalloc: fix remap_vmalloc_range() bounds checks - mm/hugetlb: fix a addressing exception caused by huge_pte_offset - mm/ksm: fix NULL pointer dereference when KSM zero page is enabled - ALSA: hda/realtek - Fix unexpected init_amp override - ALSA: hda/realtek - Add new codec supported for ALC245 - ALSA: usb-audio: Fix usb audio refcnt leak when getting spdif - ALSA: usb-audio: Filter out unsupported sample rates on Focusrite devices - tpm/tpm_tis: Free IRQ if probing fails - [s390x] KVM: Return last valid slot if approx index is out-of-bounds - KVM: Check validity of resolved slot when searching memslots - [x86] KVM: VMX: Enable machine check support for 32bit targets - tty: hvc: fix buffer overflow during hvc_alloc(). - [x86] tty: rocket, avoid OOB access - usb-storage: Add unusual_devs entry for JMicron JMS566 - audit: check the length of userspace generated audit records - ASoC: dapm: fixup dapm kcontrol widget - iwlwifi: pcie: actually release queue memory in TVQM - iwlwifi: mvm: beacon statistics shouldn't go backwards - [armel,armhf] ARM: imx: provide v7_cpu_resume() only on ARM_CPU_SUSPEND=y - [powerpc*] setup_64: Set cache-line-size based on cache-block-size - [i386] staging: comedi: dt2815: fix writing hi byte of analog output - [x86] staging: comedi: Fix comedi_device refcnt leak in comedi_open - vt: don't hardcode the mem allocation upper bound - vt: don't use kmalloc() for the unicode screen buffer - [x86] staging: vt6656: Don't set RCR_MULTICAST or RCR_BROADCAST by default. - [x86] staging: vt6656: Fix calling conditions of vnt_set_bss_mode - [x86] staging: vt6656: Fix drivers TBTT timing counter. - [x86] staging: vt6656: Fix pairwise key entry save. - [x86] staging: vt6656: Power save stop wake_up_count wrap around. - cdc-acm: close race betrween suspend() and acm_softint - cdc-acm: introduce a cool down - UAS: no use logging any details in case of ENODEV - UAS: fix deadlock in error handling and PM flushing work - [arm64,armhf] usb: dwc3: gadget: Fix request completion check - usb: f_fs: Clear OS Extended descriptor counts to zero in ffs_data_reset() - xhci: prevent bus suspend if a roothub port detected a over-current condition - xfs: Fix deadlock between AGI and AGF with RENAME_WHITEOUT https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.120 - mtd: cfi: fix deadloop in cfi_cmdset_0002.c do_write_buffer - [arm*] binder: take read mode of mmap_sem in binder_alloc_free_page() - [arm64,armhf] usb: dwc3: gadget: Do link recovery for SS and SSP - nfsd: memory corruption in nfsd4_lock() - rxrpc: Fix DATA Tx to disable nofrag for UDP on AF_INET6 socket - net/cxgb4: Check the return from t4_query_params properly - xfs: acquire superblock freeze protection on eofblocks scans - svcrdma: Fix trace point use-after-free race - svcrdma: Fix leak of svc_rdma_recv_ctxt objects - PCI: Avoid ASMedia XHCI USB PME# from D0 defect - [s390x] net/mlx5: Fix failing fw tracer allocation on s390 - perf/core: fix parent pid/tid in task exit events - [i386] bpf, x86_32: Fix incorrect encoding in BPF_LDX zero-extension - mm: shmem: disable interrupt when acquiring info->lock in userfaultfd_copy path - xfs: clear PF_MEMALLOC before exiting xfsaild thread - [x86] bpf, x86: Fix encoding for lower 8-bit registers in BPF_STX BPF_B - [armhf] net: fec: set GPR bit on suspend by DT configuration. - [x86] hyperv: report value of misc_features - xfs: fix partially uninitialized structure in xfs_reflink_remap_extent - ALSA: hda: Keep the controller initialization even if no codecs found - ALSA: hda: Explicitly permit using autosuspend if runtime PM is supported - scsi: target: fix PR IN / READ FULL STATUS for FC - scsi: target: tcmu: reset_ring should reset TCMU_DEV_BIT_BROKEN - xen/xenbus: ensure xenbus_map_ring_valloc() returns proper grant status - ALSA: hda: call runtime_allow() for all hda controllers - [arm64] Delete the space separator in __emit_inst - ext4: use matching invalidatepage in ext4_writepage - ext4: increase wait time needed before reuse of deleted inode numbers - ext4: convert BUG_ON's to WARN_ON's in mballoc.c - hwmon: (jc42) Fix name to have no illegal characters - [i386] bpf, x86_32: Fix clobbering of dst for BPF_JSET - qed: Fix use after free in qed_chain_free - ext4: check for non-zero journal inum in ext4_calculate_overhead https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.121 - drm/edid: Fix off-by-one in DispID DTD pixel clock - drm/qxl: qxl_release leak in qxl_draw_dirty_fb() - drm/qxl: qxl_release leak in qxl_hw_surface_alloc() - drm/qxl: qxl_release use after free - btrfs: fix block group leak when removing fails - ALSA: hda/realtek - Two front mics on a Lenovo ThinkCenter - ALSA: usb-audio: Correct a typo of NuPrime DAC-10 USB ID - ALSA: hda/hdmi: fix without unlocked before return - ALSA: pcm: oss: Place the plugin buffer overflow checks correctly (Closes: #960493) - PM: ACPI: Output correct message on target power state - PM: hibernate: Freeze kernel threads in software_resume() - dm writecache: fix data corruption when reloading the target - dm multipath: use updated MPATHF_QUEUE_IO on mapping for bio-based mpath - scsi: qla2xxx: set UNLOADING before waiting for session deletion - scsi: qla2xxx: check UNLOADING before posting async work - RDMA/mlx5: Set GRH fields in query QP on RoCE - RDMA/mlx4: Initialize ib_spec on the stack - RDMA/core: Prevent mixed use of FDs between shared ufiles - RDMA/core: Fix race between destroy and release FD object - [amd64,arm64] vfio: avoid possible overflow in vfio_iommu_type1_pin_pages - [amd64,arm64] vfio/type1: Fix VA->PA translation for PFNMAP VMAs in vaddr_get_pfn() - [arm64] iommu/qcom: Fix local_base status check - scsi: target/iblock: fix WRITE SAME zeroing - [amd64] iommu/amd: Fix legacy interrupt remapping for x2APIC-enabled system - nfs: Fix potential posix_acl refcnt leak in nfs3_set_acl - btrfs: fix partial loss of prealloc extent past i_size after fsync - btrfs: transaction: Avoid deadlock due to bad initialization timing of fs_info::journal_info - mmc: cqhci: Avoid false "cqhci: CQE stuck on" by not open-coding timeout loop - [arm64] mmc: sdhci-xenon: fix annoying 1.8V regulator warning - mmc: sdhci-pci: Fix eMMC driver strength for BYT-based controllers - [arm64] mmc: sdhci-msm: Enable host capabilities pertains to R1b response - [armhf] mmc: meson-mx-sdio: Set MMC_CAP_WAIT_WHILE_BUSY - [armhf] mmc: meson-mx-sdio: remove the broken ->card_busy() op https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.122 - vhost: vsock: kick send_pkt worker once device is started - [powerpc*] pci/of: Parse unassigned resources - [x86] ASoC: topology: Check return value of pcm_new_ver - [armhf] ASoC: sgtl5000: Fix VAG power-on handling - [arm64,armhf] usb: dwc3: gadget: Properly set maxpacket limit - [x86] ASoC: codecs: hdac_hdmi: Fix incorrect use of list_for_each_entry - wimax/i2400m: Fix potential urb refcnt leak - [armhf] net: stmmac: fix enabling socfpga's ptp_ref_clock - [armhf] net: stmmac: Fix sub-second increment - cifs: protect updating server->dstaddr with a spinlock - [s390x] ftrace: fix potential crashes when switching tracers - sctp: Fix SHUTDOWN CTSN Ack in the peer restart case - drm/amdgpu: Fix oops when pp_funcs is unset in ACPI event - lib: devres: add a helper function for ioremap_uc - [x86] mfd: intel-lpss: Use devm_ioremap_uc for MMIO - ALSA: hda: Match both PCI ID and SSID for driver blacklist - [x86] platform: GPD pocket fan: Fix error message when temp-limits are out of range - mac80211: add ieee80211_is_any_nullfunc() - cgroup, netclassid: remove double cond_resched - drm/atomic: Take the atomic toys away from X https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.123 - USB: serial: qcserial: Add DW5816e support - tracing/kprobes: Fix a double initialization typo - vt: fix unicode console freeing with a common interface - fq_codel: fix TCA_FQ_CODEL_DROP_BATCH_SIZE sanity checks - net: macsec: preserve ingress frame ordering - net/mlx4_core: Fix use of ENOSPC around mlx4_counter_alloc() - net_sched: sch_skbprio: add message validation to skbprio_change() - net: usb: qmi_wwan: add support for DW5816e - sch_choke: avoid potential panic in choke_reset() - sch_sfq: validate silly quantum values - tipc: fix partial topology connection closure - bnxt_en: Fix VLAN acceleration handling in bnxt_fix_features(). - net/mlx5: Fix forced completion access non initialized command entry - net/mlx5: Fix command entry leak in Internal Error State - bnxt_en: Improve AER slot reset. - bnxt_en: Fix VF anti-spoof filter setup. - net: stricter validation of untrusted gso packets - HID: wacom: Read HID_DG_CONTACTMAX directly for non-generic devices - sctp: Fix bundling of SHUTDOWN with COOKIE-ACK - HID: usbhid: Fix race between usbhid_close() and usbhid_stop() - USB: uas: add quirk for LaCie 2Big Quadra - USB: serial: garmin_gps: add sanity checking for data length - tracing: Add a vmalloc_sync_mappings() for safe measure - [arm64,armhf] KVM: vgic: Fix limit condition when writing to GICD_I[CS]ACTIVER - [arm64] KVM: Fix 32bit PC wrap-around - [arm64] hugetlb: avoid potential NULL dereference - mm/page_alloc: fix watchdog soft lockups during set_zone_contiguous() - [x86] KVM: VMX: Explicitly reference RCX as the vmx_vcpu pointer in asm blobs - [x86] KVM: VMX: Mark RCX, RDX and RSI as clobbered in vmx_vcpu_run()'s asm blob - batman-adv: fix batadv_nc_random_weight_tq - batman-adv: Fix refcnt leak in batadv_show_throughput_override - batman-adv: Fix refcnt leak in batadv_store_throughput_override - batman-adv: Fix refcnt leak in batadv_v_ogm_process - [amd64] x86/entry/64: Fix unwind hints in register clearing code - [amd64] x86/entry/64: Fix unwind hints in kernel exit path - [amd64] x86/entry/64: Fix unwind hints in rewind_stack_do_exit() - [amd64] x86/unwind/orc: Don't skip the first frame for inactive tasks - [amd64] x86/unwind/orc: Prevent unwinding before ORC initialization - [amd64] x86/unwind/orc: Fix error path for bad ORC entry type - [amd64] x86/unwind/orc: Fix premature unwind stoppage due to IRET frames - netfilter: nat: never update the UDP checksum when it's 0 - netfilter: nf_osf: avoid passing pointer to local var - scripts/decodecode: fix trapping instruction formatting - ipc/mqueue.c: change __do_notify() to bypass check_kill_permission() https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.124 - [arm64,armhf] net: dsa: Do not make user port errors fatal - shmem: fix possible deadlocks on shmlock_user_lock - virtio-blk: handle block_device_operations callbacks after hot unplug - mmc: sdhci-acpi: Add SDHCI_QUIRK2_BROKEN_64_BIT_DMA for AMDI0040 - net: fix a potential recursive NETDEV_FEAT_CHANGE - net: phy: fix aneg restart in phy_ethtool_set_eee - pppoe: only process PADT targeted at local interfaces - Revert "ipv6: add mtu lock check in __ip6_rt_update_pmtu" - tcp: fix error recovery in tcp_zerocopy_receive() - virtio_net: fix lockdep warning on 32 bit - [x86,arm64] hinic: fix a bug of ndo_stop - net: ipv4: really enforce backoff for redirects - netprio_cgroup: Fix unlimited memory leak of v2 cgroups - net: tcp: fix rx timestamp behavior for tcp_recvmsg - tcp: fix SO_RCVLOWAT hangs with fat skbs - [i386] dmaengine: pch_dma.c: Avoid data race between probe and irq handler - [x86] cpufreq: intel_pstate: Only mention the BIOS disabling turbo mode once - ALSA: hda/hdmi: fix race in monitor detection during probe - drm/qxl: lost qxl_bo_kunmap_atomic_page in qxl_image_init_helper() - ipc/util.c: sysvipc_find_ipc() incorrectly updates position index - ALSA: hda/realtek - Fix S3 pop noise on Dell Wyse - gfs2: Another gfs2_walk_metadata fix - [x86] pinctrl: baytrail: Enable pin configuration setting for GPIO chip - [x86] pinctrl: cherryview: Add missing spinlock usage in chv_gpio_irq_handler - i40iw: Fix error handling in i40iw_manage_arp_cache() - mmc: core: Check request type before completing the request - mmc: block: Fix request completion in the CQE timeout path - NFS: Fix fscache super_cookie index_key from changing after umount - nfs: fscache: use timespec64 in inode auxdata - NFSv4: Fix fscache cookie aux_data to ensure change_attr is included - [arm64] fix the flush_icache_range arguments in machine_kexec - netfilter: nft_set_rbtree: Introduce and use nft_rbtree_interval_start() - IB/mlx4: Test return value of calls to ib_get_cached_pkey - ALSA: hda/realtek - Limit int mic boost for Thinkpad T530 - ALSA: rawmidi: Fix racy buffer resize under concurrent accesses - ALSA: usb-audio: Add control message quirk delay for Kingston HyperX headset - usb: core: hub: limit HUB_QUIRK_DISABLE_AUTOSUSPEND to USB5534B - [arm64,armhf] usb: host: xhci-plat: keep runtime active when removing host - usb: xhci: Fix NULL pointer dereference when enqueuing trbs from urb sg list - cifs: fix leaked reference on requeued write - exec: Move would_dump into flush_old_exec - [arm64,armhf] clk: rockchip: fix incorrect configuration of rk3228 aclk_gpu* clocks - [arm64,armhf] dwc3: Remove check for HWO flag in dwc3_gadget_ep_reclaim_trb_sg() - Revert "ALSA: hda/realtek: Fix pop noise on ALC225" - clk: Unlink clock if failed to prepare or enable - [arm64] dts: rockchip: Replace RK805 PMIC node name with "pmic" on rk3328 boards - [x86] KVM: Fix off-by-one error in kvm_vcpu_ioctl_x86_setup_mce https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.125 - i2c: dev: Fix the race between the release of i2c_dev and cdev - fix multiplication overflow in copy_fdtable() - ubifs: remove broken lazytime support - [amd64] iommu/amd: Fix over-read of ACPI UID from IVRS table - ubi: Fix seq_file usage in detailed_erase_block_info debugfs file - HID: multitouch: add eGalaxTouch P80H84 support - HID: alps: Add AUI1657 device ID - HID: alps: ALPS_1657 is too specific; use U1_UNICORN_LEGACY instead - scsi: qla2xxx: Fix hang when issuing nvme disconnect-all in NPIV - scsi: qla2xxx: Delete all sessions before unregister local nvme port - configfs: fix config_item refcnt leak in configfs_rmdir() - vhost/vsock: fix packet delivery order to monitoring devices - [amd64] aquantia: Fix the media type of AQC100 ethernet controller in the driver - component: Silence bind error on -EPROBE_DEFER - [ppc64el] scsi: ibmvscsi: Fix WARN_ON during event pool release - HID: i2c-hid: reset Synaptics SYNA2393 on resume - [x86] apic: Move TSC deadline timer debug printk - gtp: set NLM_F_MULTI flag in gtp_genl_dump_pdp() - HID: quirks: Add HID_QUIRK_NO_INIT_REPORTS quirk for Dell K12A keyboard-dock - ceph: fix double unlock in handle_cap_export() - [arm64,armhf] stmmac: fix pointer check after utilization in stmmac_interrupt - USB: core: Fix misleading driver bug report - [x86] platform/x86: asus-nb-wmi: Do not load on Asus T100TA and T200TA - padata: Replace delayed timer with immediate workqueue in padata_reorder - padata: initialize pd->cpu with effective cpumask - padata: purge get_cpu and reorder_via_wq from padata_do_serial - ALSA: iec1712: Initialize STDSP24 properly when using the model=staudio option - ALSA: pcm: fix incorrect hw_base increase - ALSA: hda/realtek - Fix silent output on Gigabyte X570 Aorus Xtreme - ALSA: hda/realtek - Add more fixup entries for Clevo machines - [armhf] drm/etnaviv: fix perfmon domain interation - apparmor: Fix use-after-free in aa_audit_rule_init - apparmor: fix potential label refcnt leak in aa_change_profile - apparmor: Fix aa_label refcnt leak in policy_update - [arm64] dmaengine: tegra210-adma: Fix an error handling path in 'tegra_adma_probe()' - [powerpc*] Remove STRICT_KERNEL_RWX incompatibility with RELOCATABLE - [powerpc*] 64s: Disable STRICT_KERNEL_RWX - [amd64,arm64] nfit: Add Hyper-V NVDIMM DSM command set to white list - [x86,arm64] libnvdimm/btt: Remove unnecessary code in btt_freelist_init - [x86,arm64] libnvdimm/btt: Fix LBA masking during 'free list' population - [x86] thunderbolt: Drop duplicated get_switch_at_route() - cxgb4: free mac_hlist properly - cxgb4/cxgb4vf: Fix mac_hlist initialization and free - brcmfmac: abort and release host after error - Revert "gfs2: Don't demote a glock until its revokes are written" - misc: rtsx: Add short delay after exit from ASPM - [x86] mei: release me_cl object reference - rxrpc: Fix a memory leak in rxkad_verify_response() - rxrpc: Trace discarded ACKs - rxrpc: Fix ack discard https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.126 - ax25: fix setsockopt(SO_BINDTODEVICE) - __netif_receive_skb_core: pass skb by reference - net: inet_csk: Fix so_reuseport bind-address cache in tb->fast* - net: ipip: fix wrong address family in init error path - net/mlx5: Add command entry handling completion - net: revert "net: get rid of an signed integer overflow in ip_idents_reserve()" - net sched: fix reporting the first-time use timestamp - r8152: support additional Microsoft Surface Ethernet Adapter variant - sctp: Don't add the shutdown timer if its already been added - sctp: Start shutdown on association restart if in SHUTDOWN-SENT state and socket is closed - net/mlx5e: Update netdev txq on completions during closure - net/mlx5: Annotate mutex destroy for root ns - net: sun: fix missing release regions in cas_init_one(). - net/mlx4_core: fix a memory leak bug. - [armhf] dts: rockchip: fix phy nodename for rk3228-evb - [arm64] dts: rockchip: fix status for &gmac2phy in rk3328-evb.dts - [arm64,armhf] gpio: tegra: mask GPIO IRQs during IRQ shutdown - ALSA: usb-audio: add mapping for ASRock TRX40 Creator - gfs2: move privileged user check to gfs2_quota_lock_check - cachefiles: Fix race between read_waiter and read_copier involving op->to_do - [arm64] usb: dwc3: pci: Enable extcon driver for Intel Merrifield - usb: gadget: legacy: fix redundant initialization warnings - IB/i40iw: Remove bogus call to netdev_master_upper_dev_get() - cifs: Fix null pointer check in cifs_read - Input: usbtouchscreen - add support for BonXeon TP - Input: evdev - call input_flush_device() on release(), not flush() - Input: xpad - add custom init packet for Xbox One S controllers - Input: i8042 - add ThinkPad S230u to i8042 reset list - Input: synaptics-rmi4 - really fix attn_data use-after-free - Input: synaptics-rmi4 - fix error return code in rmi_driver_probe() - [armel,armhf] 8970/1: decompressor: increase tag size - [arm*] 8843/1: use unified assembler in headers - gpio: exar: Fix bad handling for ida_simple_get error path - IB/qib: Call kobject_put() when kobject_init_and_add() fails - [armhf] dts/imx6q-bx50v3: Set display interface clock parents - [armel,armhf] dts: bcm2835-rpi-zero-w: Fix led polarity - mmc: block: Fix use-after-free issue for rpmb - ALSA: hwdep: fix a left shifting 1 by 31 UB bug - ALSA: hda/realtek - Add a model for Thinkpad T570 without DAC workaround - ALSA: usb-audio: mixer: volume quirk for ESS Technology Asus USB DAC - exec: Always set cap_ambient in cap_bprm_set_creds - ALSA: usb-audio: Quirks for Gigabyte TRX40 Aorus Master onboard audio - ALSA: hda/realtek - Add new codec supported for ALC287 - libceph: ignore pool overlay and cache logic on redirects - IB/ipoib: Fix double free of skb in case of multicast traffic in CM mode - mm: remove VM_BUG_ON(PageSlab()) from page_mapcount() - include/asm-generic/topology.h: guard cpumask_of_node() macro argument - iommu: Fix reference count leak in iommu_group_alloc. - mmc: core: Fix recursive locking issue in CQE recovery path - RDMA/core: Fix double destruction of uobject - mac80211: mesh: fix discovery timer re-arming issue / crash - [x86] dma: Fix max PFN arithmetic overflow on 32 bit systems - [x86] copy_xstate_to_kernel(): don't leave parts of destination uninitialized - xfrm: allow to accept packets with ipv6 NEXTHDR_HOP in xfrm_input - xfrm: call xfrm_output_gso when inner_protocol is set in xfrm_output - xfrm interface: fix oops when deleting a x-netns interface - xfrm: fix a warning in xfrm_policy_insert_list - xfrm: fix a NULL-ptr deref in xfrm_local_error - xfrm: fix error in comment - vti4: eliminated some duplicate code. - ip_vti: receive ipip packet by calling ip_tunnel_rcv - netfilter: nft_reject_bridge: enable reject with bridge vlan - netfilter: ipset: Fix subcounter update skip - netfilter: nfnetlink_cthelper: unbreak userspace helper support - netfilter: nf_conntrack_pptp: prevent buffer overflows in debug code - esp6: get the right proto for transport mode in esp6_gso_encap - bnxt_en: Fix accumulation of bp->net_stats_prev. - xsk: Add overflow check for u64 division, stored into u32 - qlcnic: fix missing release in qlcnic_83xx_interrupt_test. - bonding: Fix reference count leak in bond_sysfs_slave_add. - netfilter: nf_conntrack_pptp: fix compilation warning with W=1 build - mm/vmalloc.c: don't dereference possible NULL pointer in __vunmap() https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.127 - Revert "cgroup: Add memory barriers to plug cgroup_rstat_updated() race window" - libnvdimm: Fix endian conversion issues  - HID: sony: Fix for broken buttons on DS3 USB dongles - HID: i2c-hid: add Schneider SCL142ALM to descriptor override - p54usb: add AirVasT USB stick device-id - mmc: fix compilation of user API - scsi: ufs: Release clock if DMA map fails - airo: Fix read overflows sending packets - [x86] drm/i915: fix port checks for MST support on gen >= 11 - [arm64] scsi: hisi_sas: Check sas_port before using it - [powerpc*] powernv: Avoid re-registration of imc debugfs directory - [s390x] ftrace: save traced function caller - drm/edid: Add Oculus Rift S to non-desktop list - [s390x] mm: fix set_huge_pte_at() for empty ptes - null_blk: return error for invalid zone size - [arm64] net: ethernet: stmmac: Enable interface clocks on probe for IPQ806x - [arm64,armhf] net: smsc911x: Fix runtime PM imbalance on error https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.128 - devinet: fix memleak in inetdev_init() - l2tp: add sk_family checks to l2tp_validate_socket - l2tp: do not use inet_hash()/inet_unhash() - net: usb: qmi_wwan: add Telit LE910C1-EUX composition - vsock: fix timeout in vsock_accept() - net: check untrusted gso_size at kernel entry - USB: serial: qcserial: add DW5816e QDL support - USB: serial: usb_wwan: do not resubmit rx urb on fatal errors - USB: serial: option: add Telit LE910C1-EUX compositions - [arm64,armhf] usb: musb: start session in resume for host port - [arm64,armhf] usb: musb: Fix runtime PM imbalance on error - vt: keyboard: avoid signed integer overflow in k_ascii (CVE-2020-13974) - tty: hvc_console, fix crashes on parallel open/close - staging: rtl8712: Fix IEEE80211_ADDBA_PARAM_BUF_SIZE_MASK - CDC-ACM: heed quirk also in error handling - [arm64] nvmem: qfprom: remove incorrect write support - uprobes: ensure that uprobe->offset and ->ref_ctr_offset are properly aligned - Revert "net/mlx5: Annotate mutex destroy for root ns" https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.129 - ipv6: fix IPV6_ADDRFORM operation logic - net_failover: fixed rollback in net_failover_open() - bridge: Avoid infinite loop when suppressing NS messages with invalid options - vxlan: Avoid infinite loop when suppressing NS messages with invalid options - tun: correct header offsets in napi frags mode - make 'user_access_begin()' do 'access_ok()' (CVE-2018-20669) - [x86] uaccess: Inhibit speculation past access_ok() in user_access_begin() - lib: Reduce user_access_begin() boundaries in strncpy_from_user() and strnlen_user() - btrfs: merge btrfs_find_device and find_device (CVE-2019-18885) - btrfs: Detect unbalanced tree with empty leaf before crashing btree operations - [armel,armhf] 8977/1: ptrace: Fix mask for thumb breakpoint hook - sched/fair: Don't NUMA balance for kthreads - Input: synaptics - add a second working PNP_ID for Lenovo T470s - [powerpc*] xive: Clear the page tables for the ESB IO mapping - ath9k_htc: Silence undersized packet warnings - RDMA/uverbs: Make the event_queue fds return POLLERR when disassociated - [x86] cpu/amd: Make erratum #1054 a legacy erratum - perf probe: Accept the instance number of kretprobe event - mm: add kvfree_sensitive() for freeing sensitive data objects - aio: fix async fsync creds - btrfs: tree-checker: Check level for leaves and nodes - [x86] Fix jiffies ODR violation - [x86] PCI: Mark Intel C620 MROMs as having non-compliant BARs - [x86] speculation: Prevent rogue cross-process SSBD shutdown (CVE-2020-10766) - [x86] reboot/quirks: Add MacBook6,1 reboot quirk - efi/efivars: Add missing kobject_put() in sysfs entry creation error path - [i386] ALSA: es1688: Add the missed snd_card_free() - ALSA: hda/realtek - add a pintbl quirk for several Lenovo machines - ALSA: usb-audio: Fix inconsistent card PM state after resume - ALSA: usb-audio: Add vendor, product and profile name for HP Thunderbolt Dock - [arm64,x86] ACPI: sysfs: Fix reference count leak in acpi_sysfs_add_hotplug_profile() - [amd64,arm64] ACPI: CPPC: Fix reference count leak in acpi_cppc_processor_probe() - [arm64] ACPI: GED: add support for _Exx / _Lxx handler methods - [arm64,x86] ACPI: PM: Avoid using power resources if there are none for D0 - cgroup, blkcg: Prepare some symbols for module and !CONFIG_CGROUP usages - nilfs2: fix null pointer dereference at nilfs_segctor_do_construct() - [arm*] spi: bcm2835aux: Fix controller unregister order - PM: runtime: clk: Fix clk_pm_runtime_get() error path - [arm64] crypto: cavium/nitrox - Fix 'nitrox_get_first_device()' when ndevlist is fully iterated - ALSA: pcm: disallow linking stream to itself - [x86] {mce,mm}: Unmap the entire page if the whole page is affected and poisoned - [x86] KVM: Fix APIC page invalidation race - [x86] kvm: Fix L1TF mitigation for shadow MMU - [x86] KVM: x86/mmu: Consolidate "is MMIO SPTE" code - [x86] KVM: only do L1TF workaround on affected processors - [x86] speculation: Change misspelled STIPB to STIBP - [x86] speculation: Add support for STIBP always-on preferred mode - [x86] speculation: Avoid force-disabling IBPB based on STIBP and enhanced IBRS. (CVE-2020-10767) - [x86] speculation: PR_SPEC_FORCE_DISABLE enforcement for indirect branches. (CVE-2020-10768) - spi: No need to assign dummy value in spi_unregister_controller() - spi: Fix controller unregister order - [amd64] spi: pxa2xx: Fix controller unregister order - [arm*] spi: bcm2835: Fix controller unregister order - [amd64] spi: pxa2xx: Balance runtime PM enable/disable on error - [amd64] spi: pxa2xx: Fix runtime PM ref imbalance on probe error - crypto: virtio: Fix use-after-free in virtio_crypto_skcipher_finalize_req() - crypto: virtio: Fix src/dst scatterlist calculation in __virtio_crypto_skcipher_do_req() - crypto: virtio: Fix dest length calculation in __virtio_crypto_skcipher_do_req() - ovl: initialize error in ovl_copy_xattr - proc: Use new_inode not new_inode_pseudo - [x86] KVM: nSVM: fix condition for filtering async PF - [x86] KVM: nSVM: leave ASID aside in copy_vmcb_control_area - [x86] KVM: nVMX: Consult only the "basic" exit reason when routing nested exit - [arm64] KVM: Make vcpu_cp1x() work on Big Endian hosts - scsi: megaraid_sas: TM command refire leads to controller firmware crash - ath9k: Fix use-after-free Read in ath9k_wmi_ctrl_rx - ath9k: Fix use-after-free Write in ath9k_htc_rx_msg - ath9x: Fix stack-out-of-bounds Write in ath9k_hif_usb_rx_cb - ath9k: Fix general protection fault in ath9k_hif_usb_rx_cb - mm/slub: fix a memory leak in sysfs_slab_add() - fat: don't allow to mount if the FAT length == 0 - perf: Add cond_resched() to task_function_call() - [x86] agp/intel: Reinforce the barrier after GTT updates - [arm64] mmc: sdhci-msm: Clear tuning done flag while hs400 tuning - mmc: sdio: Fix potential NULL pointer error in mmc_sdio_init_card() - xen/pvcalls-back: test for errors when calling backend_connect() - [arm64] KVM: Synchronize sysreg state on injecting an AArch32 exception - [arm64] ACPI: GED: use correct trigger type field in _Exx / _Lxx handling - [arm64] drm: bridge: adv7511: Extend list of audio sample rates - [x86] crypto: ccp -- don't "select" CONFIG_DMADEVICES - media: si2157: Better check for running tuner in init - [amd64] spi: pxa2xx: Apply CS clk quirk to BXT - [amd64] net: atlantic: make hw_get_regs optional - net: ena: fix error returning in ena_com_get_hash_function() - [arm64] insn: Fix two bugs in encoding 32-bit logical immediates - ixgbe: Fix XDP redirect on archs with PAGE_SIZE above 4K - Bluetooth: Add SCO fallback for invalid LMP parameters error - [armhf] clocksource: dw_apb_timer: Make CPU-affiliation being optional - [armhf] clocksource: dw_apb_timer_of: Fix missing clockevent timers - btrfs: do not ignore error from btrfs_next_leaf() when inserting checksums - batman-adv: Revert "disable ethtool link speed detection when auto negotiation off" - [armhf] mmc: meson-mx-sdio: trigger a soft reset after a timeout or CRC error - [x86] kvm/hyper-v: Explicitly align hcall param for kvm_hyperv_exit - [x86] net: vmxnet3: fix possible buffer overflow caused by bad DMA value in vmxnet3_get_rss() - brcmfmac: fix wrong location to get firmware feature - e1000: Distribute switch variables for initialization - dt-bindings: display: mediatek: control dpi pins mode to avoid leakage - audit: fix a net reference leak in audit_send_reply() - media: dvb: return -EREMOTEIO on i2c transfer failure. - [mips*] Make sparse_init() using top-down allocation - Bluetooth: btbcm: Add 2 missing models to subver tables - audit: fix a net reference leak in audit_list_rules_send() - netfilter: nft_nat: return EOPNOTSUPP if type or flags are not supported - exit: Move preemption fixup up, move blocking operations down - sched/core: Fix illegal RCU from offline CPUs - drivers/perf: hisi: Fix typo in events attribute array - [armhf] net: allwinner: Fix use correct return type for ndo_start_xmit() - xfs: clean up the error handling in xfs_swap_extents - Crypto/chcr: fix for ccm(aes) failed test - [mips*] cm: Fix an invalid error code of INTVN_*_ERR - xfs: reset buffer write failure state on successful completion - xfs: fix duplicate verification from xfs_qm_dqflush() - [x86] platform/x86: intel-vbtn: Use acpi_evaluate_integer() - [x86] platform/x86: intel-vbtn: Split keymap into buttons and switches parts - [x86] platform/x86: intel-vbtn: Do not advertise switches to userspace if they are not there - [x86] platform/x86: intel-vbtn: Also handle tablet-mode switch on "Detachable" and "Portable" chassis-types - nvme: refine the Qemu Identify CNS quirk - ath10k: Remove msdu from idr when management pkt send fails - [arm64] wcn36xx: Fix error handling path in 'wcn36xx_probe()' - net: qed*: Reduce RX and TX default ring count when running inside kdump kernel - mt76: avoid rx reorder buffer overflow - md: don't flush workqueue unconditionally in md_open - veth: Adjust hard_start offset on redirect XDP frames - net/mlx5e: IPoIB, Drop multicast packets that this interface sent - rtlwifi: Fix a double free in _rtl_usb_tx_urb_setup() - mwifiex: Fix memory corruption in dump_station - [x86] boot: Correct relocation destination on old linkers - [x86] mm: Stop printing BRK addresses - btrfs: qgroup: mark qgroup inconsistent if we're inherting snapshot to a new qgroup - macvlan: Skip loopback packets in RX handler - PCI: Don't disable decoding when mmio_always_on is set - [mips*] Fix IRQ tracing when call handle_fpe() and handle_msa_fpe() - bcache: fix refcount underflow in bcache_device_free() - [arm64] mmc: sdhci-msm: Set SDHCI_QUIRK_MULTIBLOCK_READ_ACMD12 quirk - mmc: via-sdmmc: Respect the cmd->busy_timeout from the mmc core - ixgbe: fix signed-integer-overflow warning - [armhf] mmc: sdhci-esdhc-imx: fix the mask for tuning start point - cpuidle: Fix three reference count leaks - [x86] platform/x86: hp-wmi: Convert simple_strtoul() to kstrtou32() - [x86] platform/x86: intel-hid: Add a quirk to support HP Spectre X2 (2015) - [x86] platform/x86: intel-vbtn: Only blacklist SW_TABLET_MODE on the 9 / "Laptop" chasis-type - btrfs: include non-missing as a qualifier for the latest_bdev - btrfs: send: emit file capabilities after chown - mm: thp: make the THP mapcount atomic against __split_huge_pmd_locked() - mm: initialize deferred pages with interrupts enabled - ext4: fix EXT_MAX_EXTENT/INDEX to check for zeroed eh_max - ext4: fix error pointer dereference - ext4: fix race between ext4_sync_parent() and rename() - PCI: Avoid Pericom USB controller OHCI/EHCI PME# defect - PCI: Avoid FLR for AMD Matisse HD Audio & USB 3.0 - PCI: Avoid FLR for AMD Starship USB 3.0 - PCI: Add ACS quirk for iProc PAXB - PCI: Add ACS quirk for Intel Root Complex Integrated Endpoints - PCI: Remove unused NFP32xx IDs - [x86] hwmon/k10temp, x86/amd_nb: Consolidate shared device IDs - [x86] amd_nb: Add PCI device IDs for family 17h, model 30h - PCI: add USR vendor id and use it in r8169 and w6692 driver - PCI: Move Synopsys HAPS platform device IDs - PCI: Move Rohm Vendor ID to generic list - misc: pci_endpoint_test: Add the layerscape EP device support - misc: pci_endpoint_test: Add support to test PCI EP in AM654x - PCI: Add Synopsys endpoint EDDA Device ID - PCI: Add NVIDIA GPU multi-function power dependencies - PCI: Enable NVIDIA HDA controllers - [x86] amd_nb: Add PCI device IDs for family 17h, model 70h - ALSA: lx6464es - add support for LX6464ESe pci express variant - PCI: Add Genesys Logic, Inc. Vendor ID - PCI: Add Amazon's Annapurna Labs vendor ID - PCI: vmd: Add device id for VMD device 8086:9A0B - [x86] amd_nb: Add Family 19h PCI IDs - PCI: Add Loongson vendor ID - serial: 8250_pci: Move Pericom IDs to pci_ids.h - PCI: Make ACS quirk implementations more uniform - PCI: Unify ACS quirk desired vs provided checking - PCI: Generalize multi-function power dependency device links - btrfs: fix error handling when submitting direct I/O bio - btrfs: fix wrong file range cleanup after an error filling dealloc range - PCI: Program MPS for RCiEP devices - e1000e: Disable TSO for buffer overrun workaround - e1000e: Relax condition to trigger reset for ME workaround - carl9170: remove P2P_GO support - media: go7007: fix a miss of snd_card_free (CVE-2019-20810) - Bluetooth: hci_bcm: fix freeing not-requested IRQ - b43legacy: Fix case where channel status is corrupted - b43: Fix connection problem with WPA3 - b43_legacy: Fix connection problem with WPA3 - igb: Report speed and duplex as unknown when device is runtime suspended - [arm64,armhf] power: vexpress: add suppress_bind_attrs to true - [armhf] pinctrl: samsung: Correct setting of eint wakeup mask on s5pv210 - [armhf] pinctrl: samsung: Save/restore eint_mask over suspend for EINT_TYPE GPIOs - gnss: sirf: fix error return code in sirf_probe() - dm crypt: avoid truncating the logical block size - kernel/cpu_pm: Fix uninitted local in cpu_pm - [armhf] tegra: Correct PL310 Auxiliary Control Register initialization - [powerpc*] 64s: Don't let DT CPU features set FSCR_DSCR - [powerpc*] 64s: Save FSCR to init_task.thread.fscr after feature init - sunrpc: svcauth_gss_register_pseudoflavor must reject duplicate registrations. - sunrpc: clean up properly in gss_mech_unregister() - [armhf] w1: omap-hdq: cleanup to add missing newline for some dev_dbg - perf probe: Do not show the skipped events - perf probe: Fix to check blacklist address correctly - perf probe: Check address correctness by map instead of _etext - perf symbols: Fix debuginfo search for Ubuntu https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.130 - [arm64,armhf] clk: sunxi: Fix incorrect usage of round_down() - [arm64,armhf] ASoC: tegra: tegra_wm8903: Support nvidia, headset property - i2c: piix4: Detect secondary SMBus controller on AMD AM4 chipsets - [x86] iio: pressure: bmp280: Tolerate IRQ before registering - [arm64] clk: qcom: msm8916: Fix the address location of pll->config_reg - [arm64] backlight: lp855x: Ensure regulators are disabled on probe failure - [armhf] ASoC: davinci-mcasp: Fix dma_chan refcnt leak when getting dma type - [armel] integrator: Add some Kconfig selections - scsi: qedi: Check for buffer overflow in qedi_set_path() - ALSA: hda/realtek - Introduce polarity for micmute LED GPIO - [i386] ALSA: isa/wavefront: prevent out of bounds write in ioctl - PCI: Allow pci_resize_resource() for devices on root bus - scsi: qla2xxx: Fix issue with adapter's stopping state - [x86] iio: bmp280: fix compensation of humidity - f2fs: report delalloc reserve as non-free in statfs for project quota - [x86] i2c: pxa: clear all master action bits in i2c_pxa_stop_message() - [armhf] clk: samsung: Mark top ISP and CAM clocks on Exynos542x as critical - usblp: poison URBs upon disconnect - serial: 8250: Fix max baud limit in generic 8250 port - dm mpath: switch paths in dm_blk_ioctl() code path - [arm64] PCI: aardvark: Don't blindly enable ASPM L0s and don't write to read-only register - vfio/pci: fix memory leaks in alloc_perm_bits() - RDMA/mlx5: Add init2init as a modify command - scsi: lpfc: Fix lpfc_nodelist leak when processing unsolicited event - [powerpc*] perf/hv-24x7: Fix inconsistent output values incase multiple hv-24x7 events run - nfsd: Fix svc_xprt refcnt leak when setup callback client failed - [amd64] PCI: vmd: Filter resource type bits from shadow register - [powerpc*] crashkernel: Take "mem=" option into account - yam: fix possible memory leak in yam_init_driver - apparmor: fix introspection of of task mode for unconfined tasks - apparmor: check/put label on apparmor_sk_clone_security() - scsi: sr: Fix sr_probe() missing deallocate of device minor - [powerpc*] scsi: ibmvscsi: Don't send host info in adapter info MAD after LPM - apparmor: fix nnp subset test for unconfined - [x86] purgatory: Disable various profiling and sanitizing options - scsi: qedi: Do not flush offload work if ARP not resolved - [armhf] dts: sun8i-h2-plus-bananapi-m2-zero: Fix led polarity - scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing - [arm64] firmware: qcom_scm: fix bogous abuse of dma-direct internals - ALSA: usb-audio: Improve frames size computation - ALSA: usb-audio: Fix racy list management in output queue - [s390x] qdio: put thinint indicator after early error - tty: hvc: Fix data abort due to race in hvc_open - [armhf] thermal/drivers/ti-soc-thermal: Avoid dereferencing ERR_PTR - [arm64,armhf] usb: dwc3: gadget: Properly handle failed kick_transfer - [mips64el,mipsel] staging: sm750fb: add missing case while setting FB_VISUAL - [arm64,i386] i2c: pxa: fix i2c_pxa_scream_blue_murder() debug output - [arm*] serial: amba-pl011: Make sure we initialize the port.lock spinlock - drivers: base: Fix NULL pointer exception in __platform_driver_probe() if a driver developer is foolish - PCI/ASPM: Allow ASPM on links to PCIe-to-PCI/PCI-X Bridges - scsi: qla2xxx: Fix warning after FC target reset - scsi: mpt3sas: Fix double free warnings - [arm64,armhf] pinctrl: rockchip: fix memleak in rockchip_dt_node_to_map - [armhf] clk: ti: composite: fix memory leak - PCI: Fix pci_register_host_bridge() device_register() error handling - [powerpc*] Don't initialise init_task->thread.regs - tty: n_gsm: Fix SOF skipping - tty: n_gsm: Fix waking up upper tty layer when room available - HID: Add quirks for Trust Panora Graphic Tablet - ipmi: use vzalloc instead of kmalloc for user creation - [powerpc*] pseries/ras: Fix FWNMI_VALID off by one - vfio-pci: Mask cap zero - usb/ohci-platform: Fix a warning when hibernating - [arm64] drm/msm/mdp5: Fix mdp5_init error path for failed mdp5_kms allocation - [x86] ASoC: Intel: bytcr_rt5640: Add quirk for Toshiba Encore WT8-A tablet - [armhf] USB: host: ehci-mxc: Add error handling in ehci_mxc_drv_probe() - tty: n_gsm: Fix bogus i++ in gsm_data_kick - scsi: target: tcmu: Userspace must not complete queued commands - [powerpc*] 64s/pgtable: fix an undefined behaviour - dm zoned: return NULL if dmz_get_zone_for_reclaim() fails to find a zone - PCI/PTM: Inherit Switch Downstream Port PTM settings from Upstream Port - [arm64,armhf] PCI: dwc: Fix inner MSI IRQ domain registration - IB/cma: Fix ports memory leak in cma_configfs - [arm*] usb: dwc2: gadget: move gadget resume after the core is in L0 state - usb: gadget: Fix issue with config_ep_by_speed function - RDMA/iw_cxgb4: cleanup device debugfs entries on ULD remove - [x86] apic: Make TSC deadline timer detection message visible - scsi: target: tcmu: Fix a use after free in tcmu_check_expired_queue_cmd() - [arm*] clk: bcm2835: Fix return type of bcm2835_register_gate - [ppc64el] KVM: Book3S HV: Ignore kmemleak false positives - net: sunrpc: Fix off-by-one issues in 'rpc_ntop6' - NFSv4.1 fix rpc_call_done assignment for BIND_CONN_TO_SESSION - of: Fix a refcounting bug in __of_attach_node_sysfs() - rxrpc: Adjust /proc/net/rxrpc/calls to display call->debug_id not user_ID - gfs2: Allow lock_nolock mount to specify jid=X - scsi: iscsi: Fix reference count leak in iscsi_boot_create_kobj - scsi: ufs: Don't update urgent bkops level when toggling auto bkops - [armhf] pinctrl: freescale: imx: Fix an error handling path in 'imx_pinctrl_probe()' - geneve: change from tx_error to tx_dropped on missing metadata - lib/zlib: remove outdated and incorrect pre-increment optimization - blktrace: use errno instead of bi_status - blktrace: fix endianness in get_pdu_int() - blktrace: fix endianness for blk_log_remap() - gfs2: fix use-after-free on transaction ail lists - drivers/perf: hisi: Fix wrong value for all counters enable - afs: Fix memory leak in afs_put_sysnames() - ASoC: core: only convert non DPCM link to DPCM link - [x86] ASoC: Intel: bytcr_rt5640: Add quirk for Toshiba Encore WT10-A tablet - ASoC: rt5645: Add platform-data for Asus T101HA - [arm64,armhf] drm/sun4i: hdmi ddc clk: Fix size of m divider - [x86] idt: Keep spurious entries unset in system_vectors - net/filter: Permit reading NET in load_bytes_relative when MAC not set - xdp: Fix xsk_generic_xmit errno - [arm64,armhf] usb/xhci-plat: Set PM runtime as active on resume - usb: host: ehci-platform: add a quirk to avoid stuck - usb/ehci-platform: Set PM runtime as active on resume - perf report: Fix NULL pointer dereference in hists__fprintf_nr_sample_events() - ext4: stop overwrite the errcode in ext4_setup_super - bcache: fix potential deadlock problem in btree_gc_coalesce (CVE-2020-12771) - afs: Fix non-setting of mtime when writing into mmap - afs: afs_write_end() should change i_size under the right lock - block: Fix use-after-free in blkdev_get() - [arm64] hw_breakpoint: Don't invoke overflow handler on uaccess watchpoints - libata: Use per port sync for detach - drm: encoder_slave: fix refcouting error for modules - drm/dp_mst: Reformat drm_dp_check_act_status() a bit - drm/qxl: Use correct notify port address when creating cursor ring - selinux: fix double free - ext4: fix partial cluster initialization when splitting extent - ext4: avoid race conditions when remounting with options that change dax - drm/dp_mst: Increase ACT retry timeout to 3s - block: nr_sects_write(): Disable preemption on seqcount write - mtd: rawnand: Pass a nand_chip object to nand_scan() - mtd: rawnand: Pass a nand_chip object to nand_release() - mtd: rawnand: diskonchip: Fix the probe error path - [armel,armhf] mtd: rawnand: orion: Fix the probe error path - [s390x] fix syscall_get_error for compat processes - [x86] drm/i915: Whitelist context-local timestamp in the gen9 cmdparser - [x86] drm/i915/icl+: Fix hotplug interrupt disabling after storm detection - crypto: algif_skcipher - Cap recv SG list at ctx->used - crypto: algboss - don't wait during notifier callback - kprobes: Fix to protect kick_kprobe_optimizer() by kprobe_mutex - e1000e: Do not wake up the system via WOL if device wakeup is disabled - [mips*] net: octeon: mgmt: Repair filling of RX ring - kretprobe: Prevent triggering kretprobe from within kprobe_flush_task - sched/rt, net: Use CONFIG_PREEMPTION.patch - net: core: device_rename: Use rwsem instead of a seqcount - md: add feature flag MD_FEATURE_RAID0_LAYOUT - [x86] kvm: Move kvm_set_mmio_spte_mask() from x86.c to mmu.c - [x86] kvm: Fix reserved bits related calculation errors caused by MKTME - [x86] KVM: x86/mmu: Set mmio_value to '0' if reserved #PF can't be generated https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.131 - net: be more gentle about silly gso requests coming from user - block/bio-integrity: don't free 'buf' if bio_integrity_add_page() failed - fanotify: fix ignore mask logic for events on child and on dir - [armhf] mtd: rawnand: marvell: Fix the condition on a return code - net: sched: export __netdev_watchdog_up() - [x86] EDAC/amd64: Add Family 17h Model 30h PCI IDs - [arm64,armhf] i2c: tegra: Cleanup kerneldoc comments - [arm64,armhf] i2c: tegra: Add missing kerneldoc for some fields - [arm64,armhf] i2c: tegra: Fix Maximum transfer size - ALSA: hda/realtek - Enable the headset of ASUS B9450FA with ALC294 - ALSA: hda/realtek: Enable mute LED on an HP system - ALSA: hda/realtek - Enable micmute LED on and HP system - apparmor: don't try to replace stale label in ptraceme check (Closes: #963493) - [ppc64el] ibmveth: Fix max MTU limit - mld: fix memory leak in ipv6_mc_destroy_dev() - net: bridge: enfore alignment for ethernet address - net: fix memleak in register_netdevice() - net: place xmit recursion in softnet data - net: use correct this_cpu primitive in dev_recursion_level - net: increment xmit_recursion level in dev_direct_xmit() - net: usb: ax88179_178a: fix packet alignment padding - rxrpc: Fix notification call on completion of discarded calls - sctp: Don't advertise IPv4 addresses if ipv6only is set on the socket - tcp: don't ignore ECN CWR on pure ACK - tcp: grow window for OOO packets only for SACK flows - tg3: driver sleeps indefinitely when EEH errors exceed eeh_max_freezes - ip6_gre: fix use-after-free in ip6gre_tunnel_lookup() - net: phy: Check harder for errors in get_phy_id() - ip_tunnel: fix use-after-free in ip_tunnel_lookup() - sch_cake: don't try to reallocate or unshare skb unconditionally - sch_cake: fix a few style nits - tcp_cubic: fix spurious HYSTART_DELAY exit upon drop in min RTT - sch_cake: don't call diffserv parsing code when it is not needed - net: Fix the arp error in some cases - net: Do not clear the sock TX queue in sk_set_socket() - net: core: reduce recursion limit value - [arm*] usb: dwc2: Postponed gadget registration to the udc class driver - usb: add USB_QUIRK_DELAY_INIT for Logitech C922 - USB: ehci: reopen solution for Synopsys HC bug - xhci: Poll for U0 after disabling USB2 LPM - [armhf] usb: host: ehci-exynos: Fix error check in exynos_ehci_probe() - ALSA: usb-audio: add quirk for Denon DCD-1500RE - ALSA: usb-audio: add quirk for Samsung USBC Headset (AKG) - ALSA: usb-audio: Fix OOB access of mixer element list - [s390x] scsi: zfcp: Fix panic on ERP timeout for previously dismissed ERP action - xhci: Fix incorrect EP_STATE_MASK - xhci: Fix enumeration issue when setting max packet size for FS devices. - xhci: Return if xHCI doesn't support LPM - cdc-acm: Add DISABLE_ECHO quirk for Microchip/SMSC chip - loop: replace kill_bdev with invalidate_bdev - IB/mad: Fix use after free when destroying MAD agent - cifs/smb3: Fix data inconsistent when punch hole - cifs/smb3: Fix data inconsistent when zero file range - xfrm: Fix double ESP trailer insertion in IPsec crypto offload. - efi/esrt: Fix reference count leak in esre_create_sysfs_entry. - [armhf] regualtor: pfuze100: correct sw1a/sw2 on pfuze3000 - [armhf] ASoC: fsl_ssi: Fix bclk calculation for mono channel - [armhf] dts: Fix duovero smsc interrupt for suspend - regmap: Fix memory leak from regmap_register_patch - rxrpc: Fix handling of rwind from an ACK packet - RDMA/qedr: Fix KASAN: use-after-free in ucma_event_handler+0x532 - RDMA/cma: Protect bind_list and listen_list while finding matching cm id - RDMA/mad: Fix possible memory leak in ib_mad_post_receive_mads() - net: qed: fix left elements count calculation - net: qed: fix NVMe login fails over VFs - net: qed: fix excessive QM ILT lines consumption - cxgb4: move handling L2T ARP failures to caller - [armhf] imx5: add missing put_device() call in imx_suspend_alloc_ocram() - netfilter: ipset: fix unaligned atomic access - i2c: core: check returned size of emulated smbus block read - sched/deadline: Initialize ->dl_boosted - sched/core: Fix PI boosting between RT and DEADLINE tasks - ata/libata: Fix usage of page address by page_address in ata_scsi_mode_select_xlat function - net: alx: fix race condition in alx_remove - [s390x] ptrace: fix setting syscall number - [s390x] vdso: fix vDSO clock_getres() - kbuild: improve cc-option to clean up all temporary files - blktrace: break out of blktrace setup on concurrent calls - ALSA: hda: Add NVIDIA codec IDs 9a & 9d through a0 to patch table - ALSA: hda/realtek - Add quirk for MSI GE63 laptop - [x86,arm64] ACPI: sysfs: Fix pm_profile_attr type - [x86] KVM: Fix MSR range of APIC registers in X2APIC mode - [x86] KVM: nVMX: Plumb L2 GPA through to PML emulation - [amd64] x86/asm/64: Align start of __clear_user() loop to 16-bytes - btrfs: fix data block group relocation failure due to concurrent scrub - btrfs: fix failure of RWF_NOWAIT write into prealloc extent beyond eof - mm/slab: use memzero_explicit() in kzfree() - ocfs2: avoid inode removal while nfsd is accessing it - ocfs2: load global_inode_alloc - ocfs2: fix value of OCFS2_INVALID_SLOT - ocfs2: fix panic on nfs server over ocfs2 - [arm64] perf: Report the PC value in REGS_ABI_32 mode - tracing: Fix event trigger to accept redundant spaces - ring-buffer: Zero out time extend if it is nested and not absolute - drm/radeon: fix fb_div check in ni_init_smc_spll_table() - [x86,arm64] Staging: rtl8723bs: prevent buffer overflow in update_sta_support_rate() - sunrpc: fixed rollback in rpc_gssd_dummy_populate() - SUNRPC: Properly set the @subbuf parameter of xdr_buf_subsegment() - pNFS/flexfiles: Fix list corruption if the mirror count changes - NFSv4 fix CLOSE not waiting for direct IO compeletion - dm writecache: correct uncommitted_block when discarding uncommitted entry - dm writecache: add cond_resched to loop in persistent_memory_claim() - xfs: add agf freeblocks verify in xfs_agf_verify (CVE-2020-12655) - Revert "tty: hvc: Fix data abort due to race in hvc_open" . [ Salvatore Bonaccorso ] * [rt] Add new signing key for Tom Zanussi * nfsd: apply umask on fs without ACL support (Closes: #962254) * [rt] Update to 4.19.120-rt52: - tasklet: Address a race resulting in double-enqueue - hrtimer: fix logic for when grabbing softirq_expiry_lock can be elided * [rt] Update to 4.19.124-rt53 * [rt] Update to 4.19.127-rt55: - fs/dcache: Include swait.h header - mm: slub: Always flush the delayed empty slubs in flush_all() - tasklet: Fix UP case for tasklet CHAINED state * usb: usbtest: fix missing kfree(dev->buf) in usbtest_disconnect (CVE-2020-15393) . [ Ben Hutchings ] * [rt] Update "net: move xmit_recursion to per-task variable on -RT" to apply on top of "net: place xmit recursion in softnet data" * [rt] Drop "net: Add a mutex around devnet_rename_seq", redundant with "net: Introduce net_rwsem to protect net_namespace_list" * [rt] Drop idle task related parts of "sched: Move mmdrop to RCU on RT", redundant with "sched/core: Fix illegal RCU from offline CPUs" * Bump ABI to 10 . [ YunQiang Su ] * [mips*]: Do not enable MIPS_O32_FP64_SUPPORT, since golang hasn't been migrated to FPXX yet and this breaks the golang packages on Octeon hardware. In turns this disables MSA on 32-bit kernels. . [ Luca Boccassi ] * [cloud] Enable INFINIBAND configs for HyperV/Azure (Closes: #958300) linux-signed-amd64 (4.19.118+2+deb10u1) buster-security; urgency=high . * Sign kernel from linux 4.19.118-2+deb10u1 . [ Salvatore Bonaccorso ] * selinux: properly handle multiple messages in selinux_netlink_send() (CVE-2020-10751) * fs/namespace.c: fix mountpoint reference counter race (CVE-2020-12114) * USB: core: Fix free-while-in-use bug in the USB S-Glibrary (CVE-2020-12464) * [x86] KVM: SVM: Fix potential memory leak in svm_cpu_init() (CVE-2020-12768) * scsi: sg: add sg_remove_request in sg_write (CVE-2020-12770) * USB: gadget: fix illegal array access in binding with UDC (CVE-2020-13143) * netlabel: cope with NULL catmap (CVE-2020-10711) * fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() (CVE-2020-10732) * kernel/relay.c: handle alloc_percpu returning NULL in relay_open (CVE-2019-19462) * mm: Fix mremap not considering huge pmd devmap (CVE-2020-10757) * [x86] KVM: nVMX: Always sync GUEST_BNDCFGS when it comes from vmcs01 * KVM: Introduce a new guest mapping API * [arm64] kvm: fix compilation on aarch64 * [s390x] kvm: fix compilation on s390 * [s390x] kvm: fix compile on s390 part 2 * KVM: Properly check if "page" is valid in kvm_vcpu_unmap * [x86] kvm: Introduce kvm_(un)map_gfn() (CVE-2019-3016) * [x86] kvm: Cache gfn to pfn translation (CVE-2019-3016) * [x86] KVM: Make sure KVM_VCPU_FLUSH_TLB flag is not missed (CVE-2019-3016) * [x86] KVM: Clean up host's steal time structure (CVE-2019-3016) * include/uapi/linux/swab.h: fix userspace breakage, use __BITS_PER_LONG for swap (Closes: #960271) . [ Ben Hutchings ] * propagate_one(): mnt_set_mountpoint() needs mount_lock * [x86] Add support for mitigation of Special Register Buffer Data Sampling (SRBDS) (CVE-2020-0543): - x86/cpu: Add 'table' argument to cpu_matches() - x86/speculation: Add Special Register Buffer Data Sampling (SRBDS) mitigation - x86/speculation: Add SRBDS vulnerability and mitigation documentation - x86/speculation: Add Ivy Bridge to affected list * [x86] speculation: Do not match steppings, to avoid an ABI change linux-signed-amd64 (4.19.118+2+deb10u1~bpo9+1) stretch-backports; urgency=medium . * Sign kernel from linux 4.19.118-2+deb10u1~bpo9+1 . * Rebuild for stretch-backports; no further changes required linux-signed-arm64 (4.19.132+1) buster; urgency=medium . * Sign kernel from linux 4.19.132-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.132 - btrfs: fix a block group ref counter leak after failure to remove block group - mm: fix swap cache node allocation mask - [x86] EDAC/amd64: Read back the scrub rate PCI register on F15h - usbnet: smsc95xx: Fix use-after-free after removal - mm/slub.c: fix corrupted freechain in deactivate_slab() - mm/slub: fix stack overruns with SLUB_STATS - [s390x] debug: avoid kernel warning on too large number of pages - nvme-multipath: set bdi capabilities once - nvme-multipath: fix deadlock between ana_work and scan_work - crypto: af_alg - fix use-after-free in af_alg_accept() due to bh_lock_sock() - [arm64] drm/msm/dpu: fix error return code in dpu_encoder_init - cxgb4: use unaligned conversion for fetching timestamp - cxgb4: parse TC-U32 key values and masks natively - cxgb4: use correct type for all-mask IP address comparison - cxgb4: fix SGE queue dump destination buffer context - [x86] hwmon: (acpi_power_meter) Fix potential memory leak in acpi_power_meter_add() - [arm64,armhf] drm: sun4i: hdmi: Remove extra HPD polling - virtio-blk: free vblk-vqs in error path of virtblk_probe() - SMB3: Honor 'posix' flag for multiuser mounts - nvme: fix a crash in nvme_mpath_add_disk - i2c: algo-pca: Add 0x78 as SCL stuck low status for PCA9665 - Revert "ALSA: usb-audio: Improve frames size computation" - SMB3: Honor 'seal' flag for multiuser mounts - SMB3: Honor persistent/resilient handle flags for multiuser mounts - SMB3: Honor lease disabling for multiuser mounts - cifs: Fix the target file was deleted when rename failed. - [mips*] Add missing EHB in mtc0 -> mfc0 sequence for DSPen - [arm64,armhf] irqchip/gic: Atomically update affinity - dm zoned: assign max_io_len correctly - efi: Make it possible to disable efivar_ssdt entirely . [ Salvatore Bonaccorso ] * [rt] Update to 4.19.132-rt59 * Revert "ath9k: Fix general protection fault in ath9k_hif_usb_rx_cb" (Closes: #964153, #964480) * efi: Restrict efivar_ssdt_load when the kernel is locked down (CVE-2019-20908) * certs: Rotate to use the Debian Secure Boot Signer 2020 certificate * e1000e: Add support for Comet Lake (Closes: #965365) linux-signed-arm64 (4.19.131+2) buster; urgency=medium . * Sign kernel from linux 4.19.131-2 . [ Aurelien Jarno ] * Revert "mips: Add udelay lpj numbers adjustment", since it causes the build to fail with CONFIG_CPU_FREQ=y. linux-signed-arm64 (4.19.131+1) buster; urgency=medium . * Sign kernel from linux 4.19.131-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.119 - ext4: fix extent_status fragmentation for plain files - [arm64] drm/msm: Use the correct dma_sync calls harder - vti4: removed duplicate log message. - [arm64] Add part number for Neoverse N1 - [arm64] errata: Hide CTR_EL0.DIC on systems affected by Neoverse-N1 #1542419 - [arm64] Fake the IminLine size on systems affected by Neoverse-N1 #1542419 - [arm64] compat: Workaround Neoverse-N1 #1542419 for compat user-space - watchdog: reset last_hw_keepalive time at start - scsi: lpfc: Fix kasan slab-out-of-bounds error in lpfc_unreg_login - scsi: lpfc: Fix crash in target side cable pulls hitting WAIT_FOR_UNREG - ceph: return ceph_mdsc_do_request() errors from __get_parent() - ceph: don't skip updating wanted caps when cap is stale - scsi: iscsi: Report unbind session event when the target has been removed - [x86] ASoC: Intel: atom: Take the drv->lock mutex before calling sst_send_slot_map() - nvme: fix deadlock caused by ANA update wrong locking - ipc/util.c: sysvipc_find_ipc() should increase position index - [s390x] cio: avoid duplicated 'ADD' uevents - loop: Better discard support for block devices - [powerpc*] Revert "powerpc/64: irq_work avoid interrupt when called with hardware irqs enabled" - [arm*] pwm: bcm2835: Dynamically allocate base - perf/core: Disable page faults when getting phys address - [x86] ASoC: Intel: bytcr_rt5640: Add quirk for MPMAN MPWIN895CL tablet - xhci: Ensure link state is U3 after setting USB_SS_PORT_LS_U3 - virtio-blk: improve virtqueue error to BLK_STS - scsi: smartpqi: fix call trace in device discovery - PCI/ASPM: Allow re-enabling Clock PM - [x86] KVM: VMX: Zero out *all* general purpose registers after VM-Exit - cxgb4: fix adapter crash due to wrong MC size - cxgb4: fix large delays in PTP synchronization - ipv6: fix restrict IPV6_ADDRFORM operation - macsec: avoid to set wrong mtu - macvlan: fix null dereference in macvlan_device_event() - net: netrom: Fix potential nr_neigh refcnt leak in nr_add_node - [arm64,armhf] net: stmmac: dwmac-meson8b: Add missing boundary to RGMII TX clock array - sched: etf: do not assume all sockets are full blown - tcp: cache line align MAX_TCP_HEADER - team: fix hang in team_mode_get() - vrf: Fix IPv6 with qdisc and xfrm - [armhf] net: dsa: b53: Lookup VID in ARL searches when VLAN is enabled - [armhf] net: dsa: b53: Fix ARL register definitions - [armhf] net: dsa: b53: Rework ARL bin logic - [armhf] net: dsa: b53: b53_arl_rw_op() needs to select IVL or SVL - xfrm: Always set XFRM_TRANSFORMED in xfrm{4,6}_output_finish - vrf: Check skb for XFRM_TRANSFORMED flag - KEYS: Avoid false positive ENOMEM error on key read - ALSA: hda: Remove ASUS ROG Zenith from the blacklist - ALSA: usb-audio: Add static mapping table for ALC1220-VB-based mobos - ALSA: usb-audio: Add connector notifier delegation - [armhf] iio: st_sensors: rely on odr mask to know if odr can be set - USB: sisusbvga: Change port variable from signed to unsigned - USB: Add USB_QUIRK_DELAY_CTRL_MSG and USB_QUIRK_DELAY_INIT for Corsair K70 RGB RAPIDFIRE - USB: early: Handle AMD's spec-compliant identifiers, too - USB: hub: Fix handling of connect changes during sleep - vmalloc: fix remap_vmalloc_range() bounds checks - mm/hugetlb: fix a addressing exception caused by huge_pte_offset - mm/ksm: fix NULL pointer dereference when KSM zero page is enabled - ALSA: hda/realtek - Fix unexpected init_amp override - ALSA: hda/realtek - Add new codec supported for ALC245 - ALSA: usb-audio: Fix usb audio refcnt leak when getting spdif - ALSA: usb-audio: Filter out unsupported sample rates on Focusrite devices - tpm/tpm_tis: Free IRQ if probing fails - [s390x] KVM: Return last valid slot if approx index is out-of-bounds - KVM: Check validity of resolved slot when searching memslots - [x86] KVM: VMX: Enable machine check support for 32bit targets - tty: hvc: fix buffer overflow during hvc_alloc(). - [x86] tty: rocket, avoid OOB access - usb-storage: Add unusual_devs entry for JMicron JMS566 - audit: check the length of userspace generated audit records - ASoC: dapm: fixup dapm kcontrol widget - iwlwifi: pcie: actually release queue memory in TVQM - iwlwifi: mvm: beacon statistics shouldn't go backwards - [armel,armhf] ARM: imx: provide v7_cpu_resume() only on ARM_CPU_SUSPEND=y - [powerpc*] setup_64: Set cache-line-size based on cache-block-size - [i386] staging: comedi: dt2815: fix writing hi byte of analog output - [x86] staging: comedi: Fix comedi_device refcnt leak in comedi_open - vt: don't hardcode the mem allocation upper bound - vt: don't use kmalloc() for the unicode screen buffer - [x86] staging: vt6656: Don't set RCR_MULTICAST or RCR_BROADCAST by default. - [x86] staging: vt6656: Fix calling conditions of vnt_set_bss_mode - [x86] staging: vt6656: Fix drivers TBTT timing counter. - [x86] staging: vt6656: Fix pairwise key entry save. - [x86] staging: vt6656: Power save stop wake_up_count wrap around. - cdc-acm: close race betrween suspend() and acm_softint - cdc-acm: introduce a cool down - UAS: no use logging any details in case of ENODEV - UAS: fix deadlock in error handling and PM flushing work - [arm64,armhf] usb: dwc3: gadget: Fix request completion check - usb: f_fs: Clear OS Extended descriptor counts to zero in ffs_data_reset() - xhci: prevent bus suspend if a roothub port detected a over-current condition - xfs: Fix deadlock between AGI and AGF with RENAME_WHITEOUT https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.120 - mtd: cfi: fix deadloop in cfi_cmdset_0002.c do_write_buffer - [arm*] binder: take read mode of mmap_sem in binder_alloc_free_page() - [arm64,armhf] usb: dwc3: gadget: Do link recovery for SS and SSP - nfsd: memory corruption in nfsd4_lock() - rxrpc: Fix DATA Tx to disable nofrag for UDP on AF_INET6 socket - net/cxgb4: Check the return from t4_query_params properly - xfs: acquire superblock freeze protection on eofblocks scans - svcrdma: Fix trace point use-after-free race - svcrdma: Fix leak of svc_rdma_recv_ctxt objects - PCI: Avoid ASMedia XHCI USB PME# from D0 defect - [s390x] net/mlx5: Fix failing fw tracer allocation on s390 - perf/core: fix parent pid/tid in task exit events - [i386] bpf, x86_32: Fix incorrect encoding in BPF_LDX zero-extension - mm: shmem: disable interrupt when acquiring info->lock in userfaultfd_copy path - xfs: clear PF_MEMALLOC before exiting xfsaild thread - [x86] bpf, x86: Fix encoding for lower 8-bit registers in BPF_STX BPF_B - [armhf] net: fec: set GPR bit on suspend by DT configuration. - [x86] hyperv: report value of misc_features - xfs: fix partially uninitialized structure in xfs_reflink_remap_extent - ALSA: hda: Keep the controller initialization even if no codecs found - ALSA: hda: Explicitly permit using autosuspend if runtime PM is supported - scsi: target: fix PR IN / READ FULL STATUS for FC - scsi: target: tcmu: reset_ring should reset TCMU_DEV_BIT_BROKEN - xen/xenbus: ensure xenbus_map_ring_valloc() returns proper grant status - ALSA: hda: call runtime_allow() for all hda controllers - [arm64] Delete the space separator in __emit_inst - ext4: use matching invalidatepage in ext4_writepage - ext4: increase wait time needed before reuse of deleted inode numbers - ext4: convert BUG_ON's to WARN_ON's in mballoc.c - hwmon: (jc42) Fix name to have no illegal characters - [i386] bpf, x86_32: Fix clobbering of dst for BPF_JSET - qed: Fix use after free in qed_chain_free - ext4: check for non-zero journal inum in ext4_calculate_overhead https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.121 - drm/edid: Fix off-by-one in DispID DTD pixel clock - drm/qxl: qxl_release leak in qxl_draw_dirty_fb() - drm/qxl: qxl_release leak in qxl_hw_surface_alloc() - drm/qxl: qxl_release use after free - btrfs: fix block group leak when removing fails - ALSA: hda/realtek - Two front mics on a Lenovo ThinkCenter - ALSA: usb-audio: Correct a typo of NuPrime DAC-10 USB ID - ALSA: hda/hdmi: fix without unlocked before return - ALSA: pcm: oss: Place the plugin buffer overflow checks correctly (Closes: #960493) - PM: ACPI: Output correct message on target power state - PM: hibernate: Freeze kernel threads in software_resume() - dm writecache: fix data corruption when reloading the target - dm multipath: use updated MPATHF_QUEUE_IO on mapping for bio-based mpath - scsi: qla2xxx: set UNLOADING before waiting for session deletion - scsi: qla2xxx: check UNLOADING before posting async work - RDMA/mlx5: Set GRH fields in query QP on RoCE - RDMA/mlx4: Initialize ib_spec on the stack - RDMA/core: Prevent mixed use of FDs between shared ufiles - RDMA/core: Fix race between destroy and release FD object - [amd64,arm64] vfio: avoid possible overflow in vfio_iommu_type1_pin_pages - [amd64,arm64] vfio/type1: Fix VA->PA translation for PFNMAP VMAs in vaddr_get_pfn() - [arm64] iommu/qcom: Fix local_base status check - scsi: target/iblock: fix WRITE SAME zeroing - [amd64] iommu/amd: Fix legacy interrupt remapping for x2APIC-enabled system - nfs: Fix potential posix_acl refcnt leak in nfs3_set_acl - btrfs: fix partial loss of prealloc extent past i_size after fsync - btrfs: transaction: Avoid deadlock due to bad initialization timing of fs_info::journal_info - mmc: cqhci: Avoid false "cqhci: CQE stuck on" by not open-coding timeout loop - [arm64] mmc: sdhci-xenon: fix annoying 1.8V regulator warning - mmc: sdhci-pci: Fix eMMC driver strength for BYT-based controllers - [arm64] mmc: sdhci-msm: Enable host capabilities pertains to R1b response - [armhf] mmc: meson-mx-sdio: Set MMC_CAP_WAIT_WHILE_BUSY - [armhf] mmc: meson-mx-sdio: remove the broken ->card_busy() op https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.122 - vhost: vsock: kick send_pkt worker once device is started - [powerpc*] pci/of: Parse unassigned resources - [x86] ASoC: topology: Check return value of pcm_new_ver - [armhf] ASoC: sgtl5000: Fix VAG power-on handling - [arm64,armhf] usb: dwc3: gadget: Properly set maxpacket limit - [x86] ASoC: codecs: hdac_hdmi: Fix incorrect use of list_for_each_entry - wimax/i2400m: Fix potential urb refcnt leak - [armhf] net: stmmac: fix enabling socfpga's ptp_ref_clock - [armhf] net: stmmac: Fix sub-second increment - cifs: protect updating server->dstaddr with a spinlock - [s390x] ftrace: fix potential crashes when switching tracers - sctp: Fix SHUTDOWN CTSN Ack in the peer restart case - drm/amdgpu: Fix oops when pp_funcs is unset in ACPI event - lib: devres: add a helper function for ioremap_uc - [x86] mfd: intel-lpss: Use devm_ioremap_uc for MMIO - ALSA: hda: Match both PCI ID and SSID for driver blacklist - [x86] platform: GPD pocket fan: Fix error message when temp-limits are out of range - mac80211: add ieee80211_is_any_nullfunc() - cgroup, netclassid: remove double cond_resched - drm/atomic: Take the atomic toys away from X https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.123 - USB: serial: qcserial: Add DW5816e support - tracing/kprobes: Fix a double initialization typo - vt: fix unicode console freeing with a common interface - fq_codel: fix TCA_FQ_CODEL_DROP_BATCH_SIZE sanity checks - net: macsec: preserve ingress frame ordering - net/mlx4_core: Fix use of ENOSPC around mlx4_counter_alloc() - net_sched: sch_skbprio: add message validation to skbprio_change() - net: usb: qmi_wwan: add support for DW5816e - sch_choke: avoid potential panic in choke_reset() - sch_sfq: validate silly quantum values - tipc: fix partial topology connection closure - bnxt_en: Fix VLAN acceleration handling in bnxt_fix_features(). - net/mlx5: Fix forced completion access non initialized command entry - net/mlx5: Fix command entry leak in Internal Error State - bnxt_en: Improve AER slot reset. - bnxt_en: Fix VF anti-spoof filter setup. - net: stricter validation of untrusted gso packets - HID: wacom: Read HID_DG_CONTACTMAX directly for non-generic devices - sctp: Fix bundling of SHUTDOWN with COOKIE-ACK - HID: usbhid: Fix race between usbhid_close() and usbhid_stop() - USB: uas: add quirk for LaCie 2Big Quadra - USB: serial: garmin_gps: add sanity checking for data length - tracing: Add a vmalloc_sync_mappings() for safe measure - [arm64,armhf] KVM: vgic: Fix limit condition when writing to GICD_I[CS]ACTIVER - [arm64] KVM: Fix 32bit PC wrap-around - [arm64] hugetlb: avoid potential NULL dereference - mm/page_alloc: fix watchdog soft lockups during set_zone_contiguous() - [x86] KVM: VMX: Explicitly reference RCX as the vmx_vcpu pointer in asm blobs - [x86] KVM: VMX: Mark RCX, RDX and RSI as clobbered in vmx_vcpu_run()'s asm blob - batman-adv: fix batadv_nc_random_weight_tq - batman-adv: Fix refcnt leak in batadv_show_throughput_override - batman-adv: Fix refcnt leak in batadv_store_throughput_override - batman-adv: Fix refcnt leak in batadv_v_ogm_process - [amd64] x86/entry/64: Fix unwind hints in register clearing code - [amd64] x86/entry/64: Fix unwind hints in kernel exit path - [amd64] x86/entry/64: Fix unwind hints in rewind_stack_do_exit() - [amd64] x86/unwind/orc: Don't skip the first frame for inactive tasks - [amd64] x86/unwind/orc: Prevent unwinding before ORC initialization - [amd64] x86/unwind/orc: Fix error path for bad ORC entry type - [amd64] x86/unwind/orc: Fix premature unwind stoppage due to IRET frames - netfilter: nat: never update the UDP checksum when it's 0 - netfilter: nf_osf: avoid passing pointer to local var - scripts/decodecode: fix trapping instruction formatting - ipc/mqueue.c: change __do_notify() to bypass check_kill_permission() https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.124 - [arm64,armhf] net: dsa: Do not make user port errors fatal - shmem: fix possible deadlocks on shmlock_user_lock - virtio-blk: handle block_device_operations callbacks after hot unplug - mmc: sdhci-acpi: Add SDHCI_QUIRK2_BROKEN_64_BIT_DMA for AMDI0040 - net: fix a potential recursive NETDEV_FEAT_CHANGE - net: phy: fix aneg restart in phy_ethtool_set_eee - pppoe: only process PADT targeted at local interfaces - Revert "ipv6: add mtu lock check in __ip6_rt_update_pmtu" - tcp: fix error recovery in tcp_zerocopy_receive() - virtio_net: fix lockdep warning on 32 bit - [x86,arm64] hinic: fix a bug of ndo_stop - net: ipv4: really enforce backoff for redirects - netprio_cgroup: Fix unlimited memory leak of v2 cgroups - net: tcp: fix rx timestamp behavior for tcp_recvmsg - tcp: fix SO_RCVLOWAT hangs with fat skbs - [i386] dmaengine: pch_dma.c: Avoid data race between probe and irq handler - [x86] cpufreq: intel_pstate: Only mention the BIOS disabling turbo mode once - ALSA: hda/hdmi: fix race in monitor detection during probe - drm/qxl: lost qxl_bo_kunmap_atomic_page in qxl_image_init_helper() - ipc/util.c: sysvipc_find_ipc() incorrectly updates position index - ALSA: hda/realtek - Fix S3 pop noise on Dell Wyse - gfs2: Another gfs2_walk_metadata fix - [x86] pinctrl: baytrail: Enable pin configuration setting for GPIO chip - [x86] pinctrl: cherryview: Add missing spinlock usage in chv_gpio_irq_handler - i40iw: Fix error handling in i40iw_manage_arp_cache() - mmc: core: Check request type before completing the request - mmc: block: Fix request completion in the CQE timeout path - NFS: Fix fscache super_cookie index_key from changing after umount - nfs: fscache: use timespec64 in inode auxdata - NFSv4: Fix fscache cookie aux_data to ensure change_attr is included - [arm64] fix the flush_icache_range arguments in machine_kexec - netfilter: nft_set_rbtree: Introduce and use nft_rbtree_interval_start() - IB/mlx4: Test return value of calls to ib_get_cached_pkey - ALSA: hda/realtek - Limit int mic boost for Thinkpad T530 - ALSA: rawmidi: Fix racy buffer resize under concurrent accesses - ALSA: usb-audio: Add control message quirk delay for Kingston HyperX headset - usb: core: hub: limit HUB_QUIRK_DISABLE_AUTOSUSPEND to USB5534B - [arm64,armhf] usb: host: xhci-plat: keep runtime active when removing host - usb: xhci: Fix NULL pointer dereference when enqueuing trbs from urb sg list - cifs: fix leaked reference on requeued write - exec: Move would_dump into flush_old_exec - [arm64,armhf] clk: rockchip: fix incorrect configuration of rk3228 aclk_gpu* clocks - [arm64,armhf] dwc3: Remove check for HWO flag in dwc3_gadget_ep_reclaim_trb_sg() - Revert "ALSA: hda/realtek: Fix pop noise on ALC225" - clk: Unlink clock if failed to prepare or enable - [arm64] dts: rockchip: Replace RK805 PMIC node name with "pmic" on rk3328 boards - [x86] KVM: Fix off-by-one error in kvm_vcpu_ioctl_x86_setup_mce https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.125 - i2c: dev: Fix the race between the release of i2c_dev and cdev - fix multiplication overflow in copy_fdtable() - ubifs: remove broken lazytime support - [amd64] iommu/amd: Fix over-read of ACPI UID from IVRS table - ubi: Fix seq_file usage in detailed_erase_block_info debugfs file - HID: multitouch: add eGalaxTouch P80H84 support - HID: alps: Add AUI1657 device ID - HID: alps: ALPS_1657 is too specific; use U1_UNICORN_LEGACY instead - scsi: qla2xxx: Fix hang when issuing nvme disconnect-all in NPIV - scsi: qla2xxx: Delete all sessions before unregister local nvme port - configfs: fix config_item refcnt leak in configfs_rmdir() - vhost/vsock: fix packet delivery order to monitoring devices - [amd64] aquantia: Fix the media type of AQC100 ethernet controller in the driver - component: Silence bind error on -EPROBE_DEFER - [ppc64el] scsi: ibmvscsi: Fix WARN_ON during event pool release - HID: i2c-hid: reset Synaptics SYNA2393 on resume - [x86] apic: Move TSC deadline timer debug printk - gtp: set NLM_F_MULTI flag in gtp_genl_dump_pdp() - HID: quirks: Add HID_QUIRK_NO_INIT_REPORTS quirk for Dell K12A keyboard-dock - ceph: fix double unlock in handle_cap_export() - [arm64,armhf] stmmac: fix pointer check after utilization in stmmac_interrupt - USB: core: Fix misleading driver bug report - [x86] platform/x86: asus-nb-wmi: Do not load on Asus T100TA and T200TA - padata: Replace delayed timer with immediate workqueue in padata_reorder - padata: initialize pd->cpu with effective cpumask - padata: purge get_cpu and reorder_via_wq from padata_do_serial - ALSA: iec1712: Initialize STDSP24 properly when using the model=staudio option - ALSA: pcm: fix incorrect hw_base increase - ALSA: hda/realtek - Fix silent output on Gigabyte X570 Aorus Xtreme - ALSA: hda/realtek - Add more fixup entries for Clevo machines - [armhf] drm/etnaviv: fix perfmon domain interation - apparmor: Fix use-after-free in aa_audit_rule_init - apparmor: fix potential label refcnt leak in aa_change_profile - apparmor: Fix aa_label refcnt leak in policy_update - [arm64] dmaengine: tegra210-adma: Fix an error handling path in 'tegra_adma_probe()' - [powerpc*] Remove STRICT_KERNEL_RWX incompatibility with RELOCATABLE - [powerpc*] 64s: Disable STRICT_KERNEL_RWX - [amd64,arm64] nfit: Add Hyper-V NVDIMM DSM command set to white list - [x86,arm64] libnvdimm/btt: Remove unnecessary code in btt_freelist_init - [x86,arm64] libnvdimm/btt: Fix LBA masking during 'free list' population - [x86] thunderbolt: Drop duplicated get_switch_at_route() - cxgb4: free mac_hlist properly - cxgb4/cxgb4vf: Fix mac_hlist initialization and free - brcmfmac: abort and release host after error - Revert "gfs2: Don't demote a glock until its revokes are written" - misc: rtsx: Add short delay after exit from ASPM - [x86] mei: release me_cl object reference - rxrpc: Fix a memory leak in rxkad_verify_response() - rxrpc: Trace discarded ACKs - rxrpc: Fix ack discard https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.126 - ax25: fix setsockopt(SO_BINDTODEVICE) - __netif_receive_skb_core: pass skb by reference - net: inet_csk: Fix so_reuseport bind-address cache in tb->fast* - net: ipip: fix wrong address family in init error path - net/mlx5: Add command entry handling completion - net: revert "net: get rid of an signed integer overflow in ip_idents_reserve()" - net sched: fix reporting the first-time use timestamp - r8152: support additional Microsoft Surface Ethernet Adapter variant - sctp: Don't add the shutdown timer if its already been added - sctp: Start shutdown on association restart if in SHUTDOWN-SENT state and socket is closed - net/mlx5e: Update netdev txq on completions during closure - net/mlx5: Annotate mutex destroy for root ns - net: sun: fix missing release regions in cas_init_one(). - net/mlx4_core: fix a memory leak bug. - [armhf] dts: rockchip: fix phy nodename for rk3228-evb - [arm64] dts: rockchip: fix status for &gmac2phy in rk3328-evb.dts - [arm64,armhf] gpio: tegra: mask GPIO IRQs during IRQ shutdown - ALSA: usb-audio: add mapping for ASRock TRX40 Creator - gfs2: move privileged user check to gfs2_quota_lock_check - cachefiles: Fix race between read_waiter and read_copier involving op->to_do - [arm64] usb: dwc3: pci: Enable extcon driver for Intel Merrifield - usb: gadget: legacy: fix redundant initialization warnings - IB/i40iw: Remove bogus call to netdev_master_upper_dev_get() - cifs: Fix null pointer check in cifs_read - Input: usbtouchscreen - add support for BonXeon TP - Input: evdev - call input_flush_device() on release(), not flush() - Input: xpad - add custom init packet for Xbox One S controllers - Input: i8042 - add ThinkPad S230u to i8042 reset list - Input: synaptics-rmi4 - really fix attn_data use-after-free - Input: synaptics-rmi4 - fix error return code in rmi_driver_probe() - [armel,armhf] 8970/1: decompressor: increase tag size - [arm*] 8843/1: use unified assembler in headers - gpio: exar: Fix bad handling for ida_simple_get error path - IB/qib: Call kobject_put() when kobject_init_and_add() fails - [armhf] dts/imx6q-bx50v3: Set display interface clock parents - [armel,armhf] dts: bcm2835-rpi-zero-w: Fix led polarity - mmc: block: Fix use-after-free issue for rpmb - ALSA: hwdep: fix a left shifting 1 by 31 UB bug - ALSA: hda/realtek - Add a model for Thinkpad T570 without DAC workaround - ALSA: usb-audio: mixer: volume quirk for ESS Technology Asus USB DAC - exec: Always set cap_ambient in cap_bprm_set_creds - ALSA: usb-audio: Quirks for Gigabyte TRX40 Aorus Master onboard audio - ALSA: hda/realtek - Add new codec supported for ALC287 - libceph: ignore pool overlay and cache logic on redirects - IB/ipoib: Fix double free of skb in case of multicast traffic in CM mode - mm: remove VM_BUG_ON(PageSlab()) from page_mapcount() - include/asm-generic/topology.h: guard cpumask_of_node() macro argument - iommu: Fix reference count leak in iommu_group_alloc. - mmc: core: Fix recursive locking issue in CQE recovery path - RDMA/core: Fix double destruction of uobject - mac80211: mesh: fix discovery timer re-arming issue / crash - [x86] dma: Fix max PFN arithmetic overflow on 32 bit systems - [x86] copy_xstate_to_kernel(): don't leave parts of destination uninitialized - xfrm: allow to accept packets with ipv6 NEXTHDR_HOP in xfrm_input - xfrm: call xfrm_output_gso when inner_protocol is set in xfrm_output - xfrm interface: fix oops when deleting a x-netns interface - xfrm: fix a warning in xfrm_policy_insert_list - xfrm: fix a NULL-ptr deref in xfrm_local_error - xfrm: fix error in comment - vti4: eliminated some duplicate code. - ip_vti: receive ipip packet by calling ip_tunnel_rcv - netfilter: nft_reject_bridge: enable reject with bridge vlan - netfilter: ipset: Fix subcounter update skip - netfilter: nfnetlink_cthelper: unbreak userspace helper support - netfilter: nf_conntrack_pptp: prevent buffer overflows in debug code - esp6: get the right proto for transport mode in esp6_gso_encap - bnxt_en: Fix accumulation of bp->net_stats_prev. - xsk: Add overflow check for u64 division, stored into u32 - qlcnic: fix missing release in qlcnic_83xx_interrupt_test. - bonding: Fix reference count leak in bond_sysfs_slave_add. - netfilter: nf_conntrack_pptp: fix compilation warning with W=1 build - mm/vmalloc.c: don't dereference possible NULL pointer in __vunmap() https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.127 - Revert "cgroup: Add memory barriers to plug cgroup_rstat_updated() race window" - libnvdimm: Fix endian conversion issues  - HID: sony: Fix for broken buttons on DS3 USB dongles - HID: i2c-hid: add Schneider SCL142ALM to descriptor override - p54usb: add AirVasT USB stick device-id - mmc: fix compilation of user API - scsi: ufs: Release clock if DMA map fails - airo: Fix read overflows sending packets - [x86] drm/i915: fix port checks for MST support on gen >= 11 - [arm64] scsi: hisi_sas: Check sas_port before using it - [powerpc*] powernv: Avoid re-registration of imc debugfs directory - [s390x] ftrace: save traced function caller - drm/edid: Add Oculus Rift S to non-desktop list - [s390x] mm: fix set_huge_pte_at() for empty ptes - null_blk: return error for invalid zone size - [arm64] net: ethernet: stmmac: Enable interface clocks on probe for IPQ806x - [arm64,armhf] net: smsc911x: Fix runtime PM imbalance on error https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.128 - devinet: fix memleak in inetdev_init() - l2tp: add sk_family checks to l2tp_validate_socket - l2tp: do not use inet_hash()/inet_unhash() - net: usb: qmi_wwan: add Telit LE910C1-EUX composition - vsock: fix timeout in vsock_accept() - net: check untrusted gso_size at kernel entry - USB: serial: qcserial: add DW5816e QDL support - USB: serial: usb_wwan: do not resubmit rx urb on fatal errors - USB: serial: option: add Telit LE910C1-EUX compositions - [arm64,armhf] usb: musb: start session in resume for host port - [arm64,armhf] usb: musb: Fix runtime PM imbalance on error - vt: keyboard: avoid signed integer overflow in k_ascii (CVE-2020-13974) - tty: hvc_console, fix crashes on parallel open/close - staging: rtl8712: Fix IEEE80211_ADDBA_PARAM_BUF_SIZE_MASK - CDC-ACM: heed quirk also in error handling - [arm64] nvmem: qfprom: remove incorrect write support - uprobes: ensure that uprobe->offset and ->ref_ctr_offset are properly aligned - Revert "net/mlx5: Annotate mutex destroy for root ns" https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.129 - ipv6: fix IPV6_ADDRFORM operation logic - net_failover: fixed rollback in net_failover_open() - bridge: Avoid infinite loop when suppressing NS messages with invalid options - vxlan: Avoid infinite loop when suppressing NS messages with invalid options - tun: correct header offsets in napi frags mode - make 'user_access_begin()' do 'access_ok()' (CVE-2018-20669) - [x86] uaccess: Inhibit speculation past access_ok() in user_access_begin() - lib: Reduce user_access_begin() boundaries in strncpy_from_user() and strnlen_user() - btrfs: merge btrfs_find_device and find_device (CVE-2019-18885) - btrfs: Detect unbalanced tree with empty leaf before crashing btree operations - [armel,armhf] 8977/1: ptrace: Fix mask for thumb breakpoint hook - sched/fair: Don't NUMA balance for kthreads - Input: synaptics - add a second working PNP_ID for Lenovo T470s - [powerpc*] xive: Clear the page tables for the ESB IO mapping - ath9k_htc: Silence undersized packet warnings - RDMA/uverbs: Make the event_queue fds return POLLERR when disassociated - [x86] cpu/amd: Make erratum #1054 a legacy erratum - perf probe: Accept the instance number of kretprobe event - mm: add kvfree_sensitive() for freeing sensitive data objects - aio: fix async fsync creds - btrfs: tree-checker: Check level for leaves and nodes - [x86] Fix jiffies ODR violation - [x86] PCI: Mark Intel C620 MROMs as having non-compliant BARs - [x86] speculation: Prevent rogue cross-process SSBD shutdown (CVE-2020-10766) - [x86] reboot/quirks: Add MacBook6,1 reboot quirk - efi/efivars: Add missing kobject_put() in sysfs entry creation error path - [i386] ALSA: es1688: Add the missed snd_card_free() - ALSA: hda/realtek - add a pintbl quirk for several Lenovo machines - ALSA: usb-audio: Fix inconsistent card PM state after resume - ALSA: usb-audio: Add vendor, product and profile name for HP Thunderbolt Dock - [arm64,x86] ACPI: sysfs: Fix reference count leak in acpi_sysfs_add_hotplug_profile() - [amd64,arm64] ACPI: CPPC: Fix reference count leak in acpi_cppc_processor_probe() - [arm64] ACPI: GED: add support for _Exx / _Lxx handler methods - [arm64,x86] ACPI: PM: Avoid using power resources if there are none for D0 - cgroup, blkcg: Prepare some symbols for module and !CONFIG_CGROUP usages - nilfs2: fix null pointer dereference at nilfs_segctor_do_construct() - [arm*] spi: bcm2835aux: Fix controller unregister order - PM: runtime: clk: Fix clk_pm_runtime_get() error path - [arm64] crypto: cavium/nitrox - Fix 'nitrox_get_first_device()' when ndevlist is fully iterated - ALSA: pcm: disallow linking stream to itself - [x86] {mce,mm}: Unmap the entire page if the whole page is affected and poisoned - [x86] KVM: Fix APIC page invalidation race - [x86] kvm: Fix L1TF mitigation for shadow MMU - [x86] KVM: x86/mmu: Consolidate "is MMIO SPTE" code - [x86] KVM: only do L1TF workaround on affected processors - [x86] speculation: Change misspelled STIPB to STIBP - [x86] speculation: Add support for STIBP always-on preferred mode - [x86] speculation: Avoid force-disabling IBPB based on STIBP and enhanced IBRS. (CVE-2020-10767) - [x86] speculation: PR_SPEC_FORCE_DISABLE enforcement for indirect branches. (CVE-2020-10768) - spi: No need to assign dummy value in spi_unregister_controller() - spi: Fix controller unregister order - [amd64] spi: pxa2xx: Fix controller unregister order - [arm*] spi: bcm2835: Fix controller unregister order - [amd64] spi: pxa2xx: Balance runtime PM enable/disable on error - [amd64] spi: pxa2xx: Fix runtime PM ref imbalance on probe error - crypto: virtio: Fix use-after-free in virtio_crypto_skcipher_finalize_req() - crypto: virtio: Fix src/dst scatterlist calculation in __virtio_crypto_skcipher_do_req() - crypto: virtio: Fix dest length calculation in __virtio_crypto_skcipher_do_req() - ovl: initialize error in ovl_copy_xattr - proc: Use new_inode not new_inode_pseudo - [x86] KVM: nSVM: fix condition for filtering async PF - [x86] KVM: nSVM: leave ASID aside in copy_vmcb_control_area - [x86] KVM: nVMX: Consult only the "basic" exit reason when routing nested exit - [arm64] KVM: Make vcpu_cp1x() work on Big Endian hosts - scsi: megaraid_sas: TM command refire leads to controller firmware crash - ath9k: Fix use-after-free Read in ath9k_wmi_ctrl_rx - ath9k: Fix use-after-free Write in ath9k_htc_rx_msg - ath9x: Fix stack-out-of-bounds Write in ath9k_hif_usb_rx_cb - ath9k: Fix general protection fault in ath9k_hif_usb_rx_cb - mm/slub: fix a memory leak in sysfs_slab_add() - fat: don't allow to mount if the FAT length == 0 - perf: Add cond_resched() to task_function_call() - [x86] agp/intel: Reinforce the barrier after GTT updates - [arm64] mmc: sdhci-msm: Clear tuning done flag while hs400 tuning - mmc: sdio: Fix potential NULL pointer error in mmc_sdio_init_card() - xen/pvcalls-back: test for errors when calling backend_connect() - [arm64] KVM: Synchronize sysreg state on injecting an AArch32 exception - [arm64] ACPI: GED: use correct trigger type field in _Exx / _Lxx handling - [arm64] drm: bridge: adv7511: Extend list of audio sample rates - [x86] crypto: ccp -- don't "select" CONFIG_DMADEVICES - media: si2157: Better check for running tuner in init - [amd64] spi: pxa2xx: Apply CS clk quirk to BXT - [amd64] net: atlantic: make hw_get_regs optional - net: ena: fix error returning in ena_com_get_hash_function() - [arm64] insn: Fix two bugs in encoding 32-bit logical immediates - ixgbe: Fix XDP redirect on archs with PAGE_SIZE above 4K - Bluetooth: Add SCO fallback for invalid LMP parameters error - [armhf] clocksource: dw_apb_timer: Make CPU-affiliation being optional - [armhf] clocksource: dw_apb_timer_of: Fix missing clockevent timers - btrfs: do not ignore error from btrfs_next_leaf() when inserting checksums - batman-adv: Revert "disable ethtool link speed detection when auto negotiation off" - [armhf] mmc: meson-mx-sdio: trigger a soft reset after a timeout or CRC error - [x86] kvm/hyper-v: Explicitly align hcall param for kvm_hyperv_exit - [x86] net: vmxnet3: fix possible buffer overflow caused by bad DMA value in vmxnet3_get_rss() - brcmfmac: fix wrong location to get firmware feature - e1000: Distribute switch variables for initialization - dt-bindings: display: mediatek: control dpi pins mode to avoid leakage - audit: fix a net reference leak in audit_send_reply() - media: dvb: return -EREMOTEIO on i2c transfer failure. - [mips*] Make sparse_init() using top-down allocation - Bluetooth: btbcm: Add 2 missing models to subver tables - audit: fix a net reference leak in audit_list_rules_send() - netfilter: nft_nat: return EOPNOTSUPP if type or flags are not supported - exit: Move preemption fixup up, move blocking operations down - sched/core: Fix illegal RCU from offline CPUs - drivers/perf: hisi: Fix typo in events attribute array - [armhf] net: allwinner: Fix use correct return type for ndo_start_xmit() - xfs: clean up the error handling in xfs_swap_extents - Crypto/chcr: fix for ccm(aes) failed test - [mips*] cm: Fix an invalid error code of INTVN_*_ERR - xfs: reset buffer write failure state on successful completion - xfs: fix duplicate verification from xfs_qm_dqflush() - [x86] platform/x86: intel-vbtn: Use acpi_evaluate_integer() - [x86] platform/x86: intel-vbtn: Split keymap into buttons and switches parts - [x86] platform/x86: intel-vbtn: Do not advertise switches to userspace if they are not there - [x86] platform/x86: intel-vbtn: Also handle tablet-mode switch on "Detachable" and "Portable" chassis-types - nvme: refine the Qemu Identify CNS quirk - ath10k: Remove msdu from idr when management pkt send fails - [arm64] wcn36xx: Fix error handling path in 'wcn36xx_probe()' - net: qed*: Reduce RX and TX default ring count when running inside kdump kernel - mt76: avoid rx reorder buffer overflow - md: don't flush workqueue unconditionally in md_open - veth: Adjust hard_start offset on redirect XDP frames - net/mlx5e: IPoIB, Drop multicast packets that this interface sent - rtlwifi: Fix a double free in _rtl_usb_tx_urb_setup() - mwifiex: Fix memory corruption in dump_station - [x86] boot: Correct relocation destination on old linkers - [x86] mm: Stop printing BRK addresses - btrfs: qgroup: mark qgroup inconsistent if we're inherting snapshot to a new qgroup - macvlan: Skip loopback packets in RX handler - PCI: Don't disable decoding when mmio_always_on is set - [mips*] Fix IRQ tracing when call handle_fpe() and handle_msa_fpe() - bcache: fix refcount underflow in bcache_device_free() - [arm64] mmc: sdhci-msm: Set SDHCI_QUIRK_MULTIBLOCK_READ_ACMD12 quirk - mmc: via-sdmmc: Respect the cmd->busy_timeout from the mmc core - ixgbe: fix signed-integer-overflow warning - [armhf] mmc: sdhci-esdhc-imx: fix the mask for tuning start point - cpuidle: Fix three reference count leaks - [x86] platform/x86: hp-wmi: Convert simple_strtoul() to kstrtou32() - [x86] platform/x86: intel-hid: Add a quirk to support HP Spectre X2 (2015) - [x86] platform/x86: intel-vbtn: Only blacklist SW_TABLET_MODE on the 9 / "Laptop" chasis-type - btrfs: include non-missing as a qualifier for the latest_bdev - btrfs: send: emit file capabilities after chown - mm: thp: make the THP mapcount atomic against __split_huge_pmd_locked() - mm: initialize deferred pages with interrupts enabled - ext4: fix EXT_MAX_EXTENT/INDEX to check for zeroed eh_max - ext4: fix error pointer dereference - ext4: fix race between ext4_sync_parent() and rename() - PCI: Avoid Pericom USB controller OHCI/EHCI PME# defect - PCI: Avoid FLR for AMD Matisse HD Audio & USB 3.0 - PCI: Avoid FLR for AMD Starship USB 3.0 - PCI: Add ACS quirk for iProc PAXB - PCI: Add ACS quirk for Intel Root Complex Integrated Endpoints - PCI: Remove unused NFP32xx IDs - [x86] hwmon/k10temp, x86/amd_nb: Consolidate shared device IDs - [x86] amd_nb: Add PCI device IDs for family 17h, model 30h - PCI: add USR vendor id and use it in r8169 and w6692 driver - PCI: Move Synopsys HAPS platform device IDs - PCI: Move Rohm Vendor ID to generic list - misc: pci_endpoint_test: Add the layerscape EP device support - misc: pci_endpoint_test: Add support to test PCI EP in AM654x - PCI: Add Synopsys endpoint EDDA Device ID - PCI: Add NVIDIA GPU multi-function power dependencies - PCI: Enable NVIDIA HDA controllers - [x86] amd_nb: Add PCI device IDs for family 17h, model 70h - ALSA: lx6464es - add support for LX6464ESe pci express variant - PCI: Add Genesys Logic, Inc. Vendor ID - PCI: Add Amazon's Annapurna Labs vendor ID - PCI: vmd: Add device id for VMD device 8086:9A0B - [x86] amd_nb: Add Family 19h PCI IDs - PCI: Add Loongson vendor ID - serial: 8250_pci: Move Pericom IDs to pci_ids.h - PCI: Make ACS quirk implementations more uniform - PCI: Unify ACS quirk desired vs provided checking - PCI: Generalize multi-function power dependency device links - btrfs: fix error handling when submitting direct I/O bio - btrfs: fix wrong file range cleanup after an error filling dealloc range - PCI: Program MPS for RCiEP devices - e1000e: Disable TSO for buffer overrun workaround - e1000e: Relax condition to trigger reset for ME workaround - carl9170: remove P2P_GO support - media: go7007: fix a miss of snd_card_free (CVE-2019-20810) - Bluetooth: hci_bcm: fix freeing not-requested IRQ - b43legacy: Fix case where channel status is corrupted - b43: Fix connection problem with WPA3 - b43_legacy: Fix connection problem with WPA3 - igb: Report speed and duplex as unknown when device is runtime suspended - [arm64,armhf] power: vexpress: add suppress_bind_attrs to true - [armhf] pinctrl: samsung: Correct setting of eint wakeup mask on s5pv210 - [armhf] pinctrl: samsung: Save/restore eint_mask over suspend for EINT_TYPE GPIOs - gnss: sirf: fix error return code in sirf_probe() - dm crypt: avoid truncating the logical block size - kernel/cpu_pm: Fix uninitted local in cpu_pm - [armhf] tegra: Correct PL310 Auxiliary Control Register initialization - [powerpc*] 64s: Don't let DT CPU features set FSCR_DSCR - [powerpc*] 64s: Save FSCR to init_task.thread.fscr after feature init - sunrpc: svcauth_gss_register_pseudoflavor must reject duplicate registrations. - sunrpc: clean up properly in gss_mech_unregister() - [armhf] w1: omap-hdq: cleanup to add missing newline for some dev_dbg - perf probe: Do not show the skipped events - perf probe: Fix to check blacklist address correctly - perf probe: Check address correctness by map instead of _etext - perf symbols: Fix debuginfo search for Ubuntu https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.130 - [arm64,armhf] clk: sunxi: Fix incorrect usage of round_down() - [arm64,armhf] ASoC: tegra: tegra_wm8903: Support nvidia, headset property - i2c: piix4: Detect secondary SMBus controller on AMD AM4 chipsets - [x86] iio: pressure: bmp280: Tolerate IRQ before registering - [arm64] clk: qcom: msm8916: Fix the address location of pll->config_reg - [arm64] backlight: lp855x: Ensure regulators are disabled on probe failure - [armhf] ASoC: davinci-mcasp: Fix dma_chan refcnt leak when getting dma type - [armel] integrator: Add some Kconfig selections - scsi: qedi: Check for buffer overflow in qedi_set_path() - ALSA: hda/realtek - Introduce polarity for micmute LED GPIO - [i386] ALSA: isa/wavefront: prevent out of bounds write in ioctl - PCI: Allow pci_resize_resource() for devices on root bus - scsi: qla2xxx: Fix issue with adapter's stopping state - [x86] iio: bmp280: fix compensation of humidity - f2fs: report delalloc reserve as non-free in statfs for project quota - [x86] i2c: pxa: clear all master action bits in i2c_pxa_stop_message() - [armhf] clk: samsung: Mark top ISP and CAM clocks on Exynos542x as critical - usblp: poison URBs upon disconnect - serial: 8250: Fix max baud limit in generic 8250 port - dm mpath: switch paths in dm_blk_ioctl() code path - [arm64] PCI: aardvark: Don't blindly enable ASPM L0s and don't write to read-only register - vfio/pci: fix memory leaks in alloc_perm_bits() - RDMA/mlx5: Add init2init as a modify command - scsi: lpfc: Fix lpfc_nodelist leak when processing unsolicited event - [powerpc*] perf/hv-24x7: Fix inconsistent output values incase multiple hv-24x7 events run - nfsd: Fix svc_xprt refcnt leak when setup callback client failed - [amd64] PCI: vmd: Filter resource type bits from shadow register - [powerpc*] crashkernel: Take "mem=" option into account - yam: fix possible memory leak in yam_init_driver - apparmor: fix introspection of of task mode for unconfined tasks - apparmor: check/put label on apparmor_sk_clone_security() - scsi: sr: Fix sr_probe() missing deallocate of device minor - [powerpc*] scsi: ibmvscsi: Don't send host info in adapter info MAD after LPM - apparmor: fix nnp subset test for unconfined - [x86] purgatory: Disable various profiling and sanitizing options - scsi: qedi: Do not flush offload work if ARP not resolved - [armhf] dts: sun8i-h2-plus-bananapi-m2-zero: Fix led polarity - scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing - [arm64] firmware: qcom_scm: fix bogous abuse of dma-direct internals - ALSA: usb-audio: Improve frames size computation - ALSA: usb-audio: Fix racy list management in output queue - [s390x] qdio: put thinint indicator after early error - tty: hvc: Fix data abort due to race in hvc_open - [armhf] thermal/drivers/ti-soc-thermal: Avoid dereferencing ERR_PTR - [arm64,armhf] usb: dwc3: gadget: Properly handle failed kick_transfer - [mips64el,mipsel] staging: sm750fb: add missing case while setting FB_VISUAL - [arm64,i386] i2c: pxa: fix i2c_pxa_scream_blue_murder() debug output - [arm*] serial: amba-pl011: Make sure we initialize the port.lock spinlock - drivers: base: Fix NULL pointer exception in __platform_driver_probe() if a driver developer is foolish - PCI/ASPM: Allow ASPM on links to PCIe-to-PCI/PCI-X Bridges - scsi: qla2xxx: Fix warning after FC target reset - scsi: mpt3sas: Fix double free warnings - [arm64,armhf] pinctrl: rockchip: fix memleak in rockchip_dt_node_to_map - [armhf] clk: ti: composite: fix memory leak - PCI: Fix pci_register_host_bridge() device_register() error handling - [powerpc*] Don't initialise init_task->thread.regs - tty: n_gsm: Fix SOF skipping - tty: n_gsm: Fix waking up upper tty layer when room available - HID: Add quirks for Trust Panora Graphic Tablet - ipmi: use vzalloc instead of kmalloc for user creation - [powerpc*] pseries/ras: Fix FWNMI_VALID off by one - vfio-pci: Mask cap zero - usb/ohci-platform: Fix a warning when hibernating - [arm64] drm/msm/mdp5: Fix mdp5_init error path for failed mdp5_kms allocation - [x86] ASoC: Intel: bytcr_rt5640: Add quirk for Toshiba Encore WT8-A tablet - [armhf] USB: host: ehci-mxc: Add error handling in ehci_mxc_drv_probe() - tty: n_gsm: Fix bogus i++ in gsm_data_kick - scsi: target: tcmu: Userspace must not complete queued commands - [powerpc*] 64s/pgtable: fix an undefined behaviour - dm zoned: return NULL if dmz_get_zone_for_reclaim() fails to find a zone - PCI/PTM: Inherit Switch Downstream Port PTM settings from Upstream Port - [arm64,armhf] PCI: dwc: Fix inner MSI IRQ domain registration - IB/cma: Fix ports memory leak in cma_configfs - [arm*] usb: dwc2: gadget: move gadget resume after the core is in L0 state - usb: gadget: Fix issue with config_ep_by_speed function - RDMA/iw_cxgb4: cleanup device debugfs entries on ULD remove - [x86] apic: Make TSC deadline timer detection message visible - scsi: target: tcmu: Fix a use after free in tcmu_check_expired_queue_cmd() - [arm*] clk: bcm2835: Fix return type of bcm2835_register_gate - [ppc64el] KVM: Book3S HV: Ignore kmemleak false positives - net: sunrpc: Fix off-by-one issues in 'rpc_ntop6' - NFSv4.1 fix rpc_call_done assignment for BIND_CONN_TO_SESSION - of: Fix a refcounting bug in __of_attach_node_sysfs() - rxrpc: Adjust /proc/net/rxrpc/calls to display call->debug_id not user_ID - gfs2: Allow lock_nolock mount to specify jid=X - scsi: iscsi: Fix reference count leak in iscsi_boot_create_kobj - scsi: ufs: Don't update urgent bkops level when toggling auto bkops - [armhf] pinctrl: freescale: imx: Fix an error handling path in 'imx_pinctrl_probe()' - geneve: change from tx_error to tx_dropped on missing metadata - lib/zlib: remove outdated and incorrect pre-increment optimization - blktrace: use errno instead of bi_status - blktrace: fix endianness in get_pdu_int() - blktrace: fix endianness for blk_log_remap() - gfs2: fix use-after-free on transaction ail lists - drivers/perf: hisi: Fix wrong value for all counters enable - afs: Fix memory leak in afs_put_sysnames() - ASoC: core: only convert non DPCM link to DPCM link - [x86] ASoC: Intel: bytcr_rt5640: Add quirk for Toshiba Encore WT10-A tablet - ASoC: rt5645: Add platform-data for Asus T101HA - [arm64,armhf] drm/sun4i: hdmi ddc clk: Fix size of m divider - [x86] idt: Keep spurious entries unset in system_vectors - net/filter: Permit reading NET in load_bytes_relative when MAC not set - xdp: Fix xsk_generic_xmit errno - [arm64,armhf] usb/xhci-plat: Set PM runtime as active on resume - usb: host: ehci-platform: add a quirk to avoid stuck - usb/ehci-platform: Set PM runtime as active on resume - perf report: Fix NULL pointer dereference in hists__fprintf_nr_sample_events() - ext4: stop overwrite the errcode in ext4_setup_super - bcache: fix potential deadlock problem in btree_gc_coalesce (CVE-2020-12771) - afs: Fix non-setting of mtime when writing into mmap - afs: afs_write_end() should change i_size under the right lock - block: Fix use-after-free in blkdev_get() - [arm64] hw_breakpoint: Don't invoke overflow handler on uaccess watchpoints - libata: Use per port sync for detach - drm: encoder_slave: fix refcouting error for modules - drm/dp_mst: Reformat drm_dp_check_act_status() a bit - drm/qxl: Use correct notify port address when creating cursor ring - selinux: fix double free - ext4: fix partial cluster initialization when splitting extent - ext4: avoid race conditions when remounting with options that change dax - drm/dp_mst: Increase ACT retry timeout to 3s - block: nr_sects_write(): Disable preemption on seqcount write - mtd: rawnand: Pass a nand_chip object to nand_scan() - mtd: rawnand: Pass a nand_chip object to nand_release() - mtd: rawnand: diskonchip: Fix the probe error path - [armel,armhf] mtd: rawnand: orion: Fix the probe error path - [s390x] fix syscall_get_error for compat processes - [x86] drm/i915: Whitelist context-local timestamp in the gen9 cmdparser - [x86] drm/i915/icl+: Fix hotplug interrupt disabling after storm detection - crypto: algif_skcipher - Cap recv SG list at ctx->used - crypto: algboss - don't wait during notifier callback - kprobes: Fix to protect kick_kprobe_optimizer() by kprobe_mutex - e1000e: Do not wake up the system via WOL if device wakeup is disabled - [mips*] net: octeon: mgmt: Repair filling of RX ring - kretprobe: Prevent triggering kretprobe from within kprobe_flush_task - sched/rt, net: Use CONFIG_PREEMPTION.patch - net: core: device_rename: Use rwsem instead of a seqcount - md: add feature flag MD_FEATURE_RAID0_LAYOUT - [x86] kvm: Move kvm_set_mmio_spte_mask() from x86.c to mmu.c - [x86] kvm: Fix reserved bits related calculation errors caused by MKTME - [x86] KVM: x86/mmu: Set mmio_value to '0' if reserved #PF can't be generated https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.131 - net: be more gentle about silly gso requests coming from user - block/bio-integrity: don't free 'buf' if bio_integrity_add_page() failed - fanotify: fix ignore mask logic for events on child and on dir - [armhf] mtd: rawnand: marvell: Fix the condition on a return code - net: sched: export __netdev_watchdog_up() - [x86] EDAC/amd64: Add Family 17h Model 30h PCI IDs - [arm64,armhf] i2c: tegra: Cleanup kerneldoc comments - [arm64,armhf] i2c: tegra: Add missing kerneldoc for some fields - [arm64,armhf] i2c: tegra: Fix Maximum transfer size - ALSA: hda/realtek - Enable the headset of ASUS B9450FA with ALC294 - ALSA: hda/realtek: Enable mute LED on an HP system - ALSA: hda/realtek - Enable micmute LED on and HP system - apparmor: don't try to replace stale label in ptraceme check (Closes: #963493) - [ppc64el] ibmveth: Fix max MTU limit - mld: fix memory leak in ipv6_mc_destroy_dev() - net: bridge: enfore alignment for ethernet address - net: fix memleak in register_netdevice() - net: place xmit recursion in softnet data - net: use correct this_cpu primitive in dev_recursion_level - net: increment xmit_recursion level in dev_direct_xmit() - net: usb: ax88179_178a: fix packet alignment padding - rxrpc: Fix notification call on completion of discarded calls - sctp: Don't advertise IPv4 addresses if ipv6only is set on the socket - tcp: don't ignore ECN CWR on pure ACK - tcp: grow window for OOO packets only for SACK flows - tg3: driver sleeps indefinitely when EEH errors exceed eeh_max_freezes - ip6_gre: fix use-after-free in ip6gre_tunnel_lookup() - net: phy: Check harder for errors in get_phy_id() - ip_tunnel: fix use-after-free in ip_tunnel_lookup() - sch_cake: don't try to reallocate or unshare skb unconditionally - sch_cake: fix a few style nits - tcp_cubic: fix spurious HYSTART_DELAY exit upon drop in min RTT - sch_cake: don't call diffserv parsing code when it is not needed - net: Fix the arp error in some cases - net: Do not clear the sock TX queue in sk_set_socket() - net: core: reduce recursion limit value - [arm*] usb: dwc2: Postponed gadget registration to the udc class driver - usb: add USB_QUIRK_DELAY_INIT for Logitech C922 - USB: ehci: reopen solution for Synopsys HC bug - xhci: Poll for U0 after disabling USB2 LPM - [armhf] usb: host: ehci-exynos: Fix error check in exynos_ehci_probe() - ALSA: usb-audio: add quirk for Denon DCD-1500RE - ALSA: usb-audio: add quirk for Samsung USBC Headset (AKG) - ALSA: usb-audio: Fix OOB access of mixer element list - [s390x] scsi: zfcp: Fix panic on ERP timeout for previously dismissed ERP action - xhci: Fix incorrect EP_STATE_MASK - xhci: Fix enumeration issue when setting max packet size for FS devices. - xhci: Return if xHCI doesn't support LPM - cdc-acm: Add DISABLE_ECHO quirk for Microchip/SMSC chip - loop: replace kill_bdev with invalidate_bdev - IB/mad: Fix use after free when destroying MAD agent - cifs/smb3: Fix data inconsistent when punch hole - cifs/smb3: Fix data inconsistent when zero file range - xfrm: Fix double ESP trailer insertion in IPsec crypto offload. - efi/esrt: Fix reference count leak in esre_create_sysfs_entry. - [armhf] regualtor: pfuze100: correct sw1a/sw2 on pfuze3000 - [armhf] ASoC: fsl_ssi: Fix bclk calculation for mono channel - [armhf] dts: Fix duovero smsc interrupt for suspend - regmap: Fix memory leak from regmap_register_patch - rxrpc: Fix handling of rwind from an ACK packet - RDMA/qedr: Fix KASAN: use-after-free in ucma_event_handler+0x532 - RDMA/cma: Protect bind_list and listen_list while finding matching cm id - RDMA/mad: Fix possible memory leak in ib_mad_post_receive_mads() - net: qed: fix left elements count calculation - net: qed: fix NVMe login fails over VFs - net: qed: fix excessive QM ILT lines consumption - cxgb4: move handling L2T ARP failures to caller - [armhf] imx5: add missing put_device() call in imx_suspend_alloc_ocram() - netfilter: ipset: fix unaligned atomic access - i2c: core: check returned size of emulated smbus block read - sched/deadline: Initialize ->dl_boosted - sched/core: Fix PI boosting between RT and DEADLINE tasks - ata/libata: Fix usage of page address by page_address in ata_scsi_mode_select_xlat function - net: alx: fix race condition in alx_remove - [s390x] ptrace: fix setting syscall number - [s390x] vdso: fix vDSO clock_getres() - kbuild: improve cc-option to clean up all temporary files - blktrace: break out of blktrace setup on concurrent calls - ALSA: hda: Add NVIDIA codec IDs 9a & 9d through a0 to patch table - ALSA: hda/realtek - Add quirk for MSI GE63 laptop - [x86,arm64] ACPI: sysfs: Fix pm_profile_attr type - [x86] KVM: Fix MSR range of APIC registers in X2APIC mode - [x86] KVM: nVMX: Plumb L2 GPA through to PML emulation - [amd64] x86/asm/64: Align start of __clear_user() loop to 16-bytes - btrfs: fix data block group relocation failure due to concurrent scrub - btrfs: fix failure of RWF_NOWAIT write into prealloc extent beyond eof - mm/slab: use memzero_explicit() in kzfree() - ocfs2: avoid inode removal while nfsd is accessing it - ocfs2: load global_inode_alloc - ocfs2: fix value of OCFS2_INVALID_SLOT - ocfs2: fix panic on nfs server over ocfs2 - [arm64] perf: Report the PC value in REGS_ABI_32 mode - tracing: Fix event trigger to accept redundant spaces - ring-buffer: Zero out time extend if it is nested and not absolute - drm/radeon: fix fb_div check in ni_init_smc_spll_table() - [x86,arm64] Staging: rtl8723bs: prevent buffer overflow in update_sta_support_rate() - sunrpc: fixed rollback in rpc_gssd_dummy_populate() - SUNRPC: Properly set the @subbuf parameter of xdr_buf_subsegment() - pNFS/flexfiles: Fix list corruption if the mirror count changes - NFSv4 fix CLOSE not waiting for direct IO compeletion - dm writecache: correct uncommitted_block when discarding uncommitted entry - dm writecache: add cond_resched to loop in persistent_memory_claim() - xfs: add agf freeblocks verify in xfs_agf_verify (CVE-2020-12655) - Revert "tty: hvc: Fix data abort due to race in hvc_open" . [ Salvatore Bonaccorso ] * [rt] Add new signing key for Tom Zanussi * nfsd: apply umask on fs without ACL support (Closes: #962254) * [rt] Update to 4.19.120-rt52: - tasklet: Address a race resulting in double-enqueue - hrtimer: fix logic for when grabbing softirq_expiry_lock can be elided * [rt] Update to 4.19.124-rt53 * [rt] Update to 4.19.127-rt55: - fs/dcache: Include swait.h header - mm: slub: Always flush the delayed empty slubs in flush_all() - tasklet: Fix UP case for tasklet CHAINED state * usb: usbtest: fix missing kfree(dev->buf) in usbtest_disconnect (CVE-2020-15393) . [ Ben Hutchings ] * [rt] Update "net: move xmit_recursion to per-task variable on -RT" to apply on top of "net: place xmit recursion in softnet data" * [rt] Drop "net: Add a mutex around devnet_rename_seq", redundant with "net: Introduce net_rwsem to protect net_namespace_list" * [rt] Drop idle task related parts of "sched: Move mmdrop to RCU on RT", redundant with "sched/core: Fix illegal RCU from offline CPUs" * Bump ABI to 10 . [ YunQiang Su ] * [mips*]: Do not enable MIPS_O32_FP64_SUPPORT, since golang hasn't been migrated to FPXX yet and this breaks the golang packages on Octeon hardware. In turns this disables MSA on 32-bit kernels. . [ Luca Boccassi ] * [cloud] Enable INFINIBAND configs for HyperV/Azure (Closes: #958300) linux-signed-arm64 (4.19.118+2+deb10u1) buster-security; urgency=high . * Sign kernel from linux 4.19.118-2+deb10u1 . [ Salvatore Bonaccorso ] * selinux: properly handle multiple messages in selinux_netlink_send() (CVE-2020-10751) * fs/namespace.c: fix mountpoint reference counter race (CVE-2020-12114) * USB: core: Fix free-while-in-use bug in the USB S-Glibrary (CVE-2020-12464) * [x86] KVM: SVM: Fix potential memory leak in svm_cpu_init() (CVE-2020-12768) * scsi: sg: add sg_remove_request in sg_write (CVE-2020-12770) * USB: gadget: fix illegal array access in binding with UDC (CVE-2020-13143) * netlabel: cope with NULL catmap (CVE-2020-10711) * fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() (CVE-2020-10732) * kernel/relay.c: handle alloc_percpu returning NULL in relay_open (CVE-2019-19462) * mm: Fix mremap not considering huge pmd devmap (CVE-2020-10757) * [x86] KVM: nVMX: Always sync GUEST_BNDCFGS when it comes from vmcs01 * KVM: Introduce a new guest mapping API * [arm64] kvm: fix compilation on aarch64 * [s390x] kvm: fix compilation on s390 * [s390x] kvm: fix compile on s390 part 2 * KVM: Properly check if "page" is valid in kvm_vcpu_unmap * [x86] kvm: Introduce kvm_(un)map_gfn() (CVE-2019-3016) * [x86] kvm: Cache gfn to pfn translation (CVE-2019-3016) * [x86] KVM: Make sure KVM_VCPU_FLUSH_TLB flag is not missed (CVE-2019-3016) * [x86] KVM: Clean up host's steal time structure (CVE-2019-3016) * include/uapi/linux/swab.h: fix userspace breakage, use __BITS_PER_LONG for swap (Closes: #960271) . [ Ben Hutchings ] * propagate_one(): mnt_set_mountpoint() needs mount_lock * [x86] Add support for mitigation of Special Register Buffer Data Sampling (SRBDS) (CVE-2020-0543): - x86/cpu: Add 'table' argument to cpu_matches() - x86/speculation: Add Special Register Buffer Data Sampling (SRBDS) mitigation - x86/speculation: Add SRBDS vulnerability and mitigation documentation - x86/speculation: Add Ivy Bridge to affected list * [x86] speculation: Do not match steppings, to avoid an ABI change linux-signed-arm64 (4.19.118+2+deb10u1~bpo9+1) stretch-backports; urgency=medium . * Sign kernel from linux 4.19.118-2+deb10u1~bpo9+1 . * Rebuild for stretch-backports; no further changes required linux-signed-i386 (4.19.132+1) buster; urgency=medium . * Sign kernel from linux 4.19.132-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.132 - btrfs: fix a block group ref counter leak after failure to remove block group - mm: fix swap cache node allocation mask - [x86] EDAC/amd64: Read back the scrub rate PCI register on F15h - usbnet: smsc95xx: Fix use-after-free after removal - mm/slub.c: fix corrupted freechain in deactivate_slab() - mm/slub: fix stack overruns with SLUB_STATS - [s390x] debug: avoid kernel warning on too large number of pages - nvme-multipath: set bdi capabilities once - nvme-multipath: fix deadlock between ana_work and scan_work - crypto: af_alg - fix use-after-free in af_alg_accept() due to bh_lock_sock() - [arm64] drm/msm/dpu: fix error return code in dpu_encoder_init - cxgb4: use unaligned conversion for fetching timestamp - cxgb4: parse TC-U32 key values and masks natively - cxgb4: use correct type for all-mask IP address comparison - cxgb4: fix SGE queue dump destination buffer context - [x86] hwmon: (acpi_power_meter) Fix potential memory leak in acpi_power_meter_add() - [arm64,armhf] drm: sun4i: hdmi: Remove extra HPD polling - virtio-blk: free vblk-vqs in error path of virtblk_probe() - SMB3: Honor 'posix' flag for multiuser mounts - nvme: fix a crash in nvme_mpath_add_disk - i2c: algo-pca: Add 0x78 as SCL stuck low status for PCA9665 - Revert "ALSA: usb-audio: Improve frames size computation" - SMB3: Honor 'seal' flag for multiuser mounts - SMB3: Honor persistent/resilient handle flags for multiuser mounts - SMB3: Honor lease disabling for multiuser mounts - cifs: Fix the target file was deleted when rename failed. - [mips*] Add missing EHB in mtc0 -> mfc0 sequence for DSPen - [arm64,armhf] irqchip/gic: Atomically update affinity - dm zoned: assign max_io_len correctly - efi: Make it possible to disable efivar_ssdt entirely . [ Salvatore Bonaccorso ] * [rt] Update to 4.19.132-rt59 * Revert "ath9k: Fix general protection fault in ath9k_hif_usb_rx_cb" (Closes: #964153, #964480) * efi: Restrict efivar_ssdt_load when the kernel is locked down (CVE-2019-20908) * certs: Rotate to use the Debian Secure Boot Signer 2020 certificate * e1000e: Add support for Comet Lake (Closes: #965365) linux-signed-i386 (4.19.131+2) buster; urgency=medium . * Sign kernel from linux 4.19.131-2 . [ Aurelien Jarno ] * Revert "mips: Add udelay lpj numbers adjustment", since it causes the build to fail with CONFIG_CPU_FREQ=y. linux-signed-i386 (4.19.131+1) buster; urgency=medium . * Sign kernel from linux 4.19.131-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.119 - ext4: fix extent_status fragmentation for plain files - [arm64] drm/msm: Use the correct dma_sync calls harder - vti4: removed duplicate log message. - [arm64] Add part number for Neoverse N1 - [arm64] errata: Hide CTR_EL0.DIC on systems affected by Neoverse-N1 #1542419 - [arm64] Fake the IminLine size on systems affected by Neoverse-N1 #1542419 - [arm64] compat: Workaround Neoverse-N1 #1542419 for compat user-space - watchdog: reset last_hw_keepalive time at start - scsi: lpfc: Fix kasan slab-out-of-bounds error in lpfc_unreg_login - scsi: lpfc: Fix crash in target side cable pulls hitting WAIT_FOR_UNREG - ceph: return ceph_mdsc_do_request() errors from __get_parent() - ceph: don't skip updating wanted caps when cap is stale - scsi: iscsi: Report unbind session event when the target has been removed - [x86] ASoC: Intel: atom: Take the drv->lock mutex before calling sst_send_slot_map() - nvme: fix deadlock caused by ANA update wrong locking - ipc/util.c: sysvipc_find_ipc() should increase position index - [s390x] cio: avoid duplicated 'ADD' uevents - loop: Better discard support for block devices - [powerpc*] Revert "powerpc/64: irq_work avoid interrupt when called with hardware irqs enabled" - [arm*] pwm: bcm2835: Dynamically allocate base - perf/core: Disable page faults when getting phys address - [x86] ASoC: Intel: bytcr_rt5640: Add quirk for MPMAN MPWIN895CL tablet - xhci: Ensure link state is U3 after setting USB_SS_PORT_LS_U3 - virtio-blk: improve virtqueue error to BLK_STS - scsi: smartpqi: fix call trace in device discovery - PCI/ASPM: Allow re-enabling Clock PM - [x86] KVM: VMX: Zero out *all* general purpose registers after VM-Exit - cxgb4: fix adapter crash due to wrong MC size - cxgb4: fix large delays in PTP synchronization - ipv6: fix restrict IPV6_ADDRFORM operation - macsec: avoid to set wrong mtu - macvlan: fix null dereference in macvlan_device_event() - net: netrom: Fix potential nr_neigh refcnt leak in nr_add_node - [arm64,armhf] net: stmmac: dwmac-meson8b: Add missing boundary to RGMII TX clock array - sched: etf: do not assume all sockets are full blown - tcp: cache line align MAX_TCP_HEADER - team: fix hang in team_mode_get() - vrf: Fix IPv6 with qdisc and xfrm - [armhf] net: dsa: b53: Lookup VID in ARL searches when VLAN is enabled - [armhf] net: dsa: b53: Fix ARL register definitions - [armhf] net: dsa: b53: Rework ARL bin logic - [armhf] net: dsa: b53: b53_arl_rw_op() needs to select IVL or SVL - xfrm: Always set XFRM_TRANSFORMED in xfrm{4,6}_output_finish - vrf: Check skb for XFRM_TRANSFORMED flag - KEYS: Avoid false positive ENOMEM error on key read - ALSA: hda: Remove ASUS ROG Zenith from the blacklist - ALSA: usb-audio: Add static mapping table for ALC1220-VB-based mobos - ALSA: usb-audio: Add connector notifier delegation - [armhf] iio: st_sensors: rely on odr mask to know if odr can be set - USB: sisusbvga: Change port variable from signed to unsigned - USB: Add USB_QUIRK_DELAY_CTRL_MSG and USB_QUIRK_DELAY_INIT for Corsair K70 RGB RAPIDFIRE - USB: early: Handle AMD's spec-compliant identifiers, too - USB: hub: Fix handling of connect changes during sleep - vmalloc: fix remap_vmalloc_range() bounds checks - mm/hugetlb: fix a addressing exception caused by huge_pte_offset - mm/ksm: fix NULL pointer dereference when KSM zero page is enabled - ALSA: hda/realtek - Fix unexpected init_amp override - ALSA: hda/realtek - Add new codec supported for ALC245 - ALSA: usb-audio: Fix usb audio refcnt leak when getting spdif - ALSA: usb-audio: Filter out unsupported sample rates on Focusrite devices - tpm/tpm_tis: Free IRQ if probing fails - [s390x] KVM: Return last valid slot if approx index is out-of-bounds - KVM: Check validity of resolved slot when searching memslots - [x86] KVM: VMX: Enable machine check support for 32bit targets - tty: hvc: fix buffer overflow during hvc_alloc(). - [x86] tty: rocket, avoid OOB access - usb-storage: Add unusual_devs entry for JMicron JMS566 - audit: check the length of userspace generated audit records - ASoC: dapm: fixup dapm kcontrol widget - iwlwifi: pcie: actually release queue memory in TVQM - iwlwifi: mvm: beacon statistics shouldn't go backwards - [armel,armhf] ARM: imx: provide v7_cpu_resume() only on ARM_CPU_SUSPEND=y - [powerpc*] setup_64: Set cache-line-size based on cache-block-size - [i386] staging: comedi: dt2815: fix writing hi byte of analog output - [x86] staging: comedi: Fix comedi_device refcnt leak in comedi_open - vt: don't hardcode the mem allocation upper bound - vt: don't use kmalloc() for the unicode screen buffer - [x86] staging: vt6656: Don't set RCR_MULTICAST or RCR_BROADCAST by default. - [x86] staging: vt6656: Fix calling conditions of vnt_set_bss_mode - [x86] staging: vt6656: Fix drivers TBTT timing counter. - [x86] staging: vt6656: Fix pairwise key entry save. - [x86] staging: vt6656: Power save stop wake_up_count wrap around. - cdc-acm: close race betrween suspend() and acm_softint - cdc-acm: introduce a cool down - UAS: no use logging any details in case of ENODEV - UAS: fix deadlock in error handling and PM flushing work - [arm64,armhf] usb: dwc3: gadget: Fix request completion check - usb: f_fs: Clear OS Extended descriptor counts to zero in ffs_data_reset() - xhci: prevent bus suspend if a roothub port detected a over-current condition - xfs: Fix deadlock between AGI and AGF with RENAME_WHITEOUT https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.120 - mtd: cfi: fix deadloop in cfi_cmdset_0002.c do_write_buffer - [arm*] binder: take read mode of mmap_sem in binder_alloc_free_page() - [arm64,armhf] usb: dwc3: gadget: Do link recovery for SS and SSP - nfsd: memory corruption in nfsd4_lock() - rxrpc: Fix DATA Tx to disable nofrag for UDP on AF_INET6 socket - net/cxgb4: Check the return from t4_query_params properly - xfs: acquire superblock freeze protection on eofblocks scans - svcrdma: Fix trace point use-after-free race - svcrdma: Fix leak of svc_rdma_recv_ctxt objects - PCI: Avoid ASMedia XHCI USB PME# from D0 defect - [s390x] net/mlx5: Fix failing fw tracer allocation on s390 - perf/core: fix parent pid/tid in task exit events - [i386] bpf, x86_32: Fix incorrect encoding in BPF_LDX zero-extension - mm: shmem: disable interrupt when acquiring info->lock in userfaultfd_copy path - xfs: clear PF_MEMALLOC before exiting xfsaild thread - [x86] bpf, x86: Fix encoding for lower 8-bit registers in BPF_STX BPF_B - [armhf] net: fec: set GPR bit on suspend by DT configuration. - [x86] hyperv: report value of misc_features - xfs: fix partially uninitialized structure in xfs_reflink_remap_extent - ALSA: hda: Keep the controller initialization even if no codecs found - ALSA: hda: Explicitly permit using autosuspend if runtime PM is supported - scsi: target: fix PR IN / READ FULL STATUS for FC - scsi: target: tcmu: reset_ring should reset TCMU_DEV_BIT_BROKEN - xen/xenbus: ensure xenbus_map_ring_valloc() returns proper grant status - ALSA: hda: call runtime_allow() for all hda controllers - [arm64] Delete the space separator in __emit_inst - ext4: use matching invalidatepage in ext4_writepage - ext4: increase wait time needed before reuse of deleted inode numbers - ext4: convert BUG_ON's to WARN_ON's in mballoc.c - hwmon: (jc42) Fix name to have no illegal characters - [i386] bpf, x86_32: Fix clobbering of dst for BPF_JSET - qed: Fix use after free in qed_chain_free - ext4: check for non-zero journal inum in ext4_calculate_overhead https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.121 - drm/edid: Fix off-by-one in DispID DTD pixel clock - drm/qxl: qxl_release leak in qxl_draw_dirty_fb() - drm/qxl: qxl_release leak in qxl_hw_surface_alloc() - drm/qxl: qxl_release use after free - btrfs: fix block group leak when removing fails - ALSA: hda/realtek - Two front mics on a Lenovo ThinkCenter - ALSA: usb-audio: Correct a typo of NuPrime DAC-10 USB ID - ALSA: hda/hdmi: fix without unlocked before return - ALSA: pcm: oss: Place the plugin buffer overflow checks correctly (Closes: #960493) - PM: ACPI: Output correct message on target power state - PM: hibernate: Freeze kernel threads in software_resume() - dm writecache: fix data corruption when reloading the target - dm multipath: use updated MPATHF_QUEUE_IO on mapping for bio-based mpath - scsi: qla2xxx: set UNLOADING before waiting for session deletion - scsi: qla2xxx: check UNLOADING before posting async work - RDMA/mlx5: Set GRH fields in query QP on RoCE - RDMA/mlx4: Initialize ib_spec on the stack - RDMA/core: Prevent mixed use of FDs between shared ufiles - RDMA/core: Fix race between destroy and release FD object - [amd64,arm64] vfio: avoid possible overflow in vfio_iommu_type1_pin_pages - [amd64,arm64] vfio/type1: Fix VA->PA translation for PFNMAP VMAs in vaddr_get_pfn() - [arm64] iommu/qcom: Fix local_base status check - scsi: target/iblock: fix WRITE SAME zeroing - [amd64] iommu/amd: Fix legacy interrupt remapping for x2APIC-enabled system - nfs: Fix potential posix_acl refcnt leak in nfs3_set_acl - btrfs: fix partial loss of prealloc extent past i_size after fsync - btrfs: transaction: Avoid deadlock due to bad initialization timing of fs_info::journal_info - mmc: cqhci: Avoid false "cqhci: CQE stuck on" by not open-coding timeout loop - [arm64] mmc: sdhci-xenon: fix annoying 1.8V regulator warning - mmc: sdhci-pci: Fix eMMC driver strength for BYT-based controllers - [arm64] mmc: sdhci-msm: Enable host capabilities pertains to R1b response - [armhf] mmc: meson-mx-sdio: Set MMC_CAP_WAIT_WHILE_BUSY - [armhf] mmc: meson-mx-sdio: remove the broken ->card_busy() op https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.122 - vhost: vsock: kick send_pkt worker once device is started - [powerpc*] pci/of: Parse unassigned resources - [x86] ASoC: topology: Check return value of pcm_new_ver - [armhf] ASoC: sgtl5000: Fix VAG power-on handling - [arm64,armhf] usb: dwc3: gadget: Properly set maxpacket limit - [x86] ASoC: codecs: hdac_hdmi: Fix incorrect use of list_for_each_entry - wimax/i2400m: Fix potential urb refcnt leak - [armhf] net: stmmac: fix enabling socfpga's ptp_ref_clock - [armhf] net: stmmac: Fix sub-second increment - cifs: protect updating server->dstaddr with a spinlock - [s390x] ftrace: fix potential crashes when switching tracers - sctp: Fix SHUTDOWN CTSN Ack in the peer restart case - drm/amdgpu: Fix oops when pp_funcs is unset in ACPI event - lib: devres: add a helper function for ioremap_uc - [x86] mfd: intel-lpss: Use devm_ioremap_uc for MMIO - ALSA: hda: Match both PCI ID and SSID for driver blacklist - [x86] platform: GPD pocket fan: Fix error message when temp-limits are out of range - mac80211: add ieee80211_is_any_nullfunc() - cgroup, netclassid: remove double cond_resched - drm/atomic: Take the atomic toys away from X https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.123 - USB: serial: qcserial: Add DW5816e support - tracing/kprobes: Fix a double initialization typo - vt: fix unicode console freeing with a common interface - fq_codel: fix TCA_FQ_CODEL_DROP_BATCH_SIZE sanity checks - net: macsec: preserve ingress frame ordering - net/mlx4_core: Fix use of ENOSPC around mlx4_counter_alloc() - net_sched: sch_skbprio: add message validation to skbprio_change() - net: usb: qmi_wwan: add support for DW5816e - sch_choke: avoid potential panic in choke_reset() - sch_sfq: validate silly quantum values - tipc: fix partial topology connection closure - bnxt_en: Fix VLAN acceleration handling in bnxt_fix_features(). - net/mlx5: Fix forced completion access non initialized command entry - net/mlx5: Fix command entry leak in Internal Error State - bnxt_en: Improve AER slot reset. - bnxt_en: Fix VF anti-spoof filter setup. - net: stricter validation of untrusted gso packets - HID: wacom: Read HID_DG_CONTACTMAX directly for non-generic devices - sctp: Fix bundling of SHUTDOWN with COOKIE-ACK - HID: usbhid: Fix race between usbhid_close() and usbhid_stop() - USB: uas: add quirk for LaCie 2Big Quadra - USB: serial: garmin_gps: add sanity checking for data length - tracing: Add a vmalloc_sync_mappings() for safe measure - [arm64,armhf] KVM: vgic: Fix limit condition when writing to GICD_I[CS]ACTIVER - [arm64] KVM: Fix 32bit PC wrap-around - [arm64] hugetlb: avoid potential NULL dereference - mm/page_alloc: fix watchdog soft lockups during set_zone_contiguous() - [x86] KVM: VMX: Explicitly reference RCX as the vmx_vcpu pointer in asm blobs - [x86] KVM: VMX: Mark RCX, RDX and RSI as clobbered in vmx_vcpu_run()'s asm blob - batman-adv: fix batadv_nc_random_weight_tq - batman-adv: Fix refcnt leak in batadv_show_throughput_override - batman-adv: Fix refcnt leak in batadv_store_throughput_override - batman-adv: Fix refcnt leak in batadv_v_ogm_process - [amd64] x86/entry/64: Fix unwind hints in register clearing code - [amd64] x86/entry/64: Fix unwind hints in kernel exit path - [amd64] x86/entry/64: Fix unwind hints in rewind_stack_do_exit() - [amd64] x86/unwind/orc: Don't skip the first frame for inactive tasks - [amd64] x86/unwind/orc: Prevent unwinding before ORC initialization - [amd64] x86/unwind/orc: Fix error path for bad ORC entry type - [amd64] x86/unwind/orc: Fix premature unwind stoppage due to IRET frames - netfilter: nat: never update the UDP checksum when it's 0 - netfilter: nf_osf: avoid passing pointer to local var - scripts/decodecode: fix trapping instruction formatting - ipc/mqueue.c: change __do_notify() to bypass check_kill_permission() https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.124 - [arm64,armhf] net: dsa: Do not make user port errors fatal - shmem: fix possible deadlocks on shmlock_user_lock - virtio-blk: handle block_device_operations callbacks after hot unplug - mmc: sdhci-acpi: Add SDHCI_QUIRK2_BROKEN_64_BIT_DMA for AMDI0040 - net: fix a potential recursive NETDEV_FEAT_CHANGE - net: phy: fix aneg restart in phy_ethtool_set_eee - pppoe: only process PADT targeted at local interfaces - Revert "ipv6: add mtu lock check in __ip6_rt_update_pmtu" - tcp: fix error recovery in tcp_zerocopy_receive() - virtio_net: fix lockdep warning on 32 bit - [x86,arm64] hinic: fix a bug of ndo_stop - net: ipv4: really enforce backoff for redirects - netprio_cgroup: Fix unlimited memory leak of v2 cgroups - net: tcp: fix rx timestamp behavior for tcp_recvmsg - tcp: fix SO_RCVLOWAT hangs with fat skbs - [i386] dmaengine: pch_dma.c: Avoid data race between probe and irq handler - [x86] cpufreq: intel_pstate: Only mention the BIOS disabling turbo mode once - ALSA: hda/hdmi: fix race in monitor detection during probe - drm/qxl: lost qxl_bo_kunmap_atomic_page in qxl_image_init_helper() - ipc/util.c: sysvipc_find_ipc() incorrectly updates position index - ALSA: hda/realtek - Fix S3 pop noise on Dell Wyse - gfs2: Another gfs2_walk_metadata fix - [x86] pinctrl: baytrail: Enable pin configuration setting for GPIO chip - [x86] pinctrl: cherryview: Add missing spinlock usage in chv_gpio_irq_handler - i40iw: Fix error handling in i40iw_manage_arp_cache() - mmc: core: Check request type before completing the request - mmc: block: Fix request completion in the CQE timeout path - NFS: Fix fscache super_cookie index_key from changing after umount - nfs: fscache: use timespec64 in inode auxdata - NFSv4: Fix fscache cookie aux_data to ensure change_attr is included - [arm64] fix the flush_icache_range arguments in machine_kexec - netfilter: nft_set_rbtree: Introduce and use nft_rbtree_interval_start() - IB/mlx4: Test return value of calls to ib_get_cached_pkey - ALSA: hda/realtek - Limit int mic boost for Thinkpad T530 - ALSA: rawmidi: Fix racy buffer resize under concurrent accesses - ALSA: usb-audio: Add control message quirk delay for Kingston HyperX headset - usb: core: hub: limit HUB_QUIRK_DISABLE_AUTOSUSPEND to USB5534B - [arm64,armhf] usb: host: xhci-plat: keep runtime active when removing host - usb: xhci: Fix NULL pointer dereference when enqueuing trbs from urb sg list - cifs: fix leaked reference on requeued write - exec: Move would_dump into flush_old_exec - [arm64,armhf] clk: rockchip: fix incorrect configuration of rk3228 aclk_gpu* clocks - [arm64,armhf] dwc3: Remove check for HWO flag in dwc3_gadget_ep_reclaim_trb_sg() - Revert "ALSA: hda/realtek: Fix pop noise on ALC225" - clk: Unlink clock if failed to prepare or enable - [arm64] dts: rockchip: Replace RK805 PMIC node name with "pmic" on rk3328 boards - [x86] KVM: Fix off-by-one error in kvm_vcpu_ioctl_x86_setup_mce https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.125 - i2c: dev: Fix the race between the release of i2c_dev and cdev - fix multiplication overflow in copy_fdtable() - ubifs: remove broken lazytime support - [amd64] iommu/amd: Fix over-read of ACPI UID from IVRS table - ubi: Fix seq_file usage in detailed_erase_block_info debugfs file - HID: multitouch: add eGalaxTouch P80H84 support - HID: alps: Add AUI1657 device ID - HID: alps: ALPS_1657 is too specific; use U1_UNICORN_LEGACY instead - scsi: qla2xxx: Fix hang when issuing nvme disconnect-all in NPIV - scsi: qla2xxx: Delete all sessions before unregister local nvme port - configfs: fix config_item refcnt leak in configfs_rmdir() - vhost/vsock: fix packet delivery order to monitoring devices - [amd64] aquantia: Fix the media type of AQC100 ethernet controller in the driver - component: Silence bind error on -EPROBE_DEFER - [ppc64el] scsi: ibmvscsi: Fix WARN_ON during event pool release - HID: i2c-hid: reset Synaptics SYNA2393 on resume - [x86] apic: Move TSC deadline timer debug printk - gtp: set NLM_F_MULTI flag in gtp_genl_dump_pdp() - HID: quirks: Add HID_QUIRK_NO_INIT_REPORTS quirk for Dell K12A keyboard-dock - ceph: fix double unlock in handle_cap_export() - [arm64,armhf] stmmac: fix pointer check after utilization in stmmac_interrupt - USB: core: Fix misleading driver bug report - [x86] platform/x86: asus-nb-wmi: Do not load on Asus T100TA and T200TA - padata: Replace delayed timer with immediate workqueue in padata_reorder - padata: initialize pd->cpu with effective cpumask - padata: purge get_cpu and reorder_via_wq from padata_do_serial - ALSA: iec1712: Initialize STDSP24 properly when using the model=staudio option - ALSA: pcm: fix incorrect hw_base increase - ALSA: hda/realtek - Fix silent output on Gigabyte X570 Aorus Xtreme - ALSA: hda/realtek - Add more fixup entries for Clevo machines - [armhf] drm/etnaviv: fix perfmon domain interation - apparmor: Fix use-after-free in aa_audit_rule_init - apparmor: fix potential label refcnt leak in aa_change_profile - apparmor: Fix aa_label refcnt leak in policy_update - [arm64] dmaengine: tegra210-adma: Fix an error handling path in 'tegra_adma_probe()' - [powerpc*] Remove STRICT_KERNEL_RWX incompatibility with RELOCATABLE - [powerpc*] 64s: Disable STRICT_KERNEL_RWX - [amd64,arm64] nfit: Add Hyper-V NVDIMM DSM command set to white list - [x86,arm64] libnvdimm/btt: Remove unnecessary code in btt_freelist_init - [x86,arm64] libnvdimm/btt: Fix LBA masking during 'free list' population - [x86] thunderbolt: Drop duplicated get_switch_at_route() - cxgb4: free mac_hlist properly - cxgb4/cxgb4vf: Fix mac_hlist initialization and free - brcmfmac: abort and release host after error - Revert "gfs2: Don't demote a glock until its revokes are written" - misc: rtsx: Add short delay after exit from ASPM - [x86] mei: release me_cl object reference - rxrpc: Fix a memory leak in rxkad_verify_response() - rxrpc: Trace discarded ACKs - rxrpc: Fix ack discard https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.126 - ax25: fix setsockopt(SO_BINDTODEVICE) - __netif_receive_skb_core: pass skb by reference - net: inet_csk: Fix so_reuseport bind-address cache in tb->fast* - net: ipip: fix wrong address family in init error path - net/mlx5: Add command entry handling completion - net: revert "net: get rid of an signed integer overflow in ip_idents_reserve()" - net sched: fix reporting the first-time use timestamp - r8152: support additional Microsoft Surface Ethernet Adapter variant - sctp: Don't add the shutdown timer if its already been added - sctp: Start shutdown on association restart if in SHUTDOWN-SENT state and socket is closed - net/mlx5e: Update netdev txq on completions during closure - net/mlx5: Annotate mutex destroy for root ns - net: sun: fix missing release regions in cas_init_one(). - net/mlx4_core: fix a memory leak bug. - [armhf] dts: rockchip: fix phy nodename for rk3228-evb - [arm64] dts: rockchip: fix status for &gmac2phy in rk3328-evb.dts - [arm64,armhf] gpio: tegra: mask GPIO IRQs during IRQ shutdown - ALSA: usb-audio: add mapping for ASRock TRX40 Creator - gfs2: move privileged user check to gfs2_quota_lock_check - cachefiles: Fix race between read_waiter and read_copier involving op->to_do - [arm64] usb: dwc3: pci: Enable extcon driver for Intel Merrifield - usb: gadget: legacy: fix redundant initialization warnings - IB/i40iw: Remove bogus call to netdev_master_upper_dev_get() - cifs: Fix null pointer check in cifs_read - Input: usbtouchscreen - add support for BonXeon TP - Input: evdev - call input_flush_device() on release(), not flush() - Input: xpad - add custom init packet for Xbox One S controllers - Input: i8042 - add ThinkPad S230u to i8042 reset list - Input: synaptics-rmi4 - really fix attn_data use-after-free - Input: synaptics-rmi4 - fix error return code in rmi_driver_probe() - [armel,armhf] 8970/1: decompressor: increase tag size - [arm*] 8843/1: use unified assembler in headers - gpio: exar: Fix bad handling for ida_simple_get error path - IB/qib: Call kobject_put() when kobject_init_and_add() fails - [armhf] dts/imx6q-bx50v3: Set display interface clock parents - [armel,armhf] dts: bcm2835-rpi-zero-w: Fix led polarity - mmc: block: Fix use-after-free issue for rpmb - ALSA: hwdep: fix a left shifting 1 by 31 UB bug - ALSA: hda/realtek - Add a model for Thinkpad T570 without DAC workaround - ALSA: usb-audio: mixer: volume quirk for ESS Technology Asus USB DAC - exec: Always set cap_ambient in cap_bprm_set_creds - ALSA: usb-audio: Quirks for Gigabyte TRX40 Aorus Master onboard audio - ALSA: hda/realtek - Add new codec supported for ALC287 - libceph: ignore pool overlay and cache logic on redirects - IB/ipoib: Fix double free of skb in case of multicast traffic in CM mode - mm: remove VM_BUG_ON(PageSlab()) from page_mapcount() - include/asm-generic/topology.h: guard cpumask_of_node() macro argument - iommu: Fix reference count leak in iommu_group_alloc. - mmc: core: Fix recursive locking issue in CQE recovery path - RDMA/core: Fix double destruction of uobject - mac80211: mesh: fix discovery timer re-arming issue / crash - [x86] dma: Fix max PFN arithmetic overflow on 32 bit systems - [x86] copy_xstate_to_kernel(): don't leave parts of destination uninitialized - xfrm: allow to accept packets with ipv6 NEXTHDR_HOP in xfrm_input - xfrm: call xfrm_output_gso when inner_protocol is set in xfrm_output - xfrm interface: fix oops when deleting a x-netns interface - xfrm: fix a warning in xfrm_policy_insert_list - xfrm: fix a NULL-ptr deref in xfrm_local_error - xfrm: fix error in comment - vti4: eliminated some duplicate code. - ip_vti: receive ipip packet by calling ip_tunnel_rcv - netfilter: nft_reject_bridge: enable reject with bridge vlan - netfilter: ipset: Fix subcounter update skip - netfilter: nfnetlink_cthelper: unbreak userspace helper support - netfilter: nf_conntrack_pptp: prevent buffer overflows in debug code - esp6: get the right proto for transport mode in esp6_gso_encap - bnxt_en: Fix accumulation of bp->net_stats_prev. - xsk: Add overflow check for u64 division, stored into u32 - qlcnic: fix missing release in qlcnic_83xx_interrupt_test. - bonding: Fix reference count leak in bond_sysfs_slave_add. - netfilter: nf_conntrack_pptp: fix compilation warning with W=1 build - mm/vmalloc.c: don't dereference possible NULL pointer in __vunmap() https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.127 - Revert "cgroup: Add memory barriers to plug cgroup_rstat_updated() race window" - libnvdimm: Fix endian conversion issues  - HID: sony: Fix for broken buttons on DS3 USB dongles - HID: i2c-hid: add Schneider SCL142ALM to descriptor override - p54usb: add AirVasT USB stick device-id - mmc: fix compilation of user API - scsi: ufs: Release clock if DMA map fails - airo: Fix read overflows sending packets - [x86] drm/i915: fix port checks for MST support on gen >= 11 - [arm64] scsi: hisi_sas: Check sas_port before using it - [powerpc*] powernv: Avoid re-registration of imc debugfs directory - [s390x] ftrace: save traced function caller - drm/edid: Add Oculus Rift S to non-desktop list - [s390x] mm: fix set_huge_pte_at() for empty ptes - null_blk: return error for invalid zone size - [arm64] net: ethernet: stmmac: Enable interface clocks on probe for IPQ806x - [arm64,armhf] net: smsc911x: Fix runtime PM imbalance on error https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.128 - devinet: fix memleak in inetdev_init() - l2tp: add sk_family checks to l2tp_validate_socket - l2tp: do not use inet_hash()/inet_unhash() - net: usb: qmi_wwan: add Telit LE910C1-EUX composition - vsock: fix timeout in vsock_accept() - net: check untrusted gso_size at kernel entry - USB: serial: qcserial: add DW5816e QDL support - USB: serial: usb_wwan: do not resubmit rx urb on fatal errors - USB: serial: option: add Telit LE910C1-EUX compositions - [arm64,armhf] usb: musb: start session in resume for host port - [arm64,armhf] usb: musb: Fix runtime PM imbalance on error - vt: keyboard: avoid signed integer overflow in k_ascii (CVE-2020-13974) - tty: hvc_console, fix crashes on parallel open/close - staging: rtl8712: Fix IEEE80211_ADDBA_PARAM_BUF_SIZE_MASK - CDC-ACM: heed quirk also in error handling - [arm64] nvmem: qfprom: remove incorrect write support - uprobes: ensure that uprobe->offset and ->ref_ctr_offset are properly aligned - Revert "net/mlx5: Annotate mutex destroy for root ns" https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.129 - ipv6: fix IPV6_ADDRFORM operation logic - net_failover: fixed rollback in net_failover_open() - bridge: Avoid infinite loop when suppressing NS messages with invalid options - vxlan: Avoid infinite loop when suppressing NS messages with invalid options - tun: correct header offsets in napi frags mode - make 'user_access_begin()' do 'access_ok()' (CVE-2018-20669) - [x86] uaccess: Inhibit speculation past access_ok() in user_access_begin() - lib: Reduce user_access_begin() boundaries in strncpy_from_user() and strnlen_user() - btrfs: merge btrfs_find_device and find_device (CVE-2019-18885) - btrfs: Detect unbalanced tree with empty leaf before crashing btree operations - [armel,armhf] 8977/1: ptrace: Fix mask for thumb breakpoint hook - sched/fair: Don't NUMA balance for kthreads - Input: synaptics - add a second working PNP_ID for Lenovo T470s - [powerpc*] xive: Clear the page tables for the ESB IO mapping - ath9k_htc: Silence undersized packet warnings - RDMA/uverbs: Make the event_queue fds return POLLERR when disassociated - [x86] cpu/amd: Make erratum #1054 a legacy erratum - perf probe: Accept the instance number of kretprobe event - mm: add kvfree_sensitive() for freeing sensitive data objects - aio: fix async fsync creds - btrfs: tree-checker: Check level for leaves and nodes - [x86] Fix jiffies ODR violation - [x86] PCI: Mark Intel C620 MROMs as having non-compliant BARs - [x86] speculation: Prevent rogue cross-process SSBD shutdown (CVE-2020-10766) - [x86] reboot/quirks: Add MacBook6,1 reboot quirk - efi/efivars: Add missing kobject_put() in sysfs entry creation error path - [i386] ALSA: es1688: Add the missed snd_card_free() - ALSA: hda/realtek - add a pintbl quirk for several Lenovo machines - ALSA: usb-audio: Fix inconsistent card PM state after resume - ALSA: usb-audio: Add vendor, product and profile name for HP Thunderbolt Dock - [arm64,x86] ACPI: sysfs: Fix reference count leak in acpi_sysfs_add_hotplug_profile() - [amd64,arm64] ACPI: CPPC: Fix reference count leak in acpi_cppc_processor_probe() - [arm64] ACPI: GED: add support for _Exx / _Lxx handler methods - [arm64,x86] ACPI: PM: Avoid using power resources if there are none for D0 - cgroup, blkcg: Prepare some symbols for module and !CONFIG_CGROUP usages - nilfs2: fix null pointer dereference at nilfs_segctor_do_construct() - [arm*] spi: bcm2835aux: Fix controller unregister order - PM: runtime: clk: Fix clk_pm_runtime_get() error path - [arm64] crypto: cavium/nitrox - Fix 'nitrox_get_first_device()' when ndevlist is fully iterated - ALSA: pcm: disallow linking stream to itself - [x86] {mce,mm}: Unmap the entire page if the whole page is affected and poisoned - [x86] KVM: Fix APIC page invalidation race - [x86] kvm: Fix L1TF mitigation for shadow MMU - [x86] KVM: x86/mmu: Consolidate "is MMIO SPTE" code - [x86] KVM: only do L1TF workaround on affected processors - [x86] speculation: Change misspelled STIPB to STIBP - [x86] speculation: Add support for STIBP always-on preferred mode - [x86] speculation: Avoid force-disabling IBPB based on STIBP and enhanced IBRS. (CVE-2020-10767) - [x86] speculation: PR_SPEC_FORCE_DISABLE enforcement for indirect branches. (CVE-2020-10768) - spi: No need to assign dummy value in spi_unregister_controller() - spi: Fix controller unregister order - [amd64] spi: pxa2xx: Fix controller unregister order - [arm*] spi: bcm2835: Fix controller unregister order - [amd64] spi: pxa2xx: Balance runtime PM enable/disable on error - [amd64] spi: pxa2xx: Fix runtime PM ref imbalance on probe error - crypto: virtio: Fix use-after-free in virtio_crypto_skcipher_finalize_req() - crypto: virtio: Fix src/dst scatterlist calculation in __virtio_crypto_skcipher_do_req() - crypto: virtio: Fix dest length calculation in __virtio_crypto_skcipher_do_req() - ovl: initialize error in ovl_copy_xattr - proc: Use new_inode not new_inode_pseudo - [x86] KVM: nSVM: fix condition for filtering async PF - [x86] KVM: nSVM: leave ASID aside in copy_vmcb_control_area - [x86] KVM: nVMX: Consult only the "basic" exit reason when routing nested exit - [arm64] KVM: Make vcpu_cp1x() work on Big Endian hosts - scsi: megaraid_sas: TM command refire leads to controller firmware crash - ath9k: Fix use-after-free Read in ath9k_wmi_ctrl_rx - ath9k: Fix use-after-free Write in ath9k_htc_rx_msg - ath9x: Fix stack-out-of-bounds Write in ath9k_hif_usb_rx_cb - ath9k: Fix general protection fault in ath9k_hif_usb_rx_cb - mm/slub: fix a memory leak in sysfs_slab_add() - fat: don't allow to mount if the FAT length == 0 - perf: Add cond_resched() to task_function_call() - [x86] agp/intel: Reinforce the barrier after GTT updates - [arm64] mmc: sdhci-msm: Clear tuning done flag while hs400 tuning - mmc: sdio: Fix potential NULL pointer error in mmc_sdio_init_card() - xen/pvcalls-back: test for errors when calling backend_connect() - [arm64] KVM: Synchronize sysreg state on injecting an AArch32 exception - [arm64] ACPI: GED: use correct trigger type field in _Exx / _Lxx handling - [arm64] drm: bridge: adv7511: Extend list of audio sample rates - [x86] crypto: ccp -- don't "select" CONFIG_DMADEVICES - media: si2157: Better check for running tuner in init - [amd64] spi: pxa2xx: Apply CS clk quirk to BXT - [amd64] net: atlantic: make hw_get_regs optional - net: ena: fix error returning in ena_com_get_hash_function() - [arm64] insn: Fix two bugs in encoding 32-bit logical immediates - ixgbe: Fix XDP redirect on archs with PAGE_SIZE above 4K - Bluetooth: Add SCO fallback for invalid LMP parameters error - [armhf] clocksource: dw_apb_timer: Make CPU-affiliation being optional - [armhf] clocksource: dw_apb_timer_of: Fix missing clockevent timers - btrfs: do not ignore error from btrfs_next_leaf() when inserting checksums - batman-adv: Revert "disable ethtool link speed detection when auto negotiation off" - [armhf] mmc: meson-mx-sdio: trigger a soft reset after a timeout or CRC error - [x86] kvm/hyper-v: Explicitly align hcall param for kvm_hyperv_exit - [x86] net: vmxnet3: fix possible buffer overflow caused by bad DMA value in vmxnet3_get_rss() - brcmfmac: fix wrong location to get firmware feature - e1000: Distribute switch variables for initialization - dt-bindings: display: mediatek: control dpi pins mode to avoid leakage - audit: fix a net reference leak in audit_send_reply() - media: dvb: return -EREMOTEIO on i2c transfer failure. - [mips*] Make sparse_init() using top-down allocation - Bluetooth: btbcm: Add 2 missing models to subver tables - audit: fix a net reference leak in audit_list_rules_send() - netfilter: nft_nat: return EOPNOTSUPP if type or flags are not supported - exit: Move preemption fixup up, move blocking operations down - sched/core: Fix illegal RCU from offline CPUs - drivers/perf: hisi: Fix typo in events attribute array - [armhf] net: allwinner: Fix use correct return type for ndo_start_xmit() - xfs: clean up the error handling in xfs_swap_extents - Crypto/chcr: fix for ccm(aes) failed test - [mips*] cm: Fix an invalid error code of INTVN_*_ERR - xfs: reset buffer write failure state on successful completion - xfs: fix duplicate verification from xfs_qm_dqflush() - [x86] platform/x86: intel-vbtn: Use acpi_evaluate_integer() - [x86] platform/x86: intel-vbtn: Split keymap into buttons and switches parts - [x86] platform/x86: intel-vbtn: Do not advertise switches to userspace if they are not there - [x86] platform/x86: intel-vbtn: Also handle tablet-mode switch on "Detachable" and "Portable" chassis-types - nvme: refine the Qemu Identify CNS quirk - ath10k: Remove msdu from idr when management pkt send fails - [arm64] wcn36xx: Fix error handling path in 'wcn36xx_probe()' - net: qed*: Reduce RX and TX default ring count when running inside kdump kernel - mt76: avoid rx reorder buffer overflow - md: don't flush workqueue unconditionally in md_open - veth: Adjust hard_start offset on redirect XDP frames - net/mlx5e: IPoIB, Drop multicast packets that this interface sent - rtlwifi: Fix a double free in _rtl_usb_tx_urb_setup() - mwifiex: Fix memory corruption in dump_station - [x86] boot: Correct relocation destination on old linkers - [x86] mm: Stop printing BRK addresses - btrfs: qgroup: mark qgroup inconsistent if we're inherting snapshot to a new qgroup - macvlan: Skip loopback packets in RX handler - PCI: Don't disable decoding when mmio_always_on is set - [mips*] Fix IRQ tracing when call handle_fpe() and handle_msa_fpe() - bcache: fix refcount underflow in bcache_device_free() - [arm64] mmc: sdhci-msm: Set SDHCI_QUIRK_MULTIBLOCK_READ_ACMD12 quirk - mmc: via-sdmmc: Respect the cmd->busy_timeout from the mmc core - ixgbe: fix signed-integer-overflow warning - [armhf] mmc: sdhci-esdhc-imx: fix the mask for tuning start point - cpuidle: Fix three reference count leaks - [x86] platform/x86: hp-wmi: Convert simple_strtoul() to kstrtou32() - [x86] platform/x86: intel-hid: Add a quirk to support HP Spectre X2 (2015) - [x86] platform/x86: intel-vbtn: Only blacklist SW_TABLET_MODE on the 9 / "Laptop" chasis-type - btrfs: include non-missing as a qualifier for the latest_bdev - btrfs: send: emit file capabilities after chown - mm: thp: make the THP mapcount atomic against __split_huge_pmd_locked() - mm: initialize deferred pages with interrupts enabled - ext4: fix EXT_MAX_EXTENT/INDEX to check for zeroed eh_max - ext4: fix error pointer dereference - ext4: fix race between ext4_sync_parent() and rename() - PCI: Avoid Pericom USB controller OHCI/EHCI PME# defect - PCI: Avoid FLR for AMD Matisse HD Audio & USB 3.0 - PCI: Avoid FLR for AMD Starship USB 3.0 - PCI: Add ACS quirk for iProc PAXB - PCI: Add ACS quirk for Intel Root Complex Integrated Endpoints - PCI: Remove unused NFP32xx IDs - [x86] hwmon/k10temp, x86/amd_nb: Consolidate shared device IDs - [x86] amd_nb: Add PCI device IDs for family 17h, model 30h - PCI: add USR vendor id and use it in r8169 and w6692 driver - PCI: Move Synopsys HAPS platform device IDs - PCI: Move Rohm Vendor ID to generic list - misc: pci_endpoint_test: Add the layerscape EP device support - misc: pci_endpoint_test: Add support to test PCI EP in AM654x - PCI: Add Synopsys endpoint EDDA Device ID - PCI: Add NVIDIA GPU multi-function power dependencies - PCI: Enable NVIDIA HDA controllers - [x86] amd_nb: Add PCI device IDs for family 17h, model 70h - ALSA: lx6464es - add support for LX6464ESe pci express variant - PCI: Add Genesys Logic, Inc. Vendor ID - PCI: Add Amazon's Annapurna Labs vendor ID - PCI: vmd: Add device id for VMD device 8086:9A0B - [x86] amd_nb: Add Family 19h PCI IDs - PCI: Add Loongson vendor ID - serial: 8250_pci: Move Pericom IDs to pci_ids.h - PCI: Make ACS quirk implementations more uniform - PCI: Unify ACS quirk desired vs provided checking - PCI: Generalize multi-function power dependency device links - btrfs: fix error handling when submitting direct I/O bio - btrfs: fix wrong file range cleanup after an error filling dealloc range - PCI: Program MPS for RCiEP devices - e1000e: Disable TSO for buffer overrun workaround - e1000e: Relax condition to trigger reset for ME workaround - carl9170: remove P2P_GO support - media: go7007: fix a miss of snd_card_free (CVE-2019-20810) - Bluetooth: hci_bcm: fix freeing not-requested IRQ - b43legacy: Fix case where channel status is corrupted - b43: Fix connection problem with WPA3 - b43_legacy: Fix connection problem with WPA3 - igb: Report speed and duplex as unknown when device is runtime suspended - [arm64,armhf] power: vexpress: add suppress_bind_attrs to true - [armhf] pinctrl: samsung: Correct setting of eint wakeup mask on s5pv210 - [armhf] pinctrl: samsung: Save/restore eint_mask over suspend for EINT_TYPE GPIOs - gnss: sirf: fix error return code in sirf_probe() - dm crypt: avoid truncating the logical block size - kernel/cpu_pm: Fix uninitted local in cpu_pm - [armhf] tegra: Correct PL310 Auxiliary Control Register initialization - [powerpc*] 64s: Don't let DT CPU features set FSCR_DSCR - [powerpc*] 64s: Save FSCR to init_task.thread.fscr after feature init - sunrpc: svcauth_gss_register_pseudoflavor must reject duplicate registrations. - sunrpc: clean up properly in gss_mech_unregister() - [armhf] w1: omap-hdq: cleanup to add missing newline for some dev_dbg - perf probe: Do not show the skipped events - perf probe: Fix to check blacklist address correctly - perf probe: Check address correctness by map instead of _etext - perf symbols: Fix debuginfo search for Ubuntu https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.130 - [arm64,armhf] clk: sunxi: Fix incorrect usage of round_down() - [arm64,armhf] ASoC: tegra: tegra_wm8903: Support nvidia, headset property - i2c: piix4: Detect secondary SMBus controller on AMD AM4 chipsets - [x86] iio: pressure: bmp280: Tolerate IRQ before registering - [arm64] clk: qcom: msm8916: Fix the address location of pll->config_reg - [arm64] backlight: lp855x: Ensure regulators are disabled on probe failure - [armhf] ASoC: davinci-mcasp: Fix dma_chan refcnt leak when getting dma type - [armel] integrator: Add some Kconfig selections - scsi: qedi: Check for buffer overflow in qedi_set_path() - ALSA: hda/realtek - Introduce polarity for micmute LED GPIO - [i386] ALSA: isa/wavefront: prevent out of bounds write in ioctl - PCI: Allow pci_resize_resource() for devices on root bus - scsi: qla2xxx: Fix issue with adapter's stopping state - [x86] iio: bmp280: fix compensation of humidity - f2fs: report delalloc reserve as non-free in statfs for project quota - [x86] i2c: pxa: clear all master action bits in i2c_pxa_stop_message() - [armhf] clk: samsung: Mark top ISP and CAM clocks on Exynos542x as critical - usblp: poison URBs upon disconnect - serial: 8250: Fix max baud limit in generic 8250 port - dm mpath: switch paths in dm_blk_ioctl() code path - [arm64] PCI: aardvark: Don't blindly enable ASPM L0s and don't write to read-only register - vfio/pci: fix memory leaks in alloc_perm_bits() - RDMA/mlx5: Add init2init as a modify command - scsi: lpfc: Fix lpfc_nodelist leak when processing unsolicited event - [powerpc*] perf/hv-24x7: Fix inconsistent output values incase multiple hv-24x7 events run - nfsd: Fix svc_xprt refcnt leak when setup callback client failed - [amd64] PCI: vmd: Filter resource type bits from shadow register - [powerpc*] crashkernel: Take "mem=" option into account - yam: fix possible memory leak in yam_init_driver - apparmor: fix introspection of of task mode for unconfined tasks - apparmor: check/put label on apparmor_sk_clone_security() - scsi: sr: Fix sr_probe() missing deallocate of device minor - [powerpc*] scsi: ibmvscsi: Don't send host info in adapter info MAD after LPM - apparmor: fix nnp subset test for unconfined - [x86] purgatory: Disable various profiling and sanitizing options - scsi: qedi: Do not flush offload work if ARP not resolved - [armhf] dts: sun8i-h2-plus-bananapi-m2-zero: Fix led polarity - scsi: qedf: Fix crash when MFW calls for protocol stats while function is still probing - [arm64] firmware: qcom_scm: fix bogous abuse of dma-direct internals - ALSA: usb-audio: Improve frames size computation - ALSA: usb-audio: Fix racy list management in output queue - [s390x] qdio: put thinint indicator after early error - tty: hvc: Fix data abort due to race in hvc_open - [armhf] thermal/drivers/ti-soc-thermal: Avoid dereferencing ERR_PTR - [arm64,armhf] usb: dwc3: gadget: Properly handle failed kick_transfer - [mips64el,mipsel] staging: sm750fb: add missing case while setting FB_VISUAL - [arm64,i386] i2c: pxa: fix i2c_pxa_scream_blue_murder() debug output - [arm*] serial: amba-pl011: Make sure we initialize the port.lock spinlock - drivers: base: Fix NULL pointer exception in __platform_driver_probe() if a driver developer is foolish - PCI/ASPM: Allow ASPM on links to PCIe-to-PCI/PCI-X Bridges - scsi: qla2xxx: Fix warning after FC target reset - scsi: mpt3sas: Fix double free warnings - [arm64,armhf] pinctrl: rockchip: fix memleak in rockchip_dt_node_to_map - [armhf] clk: ti: composite: fix memory leak - PCI: Fix pci_register_host_bridge() device_register() error handling - [powerpc*] Don't initialise init_task->thread.regs - tty: n_gsm: Fix SOF skipping - tty: n_gsm: Fix waking up upper tty layer when room available - HID: Add quirks for Trust Panora Graphic Tablet - ipmi: use vzalloc instead of kmalloc for user creation - [powerpc*] pseries/ras: Fix FWNMI_VALID off by one - vfio-pci: Mask cap zero - usb/ohci-platform: Fix a warning when hibernating - [arm64] drm/msm/mdp5: Fix mdp5_init error path for failed mdp5_kms allocation - [x86] ASoC: Intel: bytcr_rt5640: Add quirk for Toshiba Encore WT8-A tablet - [armhf] USB: host: ehci-mxc: Add error handling in ehci_mxc_drv_probe() - tty: n_gsm: Fix bogus i++ in gsm_data_kick - scsi: target: tcmu: Userspace must not complete queued commands - [powerpc*] 64s/pgtable: fix an undefined behaviour - dm zoned: return NULL if dmz_get_zone_for_reclaim() fails to find a zone - PCI/PTM: Inherit Switch Downstream Port PTM settings from Upstream Port - [arm64,armhf] PCI: dwc: Fix inner MSI IRQ domain registration - IB/cma: Fix ports memory leak in cma_configfs - [arm*] usb: dwc2: gadget: move gadget resume after the core is in L0 state - usb: gadget: Fix issue with config_ep_by_speed function - RDMA/iw_cxgb4: cleanup device debugfs entries on ULD remove - [x86] apic: Make TSC deadline timer detection message visible - scsi: target: tcmu: Fix a use after free in tcmu_check_expired_queue_cmd() - [arm*] clk: bcm2835: Fix return type of bcm2835_register_gate - [ppc64el] KVM: Book3S HV: Ignore kmemleak false positives - net: sunrpc: Fix off-by-one issues in 'rpc_ntop6' - NFSv4.1 fix rpc_call_done assignment for BIND_CONN_TO_SESSION - of: Fix a refcounting bug in __of_attach_node_sysfs() - rxrpc: Adjust /proc/net/rxrpc/calls to display call->debug_id not user_ID - gfs2: Allow lock_nolock mount to specify jid=X - scsi: iscsi: Fix reference count leak in iscsi_boot_create_kobj - scsi: ufs: Don't update urgent bkops level when toggling auto bkops - [armhf] pinctrl: freescale: imx: Fix an error handling path in 'imx_pinctrl_probe()' - geneve: change from tx_error to tx_dropped on missing metadata - lib/zlib: remove outdated and incorrect pre-increment optimization - blktrace: use errno instead of bi_status - blktrace: fix endianness in get_pdu_int() - blktrace: fix endianness for blk_log_remap() - gfs2: fix use-after-free on transaction ail lists - drivers/perf: hisi: Fix wrong value for all counters enable - afs: Fix memory leak in afs_put_sysnames() - ASoC: core: only convert non DPCM link to DPCM link - [x86] ASoC: Intel: bytcr_rt5640: Add quirk for Toshiba Encore WT10-A tablet - ASoC: rt5645: Add platform-data for Asus T101HA - [arm64,armhf] drm/sun4i: hdmi ddc clk: Fix size of m divider - [x86] idt: Keep spurious entries unset in system_vectors - net/filter: Permit reading NET in load_bytes_relative when MAC not set - xdp: Fix xsk_generic_xmit errno - [arm64,armhf] usb/xhci-plat: Set PM runtime as active on resume - usb: host: ehci-platform: add a quirk to avoid stuck - usb/ehci-platform: Set PM runtime as active on resume - perf report: Fix NULL pointer dereference in hists__fprintf_nr_sample_events() - ext4: stop overwrite the errcode in ext4_setup_super - bcache: fix potential deadlock problem in btree_gc_coalesce (CVE-2020-12771) - afs: Fix non-setting of mtime when writing into mmap - afs: afs_write_end() should change i_size under the right lock - block: Fix use-after-free in blkdev_get() - [arm64] hw_breakpoint: Don't invoke overflow handler on uaccess watchpoints - libata: Use per port sync for detach - drm: encoder_slave: fix refcouting error for modules - drm/dp_mst: Reformat drm_dp_check_act_status() a bit - drm/qxl: Use correct notify port address when creating cursor ring - selinux: fix double free - ext4: fix partial cluster initialization when splitting extent - ext4: avoid race conditions when remounting with options that change dax - drm/dp_mst: Increase ACT retry timeout to 3s - block: nr_sects_write(): Disable preemption on seqcount write - mtd: rawnand: Pass a nand_chip object to nand_scan() - mtd: rawnand: Pass a nand_chip object to nand_release() - mtd: rawnand: diskonchip: Fix the probe error path - [armel,armhf] mtd: rawnand: orion: Fix the probe error path - [s390x] fix syscall_get_error for compat processes - [x86] drm/i915: Whitelist context-local timestamp in the gen9 cmdparser - [x86] drm/i915/icl+: Fix hotplug interrupt disabling after storm detection - crypto: algif_skcipher - Cap recv SG list at ctx->used - crypto: algboss - don't wait during notifier callback - kprobes: Fix to protect kick_kprobe_optimizer() by kprobe_mutex - e1000e: Do not wake up the system via WOL if device wakeup is disabled - [mips*] net: octeon: mgmt: Repair filling of RX ring - kretprobe: Prevent triggering kretprobe from within kprobe_flush_task - sched/rt, net: Use CONFIG_PREEMPTION.patch - net: core: device_rename: Use rwsem instead of a seqcount - md: add feature flag MD_FEATURE_RAID0_LAYOUT - [x86] kvm: Move kvm_set_mmio_spte_mask() from x86.c to mmu.c - [x86] kvm: Fix reserved bits related calculation errors caused by MKTME - [x86] KVM: x86/mmu: Set mmio_value to '0' if reserved #PF can't be generated https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.131 - net: be more gentle about silly gso requests coming from user - block/bio-integrity: don't free 'buf' if bio_integrity_add_page() failed - fanotify: fix ignore mask logic for events on child and on dir - [armhf] mtd: rawnand: marvell: Fix the condition on a return code - net: sched: export __netdev_watchdog_up() - [x86] EDAC/amd64: Add Family 17h Model 30h PCI IDs - [arm64,armhf] i2c: tegra: Cleanup kerneldoc comments - [arm64,armhf] i2c: tegra: Add missing kerneldoc for some fields - [arm64,armhf] i2c: tegra: Fix Maximum transfer size - ALSA: hda/realtek - Enable the headset of ASUS B9450FA with ALC294 - ALSA: hda/realtek: Enable mute LED on an HP system - ALSA: hda/realtek - Enable micmute LED on and HP system - apparmor: don't try to replace stale label in ptraceme check (Closes: #963493) - [ppc64el] ibmveth: Fix max MTU limit - mld: fix memory leak in ipv6_mc_destroy_dev() - net: bridge: enfore alignment for ethernet address - net: fix memleak in register_netdevice() - net: place xmit recursion in softnet data - net: use correct this_cpu primitive in dev_recursion_level - net: increment xmit_recursion level in dev_direct_xmit() - net: usb: ax88179_178a: fix packet alignment padding - rxrpc: Fix notification call on completion of discarded calls - sctp: Don't advertise IPv4 addresses if ipv6only is set on the socket - tcp: don't ignore ECN CWR on pure ACK - tcp: grow window for OOO packets only for SACK flows - tg3: driver sleeps indefinitely when EEH errors exceed eeh_max_freezes - ip6_gre: fix use-after-free in ip6gre_tunnel_lookup() - net: phy: Check harder for errors in get_phy_id() - ip_tunnel: fix use-after-free in ip_tunnel_lookup() - sch_cake: don't try to reallocate or unshare skb unconditionally - sch_cake: fix a few style nits - tcp_cubic: fix spurious HYSTART_DELAY exit upon drop in min RTT - sch_cake: don't call diffserv parsing code when it is not needed - net: Fix the arp error in some cases - net: Do not clear the sock TX queue in sk_set_socket() - net: core: reduce recursion limit value - [arm*] usb: dwc2: Postponed gadget registration to the udc class driver - usb: add USB_QUIRK_DELAY_INIT for Logitech C922 - USB: ehci: reopen solution for Synopsys HC bug - xhci: Poll for U0 after disabling USB2 LPM - [armhf] usb: host: ehci-exynos: Fix error check in exynos_ehci_probe() - ALSA: usb-audio: add quirk for Denon DCD-1500RE - ALSA: usb-audio: add quirk for Samsung USBC Headset (AKG) - ALSA: usb-audio: Fix OOB access of mixer element list - [s390x] scsi: zfcp: Fix panic on ERP timeout for previously dismissed ERP action - xhci: Fix incorrect EP_STATE_MASK - xhci: Fix enumeration issue when setting max packet size for FS devices. - xhci: Return if xHCI doesn't support LPM - cdc-acm: Add DISABLE_ECHO quirk for Microchip/SMSC chip - loop: replace kill_bdev with invalidate_bdev - IB/mad: Fix use after free when destroying MAD agent - cifs/smb3: Fix data inconsistent when punch hole - cifs/smb3: Fix data inconsistent when zero file range - xfrm: Fix double ESP trailer insertion in IPsec crypto offload. - efi/esrt: Fix reference count leak in esre_create_sysfs_entry. - [armhf] regualtor: pfuze100: correct sw1a/sw2 on pfuze3000 - [armhf] ASoC: fsl_ssi: Fix bclk calculation for mono channel - [armhf] dts: Fix duovero smsc interrupt for suspend - regmap: Fix memory leak from regmap_register_patch - rxrpc: Fix handling of rwind from an ACK packet - RDMA/qedr: Fix KASAN: use-after-free in ucma_event_handler+0x532 - RDMA/cma: Protect bind_list and listen_list while finding matching cm id - RDMA/mad: Fix possible memory leak in ib_mad_post_receive_mads() - net: qed: fix left elements count calculation - net: qed: fix NVMe login fails over VFs - net: qed: fix excessive QM ILT lines consumption - cxgb4: move handling L2T ARP failures to caller - [armhf] imx5: add missing put_device() call in imx_suspend_alloc_ocram() - netfilter: ipset: fix unaligned atomic access - i2c: core: check returned size of emulated smbus block read - sched/deadline: Initialize ->dl_boosted - sched/core: Fix PI boosting between RT and DEADLINE tasks - ata/libata: Fix usage of page address by page_address in ata_scsi_mode_select_xlat function - net: alx: fix race condition in alx_remove - [s390x] ptrace: fix setting syscall number - [s390x] vdso: fix vDSO clock_getres() - kbuild: improve cc-option to clean up all temporary files - blktrace: break out of blktrace setup on concurrent calls - ALSA: hda: Add NVIDIA codec IDs 9a & 9d through a0 to patch table - ALSA: hda/realtek - Add quirk for MSI GE63 laptop - [x86,arm64] ACPI: sysfs: Fix pm_profile_attr type - [x86] KVM: Fix MSR range of APIC registers in X2APIC mode - [x86] KVM: nVMX: Plumb L2 GPA through to PML emulation - [amd64] x86/asm/64: Align start of __clear_user() loop to 16-bytes - btrfs: fix data block group relocation failure due to concurrent scrub - btrfs: fix failure of RWF_NOWAIT write into prealloc extent beyond eof - mm/slab: use memzero_explicit() in kzfree() - ocfs2: avoid inode removal while nfsd is accessing it - ocfs2: load global_inode_alloc - ocfs2: fix value of OCFS2_INVALID_SLOT - ocfs2: fix panic on nfs server over ocfs2 - [arm64] perf: Report the PC value in REGS_ABI_32 mode - tracing: Fix event trigger to accept redundant spaces - ring-buffer: Zero out time extend if it is nested and not absolute - drm/radeon: fix fb_div check in ni_init_smc_spll_table() - [x86,arm64] Staging: rtl8723bs: prevent buffer overflow in update_sta_support_rate() - sunrpc: fixed rollback in rpc_gssd_dummy_populate() - SUNRPC: Properly set the @subbuf parameter of xdr_buf_subsegment() - pNFS/flexfiles: Fix list corruption if the mirror count changes - NFSv4 fix CLOSE not waiting for direct IO compeletion - dm writecache: correct uncommitted_block when discarding uncommitted entry - dm writecache: add cond_resched to loop in persistent_memory_claim() - xfs: add agf freeblocks verify in xfs_agf_verify (CVE-2020-12655) - Revert "tty: hvc: Fix data abort due to race in hvc_open" . [ Salvatore Bonaccorso ] * [rt] Add new signing key for Tom Zanussi * nfsd: apply umask on fs without ACL support (Closes: #962254) * [rt] Update to 4.19.120-rt52: - tasklet: Address a race resulting in double-enqueue - hrtimer: fix logic for when grabbing softirq_expiry_lock can be elided * [rt] Update to 4.19.124-rt53 * [rt] Update to 4.19.127-rt55: - fs/dcache: Include swait.h header - mm: slub: Always flush the delayed empty slubs in flush_all() - tasklet: Fix UP case for tasklet CHAINED state * usb: usbtest: fix missing kfree(dev->buf) in usbtest_disconnect (CVE-2020-15393) . [ Ben Hutchings ] * [rt] Update "net: move xmit_recursion to per-task variable on -RT" to apply on top of "net: place xmit recursion in softnet data" * [rt] Drop "net: Add a mutex around devnet_rename_seq", redundant with "net: Introduce net_rwsem to protect net_namespace_list" * [rt] Drop idle task related parts of "sched: Move mmdrop to RCU on RT", redundant with "sched/core: Fix illegal RCU from offline CPUs" * Bump ABI to 10 . [ YunQiang Su ] * [mips*]: Do not enable MIPS_O32_FP64_SUPPORT, since golang hasn't been migrated to FPXX yet and this breaks the golang packages on Octeon hardware. In turns this disables MSA on 32-bit kernels. . [ Luca Boccassi ] * [cloud] Enable INFINIBAND configs for HyperV/Azure (Closes: #958300) linux-signed-i386 (4.19.118+2+deb10u1) buster-security; urgency=high . * Sign kernel from linux 4.19.118-2+deb10u1 . [ Salvatore Bonaccorso ] * selinux: properly handle multiple messages in selinux_netlink_send() (CVE-2020-10751) * fs/namespace.c: fix mountpoint reference counter race (CVE-2020-12114) * USB: core: Fix free-while-in-use bug in the USB S-Glibrary (CVE-2020-12464) * [x86] KVM: SVM: Fix potential memory leak in svm_cpu_init() (CVE-2020-12768) * scsi: sg: add sg_remove_request in sg_write (CVE-2020-12770) * USB: gadget: fix illegal array access in binding with UDC (CVE-2020-13143) * netlabel: cope with NULL catmap (CVE-2020-10711) * fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() (CVE-2020-10732) * kernel/relay.c: handle alloc_percpu returning NULL in relay_open (CVE-2019-19462) * mm: Fix mremap not considering huge pmd devmap (CVE-2020-10757) * [x86] KVM: nVMX: Always sync GUEST_BNDCFGS when it comes from vmcs01 * KVM: Introduce a new guest mapping API * [arm64] kvm: fix compilation on aarch64 * [s390x] kvm: fix compilation on s390 * [s390x] kvm: fix compile on s390 part 2 * KVM: Properly check if "page" is valid in kvm_vcpu_unmap * [x86] kvm: Introduce kvm_(un)map_gfn() (CVE-2019-3016) * [x86] kvm: Cache gfn to pfn translation (CVE-2019-3016) * [x86] KVM: Make sure KVM_VCPU_FLUSH_TLB flag is not missed (CVE-2019-3016) * [x86] KVM: Clean up host's steal time structure (CVE-2019-3016) * include/uapi/linux/swab.h: fix userspace breakage, use __BITS_PER_LONG for swap (Closes: #960271) . [ Ben Hutchings ] * propagate_one(): mnt_set_mountpoint() needs mount_lock * [x86] Add support for mitigation of Special Register Buffer Data Sampling (SRBDS) (CVE-2020-0543): - x86/cpu: Add 'table' argument to cpu_matches() - x86/speculation: Add Special Register Buffer Data Sampling (SRBDS) mitigation - x86/speculation: Add SRBDS vulnerability and mitigation documentation - x86/speculation: Add Ivy Bridge to affected list * [x86] speculation: Do not match steppings, to avoid an ABI change linux-signed-i386 (4.19.118+2+deb10u1~bpo9+1) stretch-backports; urgency=medium . * Sign kernel from linux 4.19.118-2+deb10u1~bpo9+1 . * Rebuild for stretch-backports; no further changes required lirc (0.10.1-6.2~deb10u1) buster; urgency=medium . * Non-maintainer upload. * Rebuild for buster. * Disable patches for Raspbian (0.10.1-6) and python3.8 (0.10.1-6.1). . lirc (0.10.1-6.2) unstable; urgency=medium . * Non-maintainer upload. * Revert "Revert "Do not install conffiles in a dummy location"" (0.10.1-5.2). (Closes: #932779, #851618) * d/lirc.maintscript: rm_conffile /etc/lirc/*.dist because they are most likely unmodified, don't mv_conffile them to =~ s/\.dist// to avoid clashes with existing and possibly modified configuration files. * d/lirc.preinst: Remove unmodified configuration files that are unknown to dpkg to avoid prompting when replacing them with conffiles. . lirc (0.10.1-6.1) unstable; urgency=medium . * Non-maintainer upload. * Fix time.clock usage. Closes: #949835. . lirc (0.10.1-6) unstable; urgency=medium . * Team upload * debian/patches/lirc-gpio-ir-0.10.patch: - fix for kernel 4.19 (Closes: #931078, 930485). lirc (0.10.1-6.1) unstable; urgency=medium . * Non-maintainer upload. * Fix time.clock usage. Closes: #949835. lirc (0.10.1-6) unstable; urgency=medium . * Team upload * debian/patches/lirc-gpio-ir-0.10.patch: - fix for kernel 4.19 (Closes: #931078, 930485). mailutils (1:3.5-4) buster; urgency=medium . * [CVE-2019-18862] Add patch from Sergey to have maidag drop setuid privileges for all delivery operations but mda (closes: #944265). Note that this security issue only affects systems that install maidag setuid, which is not the default in Debian. mariadb-10.3 (1:10.3.23-0+deb10u1) buster; urgency=high . * SECURITY UPDATE: New upstream version 10.3.23. Includes fixes for the following security vulnerabilities (Closes: #961849): - CVE-2020-2752 - CVE-2020-2760 - CVE-2020-2812 - CVE-2020-2814 - CVE-2020-13249 * Backport upstream patch to fix regression in RocksDB ZSTD detection which prevents a serious bug and also autopkgtest detectable regression. * Update libmariadb symbols for upstream release 3.1.8. Upstream added one new symbol and it needs to be tracked in the symbols file. mariadb-10.3 (1:10.3.22-1) unstable; urgency=medium . [ Otto Kekäläinen ] * New upstream version 10.3.22. Includes security fixes for: - CVE-2020-2574 * Update conflicts/breaks/replaces for MySQL 8.0 * Add Rules-Requires-Root definition to control file * Activate NO_UPDATE_BUILD_VERSION to make RocksDB build reproducible * Strip path from Mroonga to make the build reproducible * Update Debian Policy version * Simplify and extend Gitlab-CI testing by using more of Salsa-CI features * Prefer salsa-ci.yml naming over gitlab-ci.yml since we inherit Salsa-CI * Add Breaks/Replaces for mysql-client-5.7 that ships myisam_ftdump . [ Christian Göttsche ] * Set correct SELinux contexts on package installation (Closes: #948424) mod-gnutls (0.9.0-1.1~deb10u1) buster; urgency=medium . * Non-maintainer upload. * Rebuild for buster. . mod-gnutls (0.9.0-1.1) unstable; urgency=medium . * Non-maintainer upload. * Backported patches to fix test failures with the apache CVE-2019-10092 fix. (Closes: #950300) * Disable a test that fails with GnuTLS >= 3.6.11. (Closes: #950301) * Backported a fix for a possible segfault on failed TLS handshake. multipath-tools (0.7.9-3+deb10u1) buster; urgency=medium . * [775fe68] kpartx: use correct path to partx in udev rule (Closes: #959727) mutt (1.10.1-2.1+deb10u3) buster; urgency=medium . * debian/patches: + added imap-preauth-and-ssh-tunnel.patch from upstream, which does not check IMAP preauth in SSH tunnels (Closes: 963970) mutt (1.10.1-2.1+deb10u2) buster-security; urgency=high . * debian/patches: + added security/CVE-not-yet-released.patch to fix a possible MITM response injection attack when using STARTTLS with IMAP, POP3 and SMTP. mutt (1.10.1-2.1+deb10u1) buster-security; urgency=high . * debian/patches: + added security/CVE-2020-14093.patch to fix the relevant CVE related to IMAP MITM attack via a PREAUTH response + added security/CVE-2020-14154.patch to fix the relevant CVE where mutt proceeds with a connection even if, in response to a GnuTLS certificate prompt, the user rejects an expired intermediate certificate. mydumper (0.9.5-1+deb10u1) buster; urgency=medium . * Non-maintainer upload. * Link mydumper against libm. (Closes: #956020) neomutt (20180716+dfsg.1-1+deb10u1) buster-security; urgency=high . * debian/patches: + security/CVE-2020-14093.patch: handle the relevant CVE by removing a potential MITM attack with IMAP. + security/handle-startts.patch: fixes a not yet published CVE where the socket was not completely cleared after STARTTLS netqmail (1.06-6.2~deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Rebuild for buster-security . netqmail (1.06-6.2) unstable; urgency=high . * Address CVE-2005-1513, CVE-2005-1514, CVE-2005-1515, CVE-2020-3811 and CVE-2020-3812 (Closes: #961060) . netqmail (1.06-6.1) unstable; urgency=medium . * Non-maintainer upload. * [fdc8794a] Setup Gitlab continous integration * [73e52807] Fix quotation in postinst (Closes: #866038) * [2fc47776] Make package piupart-clean (Closes: #672155) netqmail (1.06-6.2~deb9u1) stretch-security; urgency=high . * Non-maintainer upload by the Security Team. * Rebuild for stretch-security . netqmail (1.06-6.2) unstable; urgency=high . * Address CVE-2005-1513, CVE-2005-1514, CVE-2005-1515, CVE-2020-3811 and CVE-2020-3812 (Closes: #961060) . netqmail (1.06-6.1) unstable; urgency=medium . * Non-maintainer upload. * [fdc8794a] Setup Gitlab continous integration * [73e52807] Fix quotation in postinst (Closes: #866038) * [2fc47776] Make package piupart-clean (Closes: #672155) netqmail (1.06-6.1) unstable; urgency=medium . * Non-maintainer upload. * [fdc8794a] Setup Gitlab continous integration * [73e52807] Fix quotation in postinst (Closes: #866038) * [2fc47776] Make package piupart-clean (Closes: #672155) nfs-utils (1:1.3.4-2.5+deb10u1) buster; urgency=medium . * statd: take user-id from /var/lib/nfs/sm (CVE-2019-3689) (Closes: #940848) * Don't make /var/lib/nfs owned by statd. Only sm and sm.bak need to be accessible by statd or sm-notify after they drop privileges. * debian/control: Point Vcs URLs to kernel-team namespace repository nginx (1.14.2-2+deb10u2) buster; urgency=medium . * Handle CVE-2019-20372, error page request smuggling (Closes: #948579) nmap (7.70+dfsg1-6+deb10u1) buster; urgency=medium . * d/p/ncat-ssl-key-default-size.patch: Backport patch to fix openssl incompatibility (closes: #940284) node-dot-prop (4.1.1-1+deb10u2) buster; urgency=medium . * Fix regression introduced in CVE-2020-8116 fix (Closes: #960283) node-handlebars (3:4.1.0-1+deb10u2) buster; urgency=medium . * Fix regression introduced in 3:4.1.0-1+deb10u1 node-handlebars (3:4.1.0-1+deb10u1) buster; urgency=medium . * Team upload * Disallow calling "helperMissing" and "blockHelperMissing" directly (Closes: CVE-2019-19919) node-minimist (1.2.0-1+deb10u1) buster; urgency=medium . * Team upload * Fix prototype pollution (Closes: #953762, CVE-2020-7598) nodejs (10.21.0~dfsg-1~deb10u1) buster-security; urgency=medium . * New upstream version 10.21.0~dfsg. Closes: #962145. * Security fixes: + CVE-2020-11080 + CVE-2020-8172 + CVE-2020-8174 nodejs (10.20.1~dfsg-1) unstable; urgency=medium . * New upstream version 10.20.1~dfsg * watch: use xz version * copyright: replace tabs nodejs (10.20.0~dfsg-1) unstable; urgency=medium . * New upstream version 10.20.0~dfsg * Exclude brotli from deps, use system-installed one * Drop ssl111e patch, applied upstream nss (2:3.42.1-1+deb10u3) buster-security; urgency=medium . * CVE-2019-17006 CVE-2019-17023 CVE-2020-12399 CVE-2020-12402 nvidia-graphics-drivers (418.152.00-1) buster; urgency=medium . * New upstream Tesla release 418.152.00 (2020-06-24). * Fixed CVE-2020-5963, CVE-2020-5967. (Closes: #963766) https://nvidia.custhelp.com/app/answers/detail/a_id/5031 . [ Andreas Beckmann ] * Use amd64 Tesla releases for buster. * Refresh patches. * Update lintian overrides. * Upload to buster. . nvidia-graphics-drivers (418.126.02-1) UNRELEASED; urgency=medium . * New upstream Tesla release 418.126.02 (2020-02-28). - Added support for the following GPU: Quadro T2000 with Max-Q Design. . [ Andreas Beckmann ] * Import drmP.patch from Fedora and port it from 390.xx to 418.xx to fix kernel module build for Linux 5.5. (Closes: #951091) * Backport nv_ioremap_nocache changes from 440.64 and nv_proc_ops_t and nv_timeval changes from 440.82 to fix kernel module build for Linux 5.6. (Closes: #956458) * Fix #includes in conftest.sh to fix kernel module build for Linux 5.7, thanks to Jiri Palecek. (Closes: #960735) . nvidia-graphics-drivers (418.116.00-1) UNRELEASED; urgency=medium . * New upstream Tesla release 418.116.00 (2019-12-09). nvidia-graphics-drivers (418.152.00-1~bpo9+1) stretch-backports; urgency=medium . * Rebuild for stretch-backports. . nvidia-graphics-drivers (418.152.00-1) buster; urgency=medium . * New upstream Tesla release 418.152.00 (2020-06-24). * Fixed CVE-2020-5963, CVE-2020-5967. (Closes: #963766) https://nvidia.custhelp.com/app/answers/detail/a_id/5031 . [ Andreas Beckmann ] * Use amd64 Tesla releases for buster. * Refresh patches. * Update lintian overrides. * Upload to buster. . nvidia-graphics-drivers (418.126.02-1) UNRELEASED; urgency=medium . * New upstream Tesla release 418.126.02 (2020-02-28). - Added support for the following GPU: Quadro T2000 with Max-Q Design. . [ Andreas Beckmann ] * Import drmP.patch from Fedora and port it from 390.xx to 418.xx to fix kernel module build for Linux 5.5. (Closes: #951091) * Backport nv_ioremap_nocache changes from 440.64 and nv_proc_ops_t and nv_timeval changes from 440.82 to fix kernel module build for Linux 5.6. (Closes: #956458) * Fix #includes in conftest.sh to fix kernel module build for Linux 5.7, thanks to Jiri Palecek. (Closes: #960735) . nvidia-graphics-drivers (418.116.00-1) UNRELEASED; urgency=medium . * New upstream Tesla release 418.116.00 (2019-12-09). . nvidia-graphics-drivers (418.113-1) buster; urgency=medium . * New upstream long lived branch release 418.113 (2019-11-05). - Updated the Module.symvers sanity check, which is part of the NVIDIA kernel module build process, to accommodate the recent addition of a new field in the Module.symvers file format. This fixes the error "The Module.symvers file is missing [...]" seen during driver installation or DKMS rebuilds with Linux 5.4 RC kernels. - Fixed a bug that prevented NVIDIA GPUs from entering the low-power D3 state when entering suspend-to-idle (s2idle). Note that on some systems this may expose an existing timing issue in the Linux kernel; see the "Known Issues and Workarounds" section of the "Configuring Power Management Support" chapter of the README for more details. . [ Andreas Beckmann ] * Update nv-readme.ids. * Refresh patches. * debian/gen-control.pl: Support substitutions in the Architecture field and skip packages with empty or commented Architecture field (430.50-2). * Prepare infrastructure for packaging Tesla 418 driver releases (available for amd64 (including some i386 libs) and ppc64el) (430.50-2). * Create and commit tarball symlinks for legacy branches (430.64-1). * nvidia-detect: Add PCI ID list for 418.74 in buster (430.64-2). * nvidia-detect: Add support for Tesla 418 drivers (430.64-2). * nvidia-detect: The 340xx legacy driver will not be in bullseye (430.64-5). * Allow alternative libnvidia-{tesla,legacy-*}-ml1 packages to substitute libnvidia-ml1 (430.64-2). - Add Provides: libnvidia-ml.so.1 (= ${nvidia:Version}). - Generate alternative versioned dependency on libnvidia-ml.so.1 through the symbols file. * Allow alternative libnvidia-{tesla,legacy-*}-cuda1 packages to substitute libcuda1 in third-party packages (430.64-3). - Add Provides: libcuda.so.1 (= ${nvidia:Version}). - Generate alternative versioned dependency on libcuda.so.1 through the symbols file. * Use substitution to keep Standards-Version in sync (430.64-5). * Insert '-' between suffix ending with digit and SOVERSION (435.21-3). * Rename "legacy" variables to more generic "variant" (440.44-2). * bug-control: Report information about more (virtual) packages (440.64-2). * Prepare infrastructure for packaging Tesla 440 driver releases (available for amd64 (including some i386 libs) and ppc64el) (440.64-2). * Bump Standards-Version to 4.5.0. No changes needed. * Update lintian overrides. * Upload to buster. . nvidia-graphics-drivers (418.88-1) unstable; urgency=medium . * New upstream long lived branch release 418.88 (2019-07-29). * Improved compatibility with recent Linux kernels. (Closes: #934290, #934344, #934648) . [ Andreas Beckmann ] * Bump Standards-Version to 4.4.0. No changes needed. . nvidia-graphics-drivers (418.87.01-1) UNRELEASED; urgency=medium . * New upstream Tesla release 418.87.01 (2019-10-03). * New upstream Tesla release 418.87.00 (2019-08-13). - Added support for the following GPUs: Quadro P520, Quadro RTX 3000, Quadro RTX 3000 with Max-Q Design, Quadro RTX 4000 with Max-Q Design, Quadro RTX 5000 with Max-Q Design, Quadro T1000, Quadro T2000. - Fixed a bug, introduced in 415.13, that caused audio over DisplayPort to not work in some configurations. . [ Andreas Beckmann ] * Update nv-readme.ids. * Backport fixes for Linux 5.2/5.3 from 418.88. nvidia-graphics-drivers-legacy-390xx (390.138-1~deb10u1) buster; urgency=medium . * Rebuild for buster. . nvidia-graphics-drivers-legacy-390xx (390.138-1) unstable; urgency=medium . * New upstream legacy branch release 390.138 (2020-06-24). * Fixed CVE-2020-5963, CVE-2020-5967. (Closes: #963908) https://nvidia.custhelp.com/app/answers/detail/a_id/5031 - Fixed a driver installation failure on Linux kernel 5.6 release candidates, where the NVIDIA kernel module failed to build with error "implicit declaration of function 'timespec_to_ns'". - Fixed a driver installation failure on Linux kernel 5.6 release candidates, where the NVIDIA kernel module failed to build with error "implicit declaration of function 'getrawmonotonic'". - Fixed a driver installation failure on Linux kernel 5.6 release candidates, where the NVIDIA kernel module failed to build with error "implicit declaration of function 'getnstimeofday'". - Fixed a driver installation failure on Linux kernel 5.6 release candidates, where the NVIDIA kernel module failed to build with error "dereferencing pointer to incomplete type 'struct timeval'". - Fixed a driver installation failure on Linux kernel 5.6 release candidates, where the NVIDIA kernel module failed to build with error "implicit declaration of function 'jiffies_to_timespec'". - Fixed driver installation failure on Linux kernel 5.6 release candidates, where the NVIDIA kernel module failed to build with error "passing argument 4 of 'proc_create_data' from incompatible pointer type". - Fixed driver installation failure on Linux kernel 5.6 release candidates, where the NVIDIA kernel module failed to build with error "implicit declaration of function 'ioremap_nocache'". - Fixed driver installation failure on Oracle Linux 7.7 systems, where the NVIDIA kernel module failed to build with error "unknown type name 'vm_fault_t'". - Add PRIME Synchronization support for Linux kernel 5.4 and newer. . [ Andreas Beckmann ] * Refresh patches. * Update lintian overrides. . nvidia-graphics-drivers-legacy-390xx (390.132-5) unstable; urgency=medium . * Fix #includes in conftest.sh to fix kernel module build for Linux 5.7, thanks to Jiri Palecek. (Closes: #960735) . nvidia-graphics-drivers-legacy-390xx (390.132-4) unstable; urgency=medium . * Backport nv_ioremap_nocache changes from 440.64 and nv_proc_ops_t and nv_timeval changes from 440.82 to fix kernel module build for Linux 5.6. (Closes: #956458) nvidia-graphics-drivers-legacy-390xx (390.138-1~deb10u1~bpo9+1) stretch-backports; urgency=medium . * Rebuild for stretch-backports. . nvidia-graphics-drivers-legacy-390xx (390.138-1~deb10u1) buster; urgency=medium . * Rebuild for buster. . nvidia-graphics-drivers-legacy-390xx (390.138-1) unstable; urgency=medium . * New upstream legacy branch release 390.138 (2020-06-24). * Fixed CVE-2020-5963, CVE-2020-5967. (Closes: #963908) https://nvidia.custhelp.com/app/answers/detail/a_id/5031 - Fixed a driver installation failure on Linux kernel 5.6 release candidates, where the NVIDIA kernel module failed to build with error "implicit declaration of function 'timespec_to_ns'". - Fixed a driver installation failure on Linux kernel 5.6 release candidates, where the NVIDIA kernel module failed to build with error "implicit declaration of function 'getrawmonotonic'". - Fixed a driver installation failure on Linux kernel 5.6 release candidates, where the NVIDIA kernel module failed to build with error "implicit declaration of function 'getnstimeofday'". - Fixed a driver installation failure on Linux kernel 5.6 release candidates, where the NVIDIA kernel module failed to build with error "dereferencing pointer to incomplete type 'struct timeval'". - Fixed a driver installation failure on Linux kernel 5.6 release candidates, where the NVIDIA kernel module failed to build with error "implicit declaration of function 'jiffies_to_timespec'". - Fixed driver installation failure on Linux kernel 5.6 release candidates, where the NVIDIA kernel module failed to build with error "passing argument 4 of 'proc_create_data' from incompatible pointer type". - Fixed driver installation failure on Linux kernel 5.6 release candidates, where the NVIDIA kernel module failed to build with error "implicit declaration of function 'ioremap_nocache'". - Fixed driver installation failure on Oracle Linux 7.7 systems, where the NVIDIA kernel module failed to build with error "unknown type name 'vm_fault_t'". - Add PRIME Synchronization support for Linux kernel 5.4 and newer. . [ Andreas Beckmann ] * Refresh patches. * Update lintian overrides. . nvidia-graphics-drivers-legacy-390xx (390.132-5) unstable; urgency=medium . * Fix #includes in conftest.sh to fix kernel module build for Linux 5.7, thanks to Jiri Palecek. (Closes: #960735) . nvidia-graphics-drivers-legacy-390xx (390.132-4) unstable; urgency=medium . * Backport nv_ioremap_nocache changes from 440.64 and nv_proc_ops_t and nv_timeval changes from 440.82 to fix kernel module build for Linux 5.6. (Closes: #956458) . nvidia-graphics-drivers-legacy-390xx (390.132-3~deb10u1) buster; urgency=medium . * Rebuild for buster. . nvidia-graphics-drivers-legacy-390xx (390.132-3) unstable; urgency=medium . [ Andreas Beckmann ] * bug-control: Report information about more (virtual) packages (440.64-2). * Update lintian overrides. . [ Luca Boccassi ] * Import drmP.patch from Fedora to fix kernel module build failure for Linux 5.5 and newer. (Closes: #951091) . nvidia-graphics-drivers-legacy-390xx (390.132-2) unstable; urgency=medium . * Create and commit tarball symlinks for legacy branches (430.64-1). * Allow alternative libnvidia-{tesla,legacy-*}-ml1 packages to substitute libnvidia-ml1 (430.64-2). - Add Provides: libnvidia-ml.so.1 (= ${nvidia:Version}). - Generate alternative versioned dependency on libnvidia-ml.so.1 through the symbols file. * Allow alternative libnvidia-{tesla,legacy-*}-cuda1 packages to substitute libcuda1 in third-party packages (430.64-3). - Add Provides: libcuda.so.1 (= ${nvidia:Version}). - Generate alternative versioned dependency on libcuda.so.1 through the symbols file. * Use substitution to keep Standards-Version in sync (430.64-5). * Insert '-' between suffix ending with digit and SOVERSION (435.21-3). * Rename "legacy" variables to more generic "variant" (440.44-2). * Bump Standards-Version to 4.5.0. No changes needed. . nvidia-graphics-drivers-legacy-390xx (390.132-1) unstable; urgency=medium . * New upstream legacy branch release 390.132 (2019-11-08). - Fixed kernel module build problems with Linux kernel 5.4.0 release candidates. - Updated nvidia-bug-report.sh to collect information about X server crashes from coredumpctl, when available. . [ Andreas Beckmann ] * Refresh patches. . nvidia-graphics-drivers-legacy-390xx (390.129-2) unstable; urgency=medium . * Add mobile Kepler GPUs to supported EoL models. The are dropped from the mainline driver in the 430 series. https://nvidia.custhelp.com/app/answers/detail/a_id/4779 https://nvidia.custhelp.com/app/answers/detail/a_id/4788 * debian/gen-control.pl: Support substitutions in the Architecture field and skip packages with empty or commented Architecture field (430.50-2). * Bump Standards-Version to 4.4.1. No changes needed. . nvidia-graphics-drivers-legacy-390xx (390.129-1) unstable; urgency=medium . * New upstream legacy branch release 390.129 (2019-07-29). - Improved nvidia-bug-report.sh to grab the output of the `vulkaninfo` command when it is available. * Improved compatibility with recent Linux kernels. . [ Andreas Beckmann ] * Bump Standards-Version to 4.4.0. No changes needed. . nvidia-graphics-drivers-legacy-390xx (390.116-2) unstable; urgency=medium . [ Kevin Locke ] * Backport changes from 418.74 and 430.14 to support building the module for Linux 5.1 and 5.2. (Closes: #928634) nvidia-graphics-drivers-legacy-390xx (390.132-5) unstable; urgency=medium . * Fix #includes in conftest.sh to fix kernel module build for Linux 5.7, thanks to Jiri Palecek. (Closes: #960735) nvidia-graphics-drivers-legacy-390xx (390.132-4) unstable; urgency=medium . * Backport nv_ioremap_nocache changes from 440.64 and nv_proc_ops_t and nv_timeval changes from 440.82 to fix kernel module build for Linux 5.6. (Closes: #956458) nvidia-graphics-drivers-legacy-390xx (390.132-3) unstable; urgency=medium . [ Andreas Beckmann ] * bug-control: Report information about more (virtual) packages (440.64-2). * Update lintian overrides. . [ Luca Boccassi ] * Import drmP.patch from Fedora to fix kernel module build failure for Linux 5.5 and newer. (Closes: #951091) openstack-debian-images (1.36+deb10u1) buster; urgency=medium . * Add the resolvconf if installing cloud-init, needed in case a VM gets the DNS configuration from configdrive instead of DHCP. More on this can be found here: https://bugs.launchpad.net/cloud-init/+bug/1850310. pagekite (0.5.9.3-2+deb10u1) buster; urgency=medium . [ Sunil Mohan Adapa ] * Fix issue with expired internal certificates. Use Debian certificates instead of internal certificate. (Closes: #961984) pdfchain (1:0.4.4.2-1+deb10u1) buster; urgency=medium . * Fix crash at startup. (LP: #1685778) (Closes: #725859) pdns-recursor (4.1.11-1+deb10u1) buster-security; urgency=high . * Fix security issues CVE-2020-10995 CVE-2020-12244 CVE-2020-10030 perl (5.28.1-6+deb10u1) buster; urgency=medium . * Multiple regexp security fixes (Closes: #962005) + [SECURITY] CVE-2020-10543: Buffer overflow caused by a crafted regular expression + [SECURITY] CVE-2020-10878: Integer overflow via malformed bytecode produced by a crafted regular expression + [SECURITY] CVE-2020-12723: Buffer overflow caused by a crafted regular expression * Fix FTBFS with IPv6-only host (Closes: #962019) php-horde (5.2.20+debian0-1+deb10u2) buster; urgency=medium . * CVE-2020-8035: Don't allow to view images inline if opened directly. * debian/patches/0001-Fix-rewrite-base.patch: Trivial rebase. php-horde-gollem (3.0.12-3+deb10u1) buster; urgency=medium . * debian/patches: + Add CVE-2020-8034.patch. Fix XSS vulnerability in breadcrumb output (Reported by: polict of Shielder). (Closes: #961649, CVE-2020-8034). php7.3 (7.3.19-1~deb10u1) buster-security; urgency=high . * New upstream version 7.3.15 + Fixed bug #79082 (Files added to tar with Phar::buildFromIterator have all-access permissions). (CVE-2020-7063) + Fixed bug #79171 (heap-buffer-overflow in phar_extract_file). (CVE-2020-7061) + Fixed bug #79221 (Null Pointer Dereference in PHP Session Upload Progress). (CVE-2020-7062) * New upstream version 7.3.16 + Fixed bug #79371 (mb_strtolower (UTF-32LE): stack-buffer-overflow at php_unicode_tolower_full). (CVE-2020-7065) + Fixed bug #79329 (get_headers() silently truncates after a null byte). (CVE-2020-7066) * New upstream version 7.3.17 + Fixed bug #79465 (OOB Read in urldecode()). (CVE-2020-7067) * New upstream version 7.3.18 + Fixed bug #78875 (Long filenames cause OOM and temp files are not cleaned). (CVE-2019-11048) + Fixed bug #78876 (Long variables in multipart/form-data cause OOM and temp files are not cleaned). (CVE-2019-11048) * New upstream version 7.3.19 * php-fpm has to depend on procps due kill usage in systemd service file (Closes: #861855) php7.3 (7.3.15-3) unstable; urgency=medium . * Remove /etc/init/php@PHP_VERSION@-fpm.conf, not /etc/init/php@PHP_VERSION@.conf php7.3 (7.3.15-2) unstable; urgency=medium . * Remove the PIDFile= setting from systemd unit file (it should not be needed with Type=notify) * Use php-fpm-socket-helper from php-common >= 1:73 to update the default socket * Fixup upstart removal (missing prepare-files update) (Closes: #951745) php7.3 (7.3.15-1) unstable; urgency=medium . * Remove upstart support, use systemd-tmpfiles to create tmpfiles (Closes: #923032) * New upstream version 7.3.15 php7.3 (7.3.14-1~deb10u1) buster-security; urgency=medium . * New upstream version 7.3.14 * Disable MySQL X Plugin in the tests * Use mysqld --initialize-insecure for MySQL 8.0 (for Ubuntu 19.10) * Remove --skip-grant-tables to fix FTBFS with MySQL 8.0 * Remove --without-mysqlx from MySQL 5.7 php7.3 (7.3.12-1) unstable; urgency=medium . * Use mysqld --initialize-insecure for MySQL 8.0 (for Ubuntu 19.10) * Disable MySQL X Plugin in the tests * Remove --skip-grant-tables to fix FTBFS with MySQL 8.0 * Remove --without-mysqlx from MySQL 5.7 * New upstream version 7.3.12 pillow (5.4.1-2+deb10u2) buster; urgency=medium . * CVE-2020-11538 CVE-2020-10378 CVE-2020-10177 policyd-rate-limit (1.0.1.1-0+deb10u1) buster; urgency=medium . * Team upload * New upstream release 1.0.1.1 - Fixes issues in accounting due to socket reuse (Closes: #960792) - Fixes undeclared variable issue * Updated upstream's signing key postfix (3.4.14-0+deb10u1) buster; urgency=medium . [Cody Brownstein] . * README.Debian corrections: - Fix instructions wrt SMTP generic mapping - Fix authentication configuration example . [Scott Kitterman] . * Updated debian/watch to track postfix 3.4 series for stable updates * Check GPG signature when downloading new versions via uscan . [Wietse Venema] . * 3.4.11 - No changes that affect Debian 10 (Buster) . * 3.4.12 - Bugfix: segfault in the tlsproxy client role when the server role was disabled. This typically happens on systems that do not receive mail, after configuring connection reuse for outbound TLS. Found during program maintenance. File: tlsproxy/tlsproxy.c. . - Bugfix (introduced: Postfix 3.4): maillog_file_rotate_suffix default value used the minute instead of the month. Reported by Larry Stone. Files: conf/postfix-tls-script, proto/MAILLOG_README.html, proto/postconf.proto. global/mail_params.h, postfix/postfix.c. . - Bitrot: avoid U_FILE_ACCESS_ERROR after chroot(), by initializing the ICU library before making the chroot() call. Files: util/midna_domain.[hc], global/mail_params.c. . - Noise suppression: avoid "SSL_Shutdown:shutdown while in init" warnings. File: tls/tls_session.c. . - Bugfix (introduced: Postfix 2.2): a TLS error for a PostgreSQL client caused a false 'lost connection' error for an SMTP over TLS session in the same Postfix process. Reported by Alexander Vasarab, diagnosed by Viktor Dukhovni. File: tls/tls_bio_ops.c. . - Bugfix (introduced: Postfix 2.8): a TLS error for one TLS session may cause a false 'lost connection' error for a concurrent TLS session in the same tlsproxy process. File: tlsproxy/tlsproxy.c. . * 3.4.13 - Bugfix (introduced: Postfix 3.1): "postfix tls deploy-server-cert" did not handle a missing optional argument. File: conf/postfix-tls-script. . - Bugfix (introduced: Postfix 3.4): in the Postfix SMTP server, the SNI callback reported an error when it was called a second time. This happened after the server-side TLS engine sent a TLSv1.3 HelloRetryRequest (HRR) to a remote SMTP client. Reported by Ján Máté, fixed by Viktor Dukhovni. File: tls/tls_misc.c. . * 3.4.14 - Bugfix (introduced: Postfix 3.4): the connection_reuse attribute in smtp_tls_policy_maps resulted in an "invalid attribute name" error. Fix by Thorsten Habich. File: smtp/smtp_tls_policy.c. . - Bugfix (introduced: Postfix 3.4): SMTP over TLS connection reuse was broken for configurations that use explicit trust anchors. Reported by Thorsten Habich. Cause: the tlsproxy client was sending a zero certificate length. File: tls/tls_proxy_client_print.c. . - Bugfix (introduced: Postfix 3.4): SMTP over TLS connection reuse was broken for configurations that use explicit trust anchors. Reported by Thorsten Habich. Fixed by calling DANE initialization unconditionally (WTF). File: tlsproxy/tlsproxy.c. . - Bugfix (introduced: Postfix 2.11): The Postfix smtp(8) client did not send the right SNI name when the TLSA base domain was a secure CNAME expansion of the MX hostname (or non-MX nexthop domain). Domains with CNAME expanded MX hosts are not conformant with RFC5321, and so are rare. Even more rare are MX hosts with TLSA records for their CNAME expansion. For this to matter, the remote SMTP server would also have to select its certificate based on the SNI name in such a way that the original MX host would yield a different certificate. Among the ~2 million hosts in the DANE survey, none meet the conditions for returning a different certificate for the expanded CNAME. Therefore, sending the correct SNI name should not break existing mail flows. Fixed by Viktor Dukhovni. File: src/tls/tls_client.c. postfix (3.4.10-1) unstable; urgency=medium . [Scott Kitterman] . * Update postfix.postinst text to refer to systemctl vice service . [Wietse Venema] . * 3.4.10 python-django (1:1.11.29-1~deb10u1) buster-security; urgency=high . * New upstream security release (postponed from March 2020): . - CVE-2020-9402: Potential SQL injection via tolerance parameter in GIS functions and aggregates on Oracle . Note that Django 1.11.x left upstream's extended security support on April 1st 2020. For more information, please see: . https://www.djangoproject.com/download/ . * This upload also fixes the following security issues: . - CVE-2020-13254: Potential a data leakage via malformed memcached keys. . In cases where a memcached backend does not perform key validation, passing malformed cache keys could result in a key collision, and potential data leakage. In order to avoid this vulnerability, key validation is added to the memcached cache backends. . - CVE-2020-13596: Possible XSS via admin ForeignKeyRawIdWidget. . Query parameters to the admin ForeignKeyRawIdWidget were not properly URL encoded, posing an XSS attack vector. ForeignKeyRawIdWidget now ensures query parameters are correctly URL encoded. python-markdown2 (2.3.7-2+deb10u1) buster; urgency=medium . * Add d/p/0001 To fix CVE-2020-11888, thanks to Gareth Simpson Closes: #959445 * Add a d/gbp.conf file to ease-up gbp's mind python3.7 (3.7.3-2+deb10u2) buster; urgency=medium . * CVE-2019-20907 * CVE-2020-14422 * CVE-2020-8492 qdirstat (1.5-1+deb10u1) buster; urgency=medium . * Add upstream patch 01-mime-categories-save to fix a bug where user configured MIME categories are not saved. qemu (1:3.1+dfsg-8+deb10u7) buster-security; urgency=medium . * acpi-accept-byte-and-word-access-to-core-ACPI-registers.patch replace acpi-tmr-allow-2-byte-reads.patch with a more complete patch Closes: #964793 * xhci-fix-valid.max_access_size-to-access-address-registers.patch This is another issue revealed after the CVE-2020-13754 fix * slirp-tcp_emu-fix-unsafe-snprintf-usages-CVE-2020-8608.patch (and a preparational patch, slirp-add-fmt-helpers.patch) Closes: CVE-2020-8608 qemu (1:3.1+dfsg-8+deb10u6) buster-security; urgency=high . * revert-memory-accept-mismatching-sizes-in-memory_region_access_valid...patch Closes: CVE-2020-13754, possible OOB memory accesses in a bunch of qemu devices which uses min_access_size and max_access_size Memory API fields. Also closes: CVE-2020-13791 * acpi-tmr-allow-2-byte-reads.patch - fix an issue in MacOS exposed by the previous "revert-.." change (#964247) * exec-set-map-length-to-zero-when-returning-NULL-CVE-2020-13659.patch CVE-2020-13659: address_space_map in exec.c can trigger a NULL pointer dereference related to BounceBuffer * megasas-use-unsigned-type-for-reply_queue_head-and-check-index...patch Closes: #961887, CVE-2020-13362, megasas_lookup_frame in hw/scsi/megasas.c has an OOB read via a crafted reply_queue_head field from a guest OS user * megasas-use-unsigned-type-for-positive-numeric-fields.patch fix other possible cases like in CVE-2020-13362 (#961887) * megasas-fix-possible-out-of-bounds-array-access.patch Some tracepoints use a guest-controlled value as an index into the mfi_frame_desc[] array. Thus a malicious guest could cause a very low impact OOB errors here * es1370-check-total-frame-count-against-current-frame-CVE-2020-13361.patch Closes: #961888, CVE-2020-13361, es1370_transfer_audio in hw/audio/es1370.c does not properly validate the frame count, which allows guest OS users to trigger an out-of-bounds access during an es1370_write() operation * slirp-drop-bogus-IPv6-messages-CVE-2020-10756.patch Closes: CVE-2020-10756, possible OOB read in icmp6_send_echoreply() raspi3-firmware (1.20190215-1+deb10u4) buster; urgency=medium . * Fixes ugly typo that _still_ caused unbootable systems :-( Thanks to Thorsten Glaser for a sharp set of eyes! (Closes: #961377) * Updated Vcs-Git, Vcs-Browser redis (5:5.0.3-4+deb10u2) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Fix integer overflow in embedded lua_struct.c (CVE-2020-14147) resource-agents (1:4.2.0-2+deb10u2) buster; urgency=medium . * debian/patches: add ipsrcaddr-proto.patch (Closes: #963691) roundcube (1.3.14+dfsg.1-1~deb10u1) buster-security; urgency=high . * New upstream release, with security fix for CVE-2020-15562: Cross-Site Scripting (XSS) vulnerability via HTML messages with malicious svg/namespace (Closes: #964355) roundcube (1.3.13+dfsg.1-1~deb10u1) buster-security; urgency=high . * New security upstream release, with fixes for: - CVE-2020-13964: Cross-Site Scripting (XSS) vulnerability in template object 'username' (Closes: #962124) - CVE-2020-13965: Cross-Site Scripting (XSS) vulnerability via malicious XML messages (Closes: #962123) roundcube (1.3.11+dfsg.1-1~deb10u1) buster-security; urgency=high . * New security upstream release, with fixes for: - CVE-2020-12625: Cross-Site Scripting (XSS) vulnerability via malicious HTML messages (closes: #959140) - CVE-2020-12626: CSRF attack can cause an authenticated user to be logged out (closes: #959142) roundcube (1.3.10+dfsg.1-1) unstable; urgency=medium . * New upstream release: (Closes: #927713) - Fixes CVE-2019-10740 . [ Guilhem Moulin ] * Backport fix for CVE-2018-1000071: Insecure Permissions vulnerability in enigma plugin that can result in exfiltration of gpg private key. https://github.com/roundcube/roundcubemail/issues/6173 (Closes: #897014) * New upstream release (1.3.9). (Closes: #898068) * d/roundcube-core.config: Honor debconf setting roundcube/language, by skipping the relevant part at pre-configure stage. (Closes: #923142) * d/roundcube-core.postinst: Create temporary configuration file atomically. * d/upstream/signing-key.asc: Minimize OpenPGP certificate. * Add new plugins to roundcube-plugins: 'attachment_reminder' (closes: #918126), 'example_addressbook', 'identicon', 'identity_select' and 'redundant_attachments'. * d/control: Bump Standards-Version to 4.3.0 (no changes needed). ruby-json (2.1.0+dfsg-2+deb10u1) buster; urgency=high . * Add patch to fix unsafe object creation vulnerability. (Fixes: CVE-2020-10663) ruby-sanitize (4.6.6-2.1~deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Rebuild for buster-security . ruby-sanitize (4.6.6-2.1) unstable; urgency=medium . * Non-maintainer upload. * fix: Don't treat :remove_contents as `true` when it's an Array * feat: Remove useless filtered element content by default * Fix sanitization bypass in HTML foreign content (CVE-2020-4054) (Closes: #963808) ruby2.5 (2.5.5-3+deb10u2) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Add patch to fix: - CVE-2020-10663: unsafe object creation vulnerability in JSON. - CVE-2020-10933: do not return uninitialized buffer. salt (2018.3.4+dfsg1-6+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Fix CVE-2020-11651: Resolve issue which allows access to un-intended methods in the ClearFuncs class of the salt-master process (Closes: #959684) * Fix CVE-2020-11652: Sanitize paths in ClearFuncs methods provided by salt-master (Closes: #959684) * Add note about log messages to hardening salt docs * salt-api NET API with the ssh client enabled is vulnerable to command injection (CVE-2019-17361) (Closes: #949222) shim (15+1533136590.3beb971-7+deb10u1) buster; urgency=medium . [ Steve McIntyre ] * Minimal-change upload to pick up rotated Debian signing keys * In the -helpers-ARCH-signed packages, change the version dependency on shim-unsigned to be >= and not =. This will allow for installation to still work in the window while we wait for the template package to do its second trip through the archive. Closes: #955356 shim-helpers-amd64-signed (1+15+1533136590.3beb971+7+deb10u1) buster; urgency=medium . * Update to shim 15+1533136590.3beb971-7+deb10u1 shim-helpers-arm64-signed (1+15+1533136590.3beb971+7+deb10u1) buster; urgency=medium . * Update to shim 15+1533136590.3beb971-7+deb10u1 shim-helpers-i386-signed (1+15+1533136590.3beb971+7+deb10u1) buster; urgency=medium . * Update to shim 15+1533136590.3beb971-7+deb10u1 speedtest-cli (2.0.2-1+deb10u1) buster; urgency=medium . * Pass correct headers to fix upload speed test (Closes: #940165) squid (4.6-1+deb10u3) buster-security; urgency=medium . * CVE-2019-18860 * CVE-2020-1504 squid (4.6-1+deb10u2) buster-security; urgency=high . [ Amos Jeffries ] * debian/patches/ - Multiple Issues in HTTP Request processing (CVE-2019-12520) (CVE-2019-12524) - Heap Overflow issue in URN processing (CVE-2019-12526) - Multiple issues in URI processing (CVE-2019-12523) (CVE-2019-18676) - Cross-Site Request Forgery issue in HTTP Request processing (CVE-2019-18677) - HTTP Request Splitting issue in HTTP message processing (CVE-2019-18678) - Information Disclosure issue in HTTP Digest Authentication (CVE-2019-18679) - Multiple issues in ESI Response processing (CVE-2019-12519) (CVE-2019-12521) - Improper Input Validation issues in HTTP Request processing (CVE-2020-8449) (CVE-2020-8450) - Information Disclosure issue in FTP Gateway (CVE-2019-12528) - Multiple issues in HTTP Digest authentication (CVE-2020-11945) ssvnc (1.0.29-4+deb10u1) buster; urgency=medium . * Non-maintainer upload by the LTS team. * Porting of libvncclient security patches (Closes: #945827): - CVE-2018-20020: heap out-of-bound write vulnerability inside structure in VNC client code. - CVE-2018-20021: CWE-835: Infinite loop vulnerability in VNC client code. - CVE-2018-20022: CWE-665: Improper Initialization vulnerability. - CVE-2018-20024: null pointer dereference that can result DoS. storebackup (3.2.1-2~deb10u1) buster; urgency=medium . * QA upload. * Rebuild for buster. . storebackup (3.2.1-2) unstable; urgency=medium . * QA upload. * Set maintainer to Debian QA Group. (see #856299) * Add patch to change the way the lockfile is opened in the Perl code. (Fixes: CVE-2020-7040) (Closes: #949393) storebackup (3.2.1-2~deb9u1) stretch; urgency=medium . * QA upload. * Rebuild for stretch. . storebackup (3.2.1-2) unstable; urgency=medium . * QA upload. * Set maintainer to Debian QA Group. (see #856299) * Add patch to change the way the lockfile is opened in the Perl code. (Fixes: CVE-2020-7040) (Closes: #949393) suricata (1:4.1.2-2+deb10u1) buster; urgency=medium . * Include patch for issue fixed upstream, see bug report below. Closes: #951181 thunderbird (1:68.10.0-1~deb10u1) stable-security; urgency=medium . * Rebuild for buster-security thunderbird (1:68.10.0-1~deb9u1) stretch-security; urgency=medium . * Rebuild for stretch-security thunderbird (1:68.9.0-1) unstable; urgency=medium . [ intrigeri ] * [fd13825] AppArmor: update profile from upstream at commit 860d2d9 (Closes: #960465) . [ Carsten Schoenert ] * [c310c40] New upstream version 68.9.0 Fixed CVE issues in upstream version 68.9.0 (MFSA 2020-22): CVE-2020-12399: Timing attack on DSA signatures in NSS library CVE-2020-12405: Use-after-free in SharedWorkerService CVE-2020-12406: JavaScript Type confusion with NativeTypes CVE-2020-12410: Memory safety bugs fixed in Thunderbird 68.9.0 CVE-2020-12398: Security downgrade with IMAP STARTTLS leads to information leakage thunderbird (1:68.9.0-1~deb10u1) stable-security; urgency=medium . * Rebuild for buster-security (Closes: #960465) thunderbird (1:68.9.0-1~deb9u1) stretch-security; urgency=medium . * Rebuild for stretch-security (Closes: #960465) thunderbird (1:68.8.1-1) unstable; urgency=medium . * [7495e7a] New upstream version 68.8.1 thunderbird (1:68.8.0-1) unstable; urgency=medium . * [9b5ae46] New upstream version 68.8.0 Fixed CVE issues in upstream version 68.8.0 (MFSA 2020-18): CVE-2020-12397: Sender Email Address Spoofing using encoded Unicode characters CVE-2020-12387: Use-after-free during worker shutdown CVE-2020-6831: Buffer overflow in SCTP chunk input validation CVE-2020-12392: Arbitrary local file access with 'Copy as cURL' CVE-2020-12393: Devtools' 'Copy as cURL' feature did not fully escape website-controlled data, potentially leading to command injection CVE-2020-12395: Memory safety bugs fixed in Thunderbird 68.8.0 thunderbird (1:68.8.0-1~deb10u1) stable-security; urgency=medium . * Rebuild for buster-security thunderbird (1:68.8.0-1~deb9u1) stretch-security; urgency=medium . * Rebuild for stretch-security thunderbird (1:68.7.0-1) unstable; urgency=medium . * [c0052af] New upstream version 68.7.0 Fixed CVE issues in upstream version 68.7.0 (MFSA 2020-14): CVE-2020-6819: Use-after-free while running the nsDocShell destructor CVE-2020-6820: Use-after-free when handling a ReadableStream CVE-2020-6821: Uninitialized memory could be read when using the WebGL copyTexSubImage method CVE-2020-6822: Out of bounds write in GMPDecodeData when processing large images CVE-2020-6825: Memory safety bugs fixed in Thunderbird 68.7 tigervnc (1.9.0+dfsg-3+deb10u2) buster; urgency=medium . [ Joachim Falk ] * Don't use libunwind for armel, armhf, and arm64 as this library is buggy (bug #923962) on those architectures (Closes: #932499). tomcat9 (9.0.31-1~deb10u2) buster-security; urgency=high . * Team upload. . [ Emmanuel Bourg ] * Fixed CVE-2020-13935: WebSocket Denial of Service. The payload length in a WebSocket frame was not correctly validated. Invalid payload lengths could trigger an infinite loop. Multiple requests with invalid payload lengths could lead to a denial of service. * Fixed CVE-2020-13934: HTTP/2 Denial of Service. An h2c direct connection did not release the HTTP/1.1 processor after the upgrade to HTTP/2. If a sufficient number of such requests were made, an OutOfMemoryException could occur leading to a denial of service. . [ Markus Koschany ] * Fix CVE-2020-9484: When using Apache Tomcat an attacker is able to control the contents and name of a file on the server; and b) the server is configured to use the PersistenceManager with a FileStore; and c) the PersistenceManager is configured with sessionAttributeValueClassNameFilter="null" (the default unless a SecurityManager is used) or a sufficiently lax filter to allow the attacker provided object to be deserialized; and d) the attacker knows the relative file path from the storage location used by FileStore to the file the attacker has control over; then, using a specifically crafted request, the attacker will be able to trigger remote code execution via deserialization of the file under their control. Note that all of conditions a) to d) must be true for the attack to succeed. * Fix CVE-2020-11996: A specially crafted sequence of HTTP/2 requests sent to Apache Tomcat could trigger high CPU usage for several seconds. If a sufficient number of such requests were made on concurrent HTTP/2 connections, the server could become unresponsive. tomcat9 (9.0.31-1~deb10u1) buster-security; urgency=high . * Team upload. * Backport 9.0.31-1 to Buster to fix CVE-2020-1938, CVE-2020-1935, CVE-2019-17569, CVE-2019-17563, CVE-2019-12418 and CVE-2019-10072. The fix for CVE-2020-1938 may require configuration changes when Tomcat is used with the AJP protocol, e.g. in combination with libapache-mod-jk. For instance the attribute secretRequired is set to true by default now. Server admins should carefully investigate the impact of the changes before upgrading. See also https://tomcat.apache.org/tomcat-9.0-doc/config/ajp.html tomcat9 (9.0.31-1~bpo10+1) buster-backports; urgency=medium . * Rebuild for buster-backports. tomcat9 (9.0.27-1) unstable; urgency=medium . * New upstream release - Refreshed the patches * Standards-Version updated to 4.4.1 tomcat9 (9.0.24-1) unstable; urgency=medium . * New upstream release - Refreshed the patches tomcat9 (9.0.22-1) unstable; urgency=medium . * New upstream release - Refreshed the patches * Track and download the new releases from GitHub * Standards-Version updated to 4.4.0 tomcat9 (9.0.16-5) experimental; urgency=low . * Team upload. * Upload to experimental to get wider testing and availability * debian/logging.properties: Add commented-out non-systemd configuration * Make tomcat9 installable without systemd: - Readd logic to create the system user via adduser - Add sysvinit script, for init independence (Closes: #925473) * debian/README.Debian: Document non-systemd risks * Do not read /etc/default/tomcat9 twice trafficserver (8.0.2+ds-1+deb10u3) buster-security; urgency=high . * Add fix from upstream for CVE-2020-9494 (Closes: #963629) transmission (2.94-2+deb10u1) buster; urgency=medium . * CVE-2018-10756 (Closes: #961461) unbound (1.9.0-2+deb10u2) buster-security; urgency=high . * Apply NLnet Labs patch for CVE-2020-12662, CVE-2020-12663 vlc (3.0.11-0+deb10u1) buster-security; urgency=high . * New upstream release - Fix heap-based buffer overflow in hxxx_nal (CVE-2020-13428) vlc (3.0.11-0+deb9u1) stretch-security; urgency=high . * New upstream release - Fix heap-based buffer overflow in hxxx_nal (CVE-2020-13428) * debian/patches: Drop patches integrated upstream vlc (3.0.10-2) unstable; urgency=medium . * debian/: - Bump debhleper compat to 13 - Disable srt until the package is fixed - Build omxil plugin only on Raspbian (Closes: #957915) vlc (3.0.10-1) unstable; urgency=medium . * New upstream release wav2cdr (2.3.4-2+deb10u1) buster; urgency=medium . * QA upload. * Use C99 fixed-size integer types to fix runtime assertion on 64bit architectures other than amd64 and alpha. (Closes: #956927) * Stop linking to the dead Homepage. webkit2gtk (2.28.3-2~deb10u1) buster-security; urgency=medium . * Rebuild for buster-security. * debian/patches/force-single-process.patch: + Force the single-process mode in Evolution and Geary * debian/control: + Remove Breaks for Evolution < 3.34.1. + Remove build dependency on libwpebackend-fdo-1.0-dev. + Switch build dependency from libenchant-2-dev to libenchant-dev. webkit2gtk (2.28.3-1) unstable; urgency=high . * New upstream release. * debian/rules: + Remove disabling of openjpeg on Ubuntu, it's in main now (thanks, Sebastien Bacher) * debian/patches/dont-fallback-to-libwpe.patch: + Drop this patch. * debian/copyright: + Update copyright information of all files. webkit2gtk (2.28.2-2) unstable; urgency=high . * debian/patches/dont-fallback-to-libwpe.patch: + Fix crash when DISPLAY is unset (Closes: #956219). webkit2gtk (2.28.2-2~deb10u1) buster-security; urgency=medium . * Rebuild for buster-security. * debian/patches/force-single-process.patch: + Force the single-process mode in Evolution and Geary * debian/control: + Remove Breaks for Evolution < 3.34.1. + Remove build dependency on libwpebackend-fdo-1.0-dev. + Switch build dependency from libenchant-2-dev to libenchant-dev. webkit2gtk (2.28.2-2~bpo10+1) buster-backports; urgency=medium . * Rebuild for buster-backports. * debian/patches/force-single-process.patch: + Force the single-process mode in Evolution and Geary * debian/control: + Remove Breaks for Evolution < 3.34.1. + Remove build dependency on libwpebackend-fdo-1.0-dev. + Switch build dependency from libenchant-2-dev to libenchant-dev. webkit2gtk (2.28.2-1) unstable; urgency=high . * New upstream release (Closes: #956837). * debian/patches/fix-ftbfs-mips64el.patch: + Drop this patch. * debian/rules: + Don't set -Wall or -Wl,--as-needed, these are already used by default. Fixes the debian-rules-uses-as-needed-linker-flag lintian warning. + Include /usr/share/dpkg/buildflags.mk instead of setting the build flags manually. * debian/source/lintian-overrides: + Override mailing-list-obsolete-in-debian-infrastructure. webkit2gtk (2.28.1-2) unstable; urgency=high . * The WebKitGTK security advisory WSA-2020-0004 lists the following security fixes in the latest versions of WebKitGTK: + CVE-2020-11793 (fixed in 2.28.1). * fix-ftbfs-mips64el.patch: + Fix a FTBFS in mipsel64. webkit2gtk (2.28.1-2~bpo10+1) buster-backports; urgency=medium . * Rebuild for buster-backports. * debian/patches/force-single-process.patch: + Force the single-process mode in Evolution and Geary * debian/control: + Remove Breaks for Evolution < 3.34.1. + Remove build dependency on libwpebackend-fdo-1.0-dev. + Switch build dependency from libenchant-2-dev to libenchant-dev. webkit2gtk (2.28.1-1) unstable; urgency=medium . * New upstream release (Closes: #956219, #954026). * debian/control: + Remove build dependency on libx11-xcb-dev now that gstreamer depends on it (see #948143). * debian/patches/use-python3.patch: + Drop patch, this is now upstream. webkit2gtk (2.28.0-2) unstable; urgency=high . * The WebKitGTK security advisory WSA-2020-0003 lists the following security fixes in the latest versions of WebKitGTK: + CVE-2020-10018 (fixed in 2.28.0). * debian/rules: + Disable the WPE renderer on Ubuntu since the required backend is in universe (thanks, Sebastien Bacher). * debian/gbp.conf: + Update upstream branch name. webkit2gtk (2.28.0-2~bpo10+1) buster-backports; urgency=medium . * Rebuild for buster-backports. * debian/patches/force-single-process.patch: + Force the single-process mode in Evolution and Geary * debian/control: + Remove Breaks for Evolution < 3.34.1. + Remove build dependency on libwpebackend-fdo-1.0-dev. + Switch build dependency from libenchant-2-dev to libenchant-dev. webkit2gtk (2.28.0-1) experimental; urgency=medium . * New upstream release. * debian/watch: + Scan stable releases only. webkit2gtk (2.27.91-1) experimental; urgency=medium . * New upstream development release. * Refresh debian/patches/dont-detect-sse2.patch. * debian/rules: + Use -mlra -fno-move-loop-invariants in sh3 and sh4 builds (thanks, Adrian Glaubitz) (Closes: #952482). + Use jdupes to remove duplicate files in libwebkit2gtk-4.0-doc. * debian/control: + Add build dependency on jdupes. + Update Standards-Version to 4.5.0 (no changes). * debian/WebKitWebDriver.1: + Fix grammar. * debian/copyright: + Update copyright information of all files. webkit2gtk (2.27.90-1) experimental; urgency=medium . * New upstream development release. * debian/patches/use-python3.patch: + The unversioned python interpreter (i.e. Python 2) is not installed by default anymore, so use Python 3 instead (Closes: #948839). * debian/control: + Drop build dependency on python. + Mark libwebkit2gtk-4.0-doc and libwebkit2gtk-4.0-37-gtk2 as Multi-Arch: foreign. * debian/rules: + Don't use the Gold linker on powerpc (Closes: #949618). + Run dh with --builddirectory=build. Some source files are generated inside this directory and are later referenced from the .gir files so their path names should be independent from the architecture. * Refresh all patches. * debian/patches/reduce-memory-overheads.patch: + Reduce memory usage when not using the Gold linker (Closes: #949621). * debian/patches/fix-ftbfs-m68k.patch: + Bring the patch from the unstable branch. * Add debian/upstream/metadata. * debian/libwebkit2gtk-4.0-37.symbols: + Update symbols. webkit2gtk (2.27.4-1) experimental; urgency=medium . * New upstream development release. * debian/control: + Switch build dependency from libenchant-dev to libenchant-2-dev (Closes: #948106). + Add build dependency on libx11-xcb-dev. + Add Rules-Requires-Root: no. * debian/source/lintian-overrides: + Update source-is-missing override. * debian/copyright: + Update copyright years. * debian/libwebkit2gtk-4.0-37.symbols: + Update symbols. + Add Build-Depends-Package field. webkit2gtk (2.27.3-1) experimental; urgency=medium . * New upstream development release. * Build without the bubblewrap sandbox if the required dependencies are not available: + debian/rules: - Pass -DENABLE_BUBBLEWRAP_SANDBOX depending on whether libseccomp is installed. - Add runtime dependencies on bubblewrap and xdg-dbus-proxy conditionally to the status of ENABLE_BUBBLEWRAP_SANDBOX. + debian/control: - Don't require bubblewrap, xdg-dbus-proxy or libseccomp-dev in alpha, ia64, m68k, riscv64, sh4 or sparc64. * Enable USE_WPE_RENDERER: + debian/control: - Add build dependency on libwpebackend-fdo-1.0-dev. + debian/rules: - Set USE_WPE_RENDERER depending on whether wpebackend-fdo is available or not (this allows disabling it by simply removing the build dependency). * debian/rules: + Use -g1 in all builds. The webkit2gtk debug packages are huge and I'm not convinced that they have been very useful for reporting bugs. Using -g1 is enough for a basic backtrace and it makes the packages easier to handle. + Install the NEWS file using debian/libwebkit2gtk-4.0-37.docs. * debian/patches/detect-woff.patch: + Refresh. * debian/control: + Add build dependency on python. * debian/libwebkit2gtk-4.0-37.symbols: + Update symbols. webkit2gtk (2.27.2-1) experimental; urgency=medium . * New upstream development release. * debian/control: + Require bubblewrap >= 0.3.1. + Update Standards-Version to 4.4.1 (no changes). + Add Breaks for Evolution < 3.34.1 (see WebKit bug #201033). * debian/rules: + Stop building with -O1 for armhf and friends, the build seems to work just fine with -O2 now. * Drop fix-ftbfs-m68k.patch, we are not building for m68k anyway. * debian/source/lintian-overrides: + Update source-is-missing override. * debian/libwebkit2gtk-4.0-37.symbols: + Update symbols. webkit2gtk (2.27.1-1) experimental; urgency=medium . * New upstream development release. * debian/watch, debian/gbp.conf: + Update for 2.27.x packages in experimental. * Refresh all patches. + Use -DWTF_CPU_ARM64_CORTEXA53=OFF to fix the arm64 build. * debian/libwebkit2gtk-4.0-37.symbols: + Update symbols. webkit2gtk (2.26.4-1) unstable; urgency=high . * New upstream release. * The WebKitGTK security advisory WSA-2020-0001 lists the following security fixes in the latest versions of WebKitGTK: + CVE-2019-8835, CVE-2019-8844, CVE-2019-8846 (fixed in 2.26.3) * The WebKitGTK security advisory WSA-2020-0002 lists the following security fixes in the latest versions of WebKitGTK: + CVE-2020-3862, CVE-2020-3864, CVE-2020-3865, CVE-2020-3867, CVE-2020-3868 (fixed in 2.26.4) * debian/rules: + Don't use the Gold linker on powerpc (Closes: #949618). + Run dh with --builddirectory=build. Some source files are generated inside this directory and are later referenced from the .gir files so their path names should be independent from the architecture. * debian/control: + Mark libwebkit2gtk-4.0-doc and libwebkit2gtk-4.0-37-gtk2 as Multi-Arch: foreign. + Update Standards-Version to 4.5.0 (no changes). * debian/patches/reduce-memory-overheads.patch: + Reduce memory usage when not using the Gold linker (Closes: #949621). * debian/patches/fix-ftbfs-m68k.patch: + Update to make it work with the current release (Closes: #949660). * debian/patches/detect-woff.patch: + Refresh. * Add debian/upstream/metadata. wordpress (5.0.10+dfsg1-0+deb10u1) buster-security; urgency=medium . * Security release, fixes 6 security bugs Closes: #962685 - CVE-2020-4046 Authenticated XSS through embed block - CVE-2020-4047 Authenticated XSS via media attachment page - CVE-2020-4048 Open redirect in wp_validate_redirect() - CVE-2020-4049 Authenticated self-XSS via theme uploads - CVE-2020-4050 'set-screen-option' filter misuse by plugins leading to privilege escalation * Prevent unmoderated comments from search engine indexation wordpress (5.0.4+dfsg1-1+deb10u2) buster-security; urgency=medium . * Import of 5.4.1/5.0.9 security release Closes: #959391 - CVE-2020-11025 XSS vulnerability in the navigation section of Customizer allows JavaScript code to be executed. - CVE-2020-11026 uploaded files to Media section to lead to script execution - CVE-2020-11027 Password reset link does not expire - CVE-2020-11028 Private posts can be found through searching by date - CVE-2020-11029 XSS in stats() method in class-wp-object-cache - CVE-2020-11030 Special payload can execute scripts in block editor xen (4.11.4+24-gddaaccbbab-1~deb10u1) buster-security; urgency=high . * Rebuild as Buster security update. xen (4.11.4-1) unstable; urgency=medium . * Update to new upstream version 4.11.4, which also contains security fixes for the following issues: - arm: a CPU may speculate past the ERET instruction XSA-312 (no CVE yet) - multiple xenoprof issues XSA-313 CVE-2020-11740 CVE-2020-11741 - Missing memory barriers in read-write unlock paths XSA-314 CVE-2020-11739 - Bad error path in GNTTABOP_map_grant XSA-316 CVE-2020-11743 - Bad continuation handling in GNTTABOP_copy XSA-318 CVE-2020-11742 * xen-utils and xen-utils-common maint scripts: Replace the previous fix in the xen init script with a better fix in the xen-utils package instead, to prevent calling the init script stop action (resulting in a disappeared xenconsoled) when removing a xen-utils package that belongs to a previous (not currently runing) Xen version. Also prevent the xen-utils-common package from inadvertently calling stop and start actions because dh_installinit would add code for that. (Closes: #932759) * debian/NEWS: Mention fixing #932759 and how to deal with the bug xen (4.11.3+24-g14b62ab3e5-1) unstable; urgency=high . * Update to new upstream version 4.11.3+24-g14b62ab3e5, which also contains the following security fixes: (Closes: #947944) - Unlimited Arm Atomics Operations XSA-295 CVE-2019-17349 CVE-2019-17350 - VCPUOP_initialise DoS XSA-296 CVE-2019-18420 - missing descriptor table limit checking in x86 PV emulation XSA-298 CVE-2019-18425 - Issues with restartable PV type change operations XSA-299 CVE-2019-18421 - add-to-physmap can be abused to DoS Arm hosts XSA-301 CVE-2019-18423 - passed through PCI devices may corrupt host memory after deassignment XSA-302 CVE-2019-18424 - ARM: Interrupts are unconditionally unmasked in exception handlers XSA-303 CVE-2019-18422 - x86: Machine Check Error on Page Size Change DoS XSA-304 CVE-2018-12207 - TSX Asynchronous Abort speculative side channel XSA-305 CVE-2019-11135 - Device quarantine for alternate pci assignment methods XSA-306 CVE-2019-19579 - find_next_bit() issues XSA-307 CVE-2019-19581 CVE-2019-19582 - VMX: VMentry failure with debug exceptions and blocked states XSA-308 CVE-2019-19583 - Linear pagetable use / entry miscounts XSA-309 CVE-2019-19578 - Further issues with restartable PV type change operations XSA-310 CVE-2019-19580 - Bugs in dynamic height handling for AMD IOMMU pagetables XSA-311 CVE-2019-19577 * Add missing CVE numbers to previous changelog entries zipios++ (0.1.5.9+cvs.2007.04.28-10+deb10u1) buster; urgency=high . * fix CVE-2019-13453 for Buster (Closes: #932556) ====================================== Sat, 09 May 2020 - Debian 10.4 released ====================================== ========================================================================= [Date: Sat, 09 May 2020 08:42:51 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: python3-ownet | 3.2p3+dfsg1-2 | all ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by owfs - based on source metadata) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:43:49 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: python3-ow | 3.2p3+dfsg1-2+b1 | amd64, arm64, armel, armhf, i386, mips, mips64el, mipsel, ppc64el, s390x ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by owfs - based on source metadata) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:47:05 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-8-all-amd64 | 4.19.98-1 | amd64 linux-headers-4.19.0-8-amd64 | 4.19.98-1 | amd64 linux-headers-4.19.0-8-cloud-amd64 | 4.19.98-1 | amd64 linux-headers-4.19.0-8-rt-amd64 | 4.19.98-1 | amd64 linux-image-4.19.0-8-amd64-dbg | 4.19.98-1 | amd64 linux-image-4.19.0-8-amd64-unsigned | 4.19.98-1 | amd64 linux-image-4.19.0-8-cloud-amd64-dbg | 4.19.98-1 | amd64 linux-image-4.19.0-8-cloud-amd64-unsigned | 4.19.98-1 | amd64 linux-image-4.19.0-8-rt-amd64-dbg | 4.19.98-1 | amd64 linux-image-4.19.0-8-rt-amd64-unsigned | 4.19.98-1 | amd64 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:47:24 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: affs-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel ata-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel btrfs-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel cdrom-core-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel compress-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel crc-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel crypto-dm-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel crypto-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel event-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel ext4-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel fat-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel fb-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel firewire-core-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel fuse-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel hfs-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel input-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel isofs-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel jfs-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel kernel-image-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel linux-headers-4.19.0-8-loongson-3 | 4.19.98-1 | mips64el, mipsel linux-image-4.19.0-8-loongson-3 | 4.19.98-1 | mips64el, mipsel linux-image-4.19.0-8-loongson-3-dbg | 4.19.98-1 | mips64el, mipsel loop-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel md-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel minix-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel mtd-core-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel multipath-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel nbd-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel nfs-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel nic-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel nic-shared-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel nic-usb-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel nic-wireless-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel pata-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel ppp-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel sata-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel scsi-core-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel scsi-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel scsi-nic-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel sound-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel speakup-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel squashfs-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel udf-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel usb-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel usb-serial-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel usb-storage-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel xfs-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel zlib-modules-4.19.0-8-loongson-3-di | 4.19.98-1 | mips64el, mipsel ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:47:36 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-8-all-mipsel | 4.19.98-1 | mipsel ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:48:00 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: ata-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el btrfs-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el cdrom-core-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el compress-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el crc-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el crypto-dm-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el crypto-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el event-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el ext4-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el fancontrol-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el fat-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el fb-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el firewire-core-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el fuse-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el hypervisor-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el i2c-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el input-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el isofs-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el jfs-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el kernel-image-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el linux-headers-4.19.0-8-all-ppc64el | 4.19.98-1 | ppc64el linux-headers-4.19.0-8-powerpc64le | 4.19.98-1 | ppc64el linux-image-4.19.0-8-powerpc64le | 4.19.98-1 | ppc64el linux-image-4.19.0-8-powerpc64le-dbg | 4.19.98-1 | ppc64el loop-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el md-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el mouse-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el mtd-core-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el multipath-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el nbd-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el nic-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el nic-shared-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el nic-usb-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el nic-wireless-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el ppp-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el sata-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el scsi-core-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el scsi-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el scsi-nic-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el serial-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el squashfs-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el udf-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el uinput-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el usb-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el usb-serial-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el usb-storage-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el xfs-modules-4.19.0-8-powerpc64le-di | 4.19.98-1 | ppc64el ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:48:30 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: btrfs-modules-4.19.0-8-s390x-di | 4.19.98-1 | s390x cdrom-core-modules-4.19.0-8-s390x-di | 4.19.98-1 | s390x compress-modules-4.19.0-8-s390x-di | 4.19.98-1 | s390x crc-modules-4.19.0-8-s390x-di | 4.19.98-1 | s390x crypto-dm-modules-4.19.0-8-s390x-di | 4.19.98-1 | s390x crypto-modules-4.19.0-8-s390x-di | 4.19.98-1 | s390x dasd-extra-modules-4.19.0-8-s390x-di | 4.19.98-1 | s390x dasd-modules-4.19.0-8-s390x-di | 4.19.98-1 | s390x ext4-modules-4.19.0-8-s390x-di | 4.19.98-1 | s390x fat-modules-4.19.0-8-s390x-di | 4.19.98-1 | s390x fuse-modules-4.19.0-8-s390x-di | 4.19.98-1 | s390x isofs-modules-4.19.0-8-s390x-di | 4.19.98-1 | s390x kernel-image-4.19.0-8-s390x-di | 4.19.98-1 | s390x linux-headers-4.19.0-8-all-s390x | 4.19.98-1 | s390x linux-headers-4.19.0-8-s390x | 4.19.98-1 | s390x linux-image-4.19.0-8-s390x | 4.19.98-1 | s390x linux-image-4.19.0-8-s390x-dbg | 4.19.98-1 | s390x loop-modules-4.19.0-8-s390x-di | 4.19.98-1 | s390x md-modules-4.19.0-8-s390x-di | 4.19.98-1 | s390x mtd-core-modules-4.19.0-8-s390x-di | 4.19.98-1 | s390x multipath-modules-4.19.0-8-s390x-di | 4.19.98-1 | s390x nbd-modules-4.19.0-8-s390x-di | 4.19.98-1 | s390x nic-modules-4.19.0-8-s390x-di | 4.19.98-1 | s390x scsi-core-modules-4.19.0-8-s390x-di | 4.19.98-1 | s390x scsi-modules-4.19.0-8-s390x-di | 4.19.98-1 | s390x udf-modules-4.19.0-8-s390x-di | 4.19.98-1 | s390x xfs-modules-4.19.0-8-s390x-di | 4.19.98-1 | s390x zlib-modules-4.19.0-8-s390x-di | 4.19.98-1 | s390x ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:48:54 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-8-all | 4.19.98-1 | amd64, arm64, armel, armhf, i386, mips, mips64el, mipsel, ppc64el, s390x ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:49:12 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-8-all-arm64 | 4.19.98-1 | arm64 linux-headers-4.19.0-8-arm64 | 4.19.98-1 | arm64 linux-headers-4.19.0-8-rt-arm64 | 4.19.98-1 | arm64 linux-image-4.19.0-8-arm64-dbg | 4.19.98-1 | arm64 linux-image-4.19.0-8-arm64-unsigned | 4.19.98-1 | arm64 linux-image-4.19.0-8-rt-arm64-dbg | 4.19.98-1 | arm64 linux-image-4.19.0-8-rt-arm64-unsigned | 4.19.98-1 | arm64 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:49:23 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: btrfs-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel cdrom-core-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel compress-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel crc-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel crypto-dm-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel crypto-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel event-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel ext4-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel fat-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel fb-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel fuse-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel input-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel ipv6-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel isofs-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel jffs2-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel jfs-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel kernel-image-4.19.0-8-marvell-di | 4.19.98-1 | armel leds-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel linux-headers-4.19.0-8-all-armel | 4.19.98-1 | armel linux-headers-4.19.0-8-marvell | 4.19.98-1 | armel linux-headers-4.19.0-8-rpi | 4.19.98-1 | armel linux-image-4.19.0-8-marvell | 4.19.98-1 | armel linux-image-4.19.0-8-marvell-dbg | 4.19.98-1 | armel linux-image-4.19.0-8-rpi | 4.19.98-1 | armel linux-image-4.19.0-8-rpi-dbg | 4.19.98-1 | armel loop-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel md-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel minix-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel mmc-core-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel mmc-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel mouse-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel mtd-core-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel mtd-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel multipath-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel nbd-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel nic-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel nic-shared-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel nic-usb-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel ppp-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel sata-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel scsi-core-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel squashfs-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel udf-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel uinput-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel usb-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel usb-serial-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel usb-storage-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel zlib-modules-4.19.0-8-marvell-di | 4.19.98-1 | armel ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:49:36 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: ata-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf btrfs-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf cdrom-core-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf compress-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf crc-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf crypto-dm-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf crypto-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf efi-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf event-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf ext4-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf fat-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf fb-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf fuse-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf i2c-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf input-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf isofs-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf jfs-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf kernel-image-4.19.0-8-armmp-di | 4.19.98-1 | armhf leds-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf linux-headers-4.19.0-8-all-armhf | 4.19.98-1 | armhf linux-headers-4.19.0-8-armmp | 4.19.98-1 | armhf linux-headers-4.19.0-8-armmp-lpae | 4.19.98-1 | armhf linux-headers-4.19.0-8-rt-armmp | 4.19.98-1 | armhf linux-image-4.19.0-8-armmp | 4.19.98-1 | armhf linux-image-4.19.0-8-armmp-dbg | 4.19.98-1 | armhf linux-image-4.19.0-8-armmp-lpae | 4.19.98-1 | armhf linux-image-4.19.0-8-armmp-lpae-dbg | 4.19.98-1 | armhf linux-image-4.19.0-8-rt-armmp | 4.19.98-1 | armhf linux-image-4.19.0-8-rt-armmp-dbg | 4.19.98-1 | armhf loop-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf md-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf mmc-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf mtd-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf multipath-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf nbd-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf nic-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf nic-shared-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf nic-usb-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf nic-wireless-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf pata-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf ppp-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf sata-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf scsi-core-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf scsi-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf scsi-nic-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf squashfs-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf udf-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf uinput-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf usb-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf usb-serial-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf usb-storage-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf zlib-modules-4.19.0-8-armmp-di | 4.19.98-1 | armhf ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:49:48 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-8-686 | 4.19.98-1 | i386 linux-headers-4.19.0-8-686-pae | 4.19.98-1 | i386 linux-headers-4.19.0-8-all-i386 | 4.19.98-1 | i386 linux-headers-4.19.0-8-rt-686-pae | 4.19.98-1 | i386 linux-image-4.19.0-8-686-dbg | 4.19.98-1 | i386 linux-image-4.19.0-8-686-pae-dbg | 4.19.98-1 | i386 linux-image-4.19.0-8-686-pae-unsigned | 4.19.98-1 | i386 linux-image-4.19.0-8-686-unsigned | 4.19.98-1 | i386 linux-image-4.19.0-8-rt-686-pae-dbg | 4.19.98-1 | i386 linux-image-4.19.0-8-rt-686-pae-unsigned | 4.19.98-1 | i386 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:49:56 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-8-all-mips | 4.19.98-1 | mips ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:50:26 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: affs-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel btrfs-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel cdrom-core-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel compress-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel crc-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel crypto-dm-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel crypto-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel event-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel ext4-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel fat-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel fuse-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel hfs-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel input-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel isofs-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel jfs-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel kernel-image-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel linux-headers-4.19.0-8-5kc-malta | 4.19.98-1 | mips, mips64el, mipsel linux-headers-4.19.0-8-octeon | 4.19.98-1 | mips, mips64el, mipsel linux-image-4.19.0-8-5kc-malta | 4.19.98-1 | mips, mips64el, mipsel linux-image-4.19.0-8-5kc-malta-dbg | 4.19.98-1 | mips, mips64el, mipsel linux-image-4.19.0-8-octeon | 4.19.98-1 | mips, mips64el, mipsel linux-image-4.19.0-8-octeon-dbg | 4.19.98-1 | mips, mips64el, mipsel loop-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel md-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel minix-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel multipath-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel nbd-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel nic-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel nic-shared-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel nic-usb-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel nic-wireless-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel pata-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel ppp-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel rtc-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel sata-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel scsi-core-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel scsi-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel scsi-nic-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel sound-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel squashfs-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel udf-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel usb-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel usb-serial-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel usb-storage-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel xfs-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel zlib-modules-4.19.0-8-octeon-di | 4.19.98-1 | mips, mips64el, mipsel ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:50:39 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: affs-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel ata-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel btrfs-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel cdrom-core-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel compress-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel crc-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel crypto-dm-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel crypto-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel event-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel ext4-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel fat-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel fb-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel fuse-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel hfs-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel i2c-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel input-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel isofs-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel jfs-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel kernel-image-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel linux-headers-4.19.0-8-4kc-malta | 4.19.98-1 | mips, mipsel linux-image-4.19.0-8-4kc-malta | 4.19.98-1 | mips, mipsel linux-image-4.19.0-8-4kc-malta-dbg | 4.19.98-1 | mips, mipsel loop-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel md-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel minix-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel mmc-core-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel mmc-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel mouse-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel mtd-core-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel multipath-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel nbd-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel nic-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel nic-shared-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel nic-usb-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel nic-wireless-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel pata-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel ppp-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel sata-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel scsi-core-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel scsi-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel scsi-nic-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel sound-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel squashfs-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel udf-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel usb-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel usb-serial-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel usb-storage-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel xfs-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel zlib-modules-4.19.0-8-4kc-malta-di | 4.19.98-1 | mips, mipsel ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:50:53 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: affs-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el ata-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el btrfs-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el cdrom-core-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el compress-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el crc-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el crypto-dm-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el crypto-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el event-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el ext4-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el fat-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el fb-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el fuse-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el hfs-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el i2c-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el input-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el isofs-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el jfs-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el kernel-image-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el linux-headers-4.19.0-8-all-mips64el | 4.19.98-1 | mips64el loop-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el md-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el minix-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el mmc-core-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el mmc-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el mouse-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el mtd-core-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el multipath-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el nbd-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el nic-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el nic-shared-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el nic-usb-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el nic-wireless-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el pata-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el ppp-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el sata-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el scsi-core-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el scsi-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el scsi-nic-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el sound-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el squashfs-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el udf-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el usb-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el usb-serial-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el usb-storage-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el xfs-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el zlib-modules-4.19.0-8-5kc-malta-di | 4.19.98-1 | mips64el ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:51:05 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: acpi-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 ata-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 btrfs-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 cdrom-core-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 compress-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 crc-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 crypto-dm-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 crypto-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 efi-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 event-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 ext4-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 fat-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 fb-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 firewire-core-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 fuse-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 i2c-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 input-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 isofs-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 jfs-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 kernel-image-4.19.0-8-amd64-di | 4.19.98-1 | amd64 linux-image-4.19.0-8-amd64 | 4.19.98-1 | amd64 linux-image-4.19.0-8-cloud-amd64 | 4.19.98-1 | amd64 linux-image-4.19.0-8-rt-amd64 | 4.19.98-1 | amd64 loop-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 md-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 mmc-core-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 mmc-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 mouse-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 mtd-core-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 multipath-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 nbd-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 nic-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 nic-pcmcia-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 nic-shared-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 nic-usb-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 nic-wireless-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 pata-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 pcmcia-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 pcmcia-storage-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 ppp-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 sata-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 scsi-core-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 scsi-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 scsi-nic-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 serial-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 sound-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 speakup-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 squashfs-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 udf-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 uinput-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 usb-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 usb-serial-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 usb-storage-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 xfs-modules-4.19.0-8-amd64-di | 4.19.98-1 | amd64 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux-signed-amd64) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:51:17 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: ata-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 btrfs-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 cdrom-core-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 compress-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 crc-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 crypto-dm-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 crypto-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 efi-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 event-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 ext4-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 fat-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 fb-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 fuse-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 i2c-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 input-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 isofs-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 jfs-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 kernel-image-4.19.0-8-arm64-di | 4.19.98-1 | arm64 leds-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 linux-image-4.19.0-8-arm64 | 4.19.98-1 | arm64 linux-image-4.19.0-8-rt-arm64 | 4.19.98-1 | arm64 loop-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 md-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 mmc-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 mtd-core-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 multipath-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 nbd-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 nic-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 nic-shared-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 nic-usb-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 nic-wireless-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 ppp-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 sata-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 scsi-core-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 scsi-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 scsi-nic-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 squashfs-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 udf-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 uinput-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 usb-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 usb-serial-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 usb-storage-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 xfs-modules-4.19.0-8-arm64-di | 4.19.98-1 | arm64 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux-signed-arm64) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:51:30 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: acpi-modules-4.19.0-8-686-di | 4.19.98-1 | i386 acpi-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 ata-modules-4.19.0-8-686-di | 4.19.98-1 | i386 ata-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 btrfs-modules-4.19.0-8-686-di | 4.19.98-1 | i386 btrfs-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 cdrom-core-modules-4.19.0-8-686-di | 4.19.98-1 | i386 cdrom-core-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 compress-modules-4.19.0-8-686-di | 4.19.98-1 | i386 compress-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 crc-modules-4.19.0-8-686-di | 4.19.98-1 | i386 crc-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 crypto-dm-modules-4.19.0-8-686-di | 4.19.98-1 | i386 crypto-dm-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 crypto-modules-4.19.0-8-686-di | 4.19.98-1 | i386 crypto-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 efi-modules-4.19.0-8-686-di | 4.19.98-1 | i386 efi-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 event-modules-4.19.0-8-686-di | 4.19.98-1 | i386 event-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 ext4-modules-4.19.0-8-686-di | 4.19.98-1 | i386 ext4-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 fat-modules-4.19.0-8-686-di | 4.19.98-1 | i386 fat-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 fb-modules-4.19.0-8-686-di | 4.19.98-1 | i386 fb-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 firewire-core-modules-4.19.0-8-686-di | 4.19.98-1 | i386 firewire-core-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 fuse-modules-4.19.0-8-686-di | 4.19.98-1 | i386 fuse-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 i2c-modules-4.19.0-8-686-di | 4.19.98-1 | i386 i2c-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 input-modules-4.19.0-8-686-di | 4.19.98-1 | i386 input-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 isofs-modules-4.19.0-8-686-di | 4.19.98-1 | i386 isofs-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 jfs-modules-4.19.0-8-686-di | 4.19.98-1 | i386 jfs-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 kernel-image-4.19.0-8-686-di | 4.19.98-1 | i386 kernel-image-4.19.0-8-686-pae-di | 4.19.98-1 | i386 linux-image-4.19.0-8-686 | 4.19.98-1 | i386 linux-image-4.19.0-8-686-pae | 4.19.98-1 | i386 linux-image-4.19.0-8-rt-686-pae | 4.19.98-1 | i386 loop-modules-4.19.0-8-686-di | 4.19.98-1 | i386 loop-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 md-modules-4.19.0-8-686-di | 4.19.98-1 | i386 md-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 mmc-core-modules-4.19.0-8-686-di | 4.19.98-1 | i386 mmc-core-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 mmc-modules-4.19.0-8-686-di | 4.19.98-1 | i386 mmc-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 mouse-modules-4.19.0-8-686-di | 4.19.98-1 | i386 mouse-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 mtd-core-modules-4.19.0-8-686-di | 4.19.98-1 | i386 mtd-core-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 multipath-modules-4.19.0-8-686-di | 4.19.98-1 | i386 multipath-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 nbd-modules-4.19.0-8-686-di | 4.19.98-1 | i386 nbd-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 nic-modules-4.19.0-8-686-di | 4.19.98-1 | i386 nic-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 nic-pcmcia-modules-4.19.0-8-686-di | 4.19.98-1 | i386 nic-pcmcia-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 nic-shared-modules-4.19.0-8-686-di | 4.19.98-1 | i386 nic-shared-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 nic-usb-modules-4.19.0-8-686-di | 4.19.98-1 | i386 nic-usb-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 nic-wireless-modules-4.19.0-8-686-di | 4.19.98-1 | i386 nic-wireless-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 pata-modules-4.19.0-8-686-di | 4.19.98-1 | i386 pata-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 pcmcia-modules-4.19.0-8-686-di | 4.19.98-1 | i386 pcmcia-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 pcmcia-storage-modules-4.19.0-8-686-di | 4.19.98-1 | i386 pcmcia-storage-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 ppp-modules-4.19.0-8-686-di | 4.19.98-1 | i386 ppp-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 sata-modules-4.19.0-8-686-di | 4.19.98-1 | i386 sata-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 scsi-core-modules-4.19.0-8-686-di | 4.19.98-1 | i386 scsi-core-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 scsi-modules-4.19.0-8-686-di | 4.19.98-1 | i386 scsi-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 scsi-nic-modules-4.19.0-8-686-di | 4.19.98-1 | i386 scsi-nic-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 serial-modules-4.19.0-8-686-di | 4.19.98-1 | i386 serial-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 sound-modules-4.19.0-8-686-di | 4.19.98-1 | i386 sound-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 speakup-modules-4.19.0-8-686-di | 4.19.98-1 | i386 speakup-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 squashfs-modules-4.19.0-8-686-di | 4.19.98-1 | i386 squashfs-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 udf-modules-4.19.0-8-686-di | 4.19.98-1 | i386 udf-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 uinput-modules-4.19.0-8-686-di | 4.19.98-1 | i386 uinput-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 usb-modules-4.19.0-8-686-di | 4.19.98-1 | i386 usb-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 usb-serial-modules-4.19.0-8-686-di | 4.19.98-1 | i386 usb-serial-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 usb-storage-modules-4.19.0-8-686-di | 4.19.98-1 | i386 usb-storage-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 xfs-modules-4.19.0-8-686-di | 4.19.98-1 | i386 xfs-modules-4.19.0-8-686-pae-di | 4.19.98-1 | i386 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux-signed-i386) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:52:01 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-8-common | 4.19.98-1 | all linux-headers-4.19.0-8-common-rt | 4.19.98-1 | all linux-support-4.19.0-8 | 4.19.98-1 | all ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux - based on source metadata) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:22:36 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: ugene | 1.31.1+dfsg-1 | source, amd64 ugene-data | 1.31.1+dfsg-1 | all Closed bugs: 933334 ------------------- Reason ------------------- RoM; non-free; fails to build ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:23:10 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: libperlspeak-perl | 2.01-2 | source, all Closed bugs: 954298 ------------------- Reason ------------------- RoST; unmaintained; security issues ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:23:26 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: lambda-align2 | 2.0.0-6 | arm64, armel, armhf, i386, mips64el, ppc64el, s390x Closed bugs: 955717 ------------------- Reason ------------------- RoM; broken on non-amd64 architectures ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:23:47 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: gplaycli | 3.25+ds-1 | source, all Closed bugs: 958231 ------------------- Reason ------------------- RoM; broken by Google API changes ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:24:06 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: yahoo2mbox | 0.24-2 | source, all Closed bugs: 958572 ------------------- Reason ------------------- RoQA; unusable since 2013 ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:24:26 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: kerneloops | 0.12+git20140509-6 | source, amd64, arm64, armel, armhf, i386, mips, mips64el, mipsel, ppc64el, s390x kerneloops-applet | 0.12+git20140509-6 | amd64, arm64, armel, armhf, i386, mips, mips64el, mipsel, ppc64el, s390x Closed bugs: 958575 ------------------- Reason ------------------- RoQA; service http://oops.kernel.org no longer available ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:24:50 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: quotecolors | 0.3-6 | source xul-ext-quotecolors | 0.3-6 | all Closed bugs: 958922 ------------------- Reason ------------------- RoM; incompatible with newer Thunderbird versions ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:25:10 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: torbirdy | 0.2.6-1 | source xul-ext-torbirdy | 0.2.6-1 | all Closed bugs: 959376 ------------------- Reason ------------------- RoQA; incompatible with newer Thunderbird versions ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:25:33 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: libmicrodns | 0.0.10-1 | source libmicrodns-dev | 0.0.10-1 | amd64, arm64, armel, armhf, i386, mips, mips64el, mipsel, ppc64el, s390x libmicrodns0 | 0.0.10-1 | amd64, arm64, armel, armhf, i386, mips, mips64el, mipsel, ppc64el, s390x Closed bugs: 959429 ------------------- Reason ------------------- RoM; security issues ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 09 May 2020 08:26:06 -0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: getlive | 2.4+cvs20120801-1 | source, all Closed bugs: 959491 ------------------- Reason ------------------- RoQA; Upstream Dead; Not Working Anymore ---------------------------------------------- ========================================================================= apt-cacher-ng (3.2.1-1) buster; urgency=medium . * Minor bugfix upstream release + (CVE-2020-5202) Enforce secured call to the server in maint job triggering + Allow .zst compression for tarballs (closes: Bug#948259, thanks to Arnaud Rebillout) + Upstreaming fix from #928957 and adding workaround of build failure on mips(64)el (no multithreading with gold linker) apt-cacher-ng (3.2-3) unstable; urgency=medium . * Increase decompression line buffer size (closes: #942634) apt-cacher-ng (3.2-3~bpo10+1) buster-backports; urgency=medium . * Straight rebuild for buster-backports apt-cacher-ng (3.2-3~bpo9+1) stretch-backports-sloppy; urgency=medium . * Straight rebuild for stretch-backports-sloppy awl (0.60-1+deb10u1) buster-security; urgency=high . * Fix two security vulnerablilites (closes: #956650) + CVE-2020-11728 "Session::__construct() allows use of the current time as a session key" + CVE-2020-11729 "LSIDLogin() is insecure and can allow user impersonation" awl (0.60-1+deb10u1~bpo9+1) stretch-backports; urgency=high . * Rebuild for stretch-backports. . awl (0.60-1+deb10u1) buster-security; urgency=high . * Fix two security vulnerablilites (closes: #956650) + CVE-2020-11728 "Session::__construct() allows use of the current time as a session key" + CVE-2020-11729 "LSIDLogin() is insecure and can allow user impersonation" . awl (0.60-1) unstable; urgency=medium . * New upstream release (closes: #890313) * Update debian/watch to changed Gitlab directory layout * Update copyright years * Declare compliance with Debian Policy 4.3.0 backuppc (3.3.2-2+deb10u1) buster; urgency=medium . * 07-reload-user.patch: pass the username to start-stop-daemon when reloading. This prevents reload failures and subsequent init system games (Closes: #944611) base-files (10.3+deb10u4) buster; urgency=medium . * Change /etc/debian_version to 10.4, for Debian 10.4 point release. bluez (5.50-1.2~deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Rebuild for buster-security. . bluez (5.50-1.2) unstable; urgency=medium . * Non-maintainer upload. * input: hog: Attempt to set security level if not bonded * input: Add LEAutoSecurity setting to input.conf . bluez (5.50-1.1) unstable; urgency=high . * Non-maintainer upload. * Address INTEL-SA-00352 (CVE-2020-0556) (Closes: #953770) - HOGP must only accept data from bonded devices - HID accepts bonded device connections only bluez (5.50-1.1) unstable; urgency=high . * Non-maintainer upload. * Address INTEL-SA-00352 (CVE-2020-0556) (Closes: #953770) - HOGP must only accept data from bonded devices - HID accepts bonded device connections only brltty (5.6-10+deb10u1) buster; urgency=medium . * patches/log-spam: Avoid spamming log with recent Orca which tries to reconnect periodically. brltty (5.6-10+deb10u1~bpo9+1) stretch-backports; urgency=medium . * Upload to stretch-backports. checkstyle (8.15-1+deb10u1) buster; urgency=medium . * Team upload. * Fix CVE-2019-9658 and CVE-2019-10782: Security researchers from Snyk discovered that the fix for CVE-2019-9658 was incomplete. Checkstyle, a development tool to help programmers write Java code that adheres to a coding standard, was still vulnerable to XML External Entity (XXE) injection. (Closes: #924598) choose-mirror (2.99+deb10u1) buster; urgency=medium . * Update Mirrors.masterlist. chromium (80.0.3987.162-1~deb10u1) buster-security; urgency=medium . * New upstream security release. - CVE-2020-6450: Use after free in WebAudio. Reported by Man Yue Mo - CVE-2020-6451: Use after free in WebAudio. Reported by Man Yue Mo - CVE-2020-6452: Heap buffer overflow in media. Reported by asnine chromium (80.0.3987.149-1) unstable; urgency=medium . * New upstream security release. - CVE-2019-20503: Out of bounds read in usersctplib. Reported by Natalie Silvanovich - CVE-2020-6422: Use after free in WebGL. Reported by David Manouchehri - CVE-2020-6424: Use after free in media. Reported by Sergei Glazunov - CVE-2020-6425: Insufficient policy enforcement in extensions. Reported by Sergei Glazunov - CVE-2020-6426: Inappropriate implementation in V8. Reported by Avihay Cohen - CVE-2020-6427: Use after free in audio. Reported by Man Yue Mo - CVE-2020-6428: Use after free in audio. Reported by Man Yue Mo - CVE-2020-6429: Use after free in audio. Reported by Man Yue Mo - CVE-2020-6449: Use after free in audio. Reported by Man Yue Mo chromium (80.0.3987.149-1~deb10u1) buster-security; urgency=medium . * New upstream security release. - CVE-2019-20503: Out of bounds read in usersctplib. Reported by Natalie Silvanovich - CVE-2020-6422: Use after free in WebGL. Reported by David Manouchehri - CVE-2020-6424: Use after free in media. Reported by Sergei Glazunov - CVE-2020-6425: Insufficient policy enforcement in extensions. Reported by Sergei Glazunov - CVE-2020-6426: Inappropriate implementation in V8. Reported by Avihay Cohen - CVE-2020-6427: Use after free in audio. Reported by Man Yue Mo - CVE-2020-6428: Use after free in audio. Reported by Man Yue Mo - CVE-2020-6429: Use after free in audio. Reported by Man Yue Mo - CVE-2020-6449: Use after free in audio. Reported by Man Yue Mo chromium (80.0.3987.132-1) unstable; urgency=medium . * New upstream security release. - CVE-2020-6420: Insufficient policy enforcement in media. Reported by Taras Uzdenov chromium (80.0.3987.132-1~deb10u1) buster-security; urgency=medium . * New upstream security release. - CVE-2019-19923: Out of bounds memory access in SQLite. Reported by Richard Lorenz - CVE-2019-19925: Vulnerability in SQLite. Reported by Richard Lorenz - CVE-2019-19926: Inappropriate implementation in SQLite. Reported by Richard Lorenz - CVE-2019-19880: Vulnerability in SQLite. Reported by Richard Lorenz - CVE-2020-6381: Integer overflow in JavaScript. Reported by The UK's National Cyber Security Centre - CVE-2020-6382: Type Confusion in JavaScript. Reported by Soyeon Park and Wen Xu - CVE-2020-6383: Type confusion in V8. Reported by Sergei Glazunov - CVE-2020-6384: Use after free in WebAudio. Reported by David Manouchehri - CVE-2020-6385: Insufficient policy enforcement in storage. Reported by Sergei Glazunov - CVE-2020-6386: Use after free in speech. Reported by Zhe Jin - CVE-2020-6387: Out of bounds write in WebRTC. Reported by Natalie Silvanovich - CVE-2020-6388: Out of bounds memory access in WebAudio. Reported by Sergei Glazunov - CVE-2020-6389: Out of bounds write in WebRTC. Reported by Natalie Silvanovich - CVE-2020-6390: Out of bounds memory access in streams. Reported by Sergei Glazunov - CVE-2020-6391: Insufficient validation of untrusted input in Blink. Reported by Michał Bentkowski - CVE-2020-6392: Insufficient policy enforcement in extensions. Reported by Microsoft Edge Team - CVE-2020-6393: Insufficient policy enforcement in Blink. Reported by Mark Amery - CVE-2020-6394: Insufficient policy enforcement in Blink. Reported by Phil Freo - CVE-2020-6395: Out of bounds read in JavaScript. Reported by Pierre Langlois - CVE-2020-6396: Inappropriate implementation in Skia. Reported by William Luc Ritchie - CVE-2020-6397: Incorrect security UI in sharing. Reported by Khalil Zhani - CVE-2020-6398: Uninitialized use in PDFium. Reported by pdknsk - CVE-2020-6399: Insufficient policy enforcement in AppCache. Reported by Luan Herrera - CVE-2020-6400: Inappropriate implementation in CORS. Reported by Takashi Yoneuchi - CVE-2020-6401: Insufficient validation of untrusted input in Omnibox. Reported by Tzachy Horesh - CVE-2020-6402: Insufficient policy enforcement in downloads. Reported by Vladimir Metnew - CVE-2020-6403: Incorrect security UI in Omnibox. Reported by Khalil Zhani - CVE-2020-6404: Inappropriate implementation in Blink. Reported by kanchi - CVE-2020-6405: Out of bounds read in SQLite. Reported by Yongheng Chen and Rui Zhong - CVE-2020-6406: Use after free in audio. Reported by Sergei Glazunov - CVE-2020-6407: Out of bounds memory access in streams. Reported by Sergei Glazunov - CVE-2020-6408: Insufficient policy enforcement in CORS. Reported by Zhong Zhaochen - CVE-2020-6409: Inappropriate implementation in Omnibox. Reported by Divagar S and Bharathi V - CVE-2020-6410: Insufficient policy enforcement in navigation. Reported by evi1m0 - CVE-2020-6411: Insufficient validation of untrusted input in Omnibox. Reported by Khalil Zhani - CVE-2020-6412: Insufficient validation of untrusted input in Omnibox. Reported by Zihan Zheng - CVE-2020-6413: Inappropriate implementation in Blink. Reported by Michał Bentkowski - CVE-2020-6414: Insufficient policy enforcement in Safe Browsing. Reported by Lijo A.T - CVE-2020-6415: Inappropriate implementation in JavaScript. Reported by Avihay Cohen - CVE-2020-6416: Insufficient data validation in streams. Reported by Woojin Oh - CVE-2020-6417: Inappropriate implementation in installer. Reported by Renato Moraes and Altieres Rohr - CVE-2020-6418: Type confusion in V8. Reported by Clement Lecigne - CVE-2020-6420: Insufficient policy enforcement in media. Reported by Taras Uzdenov chromium (80.0.3987.122-2) unstable; urgency=medium . * Reduce debugging symbols to avoid memory exhaustion while linking. chromium (80.0.3987.122-1) unstable; urgency=medium . * New upstream security release. - CVE-2020-6407: Out of bounds memory access in streams. Reported by Sergei Glazunov - CVE-2020-6418: Type confusion in V8. Reported by Clement Lecigne chromium (80.0.3987.116-1) unstable; urgency=medium . * New upstream security release. - CVE-2020-6383: Type confusion in V8. Reported by Sergei Glazunov - CVE-2020-6384: Use after free in WebAudio. Reported by David Manouchehri - CVE-2020-6386: Use after free in speech. Reported by Zhe Jin chromium (80.0.3987.106-1) unstable; urgency=medium . * New upstream stable release. - CVE-2019-19923: Out of bounds memory access in SQLite. Reported by Richard Lorenz - CVE-2019-19925: Vulnerability in SQLite. Reported by Richard Lorenz - CVE-2019-19926: Inappropriate implementation in SQLite. Reported by Richard Lorenz - CVE-2019-19880: Vulnerability in SQLite. Reported by Richard Lorenz - CVE-2020-6381: Integer overflow in JavaScript. Reported by The UK's National Cyber Security Centre - CVE-2020-6382: Type Confusion in JavaScript. Reported by Soyeon Park and Wen Xu - CVE-2020-6385: Insufficient policy enforcement in storage. Reported by Sergei Glazunov - CVE-2020-6387: Out of bounds write in WebRTC. Reported by Natalie Silvanovich - CVE-2020-6388: Out of bounds memory access in WebAudio. Reported by Sergei Glazunov - CVE-2020-6389: Out of bounds write in WebRTC. Reported by Natalie Silvanovich - CVE-2020-6390: Out of bounds memory access in streams. Reported by Sergei Glazunov - CVE-2020-6391: Insufficient validation of untrusted input in Blink. Reported by Michał Bentkowski - CVE-2020-6392: Insufficient policy enforcement in extensions. Reported by Microsoft Edge Team - CVE-2020-6393: Insufficient policy enforcement in Blink. Reported by Mark Amery - CVE-2020-6394: Insufficient policy enforcement in Blink. Reported by Phil Freo - CVE-2020-6395: Out of bounds read in JavaScript. Reported by Pierre Langlois - CVE-2020-6396: Inappropriate implementation in Skia. Reported by William Luc Ritchie - CVE-2020-6397: Incorrect security UI in sharing. Reported by Khalil Zhani - CVE-2020-6398: Uninitialized use in PDFium. Reported by pdknsk - CVE-2020-6399: Insufficient policy enforcement in AppCache. Reported by Luan Herrera - CVE-2020-6400: Inappropriate implementation in CORS. Reported by Takashi Yoneuchi - CVE-2020-6401: Insufficient validation of untrusted input in Omnibox. Reported by Tzachy Horesh - CVE-2020-6402: Insufficient policy enforcement in downloads. Reported by Vladimir Metnew - CVE-2020-6403: Incorrect security UI in Omnibox. Reported by Khalil Zhani - CVE-2020-6404: Inappropriate implementation in Blink. Reported by kanchi - CVE-2020-6405: Out of bounds read in SQLite. Reported by Yongheng Chen and Rui Zhong - CVE-2020-6406: Use after free in audio. Reported by Sergei Glazunov - CVE-2020-6408: Insufficient policy enforcement in CORS. Reported by Zhong Zhaochen - CVE-2020-6409: Inappropriate implementation in Omnibox. Reported by Divagar S and Bharathi V - CVE-2020-6410: Insufficient policy enforcement in navigation. Reported by evi1m0 - CVE-2020-6411: Insufficient validation of untrusted input in Omnibox. Reported by Khalil Zhani - CVE-2020-6412: Insufficient validation of untrusted input in Omnibox. Reported by Zihan Zheng - CVE-2020-6413: Inappropriate implementation in Blink. Reported by Michał Bentkowski - CVE-2020-6414: Insufficient policy enforcement in Safe Browsing. Reported by Lijo A.T - CVE-2020-6415: Inappropriate implementation in JavaScript. Reported by Avihay Cohen - CVE-2020-6416: Insufficient data validation in streams. Reported by Woojin Oh - CVE-2020-6417: Inappropriate implementation in installer. Reported by Renato Moraes and Altieres Rohr * Remove --ignore-gpu-blacklist from the default flags (closes: #947207). * Update standards version to 4.5.0. * Build with clang instead of gcc. chromium (79.0.3945.130-2) unstable; urgency=medium . * Add libx11-xcb-dev as a build dependency. chromium (79.0.3945.130-1) unstable; urgency=medium . * New upstream security release. - CVE-2020-6377: Use after free in audio. Reported by Zhe Jin - CVE-2020-6378: Use-after-free in speech recognizer. Reported by Antti Levomäki and Christian Jalio - CVE-2020-6379: Use-after-free in speech recognizer. Reported by Guang Gong - CVE-2020-6380: Extension message verification error. Reported by Sergei Glazunov - CVE-2019-13767: Use after free in media picker. Reported by Sergei Glazunov * Fix memory instrumentation singleton initialization errors caused by tracing patch included in the previous upload (closes: #945920). clamav (0.102.2+dfsg-0+deb10u1) buster; urgency=medium . * Import 0.102.2 - CVE-2020-3123 (DoS may occur in the optional DLP feature) (Closes: 950944). * Update symbol file. * Set ReceiveTimeout to 0 which is upstream default. * Add a patch to let freshclam consider CURL_CA_BUNDLE environment variable to set the CA bundle (like curl does) (Closes: #951057). * Recommend ca-certificates, new freshclash uses https by default. clamav (0.102.2+dfsg-0~deb9u1) stretch; urgency=medium . * Import 0.102.2 - CVE-2020-3123 (DoS may occur in the optional DLP feature) (Closes: 950944). * Update symbol file. * Set ReceiveTimeout to 0 which is upstream default. * Add a patch to let freshclam consider CURL_CA_BUNDLE environment variable to set the CA bundle (like curl does) (Closes: #951057). * Recommend ca-certificates, new freshclash uses https by default. clamav (0.102.1+dfsg-3) unstable; urgency=medium . * clamav-daemon: Do not cause an error on start if /run/clamav already exists * clamav-daemon: Correct error from ScanOnAccess option removal so that setting LogFile options via DebConf works again (Closes: #950296) (LP: #1861497) clamav (0.102.1+dfsg-2) unstable; urgency=medium . * Add the clamonacc binary to the clamav-daemon package. * Drop ScanOnAccess option. The clamonacc provides this functionality. clamav (0.102.1+dfsg-1) unstable; urgency=medium . * Import 0.102.1 (Closes: #945265) - CVE-2019-15961 (A Denial-of-Service as a result of excessively long scan times). - Let freshclam show progress during download (Closes: #690789). * Update symbol file. * Add libfreshclam to the libclamav9 package. corosync (3.0.1-2+deb10u1) buster; urgency=medium . * [c7ca027] New patch: totemsrp: Reduce MTU to left room second mcast. Thanks to Jan Friesse (Closes: #950476) corosync-qdevice (3.0.0-4+deb10u1) buster; urgency=medium . * [8de35d1] Set Default-Start runlevels for corosync-qdevice (Closes: #932346) csync2 (2.0-22-gce67c55-1+deb10u1) buster; urgency=medium . * Add patch for CVE-2019-15522 (Closes: #955445) cups (2.2.10-6+deb10u3) buster; urgency=medium . * Backport upstream security fixes: - CVE-2020-3898: heap-buffer-overflow in libcups’s ppdFindOption() function in ppd-mark.c - CVE-2019-8842: The `ippReadIO` function may under-read an extension field curl (7.64.0-4+deb10u1) buster-security; urgency=high . * Fix FTP-KRB double-free as per CVE-2019-5481 (Closes: #940009) https://curl.haxx.se/docs/CVE-2019-5481.html * Fix TFTP small blocksize heap buffer overflow as per CVE-2019-5482 (Closes: #940010) https://curl.haxx.se/docs/CVE-2019-5482.html dav4tbsync (1.9-1~deb10u1) buster; urgency=medium . * Changed versioning dav4tbsync (1.8-1) unstable; urgency=medium . * [813a05f] New upstream version 1.8 dav4tbsync (1.7-1) unstable; urgency=medium . [ Carsten Schoenert ] * [2f77473] d/control: correct depending versions . [ Mechtilde Stehmann ] * [959372e] New upstream version 1.7 * [63d213e] d/upstream/metadata: added * [908b0f5] d/copyright: add recent year * [d462321] d/control: bump standard version to 4.5 - no changes needed dav4tbsync (1.6-1) unstable; urgency=medium . * Prepared for unstable dav4tbsync (1.6-1~exp3) experimental; urgency=medium . [ Carsten Schoenert ] * [673ef7d] webext-dav4tbsync.install: install more needed files * [b0a4adb] webext-dav4tbsync.links: correct linking . [ Mechtilde Stehmann ] * [5f75a84] Completed docs dav4tbsync (1.6-1~exp2) experimental; urgency=medium . * Prepared for unstable * [3e3de7c] Removed old xul stuff * [a3323c6] Removed xpi dependency * [194a239] Added *.install and *.links for manuall installation dav4tbsync (1.6-1~exp1) experimental; urgency=medium . * [8ed4ba4] New upstream version 1.6 * [d1ec579] Updated version of dependencies * [55be96f] Deactivate verbosity in debian/rules dav4tbsync (1.4-1~exp1) experimental; urgency=medium . * [c22d7c2] New upstream version 1.4 * [0b2772b] Use debhelper-compat for choosing compat level * [93ae506] Bumped to standard version 4.4.1 -no changes needed * [ddcb0ce] Added Rules-Requires-Root: no * [c93f523] Adapt to new version scheme * [cce26d0] Added copyright for debian/ dav4tbsync (1.2-1) experimental; urgency=medium . [ Mechtilde ] * New upstream version 1.2 * bump standard version to 4.4.0 - no changes needed * bump uscan version to 4 - no changes needed * added debian/salsa-ci.yml * adapt rules to webext * deleted debian/source/lintian-overrides file content/sync.js removed * add some more entries to debian/webext-dav4tbsync.docs debian-edu-config (2.10.65+deb10u5) buster; urgency=medium . [ Wolfgang Schweer ] * Add policies files for Firefox-ESR and Thunderbird to fix the TLS/SSL setup. This makes sure that the Debian-Edu_rootCA.crt file gets installed as trusted certificate for Firefox-ESR and Thunderbird. (Already fixed in Bullseye.) - Add share/firefox-esr/distribution/policies.json (Closes: #944450). - Add lib/thunderbird/distribution/policies.json (Closes: #955978). - Adjust Makefile accordingly. debian-installer (20190702+deb10u4) buster; urgency=medium . * Bump Linux ABI to 4.19.0-9. debian-installer-netboot-images (20190702+deb10u4) buster; urgency=medium . * Update to 20190702+deb10u3, from buster-proposed-updates. debian-security-support (2020.04.16~deb10u2) buster; urgency=medium . * Re-upload for buster. . debian-security-support (2020.04.16) unstable; urgency=medium . * Add tor to security-support-ended.deb8 as well, see DSA 4644-1. * Add libperlspeak-perl to security-support-ended.deb(8|9|10), because of CVE-2020-10674 (#954238), also see #954297, #954298 and #954299. . debian-security-support (2020.03.22) unstable; urgency=medium . [ Salvatore Bonaccorso ] * Add tor to security-support-ended.deb9, see DSA 4644-1. . debian-security-support (2020.03.15) unstable; urgency=medium . [ Dmitry Smirnov ] * security-support-limited/zoneminder: declare limited support behind an authenticated HTTP zone (see #922724). . [ Daniel Shahaf ] * Revert unintentional output change in #951874 4/4. Closes: #953732. . debian-security-support (2020.03.05) unstable; urgency=medium . [ Bastian Blank ] * Add xen to security-support-ended.deb8. . [ Holger Levsen ] * Correct bug closure for #951874 in 2020.02.25 changelog entry. #951772 was already closed in 2020.02.21. . debian-security-support (2020.02.25) unstable; urgency=medium . [ Daniel Shahaf ] * Miscellaneous sh fixes, Closes: #951874. - avoid implementation-defined behaviour. - fix --version output, use defined variable. - print errors and warnings to stderr. - clarify an error message. . [ Holger Levsen ] * postinst and check-support-status.hook: drop workaround for upgrades from releases before 2016-03-30. * check-support-status.in: - drop code needed for supporting dpkg-query from squeeze. - set DEB_LOWEST_VER_ID=8 as we dropped security-support-ended.deb7 in the last upload. - Don't exit gracefully if the detected Debian version is not supported, instead issue a warning and continue, to both do the checks that can be done and to not fail the package installation. Closes: #952383. * po/debian-security-support.pot: drop removed string. * Update all .po files for changed strings in the English original. * Add "package-uses-old-debhelper-compat-version 11" to source/lintian-overrides. The package shall be trivially buildable on stable. . debian-security-support (2020.02.21) unstable; urgency=medium . [ Holger Levsen ] * Drop security-support-ended.deb7, we don't support wheezy anymore. (eLTS is maintained outside Debian.) * Add nodejs to security-support-ended.deb8 and .deb9. * Use runuser instead of su. Closes: #890862. Thanks to Jakobus Schürz. * Wrap long lines in changelog entries: 2015.04.04, thanks lintian-brush. * Fix day-of-week for changelog entry 2015.04.04, thanks lintian-brush. . [ Daniel Shahaf ] * Allow one to exclude specific packages from the check. Closes: #951442. * Prefix "check-support-status: " to error messages. Closes: #951772. . debian-security-support (2020.01.21) unstable; urgency=medium . [ Abhijith PA ] * Add nethack to security-support-ended.deb8. . [ Salvatore Bonaccorso ] * Mark xen as end-of-life for Stretch (DSA 4602-1). . [ Holger Levsen ] * Improve describe of binutils' status in security-support-limited. Thanks to Daniel Shahaf for the patch. Closes: #948634. * Bump standards version to 4.5.0, no changes needed. debian-security-support (2020.03.22) unstable; urgency=medium . [ Salvatore Bonaccorso ] * Add tor to security-support-ended.deb9, see DSA 4644-1. debian-security-support (2020.03.15) unstable; urgency=medium . [ Dmitry Smirnov ] * security-support-limited/zoneminder: declare limited support behind an authenticated HTTP zone (see #922724). . [ Daniel Shahaf ] * Revert unintentional output change in #951874 4/4. Closes: #953732. debian-security-support (2020.03.05) unstable; urgency=medium . [ Bastian Blank ] * Add xen to security-support-ended.deb8. . [ Holger Levsen ] * Correct bug closure for #951874 in 2020.02.25 changelog entry. #951772 was already closed in 2020.02.21. debian-security-support (2020.02.25) unstable; urgency=medium . [ Daniel Shahaf ] * Miscellaneous sh fixes, Closes: #951772. - avoid implementation-defined behaviour. - fix --version output, use defined variable. - print errors and warnings to stderr. - clarify an error message. . [ Holger Levsen ] * postinst and check-support-status.hook: drop workaround for upgrades from releases before 2016-03-30. * check-support-status.in: - drop code needed for supporting dpkg-query from squeeze. - set DEB_LOWEST_VER_ID=8 as we dropped security-support-ended.deb7 in the last upload. - Don't exit gracefully if the detected Debian version is not supported, instead issue a warning and continue, to both do the checks that can be done and to not fail the package installation. Closes: #952383. * po/debian-security-support.pot: drop removed string. * Update all .po files for changed strings in the English original. * Add "package-uses-old-debhelper-compat-version 11" to source/lintian-overrides. The package shall be trivially buildable on stable. debian-security-support (2020.02.21) unstable; urgency=medium . [ Holger Levsen ] * Drop security-support-ended.deb7, we don't support wheezy anymore. (eLTS is maintained outside Debian.) * Add nodejs to security-support-ended.deb8 and .deb9. * Use runuser instead of su. Closes: #890862. Thanks to Jakobus Schürz. * Wrap long lines in changelog entries: 2015.04.04, thanks lintian-brush. * Fix day-of-week for changelog entry 2015.04.04, thanks lintian-brush. . [ Daniel Shahaf ] * Allow one to exclude specific packages from the check. Closes: #951442. * Prefix "check-support-status: " to error messages. Closes: #951772. debian-security-support (2020.01.21) unstable; urgency=medium . [ Abhijith PA ] * Add nethack to security-support-ended.deb8. . [ Salvatore Bonaccorso ] * Mark xen as end-of-life for Stretch (DSA 4602-1). . [ Holger Levsen ] * Improve describe of binutils' status in security-support-limited. Thanks to Daniel Shahaf for the patch. Closes: #948634. * Bump standards version to 4.5.0, no changes needed. debian-security-support (2019.12.12) unstable; urgency=medium . * security-support-limited: point to https://www.debian.org/releases/ \ buster/amd64/release-notes/ch-information.en.html#golang-static-linking for golang* packages. distro-info-data (0.41+deb10u2) buster; urgency=medium . * Update data to 0.44: - Add Ubuntu 20.10, Groovy Gorilla. - Add a guessed EOL date for Debian Stretch. dojo (1.14.2+dfsg1-1+deb10u1) buster; urgency=medium . * Team upload * Cleanup improper regex usage (Closes: #952771, CVE-2019-10785) dpdk (18.11.6-1~deb10u1) buster; urgency=medium . * Merge tag 'debian/18.11.6-1' into buster. . dpdk (18.11.6-1) unstable; urgency=medium . [ Luca Boccassi ] * New upstream version 18.11.6; For a list of changes see http://doc.dpdk.org/guides-18.11/rel_notes/release_18_11.html * Drop avoid-as-needed-as-it-causes-overlinking.patch, merged upstream. * Refresh remaining patches to remove fuzz from 18.11.6. * Add patch to avoid changing stable symbol version, breaking ABI. * Update librte-eal18.11.symbols with new experimental symbol from 18.11.6 . [ Christian Ehrhardt ] * d/*.lintian-overrides: add overrides for a few known but accepted deficiencies . [ Luca Boccassi ] * Use chrpath to strip RPATH from dpdk-test binary * Add missing librte-gro symbols file dpdk (18.11.5-1) unstable; urgency=medium . * New upstream version 18.11.5; For a list of changes see http://doc.dpdk.org/guides-18.11/rel_notes/release_18_11.html * Refresh 0004-build-bump-minimum-Meson-version-to-0.47.1.patch to remove fuzz from 18.11.5 dtv-scan-tables (0+git20190925.6d01903-0.1~deb10u1) buster; urgency=medium . * Non-maintainer upload. * Rebuild for buster. . dtv-scan-tables (0+git20190925.6d01903-0.1) unstable; urgency=medium . * Non-maintainer upload. * New upstream snapshot. * Adds a list of all current German DVB-T2 muxes. (Closes: #901842) * Adds the Eutelsat-5-West-A satellite. (Closes: #940936) eas4tbsync (1.12-1~deb10u1) buster; urgency=medium . * changed versioning eas4tbsync (1.11-1) unstable; urgency=medium . [ Carsten Schoenert ] * [efdc483] d/control: correct depending versions . [ Mechtilde Stehmann ] * [19cb20a] New upstream version 1.11 * [ea60111] d/upstream/metadata: added d/copyright: add recent year d/control: bump standard version to 4.5 - no changes needed eas4tbsync (1.9-1) unstable; urgency=medium . * Prepared for unstable eas4tbsync (1.9-1~exp3) experimental; urgency=medium . [ Carsten Schoenert ] * [2df6c8c] webext-eas4tbsync.install: install more needed files * [eb81b22] webext-eas4tbsync.links: correct linking . [ Mechtilde Stehmann ] * [99cae94] Added _locales/Readme.txt eas4tbsync (1.9-1~exp2) experimental; urgency=medium . * [ad86a1b] Removed old xul stuff * [34315f3] Remove xpi dependencies * [423a9cc] Added *.install and *.links for manuall installation * [46eb3a3] Corrected typos * [d5cb20e] Add one doc file to improve for lintian eas4tbsync (1.9-1~exp1) experimental; urgency=medium . * [d248851] New upstream version 1.9 eas4tbsync (1.8-1~exp1) experimental; urgency=medium . * [0c1d562] New upstream version 1.8 * [43b864c] Update version of dependencies * [74699d2] Deactivated verbosity of debian/rules eas4tbsync (1.6-1~exp1) experimental; urgency=medium . * [d7f4483] New upstream version 1.6 * [1bf8cf6] Use debhelper-compat for choosing compat level * [d25074c] Adapt to new version scheme * [7ec3dbf] Bump to new standard version 4.4.1 * [5704493] Added Rules-Requires-Root: no * [3d36412] Added copyright for debian/ eas4tbsync (1.2-1) experimental; urgency=medium . [ Mechtilde ] * New upstream version 1.2 * changed debian/control bump standard version to 4.4.0 changed thunderbird version to >=68 changed webext-tbsync version to 2.3 * changed debian/watch to version 4 * added debian/salsa-ci.yml to get this package ready for salsa-ci * simpified debian/rules for using webext * corrected debian/copyright edk2 (0~20181115.85588389-3+deb10u1) buster; urgency=medium . * Fix numeric truncation in S3BootScript[Save]*() API. (CVE-2019-14563) * Fix use-after-free in PcdHiiOsRuntimeSupport. (CVE-2019-14586) * Clear memory before free to avoid potential password leak. (CVE-2019-14558) * Fix double-unmap in SdMmcCreateTrb(). This did not impact any of the images built from this package. (CVE-2019-14587) * Fix memory leak in ArpOnFrameRcvdDpc(). (CVE-2019-14559) * Fix issue that could allow an efi image with a blacklisted hash in the dbx to be loaded. (CVE-2019-14575) (Closes: 952935) * Fix a memory leak in the ARP handler. (CVE-2019-14559) (Closes: #952926) el-api (3.0.0-2+deb10u1) buster; urgency=medium . * Team upload. * Change Breaks and Replaces for libservlet3.1-java to << 9 and fix dpkg error when upgrading tomcat 8 from Stretch to Buster. evince (3.30.2-3+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * tiff: Handle failure from TIFFReadRGBAImageOriented (CVE-2019-11459) (Closes: #927820) fex (20160919-2~deb10u1) buster; urgency=high . * Security fix for fexsrv. fex (20160919-2~deb9u1) stretch; urgency=high . * Security fix for fexsrv. filezilla (3.39.0-2+deb10u1) buster; urgency=medium . * Non-maintainer upload * Added: 02_untrusted_search_path.patch - CVE-2019-5429. (Closes: #928282) firefox-esr (68.7.0esr-1~deb10u1) buster-security; urgency=medium . * New upstream release * Fixes for mfsa2020-13, also known as: CVE-2020-6821, CVE-2020-6822, CVE-2020-6825. firefox-esr (68.7.0esr-1~deb9u1) stretch-security; urgency=medium . * New upstream release * Fixes for mfsa2020-13, also known as: CVE-2020-6821, CVE-2020-6822, CVE-2020-6825. firefox-esr (68.6.1esr-1) unstable; urgency=medium . * New upstream release * Fixes for mfsa2020-11, also known as: CVE-2020-6819, CVE-2020-6820. firefox-esr (68.6.1esr-1~deb10u1) buster-security; urgency=medium . * New upstream release * Fixes for mfsa2020-11, also known as: CVE-2020-6819, CVE-2020-6820. firefox-esr (68.6.1esr-1~deb9u1) stretch-security; urgency=medium . * New upstream release * Fixes for mfsa2020-11, also known as: CVE-2020-6819, CVE-2020-6820. firefox-esr (68.6.0esr-1) unstable; urgency=medium . * New upstream release * Fixes for mfsa2020-09, also known as: CVE-2020-6805, CVE-2020-6806, CVE-2020-6807, CVE-2020-6811, CVE-2019-20503, CVE-2020-6812, CVE-2020-6814. firefox-esr (68.6.0esr-1~deb10u1) buster-security; urgency=medium . * New upstream release * Fixes for mfsa2020-09, also known as: CVE-2020-6805, CVE-2020-6806, CVE-2020-6807, CVE-2020-6811, CVE-2019-20503, CVE-2020-6812, CVE-2020-6814. firefox-esr (68.6.0esr-1~deb9u1) stretch-security; urgency=medium . * New upstream release * Fixes for mfsa2020-09, also known as: CVE-2020-6805, CVE-2020-6806, CVE-2020-6807, CVE-2020-6811, CVE-2019-20503, CVE-2020-6812, CVE-2020-6814. firefox-esr (68.5.0esr-1) unstable; urgency=medium . * New upstream release * Fixes for mfsa2020-06, also known as: CVE-2020-6796, CVE-2020-6798, CVE-2020-6800. firefox-esr (68.5.0esr-1~deb10u1) buster-security; urgency=medium . * New upstream release * Fixes for mfsa2020-06, also known as: CVE-2020-6796, CVE-2020-6798, CVE-2020-6800. firefox-esr (68.5.0esr-1~deb9u1) stretch-security; urgency=medium . * New upstream release * Fixes for mfsa2020-06, also known as: CVE-2020-6796, CVE-2020-6798, CVE-2020-6800. firefox-esr (68.4.2esr-1) unstable; urgency=medium . * New upstream release. firefox-esr (68.4.1esr-1) unstable; urgency=medium . * New upstream release. * Fix for mfsa2020-03, also known as CVE-2019-17026. frr (6.0.2-2+deb10u1) buster; urgency=medium . * extended next hop capability not working: add upstream patches: - Add_peer_action_for_PEER_FLAG_IFPEER_V6ONLY_flag.patch. - interface_based_peers_should_automatically_override_it_s_peer_group.patch fuse (2.9.9-1+deb10u1) buster; urgency=medium . * Drop outdated udevadm commands from postinst (closes: #934457, #935496). * Don't explicitly remove fuse.conf on purge (closes: #953222). fuse3 (3.4.1-1+deb10u1) buster; urgency=medium . * Drop outdated udevadm commands from postinst (closes: #934293). * Don't explicitly remove fuse.conf on purge (closes: #953223). * Backport fix of memory leak in fuse_session_new() . git (1:2.20.1-2+deb10u3) buster-security; urgency=high . * new upstream point release (see RelNotes/2.20.4.txt). * Addresses the security issue CVE-2020-11008. . With a crafted URL that contains a newline or empty host, or lacks a scheme, the credential helper machinery can be fooled into providing credential information that is not appropriate for the protocol in use and host being contacted. . Unlike the vulnerability fixed in 1:2.20.1-2+deb10u2, the credentials are not for a host of the attacker's choosing. Instead, they are for an unspecified host, based on how the configured credential helper handles an absent "host" parameter. . The attack has been made impossible by refusing to work with underspecified credential patterns. . Thanks to Carlo Arenas for reporting that Git was still vulnerable, Felix Wilhelm for providing the proof of concept demonstrating this issue, and Jeff King for promptly providing a corrected fix. . Tested using the proof of concept at https://crbug.com/project-zero/2021. git (1:2.20.1-2+deb10u2) buster-security; urgency=high . [ Salvatore Bonaccorso ] * new upstream point release (see RelNotes/2.20.3.txt). * Addresses the security issue CVE-2020-5260. . With a crafted URL that contains a newline, the credential helper machinery can be fooled to supply credential information for the wrong host. The attack has been made impossible by forbidding a newline character in any value passed via the credential protocol. . Thanks to Felix Wilhelm of Google Project Zero for finding this vulnerability and Jeff King for fixing it. gnutls28 (3.6.7-4+deb10u3) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * GNUTLS-SA-2020-03-31: dtls client hello: fix zeroed random (CVE-2020-11501) Fix a DTLS-protocol regression (caused by TLS1.3 support), since 3.6.3. The DTLS client would not contribute any randomness to the DTLS negotiation, breaking the security guarantees of the DTLS protocol. (Closes: #955556) golang-github-prometheus-common (0+git20181119.b36ad28-1+deb10u1) buster; urgency=medium . * Non-maintainer upload. * Backport upstream patch "config: extend validity of testdata certs": As the previous test certificates were set to expire on 2019-07-13, causing TestNewClientFromConfig to fail after that date. See https://github.com/prometheus/common/pull/186 (Closes: #949189) gosa (2.7.4+reloaded3-8+deb10u2) buster; urgency=medium . * debian/patches: + Add 1047_CVE-2019-14466-{1,2}_replace_unserialize_with_json_encode+json_ decode.patch: Replace (un)serialize with json_encode/json_decode to mitigate PHP object injection. graphicsmagick (1.4~hg15978-1+deb10u1) unstable; urgency=medium . * Non-maintainer upload by the LTS Team. * CVE-2019-19953 heap-based buffer over-read in the function EncodeImage * CVE-2019-19951 heap-based buffer overflow in the function ImportRLEPixels * CVE-2019-19950 use-after-free in ThrowException and ThrowLoggedException haproxy (1.8.19-1+deb10u2) buster-security; urgency=medium . * Apply one patch to fix an overflow in HTTP/2 header handling. Fix CVE-2020-11100. haproxy (1.8.19-1+deb10u2~bpo9+1) stretch-backports; urgency=medium . * Rebuild for stretch-backports. hbci4java (3.1.29+dfsg-1+deb10u1) buster; urgency=medium . * New upstream version 3.1.29+dfsg hbci4java (3.1.29+dfsg-1) unstable; urgency=medium . * New upstream version 3.1.29+dfsg hbci4java (3.1.24+dfsg-1) unstable; urgency=medium . * New upstream version 3.1.24+dfsg hbci4java (3.1.22+dfsg-1) unstable; urgency=medium . * New upstream version 3.1.22+dfsg * simplify d/watch hbci4java (3.1.21+dfsg-1) unstable; urgency=medium . * New upstream version 3.1.21+dfsg hbci4java (3.1.19+dfsg-1) unstable; urgency=medium . * New upstream version 3.1.19+dfsg hbci4java (3.1.18+dfsg-1) unstable; urgency=medium . * New upstream version 3.1.18+dfsg * Bump policy version (no changes) hbci4java (3.1.17+dfsg-1) unstable; urgency=medium . * New upstream version 3.1.17+dfsg hbci4java (3.1.15+dfsg-1) unstable; urgency=medium . * New upstream version 3.1.15+dfsg hbci4java (3.1.13+dfsg-1) unstable; urgency=medium . * New upstream version 3.1.13+dfsg hbci4java (3.1.9+dfsg-1) unstable; urgency=medium . * New upstream version 3.1.9+dfsg hbci4java (3.1.5+dfsg-1) unstable; urgency=medium . * New upstream version 3.1.5+dfsg hbci4java (3.1.4+dfsg-1) unstable; urgency=medium . * New upstream version 3.1.4+dfsg hbci4java (3.1.2+dfsg-1) unstable; urgency=medium . * New upstream version 3.1.2+dfsg hbci4java (3.0.24+dfsg-1) unstable; urgency=medium . * New upstream version 3.0.24+dfsg * Bump policy version (no changes) * switch to debhelper-compat and debhelper 12 * add Salsa CI hibiscus (2.8.21+dfsg-1+deb10u1) buster; urgency=medium . * New upstream version 2.8.21+dfsg (Closes: #946794) * Update copyright * Depend on new hbci4java version hibiscus (2.8.21+dfsg-1) unstable; urgency=medium . * simplify d/watch * New upstream version 2.8.21+dfsg * Rebase patches * Bump policy versions (no changes) hibiscus (2.8.18+dfsg-2) unstable; urgency=medium . * Add patch for version check hibiscus (2.8.18+dfsg-1) unstable; urgency=medium . * New upstream version 2.8.18+dfsg hibiscus (2.8.16+dfsg-1) unstable; urgency=medium . * New upstream version 2.8.16+dfsg hibiscus (2.8.15+dfsg-1) unstable; urgency=medium . * Update build deps * New upstream version 2.8.15+dfsg * Fix documentation. Thanks to Daniele Forsi (Closes: #939732) hibiscus (2.8.14+dfsg-1) unstable; urgency=medium . * New upstream version 2.8.14+dfsg hibiscus (2.8.13+dfsg-2) unstable; urgency=medium . * {Build-,}Depends on the new hbci4java release hibiscus (2.8.13+dfsg-1) unstable; urgency=medium . * New upstream version 2.8.13+dfsg * Update copyright * Bump policy version (no changes) * switch to debhelper-compat and debhelper 12 * add Salsa CI icu (63.1-6+deb10u1) buster-security; urgency=high . * Backport upstream security fix for CVE-2020-10531: SEGV_MAPERR in UnicodeString::doAppend() (closes: #953747). iputils (3:20180629-2+deb10u1) buster; urgency=medium . * Incorporate patches from Benjamin Poirier to correct an issue in which ping would improperly exit with a failure code when there were untried addresses still available in the getaddrinfo() library call return value. (Closes: #947921) ircd-hybrid (1:8.2.24+dfsg.1-1+deb10u1) buster; urgency=medium . * Use dhparam.pem to avoid segfault on startup (Closes: #932774) jekyll (3.8.3+dfsg-4+deb10u1) buster; urgency=medium . * Team upload. * d/control (Vcs-Git): Add branch information. * d/patches/0017-allow-jekyll-to-run-with-ruby-i18n-1.x.patch: Add patch. - Allow ruby-i18n 0.x and 1.x (closes: #948215). * d/patches/series: Add patch. jsp-api (2.3.4-2+deb10u1) buster; urgency=medium . * Team upload. * Change Breaks and Replaces for libservlet3.1-java to << 9 and fix dpkg error when upgrading tomcat 8 from Stretch to Buster. lemonldap-ng (2.0.2+ds-7+deb10u3) buster; urgency=medium . * Fix default configuration to prevent unwanted access to admin endpoints (Closes: CVE-2019-19791) * Fix the GrantSession plugin which could not prohibit logon when a 2FA was used * Fix for OIDC: any redirection where allowed when relaying party was configured without redirect_uri * Update debian/NEWS libdatetime-timezone-perl (1:2.23-1+2020a) buster; urgency=medium . * Update to Olson database version 2020a. This update contains contemporary changes for Morocco and the Yukon. libexif (0.6.21-5.1+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Fix out of bound write in exif-data.c (CVE-2019-9278) (Closes: #945948) libpam-krb5 (4.8-2+deb10u1) buster-security; urgency=high . * SECURITY: Fix potential one-byte buffer overflow when the underlying Kerberos library initiates prompting (such as for PKINIT or when the no_prompt PAM option is set). (CVE-2020-10595) libreoffice (1:6.1.5-3+deb10u6) buster; urgency=medium . * debian/patches/glm-0.9.9-ctor.diff: add from master, fix opengl slide transitions with glm >= 0.9.9 (closes: #917927) libssh (0.8.7-1+deb10u1) buster; urgency=medium . * Fix possible DoS in client and server when handling AES-CTR keys with OpenSSL, cherry-picked from upstream (Closes: #956308 CVE-2020-1730) libvncserver (0.9.11+dfsg-1.3+deb10u3) buster; urgency=medium . [ Antoni Villalonga ] * debian/patches: + Add CVE-2019-15690 patch. libvncclient/cursor: limit width/height input values. Avoids a possible heap overflow reported by Pavel Cheremushkin. (Closes: #954163). libxmlrpc3-java (3.1.3-9+deb10u1) buster-security; urgency=high . * Team upload. * Fix CVE-2019-17570: An untrusted deserialization was found in the org.apache.xmlrpc.parser.XmlRpcResponseParser:addResult method of Apache XML-RPC (aka ws-xmlrpc) library. A malicious XML-RPC server could target a XML-RPC client causing it to execute arbitrary code. . Clients that expect to get server-side exceptions need to set the enabledForExceptions property to true in order to process serialized exception messages. (Closes: #949089) linux (4.19.118-2) buster; urgency=medium . * Merge changes from 4.19.67-2+deb10u2 to include all security fixes from DSA 4667-1. linux (4.19.118-1) buster; urgency=medium . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.99 - Revert "efi: Fix debugobjects warning on 'efi_rts_work'" - xfs: Sanity check flags of Q_XQUOTARM call - [x86] mfd: intel-lpss: Add default I2C device properties for Gemini Lake - SUNRPC: Fix svcauth_gss_proxy_init() - [powerpc*] pseries: Enable support for ibm,drc-info property - tipc: update mon's self addr when node addr generated - tipc: fix wrong timeout input for tipc_wait_for_cond() - mt7601u: fix bbp version check in mt7601u_wait_bbp_ready - [armhf] crypto: sun4i-ss - fix big endian issues - perf map: No need to adjust the long name of modules - ipmi: Fix memory leak in __ipmi_bmc_register (CVE-2019-19046) - ixgbe: don't clear IPsec sa counters on HW clearing - drm/virtio: fix bounds check in virtio_gpu_cmd_get_capset() - iio: fix position relative kernel version - apparmor: Fix network performance issue in aa_label_sk_perm - ALSA: hda: fix unused variable warning - apparmor: don't try to replace stale label in ptrace access check - firmware: coreboot: Let OF core populate platform device - bridge: br_arp_nd_proxy: set icmp6_router if neigh has NTF_ROUTER - [arm64] drm/hisilicon: hibmc: Don't overwrite fb helper surface depth - IB/rxe: replace kvfree with vfree - [amd64] IB/hfi1: Add mtu check for operational data VLs - genirq/debugfs: Reinstate full OF path for domain name - [arm64] usb: dwc3: add EXTCON dependency for qcom - cfg80211: regulatory: make initialization more robust - [x86] mei: replace POLL* with EPOLL* for write queues. - [arm64] drm/msm: fix unsigned comparison with less than zero - ALSA: usb-audio: update quirk for B&W PX to remove microphone - iwlwifi: nvm: get num of hw addresses from firmware - netfilter: nft_osf: usage from output path is not valid - [x86] pwm: lpss: Release runtime-pm reference from the driver's remove callback - [powerpc*] pseries/memory-hotplug: Fix return value type of find_aa_index - rtlwifi: rtl8821ae: replace _rtl8821ae_mrate_idx_to_arfr_id with generic version - netfilter: nf_flow_table: do not remove offload when other netns's interface is down - tipc: eliminate message disordering during binding table update - [arm64] net: socionext: Add dummy PHY register read in phy_write() - [arm64,armhf] drm/sun4i: hdmi: Fix double flag assignation - [arm64] net: hns3: add error handler for hns3_nic_init_vector_data() - pcrypt: use format specifier in kobject_add - [armhf] ASoC: sun8i-codec: add missing route for ADC - [arm64] pinctrl: meson-gxl: remove invalid GPIOX tsin_a pins - [armhf] bus: ti-sysc: Add mcasp optional clocks flag - exportfs: fix 'passing zero to ERR_PTR()' warning - net: always initialize pagedlen - net: phy: Fix not to call phy_resume() if PHY is not attached - [amd64] IB/hfi1: Correctly process FECN and BECN in packets - IB/rxe: Fix incorrect cache cleanup in error flow - ipv6: add missing tx timestamping on IPPROTO_RAW - [arm64] net: hns3: fix error handling int the hns3_get_vector_ring_chain - vxlan: changelink: Fix handling of default remotes - fork,memcg: fix crash in free_thread_stack on memcg charge fail - [armhf] clk: highbank: fix refcount leak in hb_clk_init() - [armhf] clk: ti: fix refcount leak in ti_dt_clocks_register() - [armhf] clk: socfpga: fix refcount leak - [armhf] clk: samsung: exynos4: fix refcount leak in exynos4_get_xom() - [armhf] clk: imx6q: fix refcount leak in imx6q_clocks_init() - [armhf] clk: imx6sx: fix refcount leak in imx6sx_clocks_init() - [armhf] clk: armada-370: fix refcount leak in a370_clk_init() - [armel] clk: kirkwood: fix refcount leak in kirkwood_clk_init() - [armhf] clk: armada-xp: fix refcount leak in axp_clk_init() - [armhf] clk: mv98dx3236: fix refcount leak in mv98dx3236_clk_init() - [armhf] clk: dove: fix refcount leak in dove_clk_init() - drm: Fix error handling in drm_legacy_addctx - [armhf] drm/etnaviv: fix some off by one bugs - drm/fb-helper: generic: Fix setup error path - fork, memcg: fix cached_stacks case - [amd64] IB/usnic: Fix out of bounds index check in query pkey - RDMA/ocrdma: Fix out of bounds index check in query pkey - RDMA/qedr: Fix out of bounds index check in query pkey - RDMA/iw_cxgb4: Fix the unchecked ep dereference - net: phy: micrel: set soft_reset callback to genphy_soft_reset for KSZ9031 - [armhf] memory: tegra: Don't invoke Tegra30+ specific memory timing setup on Tegra20 - [armhf] drm/etnaviv: NULL vs IS_ERR() buf in etnaviv_core_dump() - kbuild: mark prepare0 as PHONY to fix external module build - crypto: tgr192 - fix unaligned memory access - [armhf] ASoC: imx-sgtl5000: put of nodes if finding codec fails - IB/iser: Pass the correct number of entries for dma mapped SGL - [arm64] net: hns3: fix wrong combined count returned by ethtool -l - IB/mlx5: Don't override existing ip_protocol - rtc: cmos: ignore bogus century byte - [i386] spi/topcliff_pch: Fix potential NULL dereference on allocation error - [arm64] net: hns3: fix bug of ethtool_ops.get_channels for VF - [armhf] clk: sunxi-ng: sun8i-a23: Enable PLL-MIPI LDOs when ungating it - iwlwifi: mvm: avoid possible access out of array. - net/mlx5: Take lock with IRQs disabled to avoid deadlock - ip_tunnel: Fix route fl4 init in ip_md_tunnel_xmit - iwlwifi: mvm: fix A-MPDU reference assignment - [armhf] bus: ti-sysc: Fix timer handling with drop pm_runtime_irq_safe() - [x86] tty: ipwireless: Fix potential NULL pointer dereference - driver: uio: fix possible memory leak in __uio_register_device - driver: uio: fix possible use-after-free in __uio_register_device - driver core: Fix DL_FLAG_AUTOREMOVE_SUPPLIER device link flag handling - driver core: Avoid careless re-use of existing device links - driver core: Do not resume suppliers under device_links_write_lock() - driver core: Fix handling of runtime PM flags in device_link_add() - driver core: Do not call rpm_put_suppliers() in pm_runtime_drop_link() - drm/xen-front: Fix mmap attributes for display buffers - iwlwifi: mvm: fix RSS config command - [mips*] rtc: ds1672: fix unintended sign extension - ath10k: fix dma unmap direction for management frames - net: phy: fixed_phy: Fix fixed_phy not checking GPIO - rtc: ds1307: rx8130: Fix alarm handling - net/smc: original socket family in inet_sock_diag - [arm64] rtc: pm8xxx: fix unintended sign extension - iw_cxgb4: use tos when importing the endpoint - iw_cxgb4: use tos when finding ipv6 routes - xsk: add missing smp_rmb() in xsk_mmap - [armhf] drm/etnaviv: potential NULL dereference - RDMA/mlx5: Fix memory leak in case we fail to add an IB device - driver core: Fix possible supplier PM-usage counter imbalance - [armhf] usb: phy: twl6030-usb: fix possible use-after-free on remove - block: don't use bio->bi_vcnt to figure out segment number - keys: Timestamp new keys - [armhf] net: dsa: b53: Fix default VLAN ID - [armhf] net: dsa: b53: Properly account for VLAN filtering - [armhf] net: dsa: b53: Do not program CPU port's PVID - mt76: usb: fix possible memory leak in mt76u_buf_free - vfio_pci: Enable memory accesses before calling pci_map_rom - mdio_bus: Fix PTR_ERR() usage after initialization to constant - [powerpc*] KVM: Release all hardware TCE tables attached to a group - [x86] staging: r8822be: check kzalloc return or bail - [arm*] dmaengine: mv_xor: Use correct device for DMA API - cdc-wdm: pass return value of recover_from_urb_loss - brcmfmac: create debugfs files for bus-specific layer - net/mlx5: Delete unused FPGA QPN variable - drm/nouveau/bios/ramcfg: fix missing parentheses when calculating RON - drm/nouveau/pmu: don't print reply values if exec is false - drm/nouveau: fix missing break in switch statement - driver core: Fix PM-runtime for links added during consumer probe - [arm64] ASoC: qcom: Fix of-node refcount unbalance in apq8016_sbc_parse_of() - [arm64,armhf] net: dsa: fix unintended change of bridge interface STP state - fs/nfs: Fix nfs_parse_devname to not modify it's argument - [x86] staging: rtlwifi: Use proper enum for return in halmac_parse_psd_data_88xx - [ppc64el] 64s: Fix logic when handling unknown CPU features - NFS: Fix a soft lockup in the delegation recovery code - perf: Copy parent's address filter offsets on clone - perf, pt, coresight: Fix address filters for vmas with non-zero offset - [armhf] clocksource/drivers/sun5i: Fail gracefully when clock rate is unavailable - [armhf] clocksource/drivers/exynos_mct: Fix error path in timer resources initialization - [x86] platform/x86: wmi: fix potential null pointer dereference - NFS/pnfs: Bulk destroy of layouts needs to be safe w.r.t. umount - ath10k: Fix length of wmi tlv command for protected mgmt frames - netfilter: nft_set_hash: fix lookups with fixed size hash on big endian - netfilter: nft_set_hash: bogus element self comparison from deactivation path - net: sched: act_csum: Fix csum calc for tagged packets - [arm*] hwrng: bcm2835 - fix probe as platform device - [amd64] iommu/vt-d: Fix NULL pointer reference in intel_svm_bind_mm() - NFS: Add missing encode / decode sequence_maxsz to v4.2 operations - NFSv4/flexfiles: Fix invalid deref in FF_LAYOUT_DEVID_NODE() - [amd64] net: aquantia: fixed instack structure overflow - media: dvb/earth-pt1: fix wrong initialization for demod blocks - rbd: clear ->xferred on error from rbd_obj_issue_copyup() - PCI: Fix "try" semantics of bus and slot reset - scsi: megaraid_sas: reduce module load time - xen, cpu_hotplug: Prevent an out of bounds access - net/mlx5: Fix multiple updates of steering rules in parallel - net/mlx5e: IPoIB, Fix RX checksum statistics update - [arm64,armhf] soc: amlogic: gx-socinfo: Add mask for each SoC packages - media: ivtv: update *pos correctly in ivtv_read_pos() - media: cx18: update *pos correctly in cx18_read_pos() - [armhf] media: wl128x: Fix an error code in fm_download_firmware() - media: cx23885: check allocation return - jfs: fix bogus variable self-initialization - [armhf] dts: sun9i: optimus: Fix fixed-regulators - net: phy: don't clear BMCR in genphy_soft_reset - [armhf] OMAP2+: Fix potentially uninitialized return value for _setup_reset() - [arm64,armhf] net: dsa: Avoid null pointer when failing to connect to PHY - media: tw5864: Fix possible NULL pointer dereference in tw5864_handle_frame - [arm64,armhf] spi: tegra114: clear packed bit for unpacked mode - [arm64,armhf] spi: tegra114: fix for unpacked mode transfers - [arm64,armhf] spi: tegra114: terminate dma and reset on transfer timeout - [arm64,armhf] spi: tegra114: flush fifos - [arm64,armhf] spi: tegra114: configure dma burst size to fifo trig level - [armhf] bus: ti-sysc: Fix sysc_unprepare() when no clocks have been allocated - [arm*] spi: bcm2835aux: fix driver to not allow 65535 (=-1) cs-gpios - drm/fb-helper: generic: Call drm_client_add() after setup is done - [arm64] vdso: don't leak kernel addresses - rtc: Fix timestamp value for RTC_TIMESTAMP_BEGIN_1900 - bpf: Add missed newline in verifier verbose log - [x86] drm/vmwgfx: Remove set but not used variable 'restart' - scsi: qla2xxx: Unregister chrdev if module initialization fails - net/sched: cbs: fix port_rate miscalculation - ACPI: button: reinitialize button state upon resume - [arm64,armhf] firmware: arm_scmi: fix of_node leak in scmi_mailbox_check - rxrpc: Fix detection of out of order acks - scsi: target/core: Fix a race condition in the LUN lookup code - brcmfmac: fix leak of mypkt on error return path - [arm64] net: hns3: fix for vport->bw_limit overflow problem - [x86] hwmon: (w83627hf) Use request_muxed_region for Super-IO accesses - perf/core: Fix the address filtering fix - [arm64,armhf] soc: amlogic: meson-gx-pwrc-vpu: Fix power on/off register bitmask - [x86] platform/x86: alienware-wmi: fix kfree on potentially uninitialized pointer - tipc: set sysctl_tipc_rmem and named_timeout right range - usb: typec: tcpm: Notify the tcpc to start connection-detection for SRPs - [arm64] net: hns3: fix loop condition of hns3_get_tx_timeo_queue_info() - 6lowpan: Off by one handling ->nexthdr - ALSA: usb-audio: Handle the error from snd_usb_mixer_apply_create_quirk() - afs: Fix AFS file locking to allow fine grained locks - afs: Further fix file locking - NFS: Don't interrupt file writeout due to fatal errors - scsi: qla2xxx: Fix a format specifier - scsi: qla2xxx: Fix error handling in qlt_alloc_qfull_cmd() - scsi: qla2xxx: Avoid that qlt_send_resp_ctio() corrupts memory - [ppc64el] KVM: PPC: Book3S HV: Fix lockdep warning when entering the guest - netfilter: nft_flow_offload: add entry to flowtable after confirmation - packet: in recvmsg msg_name return at least sizeof sockaddr_ll - ASoC: fix valid stream condition - [arm*] dwc2: gadget: Fix completed transfer size calculation in DDMA - IB/mlx5: Add missing XRC options to QP optional params mask - RDMA/rxe: Consider skb reserve space based on netdev of GID - [amd64] iommu/vt-d: Make kernel parameter igfx_off work with vIOMMU - [arm64] dmaengine: tegra210-adma: restore channel status - mmc: core: fix possible use after free of host - ath10k: Fix encoding for protected management frames - afs: Fix the afs.cell and afs.volume xattr handlers - l2tp: Fix possible NULL pointer dereference - [x86] platform/x86: alienware-wmi: printing the wrong error code - netfilter: ebtables: CONFIG_COMPAT: reject trailing data after last rule - [arm64,armhf] pwm: meson: Consider 128 a valid pre-divider - [arm64,armhf] pwm: meson: Don't disable PWM when setting duty repeatedly - nfp: bpf: fix static check error through tightening shift amount adjustment - netfilter: nf_tables: correct NFT_LOGLEVEL_MAX value - [arm*] thermal: cpu_cooling: Actually trace CPU load in thermal_power_cpu_get_power - EDAC/mc: Fix edac_mc_find() in case no device is found - afs: Fix key leak in afs_release() and afs_evict_inode() - afs: Don't invalidate callback if AFS_VNODE_DIR_VALID not set - afs: Fix lock-wait/callback-break double locking - afs: Fix double inc of vnode->cb_break - [armhf] dts: sun8i-h3: Fix wifi in Beelink X2 DT - [arm64] clk: meson: gxbb: no spread spectrum on mpll0 - [arm64] clk: meson: axg: spread spectrum is on mpll2 - [arm64] dmaengine: tegra210-adma: Fix crash during probe - [arm64] dts: meson: libretech-cc: set eMMC as removable - RDMA/qedr: Fix incorrect device rate. - [x86] crypto: ccp - fix AES CFB error exposed by new test vectors - [x86] crypto: ccp - Fix 3DES complaint from ccp-crypto module - iommu: Add missing new line for dma type - iommu: Use right function to get group for device - signal/cifs: Fix cifs_put_tcp_session to call send_sig instead of force_sig - inet: frags: call inet_frags_fini() after unregister_pernet_subsys() - [arm64] net: hns3: fix a memory leak issue for hclge_map_unmap_ring_to_vf_vector - [x86] netvsc: unshare skb in VF rx handler - net: core: support XDP generic on stacked devices. - RDMA/uverbs: check for allocation failure in uapi_add_elm() - net: don't clear sock->sk early to avoid trouble in strparser - [arm64] phy: qcom-qusb2: fix missing assignment of ret when calling clk_prepare_enable - [arm64] clk: sunxi-ng: sun50i-h6-r: Fix incorrect W1 clock gate register - media: vivid: fix incorrect assignment operation when setting video mode - [arm64] crypto: inside-secure - fix zeroing of the request in ahash_exit_inv - [arm64] crypto: inside-secure - fix queued len computation - mpls: fix warning with multi-label encap - [arm64] dts: meson-gxm-khadas-vim2: fix gpio-keys-polled node - [arm64] dts: meson-gxm-khadas-vim2: fix Bluetooth support - [amd64] iommu/vt-d: Duplicate iommu_resv_region objects per device list - qed: iWARP - Use READ_ONCE and smp_store_release to access ep->state - qed: iWARP - fix uninitialized callback - [powerpc*] cacheinfo: add cacheinfo_teardown, cacheinfo_rebuild - [powerpc*] pseries/mobility: rebuild cacheinfo hierarchy post-migration - bpf: fix the check that forwarding is enabled in bpf_ipv6_fib_lookup - [amd64] IB/hfi1: Handle port down properly in pio - [arm64] drm/msm/mdp5: Fix mdp5_cfg_init error return - net: netem: fix backlog accounting for corrupted GSO frames - net/udp_gso: Allow TX timestamp with UDP GSO - [s390x] net/af_iucv: build proper skbs for HiperTransport - [s390x] net/af_iucv: always register net_device notifier - [armhf] ASoC: ti: davinci-mcasp: Fix slot mask settings when using multiple AXRs - rtc: pcf8563: Fix interrupt trigger method - rtc: pcf8563: Clear event flags and disable interrupts before requesting irq - net/sched: cbs: Fix error path of cbs_module_init - [arm64] drm/msm/a3xx: remove TPL1 regs from snapshot - ip6_fib: Don't discard nodes with valid routing information in fib6_locate_1() - perf/ioctl: Add check for the sample_period value - [x86] dmaengine: hsu: Revert "set HSU_CH_MTSR to memory width" - tools: bpftool: use correct argument in cgroup errors - fork,memcg: alloc_thread_stack_node needs to set tsk->stack - bnxt_en: Fix ethtool selftest crash under error conditions. - bnxt_en: Suppress error messages when querying DSCP DCB capabilities. - [amd64] iommu: Make iommu_disable safer - [x86] mfd: intel-lpss: Release IDA resources - rxrpc: Fix uninitialized error code in rxrpc_send_data_packet() - xprtrdma: Fix use-after-free in rpcrdma_post_recvs - PM: ACPI/PCI: Resume all devices during hibernation - ACPI: PM: Simplify and fix PM domain hibernation callbacks - ACPI: PM: Introduce "poweroff" callbacks for ACPI PM domain and LPSS - devres: allow const resource arguments - [arm64] RDMA/hns: Fixs hw access invalid dma memory error - ceph: fix "ceph.dir.rctime" vxattr value - xdp: fix possible cq entry leak - scsi: libfc: fix null pointer dereference on a null lport - xfrm interface: ifname may be wrong in logs - [armhf] clk: sunxi-ng: v3s: add the missing PLL_DDR1 - PM: sleep: Fix possible overflow in pm_system_cancel_wakeup() - libertas_tf: Use correct channel range in lbtf_geo_init - qed: reduce maximum stack frame size - usb: host: xhci-hub: fix extra endianness conversion - [x86] crypto: ccp - Reduce maximum stack usage - tipc: reduce risk of wakeup queue starvation - net/mlx5: Fix mlx5_ifc_query_lag_out_bits - cifs: fix rmmod regression in cifs.ko caused by force_sig changes - net: fix bpf_xdp_adjust_head regression for generic-XDP - cxgb4: smt: Add lock for atomic_dec_and_test - ext4: set error return correctly when ext4_htree_store_dirent fails - [arm64] RDMA/hns: Bugfix for slab-out-of-bounds when unloading hip08 driver - [arm64] RDMA/hns: bugfix for slab-out-of-bounds when loading hip08 driver - net/rds: Add a few missing rds_stat_names entries - tools: bpftool: fix arguments for p_err() in do_event_pipe() - tools: bpftool: fix format strings and arguments for jsonw_printf() - bnxt_en: Fix handling FRAG_ERR when NVM_INSTALL_UPDATE cmd fails - signal: Allow cifs and drbd to receive their terminating signals - [ppc64el] 64s/radix: Fix memory hot-unplug page table split - [x86] dmaengine: dw: platform: Switch to acpi_dma_controller_register() - mac80211: minstrel_ht: fix per-group max throughput rate initialization - i40e: reduce stack usage in i40e_set_fc - [armhf] 8896/1: VDSO: Don't leak kernel addresses - [mips*] avoid explicit UB in assignment of mips_io_port_base - media: em28xx: Fix exception handling in em28xx_alloc_urbs() - ahci: Do not export local variable ahci_em_messages - rxrpc: Fix lack of conn cleanup when local endpoint is cleaned up - Partially revert "kfifo: fix kfifo_alloc() and kfifo_init()" - hwmon: (lm75) Fix write operations for negative temperatures - net/sched: cbs: Set default link speed to 10 Mbps in cbs_set_port_rate - power: supply: Init device wakeup after device_add() - [x86] perf: Fix the dependency of the x86 insn decoder selftest - irqdomain: Add the missing assignment of domain->fwnode for named fwnode - bcma: fix incorrect update of BCMA_CORE_PCI_MDIO_DATA - bcache: Fix an error code in bch_dump_read() - netfilter: ctnetlink: honor IPS_OFFLOAD flag - [arm64] wcn36xx: use dynamic allocation for large variables - xsk: avoid store-tearing when assigning queues - xsk: avoid store-tearing when assigning umem - led: triggers: Fix dereferencing of null pointer - [arm64] net: hns3: fix error VF index when setting VLAN offload - rtlwifi: Fix file release memory leak - f2fs: fix wrong error injection path in inc_valid_block_count() - f2fs: fix error path of f2fs_convert_inline_page() - [x86] scsi: fnic: fix msix interrupt allocation - Btrfs: fix hang when loading existing inode cache off disk - Btrfs: fix inode cache waiters hanging on failure to start caching thread - Btrfs: fix inode cache waiters hanging on path allocation failure - btrfs: use correct count in btrfs_file_write_iter() - ixgbe: sync the first fragment unconditionally - ath10k: adjust skb length in ath10k_sdio_mbox_rx_packet - RDMA/cma: Fix false error message - net/rds: Fix 'ib_evt_handler_call' element in 'rds_ib_stat_names' - bnxt_en: Increase timeout for HWRM_DBG_COREDUMP_XX commands - f2fs: fix to avoid accessing uninitialized field of inode page in is_alive() - [powerpc*] mm/mce: Keep irqs disabled during lockless page table walk - bpf: fix BTF limits - [amd64] iommu: Wait for completion of IOTLB flush in attach_device - [amd64] net: aquantia: Fix aq_vec_isr_legacy() return value - cxgb4: Signedness bug in init_one() - [arm64] net: hisilicon: Fix signedness bug in hix5hd2_dev_probe() - [arm64] net: netsec: Fix signedness bug in netsec_probe() - [arm64,armhf] net: stmmac: dwmac-meson8b: Fix signedness bug in probe - of: mdio: Fix a signedness bug in of_phy_get_and_connect() - [arm64] net: ethernet: stmmac: Fix signedness bug in ipq806x_gmac_of_parse() - net: sched: cbs: Avoid division by zero when calculating the port rate - nvme: retain split access workaround for capability reads - [arm64,armhf] net: stmmac: gmac4+: Not all Unicast addresses may be available - rxrpc: Fix trace-after-put looking at the put connection record - mac80211: accept deauth frames in IBSS mode - llc: fix another potential sk_buff leak in llc_ui_sendmsg() - llc: fix sk_buff refcounting in llc_conn_state_process() - ip6erspan: remove the incorrect mtu limit for ip6erspan - [arm64,armhf] net: stmmac: fix length of PTP clock's name string - [arm64,armhf] net: stmmac: fix disabling flexible PPS output - sctp: add chunks to sk_backlog when the newsk sk_socket is not set - [s390x] qeth: Fix error handling during VNICC initialization - [s390x] qeth: Fix initialization of vnicc cmd masks during set online - act_mirred: Fix mirred_init_module error handling - net: avoid possible false sharing in sk_leave_memory_pressure() - net: add {READ|WRITE}_ONCE() annotations on ->rskq_accept_head - tcp: annotate lockless access to tcp_memory_pressure - net/smc: receive returns without data - net/smc: receive pending data after RCV_SHUTDOWN - [arm64] drm/msm/dsi: Implement reset correctly - [armhf] dmaengine: imx-sdma: fix size check for sdma script_number - [arm64] hibernate: check pgd table allocation - net: netem: fix error path for corrupted GSO frames - net: netem: correct the parent's backlog when corrupted packet was dropped - xsk: Fix registration of Rx-only sockets - bpf, offload: Unlock on error in bpf_offload_dev_create() - afs: Fix missing timeout reset - [x86] hv_netvsc: Fix offset usage in netvsc_send_table() - [x86] hv_netvsc: Fix send_table offset in case of a host bug - afs: Fix large file support - [armhf] hwrng: omap3-rom - Fix missing clock by probing with device tree - [mips64el,mipsel] Loongson: Fix return value of loongson_hwmon_init - [x86] hv_netvsc: flag software created hash value - net: neigh: use long type to store jiffies delta - packet: fix data-race in fanout_flow_is_huge() - affs: fix a memory leak in affs_remount - afs: Remove set but not used variables 'before', 'after' - [armhf] dmaengine: ti: edma: fix missed failure handling - drm/radeon: fix bad DMA from INTERRUPT_CNTL2 - [arm64] dts: meson-gxm-khadas-vim2: fix uart_A bluetooth node https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.100 - can, slip: Protect tty->disc_data in write_wakeup and close with RCU - [x86] firestream: fix memory leaks - gtp: make sure only SOCK_DGRAM UDP sockets are accepted - ipv6: sr: remove SKB_GSO_IPXIP6 on End.D* actions - net: cxgb3_main: Add CAP_NET_ADMIN check to CHELSIO_GET_MEM - net: ip6_gre: fix moving ip6gre between namespaces - net, ip6_tunnel: fix namespaces move - net, ip_tunnel: fix namespaces move - net: rtnetlink: validate IFLA_MTU attribute in rtnl_create_link() - net_sched: fix datalen for ematch - net-sysfs: Fix reference count leak in rx|netdev_queue_add_kobject - net-sysfs: fix netdev_queue_add_kobject() breakage - net-sysfs: Call dev_hold always in netdev_queue_add_kobject - net-sysfs: Call dev_hold always in rx_queue_add_kobject - net-sysfs: Fix reference count leak - net: usb: lan78xx: Add .ndo_features_check - Revert "udp: do rmem bulk free even if the rx sk queue is empty" - tcp_bbr: improve arithmetic division in bbr_update_bw() - tcp: do not leave dangling pointers in tp->highest_sack - tun: add mutex_unlock() call and napi.skb clearing in tun_get_user() - afs: Fix characters allowed into cell names - hwmon: (adt7475) Make volt2reg return same reg as reg2volt input - hwmon: (core) Do not use device managed functions for memory allocations - PCI: Mark AMD Navi14 GPU rev 0xc5 ATS as broken - tracing: trigger: Replace unneeded RCU-list traversals - Input: keyspan-remote - fix control-message timeouts - [x86] Revert "Input: synaptics-rmi4 - don't increment rmiaddr for SMBus transfers" - [arm64,armhf] mmc: tegra: fix SDR50 tuning override - mmc: sdhci: fix minimum clock rate for v3 controller - [arm64] Documentation: Document arm64 kpti control - Input: sur40 - fix interface sanity checks - Input: gtco - fix endpoint sanity check - Input: aiptek - fix endpoint sanity check - Input: pegasus_notetaker - fix endpoint sanity check - [armhf] Input: sun4i-ts - add a check for devm_thermal_zone_of_sensor_register - netfilter: nft_osf: add missing check for DREG attribute - hwmon: (nct7802) Fix voltage limits to wrong registers - do_last(): fetch directory ->i_mode and ->i_uid before it's too late (CVE-2020-8428) - sd: Fix REQ_OP_ZONE_REPORT completion handling - [i386] crypto: geode-aes - switch to skcipher for cbc(aes) fallback - media: v4l2-ioctl.c: zero reserved fields for S/TRY_FMT - scsi: iscsi: Avoid potential deadlock in iscsi_if_rx func - netfilter: ipset: use bitmap infrastructure completely - netfilter: nf_tables: add __nft_chain_type_get() - mm/memory_hotplug: make remove_memory() take the device_hotplug_lock - mm, sparse: drop pgdat_resize_lock in sparse_add/remove_one_section() - mm, sparse: pass nid instead of pgdat to sparse_add_one_section() - drivers/base/memory.c: remove an unnecessary check on NR_MEM_SECTIONS - mm, memory_hotplug: add nid parameter to arch_remove_memory - mm/memory_hotplug: release memory resource after arch_remove_memory() - drivers/base/memory.c: clean up relics in function parameters - mm, memory_hotplug: update a comment in unregister_memory() - mm/memory_hotplug: make unregister_memory_section() never fail - mm/memory_hotplug: make __remove_section() never fail - [powerpc*] mm: Fix section mismatch warning - mm/memory_hotplug: make __remove_pages() and arch_remove_memory() never fail - [s390x] mm: implement arch_remove_memory() - mm/memory_hotplug: allow arch_remove_memory() without CONFIG_MEMORY_HOTREMOVE - drivers/base/memory: pass a block_id to init_memory_block() - mm/memory_hotplug: create memory block devices after arch_add_memory() - mm/memory_hotplug: remove memory block devices before arch_remove_memory() - mm/memory_hotplug: make unregister_memory_block_under_nodes() never fail - mm/memory_hotplug: remove "zone" parameter from sparse_remove_one_section - mm/hotplug: kill is_dev_zone() usage in __remove_pages() - drivers/base/node.c: simplify unregister_memory_block_under_nodes() - mm/memunmap: don't access uninitialized memmap in memunmap_pages() - mm/memory_hotplug: fix try_offline_node() - mm/memory_hotplug: shrink zones when offlining memory https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.101 - orinoco_usb: fix interface sanity check - rsi_91x_usb: fix interface sanity check - USB: serial: ir-usb: add missing endpoint sanity check - USB: serial: ir-usb: fix link-speed handling - USB: serial: ir-usb: fix IrLAP framing - [arm64,armhf] usb: dwc3: turn off VBUS when leaving host mode - staging: wlan-ng: ensure error return is actually returned - [x86] staging: vt6656: correct packet types for CTS protect, mode. - [x86] staging: vt6656: use NULLFUCTION stack on mac80211 - [x86] staging: vt6656: Fix false Tx excessive retries reporting. - [arm64,armel] serial: 8250_bcm2835aux: Fix line mismatch on driver unbind - component: do not dereference opaque pointer in debugfs - [x86] mei: me: add comet point (lake) H device ids - crypto: chelsio - fix writing tfm flags to wrong place - cifs: Fix memory allocation in __smb2_handle_cancelled_cmd() - ath9k: fix storage endpoint lookup - brcmfmac: fix interface sanity check - rtl8xxxu: fix interface sanity check - zd1211rw: fix storage endpoint lookup - net_sched: ematch: reject invalid TCF_EM_SIMPLE - net_sched: fix ops->bind_class() implementations - HID: multitouch: Add LG MELF0410 I2C touchscreen support - HID: Add quirk for Xin-Mo Dual Controller - HID: ite: Add USB id match for Acer SW5-012 keyboard dock - [x86] HID: Add quirk for incorrect input length on Lenovo Y720 - drivers/hid/hid-multitouch.c: fix a possible null pointer access. - [arm64] phy: qcom-qmp: Increase PHY ready timeout - drivers/net/b44: Change to non-atomic bit operations on pwol_mask - [i386] net: wan: sdla: Fix cast from pointer to integer of different size - [arm64] gpio: max77620: Add missing dependency on GPIOLIB_IRQCHIP - atm: eni: fix uninitialized variable warning - HID: steam: Fix input device disappearing - [x86] platform/x86: dell-laptop: disable kbd backlight on Inspiron 10xx - [amd64] PCI: Add DMA alias quirk for Intel VCA NTB - [amd64] iommu: Support multiple PCI DMA aliases in IRQ Remapping - usb-storage: Disable UAS on JMicron SATA enclosure - sched/fair: Add tmp_alone_branch assertion - sched/fair: Fix insertion in rq->leaf_cfs_rq_list - rsi: fix use-after-free on probe errors - rsi: fix memory leak on failed URB submission - rsi: fix non-atomic allocation in completion handler - crypto: af_alg - Use bh_lock_sock in sk_destruct - block: cleanup __blkdev_issue_discard() - block: fix 32 bit overflow in __blkdev_issue_discard() - [arm64] KVM: Write arch.mdcr_el2 changes since last vcpu_load on VHE https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.102 - vfs: fix do_last() regression - crypto: pcrypt - Fix user-after-free on module unload - perf c2c: Fix return type for histogram sorting comparision functions - PM / devfreq: Add new name attribute for sysfs - tools lib: Fix builds when glibc contains strlcpy() - ext4: validate the debug_want_extra_isize mount option at parse time - mm/mempolicy.c: fix out of bounds write in mpol_parse_str() - reiserfs: Fix memory leak of journal device string - media: digitv: don't continue if remote control state can't be read - media: af9005: uninitialized variable printked - media: vp7045: do not read uninitialized values if usb transfer fails - media: gspca: zero usb_buf - media: dvb-usb/dvb-usb-urb.c: initialize actlen to 0 - tomoyo: Use atomic_t for statistics counter - ttyprintk: fix a potential deadlock in interrupt context issue - Bluetooth: Fix race condition in hci_release_sock() - cgroup: Prevent double killing of css when enabling threaded cgroup - [armhf] dts: sun8i: a83t: Correct USB3503 GPIOs polarity - [armhf] dts: am57xx-beagle-x15/am57xx-idk: Remove "gpios" for endpoint dt nodes - [armhf] dts: beagle-x15-common: Model 5V0 regulator - [arm64] clk: sunxi-ng: h6-r: Fix AR100/R_APB2 parent order - mac80211: mesh: restrict airtime metric to peered established plinks - ASoC: rt5640: Fix NULL dereference on module unload - ixgbevf: Remove limit of 10 entries for unicast filter list - ixgbe: Fix calculation of queue with VFs and flow director on interface flap - igb: Fix SGMII SFP module discovery for 100FX/LX. - [x86] platform/x86: GPD pocket fan: Allow somewhat lower/higher temperature limits - qmi_wwan: Add support for Quectel RM500Q - wireless: fix enabling channel 12 for custom regulatory domain - cfg80211: Fix radar event during another phy CAC - mac80211: Fix TKIP replay protection immediately after key setup - netfilter: nft_tunnel: ERSPAN_VERSION must not be null - [armhf] net: dsa: bcm_sf2: Configure IMP port for 2Gb/sec - bnxt_en: Fix ipv6 RFS filter matching logic. - iwlwifi: Don't ignore the cap field upon mcc update - [armhf] dts: am335x-boneblack-common: fix memory size - vti[6]: fix packet tx through bpf_redirect() - xfrm interface: fix packet tx through bpf_redirect() - xfrm: interface: do not confirm neighbor when do pmtu update - scsi: fnic: do not queue commands during fwreset - [armhf] 8955/1: virt: Relax arch timer version check during early boot - [arm64] tee: optee: Fix compilation issue with nommu - airo: Fix possible info leak in AIROOLDIOCTL/SIOCDEVPRIVATE - airo: Add missing CAP_NET_ADMIN check in AIROOLDIOCTL/SIOCDEVPRIVATE - r8152: get default setting of WOL before initializing - qlcnic: Fix CPU soft lockup while collecting firmware dump - seq_tab_next() should increase position index - l2t_seq_next should increase position index - net: Fix skb->csum update in inet_proto_csum_replace16(). - btrfs: do not zero f_bavail if we have available space - perf report: Fix no libunwind compiled warning break s390 issue - mm/migrate.c: also overwrite error when it is bigger than zero https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.103 - [armhf] Revert "drm/sun4i: dsi: Change the start delay calculation" - ovl: fix lseek overflow on 32bit - kernel/module: Fix memleak in module_add_modinfo_attrs() - media: iguanair: fix endpoint sanity check - ocfs2: fix oops when writing cloned file - [x86] cpu: Update cached HLE state on write to TSX_CTRL_CPUID_CLEAR - udf: Allow writing to 'Rewritable' partitions - printk: fix exclusive_console replaying - iwlwifi: mvm: fix NVM check for 3168 devices - gtp: use __GFP_NOWARN to avoid memalloc warning - l2tp: Allow duplicate session creation with UDP - net_sched: fix an OOB access in cls_tcindex - [arm64,armhf] net: stmmac: Delete txtimer in suspend() - bnxt_en: Fix TC queue mapping. - tcp: clear tp->total_retrans in tcp_disconnect() - tcp: clear tp->delivered in tcp_disconnect() - tcp: clear tp->data_segs{in|out} in tcp_disconnect() - tcp: clear tp->segs_{in|out} in tcp_disconnect() - rxrpc: Fix use-after-free in rxrpc_put_local() - rxrpc: Fix insufficient receive notification generation - rxrpc: Fix missing active use pinning of rxrpc_local object - rxrpc: Fix NULL pointer deref due to call->conn being cleared on disconnect - media: uvcvideo: Avoid cyclic entity chains due to malformed USB descriptors - ipc/msg.c: consolidate all xxxctl_down() functions - tracing: Fix sched switch start/stop refcount racy updates - rcu: Avoid data-race in rcu_gp_fqs_check_wake() - brcmfmac: Fix memory leak in brcmf_usbdev_qinit - usb: gadget: f_ncm: Use atomic_t to track in-flight request - usb: gadget: f_ecm: Use atomic_t to track in-flight request - ALSA: usb-audio: Fix endianess in descriptor validation - ALSA: dummy: Fix PCM format loop in proc output - mm/memory_hotplug: fix remove_memory() lockdep splat - mm: move_pages: report the number of non-attempted pages - media/v4l2-core: set pages dirty upon releasing DMA buffers - media: v4l2-core: compat: ignore native command codes - media: v4l2-rect.h: fix v4l2_rect_map_inside() top/left adjustments - irqdomain: Fix a memory leak in irq_domain_push_irq() - [x86] platform/x86: intel_scu_ipc: Fix interrupt support - [x86] ALSA: hda: Add Clevo W65_67SB the power_save blacklist - [arm64] KVM: Correct PSTATE on exception entry - [arm64,armhf] KVM: Correct CPSR on exception entry - [arm64,armhf] KVM: Correct AArch32 SPSR on exception entry - [arm64] KVM: Only sign-extend MMIO up to register width - [s390x] mm: fix dynamic pagetable upgrade for hugetlbfs - [powerpc*] pseries: Advance pfn if section is not present in lmb_is_removable() - smb3: fix signing verification of large reads - [arm64,armhf] PCI: tegra: Fix return value check of pm_runtime_get_sync() - [arm64,armhf] mmc: spi: Toggle SPI polarity, do not hardcode it - [x86] ACPI: video: Do not export a non working backlight interface on MSI MS-7721 boards - [x86] ACPI / battery: Deal with design or full capacity being reported as -1 - [x86] ACPI / battery: Use design-cap for capacity calculations if full-cap is not available - [x86] ACPI / battery: Deal better with neither design nor full capacity not being reported - alarmtimer: Unregister wakeup source when module get fails - ubifs: Reject unsupported ioctl flags explicitly - ubifs: don't trigger assertion on invalid no-key filename - ubifs: Fix FS_IOC_SETFLAGS unexpectedly clearing encrypt flag - ubifs: Fix deadlock in concurrent bulk-read and writepage - [i386] crypto: geode-aes - convert to skcipher API and make thread-safe - [x86] hv_balloon: Balloon up according to request page number - mfd: axp20x: Mark AXP20X_VBUS_IPSOUT_MGMT as volatile - crypto: api - Check spawn->alg under lock in crypto_drop_spawn - scsi: qla2xxx: Fix mtcp dump collection failure - ovl: fix wrong WARN_ON() in ovl_cache_update_ino() - f2fs: choose hardlimit when softlimit is larger than hardlimit in f2fs_statfs_project() - f2fs: fix miscounted block limit in f2fs_statfs_project() - f2fs: code cleanup for f2fs_statfs_project() - PM: core: Fix handling of devices deleted during system-wide resume - dm zoned: support zone sizes smaller than 128MiB - dm space map common: fix to ensure new block isn't already in use - dm crypt: fix benbi IV constructor crash if used in authenticated mode - dm: fix potential for q->make_request_fn NULL pointer - dm writecache: fix incorrect flush sequence when doing SSD mode commit - padata: Remove broken queue flushing - tracing: Annotate ftrace_graph_hash pointer with __rcu - tracing: Annotate ftrace_graph_notrace_hash pointer with __rcu - ftrace: Add comment to why rcu_dereference_sched() is open coded - ftrace: Protect ftrace_graph_hash with ftrace_sync - [x86] crypto: ccp - set max RSA modulus size for v3 platform devices as well - crypto: pcrypt - Do not clear MAY_SLEEP flag in original request - crypto: api - Fix race condition in crypto_spawn_alg - scsi: qla2xxx: Fix unbound NVME response length - NFS: Fix memory leaks and corruption in readdir - NFS: Directory page cache pages need to be locked when read - jbd2_seq_info_next should increase position index - Btrfs: fix missing hole after hole punching and fsync when using NO_HOLES - btrfs: set trans->drity in btrfs_commit_transaction - Btrfs: fix race between adding and putting tree mod seq elements and nodes - [armhf] tegra: Enable PLLP bypass during Tegra124 LP1 - iwlwifi: don't throw error when trying to remove IGTK - mwifiex: fix unbalanced locking in mwifiex_process_country_ie() - sunrpc: expiry_time should be seconds not timeval - gfs2: move setting current->backing_dev_info - gfs2: fix O_SYNC write handling - drm/rect: Avoid division by zero - media: rc: ensure lirc is initialized before registering input device - xen/balloon: Support xend-based toolstack take two - watchdog: fix UAF in reboot notifier handling in watchdog core code - bcache: add readahead cache policy options via sysfs interface - eventfd: track eventfd_signal() recursion depth - aio: prevent potential eventfd recursion on poll - [x86] KVM: Refactor picdev_write() to prevent Spectre-v1/L1TF attacks - [x86] KVM: Refactor prefix decoding to prevent Spectre-v1/L1TF attacks - [x86] KVM: Protect pmu_intel.c from Spectre-v1/L1TF attacks - [x86] KVM: Protect DR-based index computations from Spectre-v1/L1TF attacks - [x86] KVM: Protect kvm_lapic_reg_write() from Spectre-v1/L1TF attacks - [x86] KVM: Protect kvm_hv_msr_[get|set]_crash_data() from Spectre-v1/L1TF attacks - [x86] KVM: Protect ioapic_write_indirect() from Spectre-v1/L1TF attacks - [x86] KVM: Protect MSR-based index computations in pmu.h from Spectre-v1/L1TF attacks - [x86] KVM: Protect ioapic_read_indirect() from Spectre-v1/L1TF attacks - [x86] KVM: Protect MSR-based index computations from Spectre-v1/L1TF attacks in x86.c - [x86] KVM: Protect x86_decode_insn from Spectre-v1/L1TF attacks - [x86] KVM: Protect MSR-based index computations in fixed_msr_to_seg_unit() from Spectre-v1/L1TF attacks - [x86] KVM: Fix potential put_fpu() w/o load_fpu() on MPX platform - [ppc64el] KVM: Book3S HV: Uninit vCPU if vcore creation fails - [ppc64el] KVM: Book3S PR: Free shared page if mmu initialization fails - [x86] kvm: Be careful not to clear KVM_VCPU_FLUSH_TLB bit (CVE-2019-3016) - [x86] KVM: Don't let userspace set host-reserved cr4 bits - [x86] KVM: Free wbinvd_dirty_mask if vCPU creation fails - [s390x] KVM: do not clobber registers during guest reset/store status - [arm64,armhf] clk: tegra: Mark fuse clock as critical - percpu: Separate decrypted varaibles anytime encryption can be enabled - scsi: qla2xxx: Fix the endianness of the qla82xx_get_fw_size() return type - scsi: csiostor: Adjust indentation in csio_device_reset - scsi: qla4xxx: Adjust indentation in qla4xxx_mem_free - scsi: ufs: Recheck bkops level if bkops is disabled - [arm64] phy: qualcomm: Adjust indentation in read_poll_timeout - ext2: Adjust indentation in ext2_fill_super - [arm64] drm: msm: mdp4: Adjust indentation in mdp4_dsi_encoder_enable - IB/mlx5: Fix outstanding_pi index for GSI qps - IB/core: Fix ODP get user pages flow - nfsd: fix delay timer on 32-bit architectures - nfsd: fix jiffies/time_t mixup in LRU list - nfsd: Return the correct number of bytes written to the file - ubi: fastmap: Fix inverted logic in seen selfcheck - ubi: Fix an error pointer dereference in error handling code - bonding/alb: properly access headers in bond_alb_xmit() - [armhf] net: dsa: bcm_sf2: Only 7278 supports 2Gb/sec IMP port - [arm64,armhf] net: mvneta: move rx_dropped and rx_errors in per-cpu stats - net_sched: fix a resource leak in tcindex_set_parms() - net/mlx5: IPsec, Fix esp modify function attribute - net/mlx5: IPsec, fix memory leak at mlx5_fpga_ipsec_delete_sa_ctx - [arm64] net: macb: Remove unnecessary alignment check for TSO - [arm64] net: macb: Limit maximum GEM TX length in TSO - [armhf] net: dsa: b53: Always use dev->vlan_enabled in b53_configure_vlan() - ext4: fix deadlock allocating crypto bounce page from mempool - btrfs: use bool argument in free_root_pointers() - btrfs: free block groups after free'ing fs trees - btrfs: flush write bio if we loop in extent_write_cache_pages - [x86] KVM: mmu: Apply max PA check for MMIO sptes to 32-bit KVM - [x86] KVM: Use gpa_t for cr2/gpa to fix TDP support on 32-bit KVM - [x86] KVM: nVMX: vmread should not set rflags to specify success in case of #PF - KVM: Use vcpu-specific gva->hva translation when querying host page size - KVM: Play nice with read-only memslots when querying host page size - mm: zero remaining unavailable struct pages - mm: return zero_resv_unavail optimization - mm/page_alloc.c: fix uninitialized memmaps on a partially populated last section - cifs: fail i/o on soft mounts if sessionsetup errors out - [x86] apic/msi: Plug non-maskable MSI affinity race - clocksource: Prevent double add_timer_on() for watchdog_timer - perf/core: Fix mlock accounting in perf_mmap() - rxrpc: Fix service call disconnection https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.104 - ASoC: pcm: update FE/BE trigger order based on the command - [x86] hv_sock: Remove the accept port restriction - IB/mlx4: Fix memory leak in add_gid error flow - RDMA/netlink: Do not always generate an ACK for some netlink operations - RDMA/core: Fix locking in ib_uverbs_event_read - scsi: ufs: Fix ufshcd_probe_hba() reture value in case ufshcd_scsi_add_wlus() fails - PCI/IOV: Fix memory leak in pci_iov_add_virtfn() - ath10k: pci: Only dump ATH10K_MEM_REGION_TYPE_IOREG when safe - PCI: Don't disable bridge BARs when assigning bus resources - nfs: NFS_SWAP should depend on SWAP - NFS: Revalidate the file size on a fatal write error - NFS/pnfs: Fix pnfs_generic_prepare_to_resend_writes() - NFSv4: try lease recovery on NFS4ERR_EXPIRED - [arm64] serial: uartps: Add a timeout to the tx empty wait - [arm64] gpio: zynq: Report gpio direction at boot - spi: spi-mem: Add extra sanity checks on the op param - spi: spi-mem: Fix inverted logic in op sanity check - rtc: cmos: Stop using shared IRQ - [x86] platform/x86: intel_mid_powerbtn: Take a copy of ddata - [powerpc*] pseries/vio: Fix iommu_table use-after-free refcount warning - [powerpc*] pseries: Allow not having ibm, hypertas-functions::hcall-multi-tce for DDW - [arm64] iommu/arm-smmu-v3: Populate VMID field for CMDQ_OP_TLBI_NH_VA - [arm64,armhf] KVM: vgic-its: Fix restoration of unmapped collections - [armel,armhf] 8949/1: mm: mark free_memmap as __init - [arm64] cpufeature: Fix the type of no FP/SIMD capability - [arm64] ptrace: nofpsimd: Fail FP/SIMD regset operations - [arm64,armhf] KVM: Fix young bit from mmu notifier - [arm64,armhf] KVM: Fix DFSR setting for non-LPAE aarch32 guests - [arm64,armhf] KVM: Make inject_abt32() inject an external abort instead - [arm64] KVM: pmu: Don't increment SW_INCR if PMCR.E is unset - mtd: onenand_base: Adjust indentation in onenand_read_ops_nolock - mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() - mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() - libertas: don't exit from lbs_ibss_join_existing() with RCU read lock held - libertas: make lbs_ibss_join_existing() return error code on rates overflow - scsi: megaraid_sas: Do not initiate OCR if controller is not in ready state - [x86] stackframe: Move ENCODE_FRAME_POINTER to asm/frame.h - [x86] x86/stackframe, x86/ftrace: Add pt_regs frame annotations - [arm64] serial: uartps: Move the spinlock after the read of the tx empty - padata: fix null pointer deref of pd->pinst https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.105 - Input: synaptics - switch T470s to RMI4 by default - Input: synaptics - enable SMBus on ThinkPad L470 - Input: synaptics - remove the LEN0049 dmi id from topbuttonpad list - ALSA: usb-audio: Fix UAC2/3 effect unit parsing - ALSA: hda/realtek - Fix silent output on MSI-GL73 - ALSA: usb-audio: Apply sample rate quirk for Audioengine D1 - [arm64] cpufeature: Set the FP/SIMD compat HWCAP bits properly - [arm64] nofpsmid: Handle TIF_FOREIGN_FPSTATE flag cleanly - ALSA: usb-audio: sound: usb: usb true/false for bool return type - ALSA: usb-audio: Add clock validity quirk for Denon MC7000/MCX8000 - ext4: don't assume that mmp_nodename/bdevname have NUL - ext4: fix support for inode sizes > 1024 bytes - ext4: fix checksum errors with indexed dirs - ext4: add cond_resched() to ext4_protect_reserved_inode (CVE-2020-8992) - ext4: improve explanation of a mount failure caused by a misconfigured kernel - Btrfs: fix race between using extent maps and merging them - btrfs: ref-verify: fix memory leaks - btrfs: print message when tree-log replay starts - btrfs: log message when rw remount is attempted with unclean tree-log - [arm64] ssbs: Fix context-switch when SSBS is present on all CPUs - [x86] perf/x86/amd: Add missing L2 misses event spec to AMD Family 17h's event map - nvme: fix the parameter order for nvme_get_log in nvme_get_fw_slot_info - [amd64] IB/hfi1: Acquire lock to release TID entries when user file is closed - [amd64] IB/hfi1: Close window for pq and request coliding - IB/rdmavt: Reset all QPs when the device is shut down - RDMA/core: Fix invalid memory access in spec_filter_size - [amd64] RDMA/hfi1: Fix memory leak in _dev_comp_vect_mappings_create - RDMA/rxe: Fix soft lockup problem due to using tasklets in softirq - RDMA/core: Fix protection fault in get_pkey_idx_qp_list - [s390x] time: Fix clk type in get_tod_clock - [x86] perf/x86/intel: Fix inaccurate period in context switch for auto- reload - NFSv4.1 make cachethis=no for writes - jbd2: move the clearing of b_modified flag to the journal_unmap_buffer() - jbd2: do not clear the BH_Mapped flag when forgetting a metadata buffer - [x86] KVM: mmu: Fix struct guest_walker arrays for 5-level paging https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.106 - core: Don't skip generic XDP program execution for cloned SKBs - enic: prevent waking up stopped tx queues over watchdog reset - net/smc: fix leak of kernel memory to user space - net/sched: matchall: add missing validation of TCA_MATCHALL_FLAGS - net/sched: flower: add missing validation of TCA_FLOWER_FLAGS - [x86] KVM: nVMX: Use correct root level for nested EPT shadow page tables - [x86] drm/gma500: Fixup fbdev stolen size usage evaluation - cpu/hotplug, stop_machine: Fix stop_machine vs hotplug order - brcmfmac: Fix use after free in brcmf_sdio_readframes() - ext4: fix ext4_dax_read/write inode locking sequence for IOCB_NOWAIT - ALSA: ctl: allow TLV read operation for callback type of element in locked case - [powerpc*] powernv/iov: Ensure the pdn for VFs always contains a valid PE number - [amd64] iommu/vt-d: Fix off-by-one in PASID allocation - [x86] pinctrl: baytrail: Do not clear IRQ flags on direct-irq enabled pins - [x86] efi: Map the entire EFI vendor string before copying it - [mips64el,mipsel] Loongson: Fix potential NULL dereference in loongson3_platform_init() - [arm*] usb: dwc2: Fix IN FIFO allocation - [armel,armhf] clocksource/drivers/bcm2835_timer: Fix memory leak of timer - jbd2: clear JBD2_ABORT flag before journal_reset to update log tail info when load journal - [armhf] pwm: omap-dmtimer: Simplify error handling - [s390x] pci: Fix possible deadlock in recover_store() - [powerpc*] iov: Move VF pdev fixup into pcibios_fixup_iov() - tracing: Fix tracing_stat return values in error handling paths - tracing: Fix very unlikely race of registering two stat tracers - ext4, jbd2: ensure panic when aborting with zero errno - ath10k: Correct the DMA direction for management tx buffers - nbd: add a flush_workqueue in nbd_start_device - [s390x] KVM: ENOTSUPP -> EOPNOTSUPP fixups - [arm64] clk: qcom: rcg2: Don't crash if our parent can't be found; return an error - drm/amdgpu: remove 4 set but not used variable in amdgpu_atombios_get_connector_info_from_object_table - [arm64,armhf] regulator: rk808: Lower log level on optional GPIOs being not available - NFC: port100: Convert cpu_to_le16(le16_to_cpu(E1) + E2) to use le16_add_cpu(). - selinux: fall back to ref-walk if audit is required - selinux: ensure we cleanup the internal AVC counters on error in avc_insert() - media: cx23885: Add support for AVerMedia CE310B - PCI: Add generic quirk for increasing D3hot delay - PCI: Increase D3 delay for AMD Ryzen5/7 XHCI controllers - media: v4l2-device.h: Explicitly compare grp{id,mask} to zero in v4l2_device macros - reiserfs: Fix spurious unlock in reiserfs_fill_super() error handling - fore200e: Fix incorrect checks of NULL pointer dereference - netfilter: nft_tunnel: add the missing ERSPAN_VERSION nla_policy - ALSA: usx2y: Adjust indentation in snd_usX2Y_hwdep_dsp_status - orinoco: avoid assertion in case of NULL pointer - ACPICA: Disassembler: create buffer fields in ACPI_PARSE_LOAD_PASS1 - scsi: ufs: Complete pending requests in host reset and restore path - scsi: aic7xxx: Adjust indentation in ahc_find_syncrate - selinux: ensure we cleanup the internal AVC counters on error in avc_update() - dmaengine: Store module owner in dma_device struct - [arm64] clk: sunxi-ng: add mux and pll notifiers for A64 CPU clock - tools lib api fs: Fix gcc9 stringop-truncation compilation error - [x86] ACPI: button: Add DMI quirk for Razer Blade Stealth 13 late 2019 lid switch - mlx5: work around high stack usage with gcc - drm: remove the newline for CRC source name. - usbip: Fix unsafe unaligned pointer usage - udf: Fix free space reporting for metadata and virtual partitions - staging: rtl8188: avoid excessive stack usage - [amd64] IB/hfi1: Add software counter for ctxt0 seq drop - [armhf] soc/tegra: fuse: Correct straps' address for older Tegra124 device trees - [x86] efi: Don't panic or BUG() on non-critical error conditions - rcu: Use WRITE_ONCE() for assignments to ->pprev for hlist_nulls - [x86] nmi: Remove irq_work from the long duration NMI handler - driver core: platform: Prevent resouce overflow from causing infinite loops - driver core: Print device when resources present in really_probe() - bpf: Return -EBADRQC for invalid map type in __bpf_tx_xdp_map - drm/nouveau/secboot/gm20b: initialize pointer in gm20b_secboot_new() - drm/nouveau/gr/gk20a,gm200-: add terminators to method lists read from fw - drm/nouveau: Fix copy-paste error in nouveau_fence_wait_uevent_handler - drm/nouveau/fault/gv100-: fix memory leak on module unload - [x86] drm/vmwgfx: prevent memory leak in vmw_cmdbuf_res_add - [armhf] usb: musb: omap2430: Get rid of musb .set_vbus for omap2430 glue - [arm64] iommu/arm-smmu-v3: Use WRITE_ONCE() when changing validity of an STE - f2fs: set I_LINKABLE early to avoid wrong access by vfs - f2fs: free sysfs kobject - scsi: iscsi: Don't destroy session if there are outstanding connections - watchdog/softlockup: Enforce that timestamp is valid on boot - f2fs: fix memleak of kobject - [x86] mm: Fix NX bit clearing issue in kernel_map_pages_in_pgd - [armhf] pwm: omap-dmtimer: Remove PWM chip in .remove before making it unfunctional - btrfs: fix possible NULL-pointer dereference in integrity checks - btrfs: safely advance counter when looking up bio csums - btrfs: device stats, log when stats are zeroed - module: avoid setting info->name early in case we can fall back to info->mod->name - ALSA: hda/hdmi - add retry logic to parse_intel_hdmi() - driver core: platform: fix u32 greater or equal to zero comparison - ALSA: hda - Add docking station support for Lenovo Thinkpad T420s - drm/nouveau/mmu: fix comptag memory leak - [powerpc*] sriov: Remove VF eeh_dev state when disabling SR-IOV - bcache: cached_dev_free needs to put the sb page - [amd64] iommu/vt-d: Remove unnecessary WARN_ON_ONCE() - jbd2: switch to use jbd2_journal_abort() when failed to submit the commit record - jbd2: make sure ESHUTDOWN to be recorded in the journal superblock - iwlegacy: ensure loop counter addr does not wrap and cause an infinite loop - cifs: fix NULL dereference in match_prepath - bpf: map_seq_next should always increase position index - ceph: check availability of mds cluster on mount after wait timeout - [arm64,armhf] irqchip/gic-v3: Only provision redistributors that are enabled in ACPI - drm/nouveau/disp/nv50-: prevent oops when no channel method map provided - ftrace: fpid_next() should increase position index - trigger_next should increase position index - radeon: insert 10ms sleep in dce5_crtc_load_lut - ocfs2: fix a NULL pointer dereference when call ocfs2_update_inode_fsync_trans() - reiserfs: prevent NULL pointer dereference in reiserfs_insert_item() - bcache: explicity type cast in bset_bkey_last() - [arm64,armhf] irqchip/gic-v3-its: Reference to its_invall_cmd descriptor when building INVALL - iwlwifi: mvm: Fix thermal zone registration - brd: check and limit max_part par - NFS: Fix memory leaks - help_next should increase position index - cifs: log warning message (once) if out of disk space - virtio_balloon: prevent pfn array overflow https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.107 - [arm64] iommu/qcom: Fix bogus detach logic - ALSA: hda: Use scnprintf() for printing texts for sysfs/procfs - [x86] ALSA: hda/realtek - Apply quirk for MSI GP63, too - [x86] ALSA: hda/realtek - Apply quirk for yet another MSI laptop - [armhf] ASoC: sun8i-codec: Fix setting DAI data format - ecryptfs: fix a memory leak bug in parse_tag_1_packet() - ecryptfs: fix a memory leak bug in ecryptfs_init_messaging() - [x86] thunderbolt: Prevent crash if non-active NVMem file is read - USB: misc: iowarrior: add support for 2 OEMed devices - USB: misc: iowarrior: add support for the 28 and 28L devices - USB: misc: iowarrior: add support for the 100 device - floppy: check FDC index for errors before assigning it (CVE-2020-9383) - vt: fix scrollback flushing on background consoles - vt: selection, handle pending signals in paste_selection - vt: vt_ioctl: fix race in VT_RESIZEX - [arm*] staging: android: ashmem: Disallow ashmem memory from being remapped (CVE-2020-0009) - [x86] staging: vt6656: fix sign of rx_dbm to bb_pre_ed_rssi. - xhci: Force Maximum Packet size for Full-speed bulk devices to valid range. - xhci: fix runtime pm enabling for quirky Intel hosts - xhci: Fix memory leak when caching protocol extended capability PSI tables - take 2 - usb: host: xhci: update event ring dequeue pointer on purpose - USB: core: add endpoint-blacklist quirk - USB: quirks: blacklist duplicate ep on Sound Devices USBPre2 - usb: uas: fix a plug & unplug racing - USB: Fix novation SourceControl XL after suspend - USB: hub: Don't record a connect-change event during reset-resume - USB: hub: Fix the broken detection of USB3 device in SMSC hub - [arm*] usb: dwc2: Fix SET/CLEAR_FEATURE and GET_STATUS flows - [arm64,armhf] usb: dwc3: gadget: Check for IOC/LST bit in TRB->ctrl fields - staging: rtl8188eu: Fix potential security hole - staging: rtl8188eu: Fix potential overuse of kernel memory - staging: rtl8723bs: Fix potential security hole - staging: rtl8723bs: Fix potential overuse of kernel memory - [powerpc*] tm: Fix clearing MSR[TS] in current when reclaiming on signal delivery - jbd2: fix ocfs2 corrupt when clearing block group bits - [x86] mce/amd: Publish the bank pointer only after setup has succeeded - [x86] mce/amd: Fix kobject lifetime - [x86] cpu/amd: Enable the fixed Instructions Retired counter IRPERF - serial: 8250: Check UPF_IRQ_SHARED in advance - [armhf] tty: serial: imx: setup the correct sg entry for tx dma - serdev: ttyport: restore client ops on deregistration - Revert "ipc,sem: remove uneeded sem_undo_list lock usage in exit_sem()" - mm/memcontrol.c: lost css_put in memcg_expand_shrinker_maps() - nvme-multipath: Fix memory leak with ana_log_buf - genirq/irqdomain: Make sure all irq domain flags are distinct - mm/vmscan.c: don't round up scan size for online memory cgroup - drm/amdgpu/soc15: fix xclk for raven - [x86] xhci: apply XHCI_PME_STUCK_QUIRK to Intel Comet Lake platforms - [x86] KVM: nVMX: Don't emulate instructions in guest mode (CVE-2020-2732) - [x86] KVM: don't notify userspace IOAPIC on edge-triggered interrupt EOI - drm/nouveau/kms/gv100-: Re-set LUT after clearing for modesets - ext4: fix a data race in EXT4_I(inode)->i_disksize - ext4: add cond_resched() to __ext4_find_entry() - ext4: fix potential race between online resizing and write operations - ext4: fix potential race between s_group_info online resizing and access - ext4: fix potential race between s_flex_groups online resizing and access - ext4: fix mount failure with quota configured as module - ext4: rename s_journal_flag_rwsem to s_writepages_rwsem - ext4: fix race between writepages and enabling EXT4_EXTENTS_FL - [x86] KVM: nVMX: Refactor IO bitmap checks into helper function - [x86] KVM: nVMX: Check IO instruction VM-exit conditions - [x86] KVM: nVMX: handle nested posted interrupts when apicv is disabled for L1 - [x86] KVM: apic: avoid calculating pending eoi from an uninitialized val - btrfs: fix bytes_may_use underflow in prealloc error condtition - btrfs: reset fs_root to NULL on error in open_ctree - btrfs: do not check delayed items are empty for single transaction cleanup - Btrfs: fix btrfs_wait_ordered_range() so that it waits for all ordered extents - scsi: Revert "target: iscsi: Wait for all commands to finish before freeing a session" - usb: gadget: composite: Fix bMaxPower for SuperSpeedPlus - [arm*] usb: dwc2: Fix in ISOC request length checking - staging: rtl8723bs: fix copy of overlapping memory - ecryptfs: replace BUG_ON with error handling code - genirq/proc: Reject invalid affinity masks (again) - bpf, offload: Replace bitwise AND by logical AND in bpf_prog_offload_info_fill - ALSA: seq: Avoid concurrent access to queue flags - ALSA: seq: Fix concurrent access to queue current tick/time - netfilter: xt_hashlimit: limit the max size of hashtable - rxrpc: Fix call RCU cleanup using non-bh-safe locks - ata: ahci: Add shutdown to freeze hardware resources of ahci - xen: Enable interrupts when calling _cond_resched() - [s390x] mm: Explicitly compare PAGE_DEFAULT_KEY against zero in storage_key_init_range https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.108 - [arm64,armhf] irqchip/gic-v3-its: Fix misuse of GENMASK macro - iwlwifi: pcie: fix rb_allocator workqueue allocation - ipmi:ssif: Handle a possible NULL pointer reference - [arm64] drm/msm: Set dma maximum segment size for mdss - dax: pass NOWAIT flag to iomap_apply - mac80211: consider more elements in parsing CRC - cfg80211: check wiphy driver existence for drvinfo report - [s390x] zcrypt: fix card and queue total counter wrap - qmi_wwan: re-add DW5821e pre-production variant - qmi_wwan: unconditionally reject 2 ep interfaces - [arm64] soc/tegra: fuse: Fix build with Tegra194 configuration - net: ena: fix potential crash when rxfh key is NULL - net: ena: fix uses of round_jiffies() - net: ena: add missing ethtool TX timestamping indication - net: ena: fix incorrect default RSS key - net: ena: rss: fix failure to get indirection table - net: ena: rss: store hash function as values and not bits - net: ena: fix incorrectly saving queue numbers when setting RSS indirection table - net: ena: ethtool: use correct value for crc32 hash - net: ena: ena-com.c: prevent NULL pointer dereference - cifs: Fix mode output in debugging statements - cfg80211: add missing policy for NL80211_ATTR_STATUS_CODE - sysrq: Restore original console_loglevel when sysrq disabled - sysrq: Remove duplicated sysrq message - net: fib_rules: Correctly set table field when table number exceeds 8 bits - net: sched: correct flower port blocking - sctp: move the format error check out of __sctp_sf_do_9_1_abort - ipv6: Fix route replacement with dev-only route - ipv6: Fix nlmsg_flags when splitting a multipath route - qede: Fix race between rdma destroy workqueue and link change event - ext4: potential crash on allocation error in ext4_alloc_flex_bg_array() - audit: fix error handling in audit_data_to_entry() - ACPICA: Introduce ACPI_ACCESS_BYTE_WIDTH() macro - [arm64,x86] ACPI: watchdog: Fix gas->access_width usage - [x86] KVM: VMX: check descriptor table exits on instruction emulation - HID: ite: Only bind to keyboard USB interface on Acer SW5-012 keyboard dock - HID: core: fix off-by-one memset in hid_report_raw_event() - HID: core: increase HID report buffer size to 8KiB - tracing: Disable trace_printk() on post poned tests - Revert "PM / devfreq: Modify the device name as devfreq(X) for sysfs" - amdgpu/gmc_v9: save/restore sdpif regs during S3 - vhost: Check docket sk_family instead of call getname (CVE-2020-10942) - HID: alps: Fix an error handling path in 'alps_input_configured()' - HID: hiddev: Fix race in in hiddev_disconnect() - [x86] hv_netvsc: Fix unwanted wakeup in netvsc_attach() - [s390x] qeth: vnicc Fix EOPNOTSUPP precedence - net: netlink: cap max groups which will be considered in netlink_bind() - [amd64] net: atlantic: fix use after free kasan warn - [amd64] net: atlantic: fix potential error handling - net/smc: no peer ID in CLC decline for SMCD - net: ena: make ena rxfh support ETH_RSS_HASH_NO_CHANGE - namei: only return -ECHILD from follow_dotdot_rcu() - mwifiex: drop most magic numbers from mwifiex_process_tdls_action_frame() - [x86] KVM: SVM: Override default MMIO mask if memory encryption is enabled - KVM: Check for a bad hva before dropping into the ghc slow path - sched/fair: Optimize update_blocked_averages() - sched/fair: Fix O(nr_cgroups) in the load balancing path - perf stat: Use perf_evsel__is_clocki() for clock events - perf stat: Fix shadow stats for clock events - [arm64] drivers: net: xgene: Fix the order of the arguments of 'alloc_etherdev_mqs()' - kprobes: Set unoptimized flag after unoptimizing code - [armhf] pwm: omap-dmtimer: put_device() after of_find_device_by_node() - perf hists browser: Restore ESC as "Zoom out" of DSO/thread/etc - [x86] KVM: Remove spurious kvm_mmu_unload() from vcpu destruction path - [x86] KVM: Remove spurious clearing of async #PF MSR - netfilter: nft_tunnel: no need to call htons() when dumping ports - mm/huge_memory.c: use head to check huge zero page - mm, thp: fix defrag setting if newline is not used - audit: always check the netlink payload length in audit_receive_msg() https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.109 - [x86] EDAC/amd64: Set grain per DIMM - ALSA: hda/realtek - Fix a regression for mute led on Lenovo Carbon X1 - [armhf] net: dsa: bcm_sf2: Forcibly configure IMP port for 1Gb/sec - kprobes: Fix optimize_kprobe()/unoptimize_kprobe() cancellation logic - [x86] ALSA: hda: do not override bus codec_mask in link_get() - usb: gadget: composite: Support more than 500mA MaxPower - usb: gadget: ffs: ffs_aio_cancel(): Save/restore IRQ flags - usb: gadget: serial: fix Tx stall after buffer overflow - [arm64] drm/msm/mdp5: rate limit pp done timeout warnings - [arm64] drm: msm: Fix return type of dsi_mgr_connector_mode_valid for kCFI - scsi: megaraid_sas: silence a warning - [arm64] drm/msm/dsi: save pll state before dsi host is powered off - [arm64] drm/msm/dsi/pll: call vco set rate explicitly - [armhf] net: dsa: b53: Ensure the default VID is untagged - [s390x] cio: cio_ignore_proc_seq_next should increase position index - [s390x] qdio: fill SL with absolute addresses - ice: Don't tell the OS that link is going down - [arm64] net: thunderx: workaround BGX TX Underflow issue - ALSA: hda/realtek - Add Headset Mic supported - ALSA: hda/realtek - Fix silent output on Gigabyte X570 Aorus Master - cifs: don't leak -EAGAIN for stat() during reconnect - usb: storage: Add quirk for Samsung Fit flash - usb: quirks: add NO_LPM quirk for Logitech Screen Share - [arm64,armhf] usb: dwc3: gadget: Update chain bit correctly when using sg list - usb: core: hub: fix unhandled return by employing a void function - usb: core: hub: do error out if usb_autopm_get_interface() fails - usb: core: port: do error out if usb_autopm_get_interface() fails - vgacon: Fix a UAF in vgacon_invert_region (CVE-2020-8647, CVE-2020-8649) - mm, numa: fix bad pmd by atomically check for pmd_trans_huge when marking page tables prot_numa - mm: fix possible PMD dirty bit lost in set_pmd_migration_entry() - fat: fix uninit-memory access for partial initialized inode - [arm64] tty:serial:mvebu-uart:fix a wrong return - serial: 8250_exar: add support for ACCES cards - vt: selection, close sel_buffer race (CVE-2020-8648) - vt: selection, push console lock down - vt: selection, push sel_lock up - [arm64,armhf] media: v4l2-mem2mem.c: fix broken links - [x86] pkeys: Manually set X86_FEATURE_OSPKE to preserve existing changes - [arm64,armhf] dmaengine: tegra-apb: Fix use-after-free - [arm64,armhf] dmaengine: tegra-apb: Prevent race conditions of tasklet vs free list - dm cache: fix a crash due to incorrect work item cancelling - dm: report suspended device during destroy - dm writecache: verify watermark during resume - [x86] ASoC: topology: Fix memleak in soc_tplg_link_elems_load() - [x86] ASoC: topology: Fix memleak in soc_tplg_manifest_load() - [x86] ASoC: intel: skl: Fix pin debug prints - [x86] ASoC: intel: skl: Fix possible buffer overflow in debug outputs - [armhf] dmaengine: imx-sdma: remove dma_slave_config direction usage and leave sdma_event_enable() - ASoC: pcm: Fix possible buffer overflow in dpcm state sysfs output - ASoC: dapm: Correct DAPM handling of active widgets during shutdown - [armhf] drm/sun4i: Fix DE2 VI layer format support - [armhf] drm/sun4i: de2/de3: Remove unsupported VI layer formats - RDMA/iwcm: Fix iwcm work deallocation - RMDA/cm: Fix missing ib_cm_destroy_id() in ib_cm_insert_listen() - [amd64] IB/hfi1, qib: Ensure RCU is locked when accessing list - [armhf] ARM: imx: build v7_cpu_resume() unconditionally - hwmon: (adt7462) Fix an error return in ADT7462_REG_VOLT() - [powerpc*] fix hardware PMU exception bug on PowerVM compatibility mode systems - [amd64] efi/x86: Align GUIDs to their size in the mixed mode runtime wrapper - [amd64] efi/x86: Handle by-ref arguments covering multiple pages in mixed mode - dm integrity: fix a deadlock due to offloading to an incorrect workqueue - scsi: pm80xx: Fixed kernel panic during error recovery for SATA drive https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.110 - [x86] KVM: SVM: fix up incorrect backport https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.111 - phy: Revert toggling reset changes. - net: phy: Avoid multiple suspends - cgroup, netclassid: periodically release file_lock on classid updating - gre: fix uninit-value in __iptunnel_pull_header - inet_diag: return classid for all socket types - ipv6/addrconf: call ipv6_mc_up() for non-Ethernet interface - ipvlan: add cond_resched_rcu() while processing muticast backlog - ipvlan: do not add hardware address of master to its unicast filter list - ipvlan: do not use cond_resched_rcu() in ipvlan_process_multicast() - ipvlan: don't deref eth hdr before checking it's set - net/ipv6: use configured metric when add peer route - netlink: Use netlink header as base to calculate bad attribute offset - net: macsec: update SCI upon MAC address change. - net: nfc: fix bounds checking bugs on "pipe" - net/packet: tpacket_rcv: do not increment ring index on drop - [arm64,armhf] net: stmmac: dwmac1000: Disable ACS if enhanced descs are not used - r8152: check disconnect status after long sleep - sfc: detach from cb_page in efx_copy_channel() - bnxt_en: reinitialize IRQs when MTU is modified - cgroup: memcg: net: do not associate sock with unrelated cgroup - net: memcg: late association of sock to memcg - net: memcg: fix lockdep splat in inet_csk_accept() - devlink: validate length of param values - nl802154: add missing attribute validation - nl802154: add missing attribute validation for dev_type - can: add missing attribute validation for termination - macsec: add missing attribute validation for port - net: fq: add missing attribute validation for orphan mask - team: add missing attribute validation for port ifindex - team: add missing attribute validation for array index - nfc: add missing attribute validation for SE API - nfc: add missing attribute validation for deactivate target - nfc: add missing attribute validation for vendor subcommand - net: phy: fix MDIO bus PM PHY resuming - net/ipv6: need update peer route when modify metric - net/ipv6: remove the old peer route if change it to a new one - tipc: add missing attribute validation for MTU property - devlink: validate length of region addr/len - bonding/alb: make sure arp header is pulled before accessing it - slip: make slhc_compress() more robust against malicious packets - [armhf] net: fec: validate the new settings in fec_enet_set_coalesce() - macvlan: add cond_resched() during multicast processing - cgroup: cgroup_procs_next should increase position index - cgroup: Iterate tasks that did not finish do_exit() - iwlwifi: mvm: Do not require PHY_SKU NVM section for 3168 devices - virtio-blk: fix hw_queue stopped on arbitrary error - [amd64] iommu/vt-d: quirk_ioat_snb_local_iommu: replace WARN_TAINT with pr_warn + add_taint - netfilter: nf_conntrack: ct_cpu_seq_next should increase position index - netfilter: synproxy: synproxy_cpu_seq_next should increase position index - netfilter: xt_recent: recent_seq_next should increase position index - netfilter: x_tables: xt_mttg_seq_next should increase position index - workqueue: don't use wq_select_unbound_cpu() for bound works - drm/amd/display: remove duplicated assignment to grph_obj_type - cifs_atomic_open(): fix double-put on late allocation failure - gfs2_atomic_open(): fix O_EXCL|O_CREAT handling on cold dcache - [x86] KVM: clear stale x86_emulate_ctxt->intercept value - efi: Fix a race and a buffer overflow while reading efivars via sysfs - efi: Make efi_rts_work accessible to efi page fault handler - mt76: fix array overflow on receiving too many fragments for a packet - [x86] mce: Fix logic and comments around MSR_PPIN_CTL - [arm64] iommu/dma: Fix MSI reservation allocation - [amd64] iommu/vt-d: dmar: replace WARN_TAINT with pr_warn + add_taint - [amd64] iommu/vt-d: Fix a bug in intel_iommu_iova_to_phys() for huge page - batman-adv: Don't schedule OGM for disabled interface - [arm64] pinctrl: meson-gxl: fix GPIOX sdio pins - pinctrl: core: Remove extra kref_get which blocks hogs being freed - [arm64,armhf] i2c: gpio: suppress error on probe defer - nl80211: add missing attribute validation for critical protocol indication - nl80211: add missing attribute validation for beacon report scanning - nl80211: add missing attribute validation for channel switch - perf bench futex-wake: Restore thread count default to online CPU count - netfilter: cthelper: add missing attribute validation for cthelper - netfilter: nft_payload: add missing attribute validation for payload csum flags - netfilter: nft_tunnel: add missing attribute validation for tunnels - [amd64] iommu/vt-d: Fix the wrong printing in RHSA parsing - [amd64] iommu/vt-d: Ignore devices with out-of-spec domain number - [arm64,x86] i2c: acpi: put device when verifying client fails - ipv6: restrict IPV6_ADDRFORM operation - net/smc: check for valid ib_client_data - net/smc: cancel event worker during device removal - efi: Add a sanity check to efivar_store_raw() - batman-adv: Avoid free/alloc race when handling OGM2 buffer https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.112 - [x86] perf/amd/uncore: Replace manual sampling check with CAP_NO_INTERRUPT flag - [armhf] mmc: sdhci-omap: Add platform specific reset callback - [armhf] mmc: sdhci-omap: Workaround errata regarding SDR104/HS200 tuning failures (i929) - ACPI: watchdog: Allow disabling WDAT at boot - HID: apple: Add support for recent firmware on Magic Keyboards - [x86] HID: i2c-hid: add Trekstor Surfbook E11B to descriptor override - cfg80211: check reg_rule for NULL in handle_channel_custom() - scsi: libfc: free response frame from GPN_ID - net: usb: qmi_wwan: restore mtu min/max values after raw_ip switch - mac80211: rx: avoid RCU list traversal under mutex - signal: avoid double atomic counter increments for user accounting - slip: not call free_netdev before rtnl_unlock in slip_open - [x86,arm64] hinic: fix a irq affinity bug - [x86,arm64] hinic: fix a bug of setting hw_ioctxt - sfc: fix timestamp reconstruction at 16-bit rollover points - jbd2: fix data races at struct journal_head - [armhf] mmc: sdhci-omap: Don't finish_mrq() on a command error during tuning - [armhf] mmc: sdhci-omap: Fix Tuning procedure for temperatures < -20C - driver core: Remove the link if there is no driver with AUTO flag - driver core: Fix adding device links to probing suppliers - driver core: Make driver core own stateful device links - driver core: Add device link flag DL_FLAG_AUTOPROBE_CONSUMER - driver core: Remove device link creation limitation - driver core: Fix creation of device links with PM-runtime flags - mm: slub: add missing TID bump in kmem_cache_alloc_bulk() - efi: Fix debugobjects warning on 'efi_rts_work' https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.113 - [arm64] spi: qup: call spi_qup_pm_resume_runtime before suspending - [amd64] spi: pxa2xx: Add CS control clock quirk - [armhf] drm/exynos: dsi: fix workaround for the legacy clock name - [arm64] drivers/perf: arm_pmu_acpi: Fix incorrect checking of gicc pointer - dm bio record: save/restore bi_end_io and bi_integrity - dm integrity: use dm_bio_record and dm_bio_restore - xenbus: req->body should be updated before req->state - xenbus: req->err should be updated before req->state - block, bfq: fix overwrite of bfq_group pointer in bfq_find_set_group() - USB: Disable LPM on WD19's Realtek Hub - usb: quirks: add NO_LPM quirk for RTL8153 based ethernet adapters - USB: serial: option: add ME910G1 ECM composition 0x110b - [arm64,armhf] usb: host: xhci-plat: add a shutdown - USB: serial: pl2303: add device-id for HP LD381 - [x86] usb: xhci: apply XHCI_SUSPEND_DELAY to AMD XHCI controller 1022:145c - ALSA: line6: Fix endless MIDI read loop - ALSA: seq: virmidi: Fix running status after receiving sysex - ALSA: seq: oss: Fix running status after receiving sysex - ALSA: pcm: oss: Avoid plugin buffer overflow - ALSA: pcm: oss: Remove WARNING from snd_pcm_plug_alloc() checks - [armhf] iio: st_sensors: remap SMO8840 to LIS2DH12 - mmc: rtsx_pci: Fix support for speed-modes that relies on tuning - staging: rtl8188eu: Add device id for MERCUSYS MW150US v2 - staging/speakup: fix get_word non-space look-ahead - [x86] intel_th: Fix user-visible error codes - [x86] intel_th: pci: Add Elkhart Lake CPU support - xhci: Do not open code __print_symbolic() in xhci trace events - btrfs: fix log context list corruption after rename whiteout error - drm/amd/amdgpu: Fix GPR read from debugfs (v2) - drm/lease: fix WARNING in idr_destroy - memcg: fix NULL pointer dereference in __mem_cgroup_usage_unregister_event - mm: slub: be more careful about the double cmpxchg of freelist - mm, slub: prevent kmalloc_node crashes and memory leaks - page-flags: fix a crash at SetPageError(THP_SWAP) - [x86] mm: split vmalloc_sync_all() (Closes: #953017) - USB: cdc-acm: fix close_delay and closing_wait units in TIOCSSERIAL - USB: cdc-acm: fix rounding error in TIOCSSERIAL - futex: Fix inode life-time issue - futex: Unbreak futex hashing - Revert "vrf: mark skb for multicast or link-local as enslaved to VRF" - Revert "ipv6: Fix handling of LLA with VRF and sockets bound to VRF" - ALSA: hda/realtek: Fix pop noise on ALC225 - [arm64] smp: fix smp_send_stop() behaviour - [arm64] smp: fix crash_smp_send_stop() behaviour - [arm64,armhf] drm/bridge: dw-hdmi: fix AVI frame colorimetry https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.114 - mmc: core: Allow host controllers to require R1B for CMD6 - mmc: core: Respect MMC_CAP_NEED_RSP_BUSY for erase/trim/discard - mmc: core: Respect MMC_CAP_NEED_RSP_BUSY for eMMC sleep command - [armhf] mmc: sdhci-omap: Fix busy detection by enabling MMC_CAP_NEED_RSP_BUSY - [arm64,armhf] mmc: sdhci-tegra: Fix busy detection by enabling MMC_CAP_NEED_RSP_BUSY - geneve: move debug check after netdev unregister - macsec: restrict to ethernet devices - net: cbs: Fix software cbs to consider packet sending time - [armhf] net: dsa: Fix duplicate frames flooded by learning - [arm64,armhf] net: mvneta: Fix the case where the last poll did not process all rx - net/packet: tpacket_rcv: avoid a producer race condition - net: qmi_wwan: add support for ASKEY WWHC050 - net_sched: cls_route: remove the right filter from hashtable - net_sched: keep alloc_hash updated after hash allocation - [arm64,armhf] net: stmmac: dwmac-rk: fix error path in rk_gmac_probe - slcan: not call free_netdev before rtnl_unlock in slcan_open - bnxt_en: fix memory leaks in bnxt_dcbnl_ieee_getets() - bnxt_en: Reset rings if ring reservation fails during open() - net: ip_gre: Separate ERSPAN newlink / changelink callbacks - net: ip_gre: Accept IFLA_INFO_DATA-less configuration - r8169: re-enable MSI on RTL8168c - tcp: repair: fix TCP_QUEUE_SEQ implementation - vxlan: check return value of gro_cells_init() - cgroup-v1: cgroup_pidlist_next should update position index - nfs: add minor version to nfs_server_key for fscache - drivers/of/of_mdio.c:fix of_mdiobus_register() - cgroup1: don't call release_agent when it is "" - [s390x] qeth: handle error when backing RX buffer - scsi: ipr: Fix softlockup when rescanning devices in petitboot - mac80211: Do not send mesh HWMP PREQ if HWMP is disabled - [x86] ftrace: Anotate text_mutex split between ftrace_arch_code_modify_post_process() and ftrace_arch_code_modify_prepare() - [x86] Input: synaptics - enable RMI on HP Envy 13-ad105ng - Input: avoid BIT() macro usage in the serio.h UAPI header - ceph: check POOL_FLAG_FULL/NEARFULL in addition to OSDMAP_FULL/NEARFULL - perf probe: Do not depend on dwfl_module_addrsym() - scsi: sd: Fix optimal I/O size for devices that change reported values - nl80211: fix NL80211_ATTR_CHANNEL_WIDTH attribute type - mac80211: mark station unauthorized before key removal - [x86] gpiolib: acpi: Correct comment for HP x2 10 honor_wakeup quirk - gpiolib: acpi: Rework honor_wakeup option into an ignore_wake option - [x86] gpiolib: acpi: Add quirk to ignore EC wakeups on HP x2 10 BYT + AXP288 model - genirq: Fix reference leaks on irq affinity notifiers - xfrm: handle NETDEV_UNREGISTER for xfrm device - vti[6]: fix packet tx through bpf_redirect() in XinY cases - RDMA/mlx5: Block delay drop to unprivileged users - xfrm: fix uctx len check in verify_sec_ctx_len - xfrm: add the missing verify_sec_ctx_len check in xfrm_add_acquire - xfrm: policy: Fix doulbe free in xfrm_policy_timer - afs: Fix some tracing details - netfilter: flowtable: reload ip{v6}h in nf_flow_tuple_ip{v6} - netfilter: nft_fwd_netdev: validate family and chain type - bpf/btf: Fix BTF verification of enum members in struct/union - vti6: Fix memory leak of skb if input policy check fails - mac80211: add option for setting control flags - mac80211: set IEEE80211_TX_CTRL_PORT_CTRL_PROTO for nl80211 TX - USB: serial: option: add support for ASKEY WWHC050 - USB: serial: option: add BroadMobi BM806U - USB: serial: option: add Wistron Neweb D19Q1 - USB: cdc-acm: restore capability check order - USB: serial: io_edgeport: fix slab-out-of-bounds read in edge_interrupt_callback - [arm64,armhf] usb: musb: fix crash with highmen PIO and usbmon - media: flexcop-usb: fix endpoint sanity check - media: usbtv: fix control-message timeouts - staging: rtl8188eu: Add ASUS USB-N10 Nano B1 to device table - [x86] ahci: Add Intel Comet Lake H RAID PCI ID - libfs: fix infoleak in simple_attr_read() - media: ov519: add missing endpoint sanity checks (CVE-2020-11608) - media: dib0700: fix rc endpoint lookup - media: stv06xx: add missing descriptor sanity checks (CVE-2020-11609) - media: xirlink_cit: add missing descriptor sanity checks (CVE-2020-11668) - mac80211: Check port authorization in the ieee80211_tx_dequeue() case - mac80211: fix authentication with iwlwifi/mvm - vt: selection, introduce vc_is_sel - vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines - vt: switch vt_dont_switch to bool - vt: vt_ioctl: remove unnecessary console allocation checks - vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console - vt: vt_ioctl: fix use-after-free in vt_in_use() - [x86] platform: pmc_atom: Add Lex 2I385SW to critclk_systems DMI table - bpf: Explicitly memset the bpf_attr structure - bpf: Explicitly memset some bpf info structures declared on the stack - [x86] gpiolib: acpi: Add quirk to ignore EC wakeups on HP x2 10 CHT + AXP288 model - perf map: Fix off by one in strncpy() size argument - [armel] bcm2835-rpi-zero-w: Add missing pinctrl name - [armhf] dts: N900: fix onenand timings https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.115 - ipv4: fix a RCU-list lock in fib_triestat_seq_show - net, ip_tunnel: fix interface lookup with no key - sctp: fix refcount bug in sctp_wfree - sctp: fix possibly using a bad saddr with a given dst - nvme-rdma: Avoid double freeing of async event data - drm/bochs: downgrade pci_request_region failure from error to warning - drm/amdgpu: fix typo for vcn1 idle check - [x86] tools/power turbostat: Fix gcc build warnings - [x86] tools/power turbostat: Fix missing SYS_LPI counter on some Chromebooks - [armhf] drm/etnaviv: replace MMU flush marker with flush sequence - media: rc: IR signal for Panasonic air conditioner too long - misc: rtsx: set correct pcr_ops for rts522A - [x86] mei: me: add cedar fork device ids - ALSA: hda/ca0132 - Add Recon3Di quirk to handle integrated sound on EVGA X99 Classified motherboard - rxrpc: Fix sendmsg(MSG_WAITALL) handling - net: Fix Tx hash bound checking - padata: always acquire cpu_hotplug_lock before pinst->lock - mm: mempolicy: require at least one nodeid for MPOL_PREFERRED (CVE-2020-11565) - ipv6: don't auto-add link-local address to lag ports - [armhf] net: dsa: bcm_sf2: Do not register slave MDIO bus with OF - [armhf] net: dsa: bcm_sf2: Ensure correct sub-node is parsed - net: phy: micrel: kszphy_resume(): add delay after genphy_resume() before accessing PHY registers - [arm64,armhf] net: stmmac: dwmac1000: fix out-of-bounds mac address reg setting - slcan: Don't transmit uninitialized stack data in padding (CVE-2020-11494) - random: always use batched entropy for get_random_u{32,64} - [arm64,armhf] usb: dwc3: gadget: Wrap around when skip TRBs - [armhf] hwrng: imx-rngc - fix an error path - [amd64] IB/hfi1: Call kobject_put() when kobject_init_and_add() fails - [amd64] IB/hfi1: Fix memory leaks in sysfs registration and unregistration - ceph: remove the extra slashes in the server path - ceph: canonicalize server path in place - RDMA/ucma: Put a lock around every call to the rdma_cm layer - RDMA/cma: Teach lockdep about the order of rtnl and lock - Bluetooth: RFCOMM: fix ODEBUG bug in rfcomm_dev_ioctl - RDMA/cm: Update num_paths in cma_resolve_iboe_route error flow - fbcon: fix null-ptr-deref in fbcon_switch - [arm64] clk: qcom: rcg: Return failure for RCG update - [arm64] drm/msm: stop abusing dma_map/unmap for cache - [arm64] Fix size of __early_cpu_boot_status - [arm64] rpmsg: glink: Remove chunk size word align warning - [arm64,armhf] usb: dwc3: don't set gadget->is_otg flag - drm_dp_mst_topology: fix broken drm_dp_sideband_parse_remote_dpcd_read() - [arm64] drm/msm: Use the correct dma_sync calls in msm_gem https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.116 - [armhf] dts: sun8i-a83t-tbs-a711: HM5065 doesn't like such a high voltage - [arm64,armhf] bus: sunxi-rsb: Return correct data when mixing 16-bit and 8-bit reads - [x86,arm64] hinic: fix a bug of waitting for IO stopped - [x86,arm64] hinic: fix wrong para of wait_for_completion_timeout - cxgb4/ptp: pass the sign of offset delta in FW CMD - qlcnic: Fix bad kzalloc null test - [armhf] cpufreq: imx6q: Fixes unwanted cpu overclocking on i.MX6ULL - [arm64] media: venus: hfi_parser: Ignore HEVC encoding for V1 - null_blk: Fix the null_add_dev() error path - null_blk: Handle null_add_dev() failures properly - null_blk: fix spurious IO errors after failed past-wp access - xhci: bail out early if driver can't accress host in resume - [x86] Don't let pgprot_modify() change the page encryption bit - block: keep bdi->io_pages in sync with max_sectors_kb for stacked devices - sched: Avoid scale real weight down to zero - libata: Remove extra scsi_host_put() in ata_scsi_add_hosts() - [amd64,x86] pstore/platform: fix potential mem leak if pstore_init_fs failed - gfs2: Don't demote a glock until its revokes are written - [i386] efi/x86: Ignore the memory attributes table on i386 - genirq/irqdomain: Check pointer in irq_domain_alloc_irqs_hierarchy() - block: Fix use-after-free issue accessing struct io_cq - [arm64,armhf] usb: dwc3: core: add support for disabling SS instances in park mode - [arm64,armhf] irqchip/gic-v4: Provide irq_retrigger to avoid circular locking dependency - md: check arrays is suspended in mddev_detach before call quiesce operations - firmware: fix a double abort case with fw_load_sysfs_fallback - block, bfq: fix use-after-free in bfq_idle_slice_timer_body - btrfs: qgroup: ensure qgroup_rescan_running is only set when the worker is at least queued - btrfs: remove a BUG_ON() from merge_reloc_roots() - btrfs: track reloc roots based on their commit root bytenr - IB/mlx5: Replace tunnel mpls capability bits for tunnel_offloads - uapi: rename ext2_swab() to swab() and share globally in swab.h - slub: improve bit diffusion for freelist ptr obfuscation - ASoC: fix regwmask - ASoC: dapm: connect virtual mux with default value - ASoC: dpcm: allow start or stop during pause for backend - [x86] ASoC: topology: use name_prefix for new kcontrol - usb: gadget: f_fs: Fix use after free issue as part of queue failure - usb: gadget: composite: Inform controller driver of self-powered - ALSA: hda: Add driver blacklist - ALSA: hda: Fix potential access overflow in beep helper - ALSA: ice1724: Fix invalid access for enumerated ctl items - ALSA: pcm: oss: Fix regression by buffer overflow fix - ALSA: doc: Document PC Beep Hidden Register on Realtek ALC256 - ALSA: hda/realtek - Set principled PC Beep configuration for ALC256 - [x86] ALSA: hda/realtek - Remove now-unnecessary XPS 13 headphone noise fixups - [x86] ALSA: hda/realtek - Add quirk for MSI GL63 - [x86] acpi: ignore unspecified bit positions in the ACPI global lock field - nvme-fc: Revert "add module to ops template to allow module references" - nvme: Treat discovery subsystems as unique subsystems - PCI: pciehp: Fix indefinite wait on sysfs requests - PCI/ASPM: Clear the correct bits when enabling L1 substates - PCI: Add boot interrupt quirk mechanism for Xeon chipsets - tpm: Don't make log failures fatal - tpm: tpm1_bios_measurements_next should increase position index - tpm: tpm2_bios_measurements_next should increase position index - KEYS: reaching the keys quotas correctly - [amd64,x86] pstore: pstore_ftrace_seq_next should increase position index - [mips*el] tlbex: Fix LDDIR usage in setup_pw() for Loongson-3 - [mips*/octeon] irq: Fix potential NULL pointer dereference - ath9k: Handle txpower changes even when TPC is disabled - signal: Extend exec_id to 64bits - [i386] x86/entry/32: Add missing ASM_CLAC to general_protection entry - [x86] KVM: nVMX: Properly handle userspace interrupt window request - [s390x] KVM: vsie: Fix region 1 ASCE sanity shadow address checks - [s390x] KVM: vsie: Fix delivery of addressing exceptions - [x86] KVM: Allocate new rmap and large page tracking when moving memslot - [x86] KVM: VMX: Always VMCLEAR in-use VMCSes during crash with kexec support - [x86] KVM: Gracefully handle __vmalloc() failure during VM allocation - [x86] KVM: VMX: fix crash cleanup when KVM wasn't used - CIFS: Fix bug which the return value by asynchronous read is error - Btrfs: fix crash during unmount due to race with delayed inode workers - btrfs: set update the uuid generation as soon as possible - btrfs: drop block from cache on error in relocation - btrfs: fix missing file extent item for hole after ranged fsync - btrfs: fix missing semaphore unlock in btrfs_sync_file - [powerpc*] pseries: Drop pointless static qualifier in vpa_debugfs_init() - [x86] speculation: Remove redundant arch_smt_update() invocation - mm: Use fixed constant in page_frag_alloc instead of size + 1 - dm writecache: add cond_resched to avoid CPU hangs - [s390x] scsi: zfcp: fix missing erp_lock in port recovery trigger for point-to-point - [arm64] armv8_deprecated: Fix undef_hook mask for thumb setend - [armhf] drm/etnaviv: rework perfmon query infrastructure - [powerpc*] pseries: Avoid NULL pointer dereference when drmem is unavailable - NFS: Fix a page leak in nfs_destroy_unlinked_subrequests() - ext4: fix a data race at inode->i_blocks - fs/filesystems.c: downgrade user-reachable WARN_ONCE() to pr_warn_once() - ocfs2: no need try to truncate file beyond i_size - [s390x] diag: fix display of diagnose call statistics - [x86] Input: i8042 - add Acer Aspire 5738z to nomux list - kmod: make request_module() return an error when autoloading is disabled - [powerpc*] cpufreq: powernv: Fix use-after-free - hfsplus: fix crash and filesystem corruption when deleting files - libata: Return correct status in sata_pmp_eh_recover_pm() when ATA_DFLAG_DETACH is set - ipmi: fix hung processes in __get_guid() - xen/blkfront: fix memory allocation flags in blkfront_setup_indirect() - [powerpc*] powernv/idle: Restore AMR/UAMOR/AMOR after idle (CVE-2020-11669) - [powerpc*] 64/tm: Don't let userspace set regs->trap via sigreturn - [powerpc*] hash64/devmap: Use H_PAGE_THP_HUGE when setting up huge devmap PTE entries - [powerpc*] xive: Use XIVE_BAD_IRQ instead of zero to catch non configured IPIs - [powerpc*] kprobes: Ignore traps that happened in real mode - scsi: mpt3sas: Fix kernel panic observed on soft HBA unplug - [powerpc*] Add attributes for setjmp/longjmp - [powerpc*] Make setjmp/longjmp signature standard - btrfs: use nofs allocations for running delayed items - dm zoned: remove duplicate nr_rnd_zones increase in dmz_init_zone() - drm/dp_mst: Fix clearing payload state on topology disable - drm: Remove PageReserved manipulation from drm_pci_alloc - ftrace/kprobe: Show the maxactive number on kprobe_events - [armhf] etnaviv: perfmon: fix total and idle HI cyleces readout - [amd64] efi/x86: Fix the deletion of variables in mixed mode https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.117 - [amd64,arm64] amd-xgbe: Use __napi_schedule() in BH context - net: ipv6: do not consider routes via gateways for anycast address check - net: revert default NAPI poll timeout to 2 jiffies - [arm64,armhf] net: stmmac: dwmac-sunxi: Provide TX and RX fifo sizes - ovl: fix value of i_ino for lower hardlink corner case - scsi: ufs: Fix ufshcd_hold() caused scheduling while atomic - jbd2: improve comments about freeing data buffers whose page mapping is NULL - ext4: fix incorrect group count in ext4_fill_super error message - ext4: fix incorrect inodes per group in error message - [x86] ASoC: Intel: mrfld: fix incorrect check on p->sink - [x86] ASoC: Intel: mrfld: return error codes when an error occurs - ALSA: usb-audio: Filter error from connector kctl ops, too - ALSA: usb-audio: Don't override ignore_ctl_error value from the map - ALSA: usb-audio: Don't create jack controls for PCM terminals - ALSA: usb-audio: Check mapping at creating connector controls, too - keys: Fix proc_keys_next to increase position index - tracing: Fix the race between registering 'snapshot' event trigger and triggering 'snapshot' operation - btrfs: check commit root generation in should_ignore_root - mac80211_hwsim: Use kstrndup() in place of kasprintf() - [arm64,armhf] usb: dwc3: gadget: don't enable interrupt when disabling endpoint - [arm64,armhf] usb: dwc3: gadget: Don't clear flags before transfer ended - ext4: do not zeroout extents beyond i_disksize - [x86] kvm: Host feature SSBD doesn't imply guest feature SPEC_CTRL_SSBD - scsi: target: fix hang when multiple threads try to destroy the same iscsi session - [x86] microcode/AMD: Increase microcode PATCH_MAX_SIZE - wil6210: check rx_buff_mgmt before accessing it - wil6210: ignore HALP ICR if already handled - wil6210: add general initialization/size checks - wil6210: make sure Rx ring sizes are correlated - wil6210: remove reset file from debugfs - mm/vmalloc.c: move 'area->pages' after if statement https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.118 - [armel,armhf] bpf: Fix offset overflow for BPF_MEM BPF_DW - scsi: sg: add sg_remove_request in sg_common_write - ext4: use non-movable memory for superblock readahead - [arm64,armhf] watchdog: sp805: fix restart handler - [armel,armhf] arm, bpf: Fix bugs with ALU64 {RSH, ARSH} BPF_K shift by 0 - netfilter: nf_tables: report EOPNOTSUPP on unsupported flags/object type - [arm64] irqchip/mbigen: Free msi_desc on device teardown - ALSA: hda: Don't release card at firmware loading error - of: overlay: kmemleak in dup_and_fixup_symbol_prop() - [x86] Hyper-V: Report crash register data or kmsg before running crash kernel - rbd: avoid a deadlock on header_rwsem when flushing notifies - rbd: call rbd_dev_unprobe() after unwatching and flushing notifies - xsk: Add missing check on user supplied headroom size - [x86] Hyper-V: Unload vmbus channel in hv panic callback - [x86] Hyper-V: Free hv_panic_page when fail to register kmsg dump - [x86] Hyper-V: Trigger crash enlightenment only once during system crash. - [x86] Hyper-V: Report crash register data when sysctl_record_panic_msg is not set - [x86] Hyper-V: Report crash data in die() when panic_on_oops is set - power: supply: bq27xxx_battery: Silence deferred-probe error - [arm64,armhf] clk: tegra: Fix Tegra PMC clock out parents - [armhf] soc: imx: gpc: fix power up sequencing - NFSv4/pnfs: Return valid stateids in nfs_layout_find_inode_by_stateid() - NFS: direct.c: Fix memory leak of dreq when nfs_get_lock_context fails - [s390x] cpuinfo: fix wrong output when CPU0 is offline - [s390x] cpum_sf: Fix wrong page count in error message - ext4: do not commit super on read-only bdev - cifs: Allocate encryption header through kmalloc - include/linux/swapops.h: correct guards for non_swap_entry() - percpu_counter: fix a data race at vm_committed_as - [s390x] KVM: vsie: Fix possible race when shadowing region 3 tables - [x86] ACPI: fix CPU hotplug deadlock - [amd64] drm/amdkfd: kfree the wrong pointer - NFS: Fix memory leaks in nfs_pageio_stop_mirroring() - f2fs: fix NULL pointer dereference in f2fs_write_begin() - [arm*] drm/vc4: Fix HDMI mode validation - [amd64] iommu/vt-d: Fix mm reference leak - power: supply: axp288_fuel_gauge: Broaden vendor check for Intel Compute Sticks. - libnvdimm: Out of bounds read in __nd_ioctl() - f2fs: fix to wait all node page writeback - [armhf] net: dsa: bcm_sf2: Fix overflow checks - fbdev: potential information leak in do_fb_ioctl() - mtd: lpddr: Fix a double free in probe() - mtd: phram: fix a double free issue in error path - KEYS: Don't write out to userspace while holding key semaphore - bpf: fix buggy r0 retval refinement for tracing helpers . [ Salvatore Bonaccorso ] * Refresh "Revert "objtool: Fix CONFIG_STACK_VALIDATION=y warning for out-of-tree modules"" for context changes in 4.19.99 * Refresh "ARM: dts: bcm283x: Correct vchiq compatible string" for context changes in 4.19.99 * Drop "tools/lib/api/fs/fs.c: Fix misuse of strncpy()" * Refresh "net: ena: add MAX_QUEUES_EXT get feature admin command" for context changes in 4.19.108 * [rt] Update to 4.19.115-rt48: - Revert "genirq: Do not invoke the affinity callback via a workqueue on RT" * [rt] Refresh "pci/switchtec: Don't use completion's wait queue" for context changes in 4.19.116 * Refresh "firmware: Remove redundant log messages from drivers" for context changes in 4.19.118 * f2fs: fix to avoid memory leakage in f2fs_listxattr (CVE-2020-0067) * net: ipv6: add net argument to ip6_dst_lookup_flow * net: ipv6_stub: use ip6_dst_lookup_flow instead of ip6_dst_lookup (CVE-2020-1749) * blktrace: Protect q->blk_trace with RCU (CVE-2019-19768) * blktrace: fix dereference after null check . [ Ben Hutchings ] * [x86] Drop "Add a SysRq option to lift kernel lockdown" (Closes: #947021) - This patch allowed remotely disabling lockdown using usbip - Lockdown can be disabled by running "mokutil --disable-validation", rebooting, and confirming the change when prompted * debian/README.source: Refer to upload checklist in kernel-team.git * Bump ABI to 9 . [ YunQiang Su ] * [mips*] enable CONFIG_MIPS_O32_FP64_SUPPORT. * [mips*] enable CONFIG_CPU_HAS_MSA except octeon. . [ Steve McIntyre ] * [arm64] Include the Hisilicon Hibmc drm driver in fb-modules (Closes: #951274) . [ Noah Meyerhans ] * [cloud] Enable CONFIG_KSM (Closes: #955366) linux-latest (105+deb10u4) buster; urgency=medium . * Update to 4.19.0-9 linux-signed-amd64 (4.19.118+2) buster; urgency=medium . * Sign kernel from linux 4.19.118-2 . * Merge changes from 4.19.67-2+deb10u2 to include all security fixes from DSA 4667-1. linux-signed-amd64 (4.19.118+1) buster; urgency=medium . * Sign kernel from linux 4.19.118-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.99 - Revert "efi: Fix debugobjects warning on 'efi_rts_work'" - xfs: Sanity check flags of Q_XQUOTARM call - [x86] mfd: intel-lpss: Add default I2C device properties for Gemini Lake - SUNRPC: Fix svcauth_gss_proxy_init() - [powerpc*] pseries: Enable support for ibm,drc-info property - tipc: update mon's self addr when node addr generated - tipc: fix wrong timeout input for tipc_wait_for_cond() - mt7601u: fix bbp version check in mt7601u_wait_bbp_ready - [armhf] crypto: sun4i-ss - fix big endian issues - perf map: No need to adjust the long name of modules - ipmi: Fix memory leak in __ipmi_bmc_register (CVE-2019-19046) - ixgbe: don't clear IPsec sa counters on HW clearing - drm/virtio: fix bounds check in virtio_gpu_cmd_get_capset() - iio: fix position relative kernel version - apparmor: Fix network performance issue in aa_label_sk_perm - ALSA: hda: fix unused variable warning - apparmor: don't try to replace stale label in ptrace access check - firmware: coreboot: Let OF core populate platform device - bridge: br_arp_nd_proxy: set icmp6_router if neigh has NTF_ROUTER - [arm64] drm/hisilicon: hibmc: Don't overwrite fb helper surface depth - IB/rxe: replace kvfree with vfree - [amd64] IB/hfi1: Add mtu check for operational data VLs - genirq/debugfs: Reinstate full OF path for domain name - [arm64] usb: dwc3: add EXTCON dependency for qcom - cfg80211: regulatory: make initialization more robust - [x86] mei: replace POLL* with EPOLL* for write queues. - [arm64] drm/msm: fix unsigned comparison with less than zero - ALSA: usb-audio: update quirk for B&W PX to remove microphone - iwlwifi: nvm: get num of hw addresses from firmware - netfilter: nft_osf: usage from output path is not valid - [x86] pwm: lpss: Release runtime-pm reference from the driver's remove callback - [powerpc*] pseries/memory-hotplug: Fix return value type of find_aa_index - rtlwifi: rtl8821ae: replace _rtl8821ae_mrate_idx_to_arfr_id with generic version - netfilter: nf_flow_table: do not remove offload when other netns's interface is down - tipc: eliminate message disordering during binding table update - [arm64] net: socionext: Add dummy PHY register read in phy_write() - [arm64,armhf] drm/sun4i: hdmi: Fix double flag assignation - [arm64] net: hns3: add error handler for hns3_nic_init_vector_data() - pcrypt: use format specifier in kobject_add - [armhf] ASoC: sun8i-codec: add missing route for ADC - [arm64] pinctrl: meson-gxl: remove invalid GPIOX tsin_a pins - [armhf] bus: ti-sysc: Add mcasp optional clocks flag - exportfs: fix 'passing zero to ERR_PTR()' warning - net: always initialize pagedlen - net: phy: Fix not to call phy_resume() if PHY is not attached - [amd64] IB/hfi1: Correctly process FECN and BECN in packets - IB/rxe: Fix incorrect cache cleanup in error flow - ipv6: add missing tx timestamping on IPPROTO_RAW - [arm64] net: hns3: fix error handling int the hns3_get_vector_ring_chain - vxlan: changelink: Fix handling of default remotes - fork,memcg: fix crash in free_thread_stack on memcg charge fail - [armhf] clk: highbank: fix refcount leak in hb_clk_init() - [armhf] clk: ti: fix refcount leak in ti_dt_clocks_register() - [armhf] clk: socfpga: fix refcount leak - [armhf] clk: samsung: exynos4: fix refcount leak in exynos4_get_xom() - [armhf] clk: imx6q: fix refcount leak in imx6q_clocks_init() - [armhf] clk: imx6sx: fix refcount leak in imx6sx_clocks_init() - [armhf] clk: armada-370: fix refcount leak in a370_clk_init() - [armel] clk: kirkwood: fix refcount leak in kirkwood_clk_init() - [armhf] clk: armada-xp: fix refcount leak in axp_clk_init() - [armhf] clk: mv98dx3236: fix refcount leak in mv98dx3236_clk_init() - [armhf] clk: dove: fix refcount leak in dove_clk_init() - drm: Fix error handling in drm_legacy_addctx - [armhf] drm/etnaviv: fix some off by one bugs - drm/fb-helper: generic: Fix setup error path - fork, memcg: fix cached_stacks case - [amd64] IB/usnic: Fix out of bounds index check in query pkey - RDMA/ocrdma: Fix out of bounds index check in query pkey - RDMA/qedr: Fix out of bounds index check in query pkey - RDMA/iw_cxgb4: Fix the unchecked ep dereference - net: phy: micrel: set soft_reset callback to genphy_soft_reset for KSZ9031 - [armhf] memory: tegra: Don't invoke Tegra30+ specific memory timing setup on Tegra20 - [armhf] drm/etnaviv: NULL vs IS_ERR() buf in etnaviv_core_dump() - kbuild: mark prepare0 as PHONY to fix external module build - crypto: tgr192 - fix unaligned memory access - [armhf] ASoC: imx-sgtl5000: put of nodes if finding codec fails - IB/iser: Pass the correct number of entries for dma mapped SGL - [arm64] net: hns3: fix wrong combined count returned by ethtool -l - IB/mlx5: Don't override existing ip_protocol - rtc: cmos: ignore bogus century byte - [i386] spi/topcliff_pch: Fix potential NULL dereference on allocation error - [arm64] net: hns3: fix bug of ethtool_ops.get_channels for VF - [armhf] clk: sunxi-ng: sun8i-a23: Enable PLL-MIPI LDOs when ungating it - iwlwifi: mvm: avoid possible access out of array. - net/mlx5: Take lock with IRQs disabled to avoid deadlock - ip_tunnel: Fix route fl4 init in ip_md_tunnel_xmit - iwlwifi: mvm: fix A-MPDU reference assignment - [armhf] bus: ti-sysc: Fix timer handling with drop pm_runtime_irq_safe() - [x86] tty: ipwireless: Fix potential NULL pointer dereference - driver: uio: fix possible memory leak in __uio_register_device - driver: uio: fix possible use-after-free in __uio_register_device - driver core: Fix DL_FLAG_AUTOREMOVE_SUPPLIER device link flag handling - driver core: Avoid careless re-use of existing device links - driver core: Do not resume suppliers under device_links_write_lock() - driver core: Fix handling of runtime PM flags in device_link_add() - driver core: Do not call rpm_put_suppliers() in pm_runtime_drop_link() - drm/xen-front: Fix mmap attributes for display buffers - iwlwifi: mvm: fix RSS config command - [mips*] rtc: ds1672: fix unintended sign extension - ath10k: fix dma unmap direction for management frames - net: phy: fixed_phy: Fix fixed_phy not checking GPIO - rtc: ds1307: rx8130: Fix alarm handling - net/smc: original socket family in inet_sock_diag - [arm64] rtc: pm8xxx: fix unintended sign extension - iw_cxgb4: use tos when importing the endpoint - iw_cxgb4: use tos when finding ipv6 routes - xsk: add missing smp_rmb() in xsk_mmap - [armhf] drm/etnaviv: potential NULL dereference - RDMA/mlx5: Fix memory leak in case we fail to add an IB device - driver core: Fix possible supplier PM-usage counter imbalance - [armhf] usb: phy: twl6030-usb: fix possible use-after-free on remove - block: don't use bio->bi_vcnt to figure out segment number - keys: Timestamp new keys - [armhf] net: dsa: b53: Fix default VLAN ID - [armhf] net: dsa: b53: Properly account for VLAN filtering - [armhf] net: dsa: b53: Do not program CPU port's PVID - mt76: usb: fix possible memory leak in mt76u_buf_free - vfio_pci: Enable memory accesses before calling pci_map_rom - mdio_bus: Fix PTR_ERR() usage after initialization to constant - [powerpc*] KVM: Release all hardware TCE tables attached to a group - [x86] staging: r8822be: check kzalloc return or bail - [arm*] dmaengine: mv_xor: Use correct device for DMA API - cdc-wdm: pass return value of recover_from_urb_loss - brcmfmac: create debugfs files for bus-specific layer - net/mlx5: Delete unused FPGA QPN variable - drm/nouveau/bios/ramcfg: fix missing parentheses when calculating RON - drm/nouveau/pmu: don't print reply values if exec is false - drm/nouveau: fix missing break in switch statement - driver core: Fix PM-runtime for links added during consumer probe - [arm64] ASoC: qcom: Fix of-node refcount unbalance in apq8016_sbc_parse_of() - [arm64,armhf] net: dsa: fix unintended change of bridge interface STP state - fs/nfs: Fix nfs_parse_devname to not modify it's argument - [x86] staging: rtlwifi: Use proper enum for return in halmac_parse_psd_data_88xx - [ppc64el] 64s: Fix logic when handling unknown CPU features - NFS: Fix a soft lockup in the delegation recovery code - perf: Copy parent's address filter offsets on clone - perf, pt, coresight: Fix address filters for vmas with non-zero offset - [armhf] clocksource/drivers/sun5i: Fail gracefully when clock rate is unavailable - [armhf] clocksource/drivers/exynos_mct: Fix error path in timer resources initialization - [x86] platform/x86: wmi: fix potential null pointer dereference - NFS/pnfs: Bulk destroy of layouts needs to be safe w.r.t. umount - ath10k: Fix length of wmi tlv command for protected mgmt frames - netfilter: nft_set_hash: fix lookups with fixed size hash on big endian - netfilter: nft_set_hash: bogus element self comparison from deactivation path - net: sched: act_csum: Fix csum calc for tagged packets - [arm*] hwrng: bcm2835 - fix probe as platform device - [amd64] iommu/vt-d: Fix NULL pointer reference in intel_svm_bind_mm() - NFS: Add missing encode / decode sequence_maxsz to v4.2 operations - NFSv4/flexfiles: Fix invalid deref in FF_LAYOUT_DEVID_NODE() - [amd64] net: aquantia: fixed instack structure overflow - media: dvb/earth-pt1: fix wrong initialization for demod blocks - rbd: clear ->xferred on error from rbd_obj_issue_copyup() - PCI: Fix "try" semantics of bus and slot reset - scsi: megaraid_sas: reduce module load time - xen, cpu_hotplug: Prevent an out of bounds access - net/mlx5: Fix multiple updates of steering rules in parallel - net/mlx5e: IPoIB, Fix RX checksum statistics update - [arm64,armhf] soc: amlogic: gx-socinfo: Add mask for each SoC packages - media: ivtv: update *pos correctly in ivtv_read_pos() - media: cx18: update *pos correctly in cx18_read_pos() - [armhf] media: wl128x: Fix an error code in fm_download_firmware() - media: cx23885: check allocation return - jfs: fix bogus variable self-initialization - [armhf] dts: sun9i: optimus: Fix fixed-regulators - net: phy: don't clear BMCR in genphy_soft_reset - [armhf] OMAP2+: Fix potentially uninitialized return value for _setup_reset() - [arm64,armhf] net: dsa: Avoid null pointer when failing to connect to PHY - media: tw5864: Fix possible NULL pointer dereference in tw5864_handle_frame - [arm64,armhf] spi: tegra114: clear packed bit for unpacked mode - [arm64,armhf] spi: tegra114: fix for unpacked mode transfers - [arm64,armhf] spi: tegra114: terminate dma and reset on transfer timeout - [arm64,armhf] spi: tegra114: flush fifos - [arm64,armhf] spi: tegra114: configure dma burst size to fifo trig level - [armhf] bus: ti-sysc: Fix sysc_unprepare() when no clocks have been allocated - [arm*] spi: bcm2835aux: fix driver to not allow 65535 (=-1) cs-gpios - drm/fb-helper: generic: Call drm_client_add() after setup is done - [arm64] vdso: don't leak kernel addresses - rtc: Fix timestamp value for RTC_TIMESTAMP_BEGIN_1900 - bpf: Add missed newline in verifier verbose log - [x86] drm/vmwgfx: Remove set but not used variable 'restart' - scsi: qla2xxx: Unregister chrdev if module initialization fails - net/sched: cbs: fix port_rate miscalculation - ACPI: button: reinitialize button state upon resume - [arm64,armhf] firmware: arm_scmi: fix of_node leak in scmi_mailbox_check - rxrpc: Fix detection of out of order acks - scsi: target/core: Fix a race condition in the LUN lookup code - brcmfmac: fix leak of mypkt on error return path - [arm64] net: hns3: fix for vport->bw_limit overflow problem - [x86] hwmon: (w83627hf) Use request_muxed_region for Super-IO accesses - perf/core: Fix the address filtering fix - [arm64,armhf] soc: amlogic: meson-gx-pwrc-vpu: Fix power on/off register bitmask - [x86] platform/x86: alienware-wmi: fix kfree on potentially uninitialized pointer - tipc: set sysctl_tipc_rmem and named_timeout right range - usb: typec: tcpm: Notify the tcpc to start connection-detection for SRPs - [arm64] net: hns3: fix loop condition of hns3_get_tx_timeo_queue_info() - 6lowpan: Off by one handling ->nexthdr - ALSA: usb-audio: Handle the error from snd_usb_mixer_apply_create_quirk() - afs: Fix AFS file locking to allow fine grained locks - afs: Further fix file locking - NFS: Don't interrupt file writeout due to fatal errors - scsi: qla2xxx: Fix a format specifier - scsi: qla2xxx: Fix error handling in qlt_alloc_qfull_cmd() - scsi: qla2xxx: Avoid that qlt_send_resp_ctio() corrupts memory - [ppc64el] KVM: PPC: Book3S HV: Fix lockdep warning when entering the guest - netfilter: nft_flow_offload: add entry to flowtable after confirmation - packet: in recvmsg msg_name return at least sizeof sockaddr_ll - ASoC: fix valid stream condition - [arm*] dwc2: gadget: Fix completed transfer size calculation in DDMA - IB/mlx5: Add missing XRC options to QP optional params mask - RDMA/rxe: Consider skb reserve space based on netdev of GID - [amd64] iommu/vt-d: Make kernel parameter igfx_off work with vIOMMU - [arm64] dmaengine: tegra210-adma: restore channel status - mmc: core: fix possible use after free of host - ath10k: Fix encoding for protected management frames - afs: Fix the afs.cell and afs.volume xattr handlers - l2tp: Fix possible NULL pointer dereference - [x86] platform/x86: alienware-wmi: printing the wrong error code - netfilter: ebtables: CONFIG_COMPAT: reject trailing data after last rule - [arm64,armhf] pwm: meson: Consider 128 a valid pre-divider - [arm64,armhf] pwm: meson: Don't disable PWM when setting duty repeatedly - nfp: bpf: fix static check error through tightening shift amount adjustment - netfilter: nf_tables: correct NFT_LOGLEVEL_MAX value - [arm*] thermal: cpu_cooling: Actually trace CPU load in thermal_power_cpu_get_power - EDAC/mc: Fix edac_mc_find() in case no device is found - afs: Fix key leak in afs_release() and afs_evict_inode() - afs: Don't invalidate callback if AFS_VNODE_DIR_VALID not set - afs: Fix lock-wait/callback-break double locking - afs: Fix double inc of vnode->cb_break - [armhf] dts: sun8i-h3: Fix wifi in Beelink X2 DT - [arm64] clk: meson: gxbb: no spread spectrum on mpll0 - [arm64] clk: meson: axg: spread spectrum is on mpll2 - [arm64] dmaengine: tegra210-adma: Fix crash during probe - [arm64] dts: meson: libretech-cc: set eMMC as removable - RDMA/qedr: Fix incorrect device rate. - [x86] crypto: ccp - fix AES CFB error exposed by new test vectors - [x86] crypto: ccp - Fix 3DES complaint from ccp-crypto module - iommu: Add missing new line for dma type - iommu: Use right function to get group for device - signal/cifs: Fix cifs_put_tcp_session to call send_sig instead of force_sig - inet: frags: call inet_frags_fini() after unregister_pernet_subsys() - [arm64] net: hns3: fix a memory leak issue for hclge_map_unmap_ring_to_vf_vector - [x86] netvsc: unshare skb in VF rx handler - net: core: support XDP generic on stacked devices. - RDMA/uverbs: check for allocation failure in uapi_add_elm() - net: don't clear sock->sk early to avoid trouble in strparser - [arm64] phy: qcom-qusb2: fix missing assignment of ret when calling clk_prepare_enable - [arm64] clk: sunxi-ng: sun50i-h6-r: Fix incorrect W1 clock gate register - media: vivid: fix incorrect assignment operation when setting video mode - [arm64] crypto: inside-secure - fix zeroing of the request in ahash_exit_inv - [arm64] crypto: inside-secure - fix queued len computation - mpls: fix warning with multi-label encap - [arm64] dts: meson-gxm-khadas-vim2: fix gpio-keys-polled node - [arm64] dts: meson-gxm-khadas-vim2: fix Bluetooth support - [amd64] iommu/vt-d: Duplicate iommu_resv_region objects per device list - qed: iWARP - Use READ_ONCE and smp_store_release to access ep->state - qed: iWARP - fix uninitialized callback - [powerpc*] cacheinfo: add cacheinfo_teardown, cacheinfo_rebuild - [powerpc*] pseries/mobility: rebuild cacheinfo hierarchy post-migration - bpf: fix the check that forwarding is enabled in bpf_ipv6_fib_lookup - [amd64] IB/hfi1: Handle port down properly in pio - [arm64] drm/msm/mdp5: Fix mdp5_cfg_init error return - net: netem: fix backlog accounting for corrupted GSO frames - net/udp_gso: Allow TX timestamp with UDP GSO - [s390x] net/af_iucv: build proper skbs for HiperTransport - [s390x] net/af_iucv: always register net_device notifier - [armhf] ASoC: ti: davinci-mcasp: Fix slot mask settings when using multiple AXRs - rtc: pcf8563: Fix interrupt trigger method - rtc: pcf8563: Clear event flags and disable interrupts before requesting irq - net/sched: cbs: Fix error path of cbs_module_init - [arm64] drm/msm/a3xx: remove TPL1 regs from snapshot - ip6_fib: Don't discard nodes with valid routing information in fib6_locate_1() - perf/ioctl: Add check for the sample_period value - [x86] dmaengine: hsu: Revert "set HSU_CH_MTSR to memory width" - tools: bpftool: use correct argument in cgroup errors - fork,memcg: alloc_thread_stack_node needs to set tsk->stack - bnxt_en: Fix ethtool selftest crash under error conditions. - bnxt_en: Suppress error messages when querying DSCP DCB capabilities. - [amd64] iommu: Make iommu_disable safer - [x86] mfd: intel-lpss: Release IDA resources - rxrpc: Fix uninitialized error code in rxrpc_send_data_packet() - xprtrdma: Fix use-after-free in rpcrdma_post_recvs - PM: ACPI/PCI: Resume all devices during hibernation - ACPI: PM: Simplify and fix PM domain hibernation callbacks - ACPI: PM: Introduce "poweroff" callbacks for ACPI PM domain and LPSS - devres: allow const resource arguments - [arm64] RDMA/hns: Fixs hw access invalid dma memory error - ceph: fix "ceph.dir.rctime" vxattr value - xdp: fix possible cq entry leak - scsi: libfc: fix null pointer dereference on a null lport - xfrm interface: ifname may be wrong in logs - [armhf] clk: sunxi-ng: v3s: add the missing PLL_DDR1 - PM: sleep: Fix possible overflow in pm_system_cancel_wakeup() - libertas_tf: Use correct channel range in lbtf_geo_init - qed: reduce maximum stack frame size - usb: host: xhci-hub: fix extra endianness conversion - [x86] crypto: ccp - Reduce maximum stack usage - tipc: reduce risk of wakeup queue starvation - net/mlx5: Fix mlx5_ifc_query_lag_out_bits - cifs: fix rmmod regression in cifs.ko caused by force_sig changes - net: fix bpf_xdp_adjust_head regression for generic-XDP - cxgb4: smt: Add lock for atomic_dec_and_test - ext4: set error return correctly when ext4_htree_store_dirent fails - [arm64] RDMA/hns: Bugfix for slab-out-of-bounds when unloading hip08 driver - [arm64] RDMA/hns: bugfix for slab-out-of-bounds when loading hip08 driver - net/rds: Add a few missing rds_stat_names entries - tools: bpftool: fix arguments for p_err() in do_event_pipe() - tools: bpftool: fix format strings and arguments for jsonw_printf() - bnxt_en: Fix handling FRAG_ERR when NVM_INSTALL_UPDATE cmd fails - signal: Allow cifs and drbd to receive their terminating signals - [ppc64el] 64s/radix: Fix memory hot-unplug page table split - [x86] dmaengine: dw: platform: Switch to acpi_dma_controller_register() - mac80211: minstrel_ht: fix per-group max throughput rate initialization - i40e: reduce stack usage in i40e_set_fc - [armhf] 8896/1: VDSO: Don't leak kernel addresses - [mips*] avoid explicit UB in assignment of mips_io_port_base - media: em28xx: Fix exception handling in em28xx_alloc_urbs() - ahci: Do not export local variable ahci_em_messages - rxrpc: Fix lack of conn cleanup when local endpoint is cleaned up - Partially revert "kfifo: fix kfifo_alloc() and kfifo_init()" - hwmon: (lm75) Fix write operations for negative temperatures - net/sched: cbs: Set default link speed to 10 Mbps in cbs_set_port_rate - power: supply: Init device wakeup after device_add() - [x86] perf: Fix the dependency of the x86 insn decoder selftest - irqdomain: Add the missing assignment of domain->fwnode for named fwnode - bcma: fix incorrect update of BCMA_CORE_PCI_MDIO_DATA - bcache: Fix an error code in bch_dump_read() - netfilter: ctnetlink: honor IPS_OFFLOAD flag - [arm64] wcn36xx: use dynamic allocation for large variables - xsk: avoid store-tearing when assigning queues - xsk: avoid store-tearing when assigning umem - led: triggers: Fix dereferencing of null pointer - [arm64] net: hns3: fix error VF index when setting VLAN offload - rtlwifi: Fix file release memory leak - f2fs: fix wrong error injection path in inc_valid_block_count() - f2fs: fix error path of f2fs_convert_inline_page() - [x86] scsi: fnic: fix msix interrupt allocation - Btrfs: fix hang when loading existing inode cache off disk - Btrfs: fix inode cache waiters hanging on failure to start caching thread - Btrfs: fix inode cache waiters hanging on path allocation failure - btrfs: use correct count in btrfs_file_write_iter() - ixgbe: sync the first fragment unconditionally - ath10k: adjust skb length in ath10k_sdio_mbox_rx_packet - RDMA/cma: Fix false error message - net/rds: Fix 'ib_evt_handler_call' element in 'rds_ib_stat_names' - bnxt_en: Increase timeout for HWRM_DBG_COREDUMP_XX commands - f2fs: fix to avoid accessing uninitialized field of inode page in is_alive() - [powerpc*] mm/mce: Keep irqs disabled during lockless page table walk - bpf: fix BTF limits - [amd64] iommu: Wait for completion of IOTLB flush in attach_device - [amd64] net: aquantia: Fix aq_vec_isr_legacy() return value - cxgb4: Signedness bug in init_one() - [arm64] net: hisilicon: Fix signedness bug in hix5hd2_dev_probe() - [arm64] net: netsec: Fix signedness bug in netsec_probe() - [arm64,armhf] net: stmmac: dwmac-meson8b: Fix signedness bug in probe - of: mdio: Fix a signedness bug in of_phy_get_and_connect() - [arm64] net: ethernet: stmmac: Fix signedness bug in ipq806x_gmac_of_parse() - net: sched: cbs: Avoid division by zero when calculating the port rate - nvme: retain split access workaround for capability reads - [arm64,armhf] net: stmmac: gmac4+: Not all Unicast addresses may be available - rxrpc: Fix trace-after-put looking at the put connection record - mac80211: accept deauth frames in IBSS mode - llc: fix another potential sk_buff leak in llc_ui_sendmsg() - llc: fix sk_buff refcounting in llc_conn_state_process() - ip6erspan: remove the incorrect mtu limit for ip6erspan - [arm64,armhf] net: stmmac: fix length of PTP clock's name string - [arm64,armhf] net: stmmac: fix disabling flexible PPS output - sctp: add chunks to sk_backlog when the newsk sk_socket is not set - [s390x] qeth: Fix error handling during VNICC initialization - [s390x] qeth: Fix initialization of vnicc cmd masks during set online - act_mirred: Fix mirred_init_module error handling - net: avoid possible false sharing in sk_leave_memory_pressure() - net: add {READ|WRITE}_ONCE() annotations on ->rskq_accept_head - tcp: annotate lockless access to tcp_memory_pressure - net/smc: receive returns without data - net/smc: receive pending data after RCV_SHUTDOWN - [arm64] drm/msm/dsi: Implement reset correctly - [armhf] dmaengine: imx-sdma: fix size check for sdma script_number - [arm64] hibernate: check pgd table allocation - net: netem: fix error path for corrupted GSO frames - net: netem: correct the parent's backlog when corrupted packet was dropped - xsk: Fix registration of Rx-only sockets - bpf, offload: Unlock on error in bpf_offload_dev_create() - afs: Fix missing timeout reset - [x86] hv_netvsc: Fix offset usage in netvsc_send_table() - [x86] hv_netvsc: Fix send_table offset in case of a host bug - afs: Fix large file support - [armhf] hwrng: omap3-rom - Fix missing clock by probing with device tree - [mips64el,mipsel] Loongson: Fix return value of loongson_hwmon_init - [x86] hv_netvsc: flag software created hash value - net: neigh: use long type to store jiffies delta - packet: fix data-race in fanout_flow_is_huge() - affs: fix a memory leak in affs_remount - afs: Remove set but not used variables 'before', 'after' - [armhf] dmaengine: ti: edma: fix missed failure handling - drm/radeon: fix bad DMA from INTERRUPT_CNTL2 - [arm64] dts: meson-gxm-khadas-vim2: fix uart_A bluetooth node https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.100 - can, slip: Protect tty->disc_data in write_wakeup and close with RCU - [x86] firestream: fix memory leaks - gtp: make sure only SOCK_DGRAM UDP sockets are accepted - ipv6: sr: remove SKB_GSO_IPXIP6 on End.D* actions - net: cxgb3_main: Add CAP_NET_ADMIN check to CHELSIO_GET_MEM - net: ip6_gre: fix moving ip6gre between namespaces - net, ip6_tunnel: fix namespaces move - net, ip_tunnel: fix namespaces move - net: rtnetlink: validate IFLA_MTU attribute in rtnl_create_link() - net_sched: fix datalen for ematch - net-sysfs: Fix reference count leak in rx|netdev_queue_add_kobject - net-sysfs: fix netdev_queue_add_kobject() breakage - net-sysfs: Call dev_hold always in netdev_queue_add_kobject - net-sysfs: Call dev_hold always in rx_queue_add_kobject - net-sysfs: Fix reference count leak - net: usb: lan78xx: Add .ndo_features_check - Revert "udp: do rmem bulk free even if the rx sk queue is empty" - tcp_bbr: improve arithmetic division in bbr_update_bw() - tcp: do not leave dangling pointers in tp->highest_sack - tun: add mutex_unlock() call and napi.skb clearing in tun_get_user() - afs: Fix characters allowed into cell names - hwmon: (adt7475) Make volt2reg return same reg as reg2volt input - hwmon: (core) Do not use device managed functions for memory allocations - PCI: Mark AMD Navi14 GPU rev 0xc5 ATS as broken - tracing: trigger: Replace unneeded RCU-list traversals - Input: keyspan-remote - fix control-message timeouts - [x86] Revert "Input: synaptics-rmi4 - don't increment rmiaddr for SMBus transfers" - [arm64,armhf] mmc: tegra: fix SDR50 tuning override - mmc: sdhci: fix minimum clock rate for v3 controller - [arm64] Documentation: Document arm64 kpti control - Input: sur40 - fix interface sanity checks - Input: gtco - fix endpoint sanity check - Input: aiptek - fix endpoint sanity check - Input: pegasus_notetaker - fix endpoint sanity check - [armhf] Input: sun4i-ts - add a check for devm_thermal_zone_of_sensor_register - netfilter: nft_osf: add missing check for DREG attribute - hwmon: (nct7802) Fix voltage limits to wrong registers - do_last(): fetch directory ->i_mode and ->i_uid before it's too late (CVE-2020-8428) - sd: Fix REQ_OP_ZONE_REPORT completion handling - [i386] crypto: geode-aes - switch to skcipher for cbc(aes) fallback - media: v4l2-ioctl.c: zero reserved fields for S/TRY_FMT - scsi: iscsi: Avoid potential deadlock in iscsi_if_rx func - netfilter: ipset: use bitmap infrastructure completely - netfilter: nf_tables: add __nft_chain_type_get() - mm/memory_hotplug: make remove_memory() take the device_hotplug_lock - mm, sparse: drop pgdat_resize_lock in sparse_add/remove_one_section() - mm, sparse: pass nid instead of pgdat to sparse_add_one_section() - drivers/base/memory.c: remove an unnecessary check on NR_MEM_SECTIONS - mm, memory_hotplug: add nid parameter to arch_remove_memory - mm/memory_hotplug: release memory resource after arch_remove_memory() - drivers/base/memory.c: clean up relics in function parameters - mm, memory_hotplug: update a comment in unregister_memory() - mm/memory_hotplug: make unregister_memory_section() never fail - mm/memory_hotplug: make __remove_section() never fail - [powerpc*] mm: Fix section mismatch warning - mm/memory_hotplug: make __remove_pages() and arch_remove_memory() never fail - [s390x] mm: implement arch_remove_memory() - mm/memory_hotplug: allow arch_remove_memory() without CONFIG_MEMORY_HOTREMOVE - drivers/base/memory: pass a block_id to init_memory_block() - mm/memory_hotplug: create memory block devices after arch_add_memory() - mm/memory_hotplug: remove memory block devices before arch_remove_memory() - mm/memory_hotplug: make unregister_memory_block_under_nodes() never fail - mm/memory_hotplug: remove "zone" parameter from sparse_remove_one_section - mm/hotplug: kill is_dev_zone() usage in __remove_pages() - drivers/base/node.c: simplify unregister_memory_block_under_nodes() - mm/memunmap: don't access uninitialized memmap in memunmap_pages() - mm/memory_hotplug: fix try_offline_node() - mm/memory_hotplug: shrink zones when offlining memory https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.101 - orinoco_usb: fix interface sanity check - rsi_91x_usb: fix interface sanity check - USB: serial: ir-usb: add missing endpoint sanity check - USB: serial: ir-usb: fix link-speed handling - USB: serial: ir-usb: fix IrLAP framing - [arm64,armhf] usb: dwc3: turn off VBUS when leaving host mode - staging: wlan-ng: ensure error return is actually returned - [x86] staging: vt6656: correct packet types for CTS protect, mode. - [x86] staging: vt6656: use NULLFUCTION stack on mac80211 - [x86] staging: vt6656: Fix false Tx excessive retries reporting. - [arm64,armel] serial: 8250_bcm2835aux: Fix line mismatch on driver unbind - component: do not dereference opaque pointer in debugfs - [x86] mei: me: add comet point (lake) H device ids - crypto: chelsio - fix writing tfm flags to wrong place - cifs: Fix memory allocation in __smb2_handle_cancelled_cmd() - ath9k: fix storage endpoint lookup - brcmfmac: fix interface sanity check - rtl8xxxu: fix interface sanity check - zd1211rw: fix storage endpoint lookup - net_sched: ematch: reject invalid TCF_EM_SIMPLE - net_sched: fix ops->bind_class() implementations - HID: multitouch: Add LG MELF0410 I2C touchscreen support - HID: Add quirk for Xin-Mo Dual Controller - HID: ite: Add USB id match for Acer SW5-012 keyboard dock - [x86] HID: Add quirk for incorrect input length on Lenovo Y720 - drivers/hid/hid-multitouch.c: fix a possible null pointer access. - [arm64] phy: qcom-qmp: Increase PHY ready timeout - drivers/net/b44: Change to non-atomic bit operations on pwol_mask - [i386] net: wan: sdla: Fix cast from pointer to integer of different size - [arm64] gpio: max77620: Add missing dependency on GPIOLIB_IRQCHIP - atm: eni: fix uninitialized variable warning - HID: steam: Fix input device disappearing - [x86] platform/x86: dell-laptop: disable kbd backlight on Inspiron 10xx - [amd64] PCI: Add DMA alias quirk for Intel VCA NTB - [amd64] iommu: Support multiple PCI DMA aliases in IRQ Remapping - usb-storage: Disable UAS on JMicron SATA enclosure - sched/fair: Add tmp_alone_branch assertion - sched/fair: Fix insertion in rq->leaf_cfs_rq_list - rsi: fix use-after-free on probe errors - rsi: fix memory leak on failed URB submission - rsi: fix non-atomic allocation in completion handler - crypto: af_alg - Use bh_lock_sock in sk_destruct - block: cleanup __blkdev_issue_discard() - block: fix 32 bit overflow in __blkdev_issue_discard() - [arm64] KVM: Write arch.mdcr_el2 changes since last vcpu_load on VHE https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.102 - vfs: fix do_last() regression - crypto: pcrypt - Fix user-after-free on module unload - perf c2c: Fix return type for histogram sorting comparision functions - PM / devfreq: Add new name attribute for sysfs - tools lib: Fix builds when glibc contains strlcpy() - ext4: validate the debug_want_extra_isize mount option at parse time - mm/mempolicy.c: fix out of bounds write in mpol_parse_str() - reiserfs: Fix memory leak of journal device string - media: digitv: don't continue if remote control state can't be read - media: af9005: uninitialized variable printked - media: vp7045: do not read uninitialized values if usb transfer fails - media: gspca: zero usb_buf - media: dvb-usb/dvb-usb-urb.c: initialize actlen to 0 - tomoyo: Use atomic_t for statistics counter - ttyprintk: fix a potential deadlock in interrupt context issue - Bluetooth: Fix race condition in hci_release_sock() - cgroup: Prevent double killing of css when enabling threaded cgroup - [armhf] dts: sun8i: a83t: Correct USB3503 GPIOs polarity - [armhf] dts: am57xx-beagle-x15/am57xx-idk: Remove "gpios" for endpoint dt nodes - [armhf] dts: beagle-x15-common: Model 5V0 regulator - [arm64] clk: sunxi-ng: h6-r: Fix AR100/R_APB2 parent order - mac80211: mesh: restrict airtime metric to peered established plinks - ASoC: rt5640: Fix NULL dereference on module unload - ixgbevf: Remove limit of 10 entries for unicast filter list - ixgbe: Fix calculation of queue with VFs and flow director on interface flap - igb: Fix SGMII SFP module discovery for 100FX/LX. - [x86] platform/x86: GPD pocket fan: Allow somewhat lower/higher temperature limits - qmi_wwan: Add support for Quectel RM500Q - wireless: fix enabling channel 12 for custom regulatory domain - cfg80211: Fix radar event during another phy CAC - mac80211: Fix TKIP replay protection immediately after key setup - netfilter: nft_tunnel: ERSPAN_VERSION must not be null - [armhf] net: dsa: bcm_sf2: Configure IMP port for 2Gb/sec - bnxt_en: Fix ipv6 RFS filter matching logic. - iwlwifi: Don't ignore the cap field upon mcc update - [armhf] dts: am335x-boneblack-common: fix memory size - vti[6]: fix packet tx through bpf_redirect() - xfrm interface: fix packet tx through bpf_redirect() - xfrm: interface: do not confirm neighbor when do pmtu update - scsi: fnic: do not queue commands during fwreset - [armhf] 8955/1: virt: Relax arch timer version check during early boot - [arm64] tee: optee: Fix compilation issue with nommu - airo: Fix possible info leak in AIROOLDIOCTL/SIOCDEVPRIVATE - airo: Add missing CAP_NET_ADMIN check in AIROOLDIOCTL/SIOCDEVPRIVATE - r8152: get default setting of WOL before initializing - qlcnic: Fix CPU soft lockup while collecting firmware dump - seq_tab_next() should increase position index - l2t_seq_next should increase position index - net: Fix skb->csum update in inet_proto_csum_replace16(). - btrfs: do not zero f_bavail if we have available space - perf report: Fix no libunwind compiled warning break s390 issue - mm/migrate.c: also overwrite error when it is bigger than zero https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.103 - [armhf] Revert "drm/sun4i: dsi: Change the start delay calculation" - ovl: fix lseek overflow on 32bit - kernel/module: Fix memleak in module_add_modinfo_attrs() - media: iguanair: fix endpoint sanity check - ocfs2: fix oops when writing cloned file - [x86] cpu: Update cached HLE state on write to TSX_CTRL_CPUID_CLEAR - udf: Allow writing to 'Rewritable' partitions - printk: fix exclusive_console replaying - iwlwifi: mvm: fix NVM check for 3168 devices - gtp: use __GFP_NOWARN to avoid memalloc warning - l2tp: Allow duplicate session creation with UDP - net_sched: fix an OOB access in cls_tcindex - [arm64,armhf] net: stmmac: Delete txtimer in suspend() - bnxt_en: Fix TC queue mapping. - tcp: clear tp->total_retrans in tcp_disconnect() - tcp: clear tp->delivered in tcp_disconnect() - tcp: clear tp->data_segs{in|out} in tcp_disconnect() - tcp: clear tp->segs_{in|out} in tcp_disconnect() - rxrpc: Fix use-after-free in rxrpc_put_local() - rxrpc: Fix insufficient receive notification generation - rxrpc: Fix missing active use pinning of rxrpc_local object - rxrpc: Fix NULL pointer deref due to call->conn being cleared on disconnect - media: uvcvideo: Avoid cyclic entity chains due to malformed USB descriptors - ipc/msg.c: consolidate all xxxctl_down() functions - tracing: Fix sched switch start/stop refcount racy updates - rcu: Avoid data-race in rcu_gp_fqs_check_wake() - brcmfmac: Fix memory leak in brcmf_usbdev_qinit - usb: gadget: f_ncm: Use atomic_t to track in-flight request - usb: gadget: f_ecm: Use atomic_t to track in-flight request - ALSA: usb-audio: Fix endianess in descriptor validation - ALSA: dummy: Fix PCM format loop in proc output - mm/memory_hotplug: fix remove_memory() lockdep splat - mm: move_pages: report the number of non-attempted pages - media/v4l2-core: set pages dirty upon releasing DMA buffers - media: v4l2-core: compat: ignore native command codes - media: v4l2-rect.h: fix v4l2_rect_map_inside() top/left adjustments - irqdomain: Fix a memory leak in irq_domain_push_irq() - [x86] platform/x86: intel_scu_ipc: Fix interrupt support - [x86] ALSA: hda: Add Clevo W65_67SB the power_save blacklist - [arm64] KVM: Correct PSTATE on exception entry - [arm64,armhf] KVM: Correct CPSR on exception entry - [arm64,armhf] KVM: Correct AArch32 SPSR on exception entry - [arm64] KVM: Only sign-extend MMIO up to register width - [s390x] mm: fix dynamic pagetable upgrade for hugetlbfs - [powerpc*] pseries: Advance pfn if section is not present in lmb_is_removable() - smb3: fix signing verification of large reads - [arm64,armhf] PCI: tegra: Fix return value check of pm_runtime_get_sync() - [arm64,armhf] mmc: spi: Toggle SPI polarity, do not hardcode it - [x86] ACPI: video: Do not export a non working backlight interface on MSI MS-7721 boards - [x86] ACPI / battery: Deal with design or full capacity being reported as -1 - [x86] ACPI / battery: Use design-cap for capacity calculations if full-cap is not available - [x86] ACPI / battery: Deal better with neither design nor full capacity not being reported - alarmtimer: Unregister wakeup source when module get fails - ubifs: Reject unsupported ioctl flags explicitly - ubifs: don't trigger assertion on invalid no-key filename - ubifs: Fix FS_IOC_SETFLAGS unexpectedly clearing encrypt flag - ubifs: Fix deadlock in concurrent bulk-read and writepage - [i386] crypto: geode-aes - convert to skcipher API and make thread-safe - [x86] hv_balloon: Balloon up according to request page number - mfd: axp20x: Mark AXP20X_VBUS_IPSOUT_MGMT as volatile - crypto: api - Check spawn->alg under lock in crypto_drop_spawn - scsi: qla2xxx: Fix mtcp dump collection failure - ovl: fix wrong WARN_ON() in ovl_cache_update_ino() - f2fs: choose hardlimit when softlimit is larger than hardlimit in f2fs_statfs_project() - f2fs: fix miscounted block limit in f2fs_statfs_project() - f2fs: code cleanup for f2fs_statfs_project() - PM: core: Fix handling of devices deleted during system-wide resume - dm zoned: support zone sizes smaller than 128MiB - dm space map common: fix to ensure new block isn't already in use - dm crypt: fix benbi IV constructor crash if used in authenticated mode - dm: fix potential for q->make_request_fn NULL pointer - dm writecache: fix incorrect flush sequence when doing SSD mode commit - padata: Remove broken queue flushing - tracing: Annotate ftrace_graph_hash pointer with __rcu - tracing: Annotate ftrace_graph_notrace_hash pointer with __rcu - ftrace: Add comment to why rcu_dereference_sched() is open coded - ftrace: Protect ftrace_graph_hash with ftrace_sync - [x86] crypto: ccp - set max RSA modulus size for v3 platform devices as well - crypto: pcrypt - Do not clear MAY_SLEEP flag in original request - crypto: api - Fix race condition in crypto_spawn_alg - scsi: qla2xxx: Fix unbound NVME response length - NFS: Fix memory leaks and corruption in readdir - NFS: Directory page cache pages need to be locked when read - jbd2_seq_info_next should increase position index - Btrfs: fix missing hole after hole punching and fsync when using NO_HOLES - btrfs: set trans->drity in btrfs_commit_transaction - Btrfs: fix race between adding and putting tree mod seq elements and nodes - [armhf] tegra: Enable PLLP bypass during Tegra124 LP1 - iwlwifi: don't throw error when trying to remove IGTK - mwifiex: fix unbalanced locking in mwifiex_process_country_ie() - sunrpc: expiry_time should be seconds not timeval - gfs2: move setting current->backing_dev_info - gfs2: fix O_SYNC write handling - drm/rect: Avoid division by zero - media: rc: ensure lirc is initialized before registering input device - xen/balloon: Support xend-based toolstack take two - watchdog: fix UAF in reboot notifier handling in watchdog core code - bcache: add readahead cache policy options via sysfs interface - eventfd: track eventfd_signal() recursion depth - aio: prevent potential eventfd recursion on poll - [x86] KVM: Refactor picdev_write() to prevent Spectre-v1/L1TF attacks - [x86] KVM: Refactor prefix decoding to prevent Spectre-v1/L1TF attacks - [x86] KVM: Protect pmu_intel.c from Spectre-v1/L1TF attacks - [x86] KVM: Protect DR-based index computations from Spectre-v1/L1TF attacks - [x86] KVM: Protect kvm_lapic_reg_write() from Spectre-v1/L1TF attacks - [x86] KVM: Protect kvm_hv_msr_[get|set]_crash_data() from Spectre-v1/L1TF attacks - [x86] KVM: Protect ioapic_write_indirect() from Spectre-v1/L1TF attacks - [x86] KVM: Protect MSR-based index computations in pmu.h from Spectre-v1/L1TF attacks - [x86] KVM: Protect ioapic_read_indirect() from Spectre-v1/L1TF attacks - [x86] KVM: Protect MSR-based index computations from Spectre-v1/L1TF attacks in x86.c - [x86] KVM: Protect x86_decode_insn from Spectre-v1/L1TF attacks - [x86] KVM: Protect MSR-based index computations in fixed_msr_to_seg_unit() from Spectre-v1/L1TF attacks - [x86] KVM: Fix potential put_fpu() w/o load_fpu() on MPX platform - [ppc64el] KVM: Book3S HV: Uninit vCPU if vcore creation fails - [ppc64el] KVM: Book3S PR: Free shared page if mmu initialization fails - [x86] kvm: Be careful not to clear KVM_VCPU_FLUSH_TLB bit (CVE-2019-3016) - [x86] KVM: Don't let userspace set host-reserved cr4 bits - [x86] KVM: Free wbinvd_dirty_mask if vCPU creation fails - [s390x] KVM: do not clobber registers during guest reset/store status - [arm64,armhf] clk: tegra: Mark fuse clock as critical - percpu: Separate decrypted varaibles anytime encryption can be enabled - scsi: qla2xxx: Fix the endianness of the qla82xx_get_fw_size() return type - scsi: csiostor: Adjust indentation in csio_device_reset - scsi: qla4xxx: Adjust indentation in qla4xxx_mem_free - scsi: ufs: Recheck bkops level if bkops is disabled - [arm64] phy: qualcomm: Adjust indentation in read_poll_timeout - ext2: Adjust indentation in ext2_fill_super - [arm64] drm: msm: mdp4: Adjust indentation in mdp4_dsi_encoder_enable - IB/mlx5: Fix outstanding_pi index for GSI qps - IB/core: Fix ODP get user pages flow - nfsd: fix delay timer on 32-bit architectures - nfsd: fix jiffies/time_t mixup in LRU list - nfsd: Return the correct number of bytes written to the file - ubi: fastmap: Fix inverted logic in seen selfcheck - ubi: Fix an error pointer dereference in error handling code - bonding/alb: properly access headers in bond_alb_xmit() - [armhf] net: dsa: bcm_sf2: Only 7278 supports 2Gb/sec IMP port - [arm64,armhf] net: mvneta: move rx_dropped and rx_errors in per-cpu stats - net_sched: fix a resource leak in tcindex_set_parms() - net/mlx5: IPsec, Fix esp modify function attribute - net/mlx5: IPsec, fix memory leak at mlx5_fpga_ipsec_delete_sa_ctx - [arm64] net: macb: Remove unnecessary alignment check for TSO - [arm64] net: macb: Limit maximum GEM TX length in TSO - [armhf] net: dsa: b53: Always use dev->vlan_enabled in b53_configure_vlan() - ext4: fix deadlock allocating crypto bounce page from mempool - btrfs: use bool argument in free_root_pointers() - btrfs: free block groups after free'ing fs trees - btrfs: flush write bio if we loop in extent_write_cache_pages - [x86] KVM: mmu: Apply max PA check for MMIO sptes to 32-bit KVM - [x86] KVM: Use gpa_t for cr2/gpa to fix TDP support on 32-bit KVM - [x86] KVM: nVMX: vmread should not set rflags to specify success in case of #PF - KVM: Use vcpu-specific gva->hva translation when querying host page size - KVM: Play nice with read-only memslots when querying host page size - mm: zero remaining unavailable struct pages - mm: return zero_resv_unavail optimization - mm/page_alloc.c: fix uninitialized memmaps on a partially populated last section - cifs: fail i/o on soft mounts if sessionsetup errors out - [x86] apic/msi: Plug non-maskable MSI affinity race - clocksource: Prevent double add_timer_on() for watchdog_timer - perf/core: Fix mlock accounting in perf_mmap() - rxrpc: Fix service call disconnection https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.104 - ASoC: pcm: update FE/BE trigger order based on the command - [x86] hv_sock: Remove the accept port restriction - IB/mlx4: Fix memory leak in add_gid error flow - RDMA/netlink: Do not always generate an ACK for some netlink operations - RDMA/core: Fix locking in ib_uverbs_event_read - scsi: ufs: Fix ufshcd_probe_hba() reture value in case ufshcd_scsi_add_wlus() fails - PCI/IOV: Fix memory leak in pci_iov_add_virtfn() - ath10k: pci: Only dump ATH10K_MEM_REGION_TYPE_IOREG when safe - PCI: Don't disable bridge BARs when assigning bus resources - nfs: NFS_SWAP should depend on SWAP - NFS: Revalidate the file size on a fatal write error - NFS/pnfs: Fix pnfs_generic_prepare_to_resend_writes() - NFSv4: try lease recovery on NFS4ERR_EXPIRED - [arm64] serial: uartps: Add a timeout to the tx empty wait - [arm64] gpio: zynq: Report gpio direction at boot - spi: spi-mem: Add extra sanity checks on the op param - spi: spi-mem: Fix inverted logic in op sanity check - rtc: cmos: Stop using shared IRQ - [x86] platform/x86: intel_mid_powerbtn: Take a copy of ddata - [powerpc*] pseries/vio: Fix iommu_table use-after-free refcount warning - [powerpc*] pseries: Allow not having ibm, hypertas-functions::hcall-multi-tce for DDW - [arm64] iommu/arm-smmu-v3: Populate VMID field for CMDQ_OP_TLBI_NH_VA - [arm64,armhf] KVM: vgic-its: Fix restoration of unmapped collections - [armel,armhf] 8949/1: mm: mark free_memmap as __init - [arm64] cpufeature: Fix the type of no FP/SIMD capability - [arm64] ptrace: nofpsimd: Fail FP/SIMD regset operations - [arm64,armhf] KVM: Fix young bit from mmu notifier - [arm64,armhf] KVM: Fix DFSR setting for non-LPAE aarch32 guests - [arm64,armhf] KVM: Make inject_abt32() inject an external abort instead - [arm64] KVM: pmu: Don't increment SW_INCR if PMCR.E is unset - mtd: onenand_base: Adjust indentation in onenand_read_ops_nolock - mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() - mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() - libertas: don't exit from lbs_ibss_join_existing() with RCU read lock held - libertas: make lbs_ibss_join_existing() return error code on rates overflow - scsi: megaraid_sas: Do not initiate OCR if controller is not in ready state - [x86] stackframe: Move ENCODE_FRAME_POINTER to asm/frame.h - [x86] x86/stackframe, x86/ftrace: Add pt_regs frame annotations - [arm64] serial: uartps: Move the spinlock after the read of the tx empty - padata: fix null pointer deref of pd->pinst https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.105 - Input: synaptics - switch T470s to RMI4 by default - Input: synaptics - enable SMBus on ThinkPad L470 - Input: synaptics - remove the LEN0049 dmi id from topbuttonpad list - ALSA: usb-audio: Fix UAC2/3 effect unit parsing - ALSA: hda/realtek - Fix silent output on MSI-GL73 - ALSA: usb-audio: Apply sample rate quirk for Audioengine D1 - [arm64] cpufeature: Set the FP/SIMD compat HWCAP bits properly - [arm64] nofpsmid: Handle TIF_FOREIGN_FPSTATE flag cleanly - ALSA: usb-audio: sound: usb: usb true/false for bool return type - ALSA: usb-audio: Add clock validity quirk for Denon MC7000/MCX8000 - ext4: don't assume that mmp_nodename/bdevname have NUL - ext4: fix support for inode sizes > 1024 bytes - ext4: fix checksum errors with indexed dirs - ext4: add cond_resched() to ext4_protect_reserved_inode (CVE-2020-8992) - ext4: improve explanation of a mount failure caused by a misconfigured kernel - Btrfs: fix race between using extent maps and merging them - btrfs: ref-verify: fix memory leaks - btrfs: print message when tree-log replay starts - btrfs: log message when rw remount is attempted with unclean tree-log - [arm64] ssbs: Fix context-switch when SSBS is present on all CPUs - [x86] perf/x86/amd: Add missing L2 misses event spec to AMD Family 17h's event map - nvme: fix the parameter order for nvme_get_log in nvme_get_fw_slot_info - [amd64] IB/hfi1: Acquire lock to release TID entries when user file is closed - [amd64] IB/hfi1: Close window for pq and request coliding - IB/rdmavt: Reset all QPs when the device is shut down - RDMA/core: Fix invalid memory access in spec_filter_size - [amd64] RDMA/hfi1: Fix memory leak in _dev_comp_vect_mappings_create - RDMA/rxe: Fix soft lockup problem due to using tasklets in softirq - RDMA/core: Fix protection fault in get_pkey_idx_qp_list - [s390x] time: Fix clk type in get_tod_clock - [x86] perf/x86/intel: Fix inaccurate period in context switch for auto- reload - NFSv4.1 make cachethis=no for writes - jbd2: move the clearing of b_modified flag to the journal_unmap_buffer() - jbd2: do not clear the BH_Mapped flag when forgetting a metadata buffer - [x86] KVM: mmu: Fix struct guest_walker arrays for 5-level paging https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.106 - core: Don't skip generic XDP program execution for cloned SKBs - enic: prevent waking up stopped tx queues over watchdog reset - net/smc: fix leak of kernel memory to user space - net/sched: matchall: add missing validation of TCA_MATCHALL_FLAGS - net/sched: flower: add missing validation of TCA_FLOWER_FLAGS - [x86] KVM: nVMX: Use correct root level for nested EPT shadow page tables - [x86] drm/gma500: Fixup fbdev stolen size usage evaluation - cpu/hotplug, stop_machine: Fix stop_machine vs hotplug order - brcmfmac: Fix use after free in brcmf_sdio_readframes() - ext4: fix ext4_dax_read/write inode locking sequence for IOCB_NOWAIT - ALSA: ctl: allow TLV read operation for callback type of element in locked case - [powerpc*] powernv/iov: Ensure the pdn for VFs always contains a valid PE number - [amd64] iommu/vt-d: Fix off-by-one in PASID allocation - [x86] pinctrl: baytrail: Do not clear IRQ flags on direct-irq enabled pins - [x86] efi: Map the entire EFI vendor string before copying it - [mips64el,mipsel] Loongson: Fix potential NULL dereference in loongson3_platform_init() - [arm*] usb: dwc2: Fix IN FIFO allocation - [armel,armhf] clocksource/drivers/bcm2835_timer: Fix memory leak of timer - jbd2: clear JBD2_ABORT flag before journal_reset to update log tail info when load journal - [armhf] pwm: omap-dmtimer: Simplify error handling - [s390x] pci: Fix possible deadlock in recover_store() - [powerpc*] iov: Move VF pdev fixup into pcibios_fixup_iov() - tracing: Fix tracing_stat return values in error handling paths - tracing: Fix very unlikely race of registering two stat tracers - ext4, jbd2: ensure panic when aborting with zero errno - ath10k: Correct the DMA direction for management tx buffers - nbd: add a flush_workqueue in nbd_start_device - [s390x] KVM: ENOTSUPP -> EOPNOTSUPP fixups - [arm64] clk: qcom: rcg2: Don't crash if our parent can't be found; return an error - drm/amdgpu: remove 4 set but not used variable in amdgpu_atombios_get_connector_info_from_object_table - [arm64,armhf] regulator: rk808: Lower log level on optional GPIOs being not available - NFC: port100: Convert cpu_to_le16(le16_to_cpu(E1) + E2) to use le16_add_cpu(). - selinux: fall back to ref-walk if audit is required - selinux: ensure we cleanup the internal AVC counters on error in avc_insert() - media: cx23885: Add support for AVerMedia CE310B - PCI: Add generic quirk for increasing D3hot delay - PCI: Increase D3 delay for AMD Ryzen5/7 XHCI controllers - media: v4l2-device.h: Explicitly compare grp{id,mask} to zero in v4l2_device macros - reiserfs: Fix spurious unlock in reiserfs_fill_super() error handling - fore200e: Fix incorrect checks of NULL pointer dereference - netfilter: nft_tunnel: add the missing ERSPAN_VERSION nla_policy - ALSA: usx2y: Adjust indentation in snd_usX2Y_hwdep_dsp_status - orinoco: avoid assertion in case of NULL pointer - ACPICA: Disassembler: create buffer fields in ACPI_PARSE_LOAD_PASS1 - scsi: ufs: Complete pending requests in host reset and restore path - scsi: aic7xxx: Adjust indentation in ahc_find_syncrate - selinux: ensure we cleanup the internal AVC counters on error in avc_update() - dmaengine: Store module owner in dma_device struct - [arm64] clk: sunxi-ng: add mux and pll notifiers for A64 CPU clock - tools lib api fs: Fix gcc9 stringop-truncation compilation error - [x86] ACPI: button: Add DMI quirk for Razer Blade Stealth 13 late 2019 lid switch - mlx5: work around high stack usage with gcc - drm: remove the newline for CRC source name. - usbip: Fix unsafe unaligned pointer usage - udf: Fix free space reporting for metadata and virtual partitions - staging: rtl8188: avoid excessive stack usage - [amd64] IB/hfi1: Add software counter for ctxt0 seq drop - [armhf] soc/tegra: fuse: Correct straps' address for older Tegra124 device trees - [x86] efi: Don't panic or BUG() on non-critical error conditions - rcu: Use WRITE_ONCE() for assignments to ->pprev for hlist_nulls - [x86] nmi: Remove irq_work from the long duration NMI handler - driver core: platform: Prevent resouce overflow from causing infinite loops - driver core: Print device when resources present in really_probe() - bpf: Return -EBADRQC for invalid map type in __bpf_tx_xdp_map - drm/nouveau/secboot/gm20b: initialize pointer in gm20b_secboot_new() - drm/nouveau/gr/gk20a,gm200-: add terminators to method lists read from fw - drm/nouveau: Fix copy-paste error in nouveau_fence_wait_uevent_handler - drm/nouveau/fault/gv100-: fix memory leak on module unload - [x86] drm/vmwgfx: prevent memory leak in vmw_cmdbuf_res_add - [armhf] usb: musb: omap2430: Get rid of musb .set_vbus for omap2430 glue - [arm64] iommu/arm-smmu-v3: Use WRITE_ONCE() when changing validity of an STE - f2fs: set I_LINKABLE early to avoid wrong access by vfs - f2fs: free sysfs kobject - scsi: iscsi: Don't destroy session if there are outstanding connections - watchdog/softlockup: Enforce that timestamp is valid on boot - f2fs: fix memleak of kobject - [x86] mm: Fix NX bit clearing issue in kernel_map_pages_in_pgd - [armhf] pwm: omap-dmtimer: Remove PWM chip in .remove before making it unfunctional - btrfs: fix possible NULL-pointer dereference in integrity checks - btrfs: safely advance counter when looking up bio csums - btrfs: device stats, log when stats are zeroed - module: avoid setting info->name early in case we can fall back to info->mod->name - ALSA: hda/hdmi - add retry logic to parse_intel_hdmi() - driver core: platform: fix u32 greater or equal to zero comparison - ALSA: hda - Add docking station support for Lenovo Thinkpad T420s - drm/nouveau/mmu: fix comptag memory leak - [powerpc*] sriov: Remove VF eeh_dev state when disabling SR-IOV - bcache: cached_dev_free needs to put the sb page - [amd64] iommu/vt-d: Remove unnecessary WARN_ON_ONCE() - jbd2: switch to use jbd2_journal_abort() when failed to submit the commit record - jbd2: make sure ESHUTDOWN to be recorded in the journal superblock - iwlegacy: ensure loop counter addr does not wrap and cause an infinite loop - cifs: fix NULL dereference in match_prepath - bpf: map_seq_next should always increase position index - ceph: check availability of mds cluster on mount after wait timeout - [arm64,armhf] irqchip/gic-v3: Only provision redistributors that are enabled in ACPI - drm/nouveau/disp/nv50-: prevent oops when no channel method map provided - ftrace: fpid_next() should increase position index - trigger_next should increase position index - radeon: insert 10ms sleep in dce5_crtc_load_lut - ocfs2: fix a NULL pointer dereference when call ocfs2_update_inode_fsync_trans() - reiserfs: prevent NULL pointer dereference in reiserfs_insert_item() - bcache: explicity type cast in bset_bkey_last() - [arm64,armhf] irqchip/gic-v3-its: Reference to its_invall_cmd descriptor when building INVALL - iwlwifi: mvm: Fix thermal zone registration - brd: check and limit max_part par - NFS: Fix memory leaks - help_next should increase position index - cifs: log warning message (once) if out of disk space - virtio_balloon: prevent pfn array overflow https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.107 - [arm64] iommu/qcom: Fix bogus detach logic - ALSA: hda: Use scnprintf() for printing texts for sysfs/procfs - [x86] ALSA: hda/realtek - Apply quirk for MSI GP63, too - [x86] ALSA: hda/realtek - Apply quirk for yet another MSI laptop - [armhf] ASoC: sun8i-codec: Fix setting DAI data format - ecryptfs: fix a memory leak bug in parse_tag_1_packet() - ecryptfs: fix a memory leak bug in ecryptfs_init_messaging() - [x86] thunderbolt: Prevent crash if non-active NVMem file is read - USB: misc: iowarrior: add support for 2 OEMed devices - USB: misc: iowarrior: add support for the 28 and 28L devices - USB: misc: iowarrior: add support for the 100 device - floppy: check FDC index for errors before assigning it (CVE-2020-9383) - vt: fix scrollback flushing on background consoles - vt: selection, handle pending signals in paste_selection - vt: vt_ioctl: fix race in VT_RESIZEX - [arm*] staging: android: ashmem: Disallow ashmem memory from being remapped (CVE-2020-0009) - [x86] staging: vt6656: fix sign of rx_dbm to bb_pre_ed_rssi. - xhci: Force Maximum Packet size for Full-speed bulk devices to valid range. - xhci: fix runtime pm enabling for quirky Intel hosts - xhci: Fix memory leak when caching protocol extended capability PSI tables - take 2 - usb: host: xhci: update event ring dequeue pointer on purpose - USB: core: add endpoint-blacklist quirk - USB: quirks: blacklist duplicate ep on Sound Devices USBPre2 - usb: uas: fix a plug & unplug racing - USB: Fix novation SourceControl XL after suspend - USB: hub: Don't record a connect-change event during reset-resume - USB: hub: Fix the broken detection of USB3 device in SMSC hub - [arm*] usb: dwc2: Fix SET/CLEAR_FEATURE and GET_STATUS flows - [arm64,armhf] usb: dwc3: gadget: Check for IOC/LST bit in TRB->ctrl fields - staging: rtl8188eu: Fix potential security hole - staging: rtl8188eu: Fix potential overuse of kernel memory - staging: rtl8723bs: Fix potential security hole - staging: rtl8723bs: Fix potential overuse of kernel memory - [powerpc*] tm: Fix clearing MSR[TS] in current when reclaiming on signal delivery - jbd2: fix ocfs2 corrupt when clearing block group bits - [x86] mce/amd: Publish the bank pointer only after setup has succeeded - [x86] mce/amd: Fix kobject lifetime - [x86] cpu/amd: Enable the fixed Instructions Retired counter IRPERF - serial: 8250: Check UPF_IRQ_SHARED in advance - [armhf] tty: serial: imx: setup the correct sg entry for tx dma - serdev: ttyport: restore client ops on deregistration - Revert "ipc,sem: remove uneeded sem_undo_list lock usage in exit_sem()" - mm/memcontrol.c: lost css_put in memcg_expand_shrinker_maps() - nvme-multipath: Fix memory leak with ana_log_buf - genirq/irqdomain: Make sure all irq domain flags are distinct - mm/vmscan.c: don't round up scan size for online memory cgroup - drm/amdgpu/soc15: fix xclk for raven - [x86] xhci: apply XHCI_PME_STUCK_QUIRK to Intel Comet Lake platforms - [x86] KVM: nVMX: Don't emulate instructions in guest mode (CVE-2020-2732) - [x86] KVM: don't notify userspace IOAPIC on edge-triggered interrupt EOI - drm/nouveau/kms/gv100-: Re-set LUT after clearing for modesets - ext4: fix a data race in EXT4_I(inode)->i_disksize - ext4: add cond_resched() to __ext4_find_entry() - ext4: fix potential race between online resizing and write operations - ext4: fix potential race between s_group_info online resizing and access - ext4: fix potential race between s_flex_groups online resizing and access - ext4: fix mount failure with quota configured as module - ext4: rename s_journal_flag_rwsem to s_writepages_rwsem - ext4: fix race between writepages and enabling EXT4_EXTENTS_FL - [x86] KVM: nVMX: Refactor IO bitmap checks into helper function - [x86] KVM: nVMX: Check IO instruction VM-exit conditions - [x86] KVM: nVMX: handle nested posted interrupts when apicv is disabled for L1 - [x86] KVM: apic: avoid calculating pending eoi from an uninitialized val - btrfs: fix bytes_may_use underflow in prealloc error condtition - btrfs: reset fs_root to NULL on error in open_ctree - btrfs: do not check delayed items are empty for single transaction cleanup - Btrfs: fix btrfs_wait_ordered_range() so that it waits for all ordered extents - scsi: Revert "target: iscsi: Wait for all commands to finish before freeing a session" - usb: gadget: composite: Fix bMaxPower for SuperSpeedPlus - [arm*] usb: dwc2: Fix in ISOC request length checking - staging: rtl8723bs: fix copy of overlapping memory - ecryptfs: replace BUG_ON with error handling code - genirq/proc: Reject invalid affinity masks (again) - bpf, offload: Replace bitwise AND by logical AND in bpf_prog_offload_info_fill - ALSA: seq: Avoid concurrent access to queue flags - ALSA: seq: Fix concurrent access to queue current tick/time - netfilter: xt_hashlimit: limit the max size of hashtable - rxrpc: Fix call RCU cleanup using non-bh-safe locks - ata: ahci: Add shutdown to freeze hardware resources of ahci - xen: Enable interrupts when calling _cond_resched() - [s390x] mm: Explicitly compare PAGE_DEFAULT_KEY against zero in storage_key_init_range https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.108 - [arm64,armhf] irqchip/gic-v3-its: Fix misuse of GENMASK macro - iwlwifi: pcie: fix rb_allocator workqueue allocation - ipmi:ssif: Handle a possible NULL pointer reference - [arm64] drm/msm: Set dma maximum segment size for mdss - dax: pass NOWAIT flag to iomap_apply - mac80211: consider more elements in parsing CRC - cfg80211: check wiphy driver existence for drvinfo report - [s390x] zcrypt: fix card and queue total counter wrap - qmi_wwan: re-add DW5821e pre-production variant - qmi_wwan: unconditionally reject 2 ep interfaces - [arm64] soc/tegra: fuse: Fix build with Tegra194 configuration - net: ena: fix potential crash when rxfh key is NULL - net: ena: fix uses of round_jiffies() - net: ena: add missing ethtool TX timestamping indication - net: ena: fix incorrect default RSS key - net: ena: rss: fix failure to get indirection table - net: ena: rss: store hash function as values and not bits - net: ena: fix incorrectly saving queue numbers when setting RSS indirection table - net: ena: ethtool: use correct value for crc32 hash - net: ena: ena-com.c: prevent NULL pointer dereference - cifs: Fix mode output in debugging statements - cfg80211: add missing policy for NL80211_ATTR_STATUS_CODE - sysrq: Restore original console_loglevel when sysrq disabled - sysrq: Remove duplicated sysrq message - net: fib_rules: Correctly set table field when table number exceeds 8 bits - net: sched: correct flower port blocking - sctp: move the format error check out of __sctp_sf_do_9_1_abort - ipv6: Fix route replacement with dev-only route - ipv6: Fix nlmsg_flags when splitting a multipath route - qede: Fix race between rdma destroy workqueue and link change event - ext4: potential crash on allocation error in ext4_alloc_flex_bg_array() - audit: fix error handling in audit_data_to_entry() - ACPICA: Introduce ACPI_ACCESS_BYTE_WIDTH() macro - [arm64,x86] ACPI: watchdog: Fix gas->access_width usage - [x86] KVM: VMX: check descriptor table exits on instruction emulation - HID: ite: Only bind to keyboard USB interface on Acer SW5-012 keyboard dock - HID: core: fix off-by-one memset in hid_report_raw_event() - HID: core: increase HID report buffer size to 8KiB - tracing: Disable trace_printk() on post poned tests - Revert "PM / devfreq: Modify the device name as devfreq(X) for sysfs" - amdgpu/gmc_v9: save/restore sdpif regs during S3 - vhost: Check docket sk_family instead of call getname (CVE-2020-10942) - HID: alps: Fix an error handling path in 'alps_input_configured()' - HID: hiddev: Fix race in in hiddev_disconnect() - [x86] hv_netvsc: Fix unwanted wakeup in netvsc_attach() - [s390x] qeth: vnicc Fix EOPNOTSUPP precedence - net: netlink: cap max groups which will be considered in netlink_bind() - [amd64] net: atlantic: fix use after free kasan warn - [amd64] net: atlantic: fix potential error handling - net/smc: no peer ID in CLC decline for SMCD - net: ena: make ena rxfh support ETH_RSS_HASH_NO_CHANGE - namei: only return -ECHILD from follow_dotdot_rcu() - mwifiex: drop most magic numbers from mwifiex_process_tdls_action_frame() - [x86] KVM: SVM: Override default MMIO mask if memory encryption is enabled - KVM: Check for a bad hva before dropping into the ghc slow path - sched/fair: Optimize update_blocked_averages() - sched/fair: Fix O(nr_cgroups) in the load balancing path - perf stat: Use perf_evsel__is_clocki() for clock events - perf stat: Fix shadow stats for clock events - [arm64] drivers: net: xgene: Fix the order of the arguments of 'alloc_etherdev_mqs()' - kprobes: Set unoptimized flag after unoptimizing code - [armhf] pwm: omap-dmtimer: put_device() after of_find_device_by_node() - perf hists browser: Restore ESC as "Zoom out" of DSO/thread/etc - [x86] KVM: Remove spurious kvm_mmu_unload() from vcpu destruction path - [x86] KVM: Remove spurious clearing of async #PF MSR - netfilter: nft_tunnel: no need to call htons() when dumping ports - mm/huge_memory.c: use head to check huge zero page - mm, thp: fix defrag setting if newline is not used - audit: always check the netlink payload length in audit_receive_msg() https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.109 - [x86] EDAC/amd64: Set grain per DIMM - ALSA: hda/realtek - Fix a regression for mute led on Lenovo Carbon X1 - [armhf] net: dsa: bcm_sf2: Forcibly configure IMP port for 1Gb/sec - kprobes: Fix optimize_kprobe()/unoptimize_kprobe() cancellation logic - [x86] ALSA: hda: do not override bus codec_mask in link_get() - usb: gadget: composite: Support more than 500mA MaxPower - usb: gadget: ffs: ffs_aio_cancel(): Save/restore IRQ flags - usb: gadget: serial: fix Tx stall after buffer overflow - [arm64] drm/msm/mdp5: rate limit pp done timeout warnings - [arm64] drm: msm: Fix return type of dsi_mgr_connector_mode_valid for kCFI - scsi: megaraid_sas: silence a warning - [arm64] drm/msm/dsi: save pll state before dsi host is powered off - [arm64] drm/msm/dsi/pll: call vco set rate explicitly - [armhf] net: dsa: b53: Ensure the default VID is untagged - [s390x] cio: cio_ignore_proc_seq_next should increase position index - [s390x] qdio: fill SL with absolute addresses - ice: Don't tell the OS that link is going down - [arm64] net: thunderx: workaround BGX TX Underflow issue - ALSA: hda/realtek - Add Headset Mic supported - ALSA: hda/realtek - Fix silent output on Gigabyte X570 Aorus Master - cifs: don't leak -EAGAIN for stat() during reconnect - usb: storage: Add quirk for Samsung Fit flash - usb: quirks: add NO_LPM quirk for Logitech Screen Share - [arm64,armhf] usb: dwc3: gadget: Update chain bit correctly when using sg list - usb: core: hub: fix unhandled return by employing a void function - usb: core: hub: do error out if usb_autopm_get_interface() fails - usb: core: port: do error out if usb_autopm_get_interface() fails - vgacon: Fix a UAF in vgacon_invert_region (CVE-2020-8647, CVE-2020-8649) - mm, numa: fix bad pmd by atomically check for pmd_trans_huge when marking page tables prot_numa - mm: fix possible PMD dirty bit lost in set_pmd_migration_entry() - fat: fix uninit-memory access for partial initialized inode - [arm64] tty:serial:mvebu-uart:fix a wrong return - serial: 8250_exar: add support for ACCES cards - vt: selection, close sel_buffer race (CVE-2020-8648) - vt: selection, push console lock down - vt: selection, push sel_lock up - [arm64,armhf] media: v4l2-mem2mem.c: fix broken links - [x86] pkeys: Manually set X86_FEATURE_OSPKE to preserve existing changes - [arm64,armhf] dmaengine: tegra-apb: Fix use-after-free - [arm64,armhf] dmaengine: tegra-apb: Prevent race conditions of tasklet vs free list - dm cache: fix a crash due to incorrect work item cancelling - dm: report suspended device during destroy - dm writecache: verify watermark during resume - [x86] ASoC: topology: Fix memleak in soc_tplg_link_elems_load() - [x86] ASoC: topology: Fix memleak in soc_tplg_manifest_load() - [x86] ASoC: intel: skl: Fix pin debug prints - [x86] ASoC: intel: skl: Fix possible buffer overflow in debug outputs - [armhf] dmaengine: imx-sdma: remove dma_slave_config direction usage and leave sdma_event_enable() - ASoC: pcm: Fix possible buffer overflow in dpcm state sysfs output - ASoC: dapm: Correct DAPM handling of active widgets during shutdown - [armhf] drm/sun4i: Fix DE2 VI layer format support - [armhf] drm/sun4i: de2/de3: Remove unsupported VI layer formats - RDMA/iwcm: Fix iwcm work deallocation - RMDA/cm: Fix missing ib_cm_destroy_id() in ib_cm_insert_listen() - [amd64] IB/hfi1, qib: Ensure RCU is locked when accessing list - [armhf] ARM: imx: build v7_cpu_resume() unconditionally - hwmon: (adt7462) Fix an error return in ADT7462_REG_VOLT() - [powerpc*] fix hardware PMU exception bug on PowerVM compatibility mode systems - [amd64] efi/x86: Align GUIDs to their size in the mixed mode runtime wrapper - [amd64] efi/x86: Handle by-ref arguments covering multiple pages in mixed mode - dm integrity: fix a deadlock due to offloading to an incorrect workqueue - scsi: pm80xx: Fixed kernel panic during error recovery for SATA drive https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.110 - [x86] KVM: SVM: fix up incorrect backport https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.111 - phy: Revert toggling reset changes. - net: phy: Avoid multiple suspends - cgroup, netclassid: periodically release file_lock on classid updating - gre: fix uninit-value in __iptunnel_pull_header - inet_diag: return classid for all socket types - ipv6/addrconf: call ipv6_mc_up() for non-Ethernet interface - ipvlan: add cond_resched_rcu() while processing muticast backlog - ipvlan: do not add hardware address of master to its unicast filter list - ipvlan: do not use cond_resched_rcu() in ipvlan_process_multicast() - ipvlan: don't deref eth hdr before checking it's set - net/ipv6: use configured metric when add peer route - netlink: Use netlink header as base to calculate bad attribute offset - net: macsec: update SCI upon MAC address change. - net: nfc: fix bounds checking bugs on "pipe" - net/packet: tpacket_rcv: do not increment ring index on drop - [arm64,armhf] net: stmmac: dwmac1000: Disable ACS if enhanced descs are not used - r8152: check disconnect status after long sleep - sfc: detach from cb_page in efx_copy_channel() - bnxt_en: reinitialize IRQs when MTU is modified - cgroup: memcg: net: do not associate sock with unrelated cgroup - net: memcg: late association of sock to memcg - net: memcg: fix lockdep splat in inet_csk_accept() - devlink: validate length of param values - nl802154: add missing attribute validation - nl802154: add missing attribute validation for dev_type - can: add missing attribute validation for termination - macsec: add missing attribute validation for port - net: fq: add missing attribute validation for orphan mask - team: add missing attribute validation for port ifindex - team: add missing attribute validation for array index - nfc: add missing attribute validation for SE API - nfc: add missing attribute validation for deactivate target - nfc: add missing attribute validation for vendor subcommand - net: phy: fix MDIO bus PM PHY resuming - net/ipv6: need update peer route when modify metric - net/ipv6: remove the old peer route if change it to a new one - tipc: add missing attribute validation for MTU property - devlink: validate length of region addr/len - bonding/alb: make sure arp header is pulled before accessing it - slip: make slhc_compress() more robust against malicious packets - [armhf] net: fec: validate the new settings in fec_enet_set_coalesce() - macvlan: add cond_resched() during multicast processing - cgroup: cgroup_procs_next should increase position index - cgroup: Iterate tasks that did not finish do_exit() - iwlwifi: mvm: Do not require PHY_SKU NVM section for 3168 devices - virtio-blk: fix hw_queue stopped on arbitrary error - [amd64] iommu/vt-d: quirk_ioat_snb_local_iommu: replace WARN_TAINT with pr_warn + add_taint - netfilter: nf_conntrack: ct_cpu_seq_next should increase position index - netfilter: synproxy: synproxy_cpu_seq_next should increase position index - netfilter: xt_recent: recent_seq_next should increase position index - netfilter: x_tables: xt_mttg_seq_next should increase position index - workqueue: don't use wq_select_unbound_cpu() for bound works - drm/amd/display: remove duplicated assignment to grph_obj_type - cifs_atomic_open(): fix double-put on late allocation failure - gfs2_atomic_open(): fix O_EXCL|O_CREAT handling on cold dcache - [x86] KVM: clear stale x86_emulate_ctxt->intercept value - efi: Fix a race and a buffer overflow while reading efivars via sysfs - efi: Make efi_rts_work accessible to efi page fault handler - mt76: fix array overflow on receiving too many fragments for a packet - [x86] mce: Fix logic and comments around MSR_PPIN_CTL - [arm64] iommu/dma: Fix MSI reservation allocation - [amd64] iommu/vt-d: dmar: replace WARN_TAINT with pr_warn + add_taint - [amd64] iommu/vt-d: Fix a bug in intel_iommu_iova_to_phys() for huge page - batman-adv: Don't schedule OGM for disabled interface - [arm64] pinctrl: meson-gxl: fix GPIOX sdio pins - pinctrl: core: Remove extra kref_get which blocks hogs being freed - [arm64,armhf] i2c: gpio: suppress error on probe defer - nl80211: add missing attribute validation for critical protocol indication - nl80211: add missing attribute validation for beacon report scanning - nl80211: add missing attribute validation for channel switch - perf bench futex-wake: Restore thread count default to online CPU count - netfilter: cthelper: add missing attribute validation for cthelper - netfilter: nft_payload: add missing attribute validation for payload csum flags - netfilter: nft_tunnel: add missing attribute validation for tunnels - [amd64] iommu/vt-d: Fix the wrong printing in RHSA parsing - [amd64] iommu/vt-d: Ignore devices with out-of-spec domain number - [arm64,x86] i2c: acpi: put device when verifying client fails - ipv6: restrict IPV6_ADDRFORM operation - net/smc: check for valid ib_client_data - net/smc: cancel event worker during device removal - efi: Add a sanity check to efivar_store_raw() - batman-adv: Avoid free/alloc race when handling OGM2 buffer https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.112 - [x86] perf/amd/uncore: Replace manual sampling check with CAP_NO_INTERRUPT flag - [armhf] mmc: sdhci-omap: Add platform specific reset callback - [armhf] mmc: sdhci-omap: Workaround errata regarding SDR104/HS200 tuning failures (i929) - ACPI: watchdog: Allow disabling WDAT at boot - HID: apple: Add support for recent firmware on Magic Keyboards - [x86] HID: i2c-hid: add Trekstor Surfbook E11B to descriptor override - cfg80211: check reg_rule for NULL in handle_channel_custom() - scsi: libfc: free response frame from GPN_ID - net: usb: qmi_wwan: restore mtu min/max values after raw_ip switch - mac80211: rx: avoid RCU list traversal under mutex - signal: avoid double atomic counter increments for user accounting - slip: not call free_netdev before rtnl_unlock in slip_open - [x86,arm64] hinic: fix a irq affinity bug - [x86,arm64] hinic: fix a bug of setting hw_ioctxt - sfc: fix timestamp reconstruction at 16-bit rollover points - jbd2: fix data races at struct journal_head - [armhf] mmc: sdhci-omap: Don't finish_mrq() on a command error during tuning - [armhf] mmc: sdhci-omap: Fix Tuning procedure for temperatures < -20C - driver core: Remove the link if there is no driver with AUTO flag - driver core: Fix adding device links to probing suppliers - driver core: Make driver core own stateful device links - driver core: Add device link flag DL_FLAG_AUTOPROBE_CONSUMER - driver core: Remove device link creation limitation - driver core: Fix creation of device links with PM-runtime flags - mm: slub: add missing TID bump in kmem_cache_alloc_bulk() - efi: Fix debugobjects warning on 'efi_rts_work' https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.113 - [arm64] spi: qup: call spi_qup_pm_resume_runtime before suspending - [amd64] spi: pxa2xx: Add CS control clock quirk - [armhf] drm/exynos: dsi: fix workaround for the legacy clock name - [arm64] drivers/perf: arm_pmu_acpi: Fix incorrect checking of gicc pointer - dm bio record: save/restore bi_end_io and bi_integrity - dm integrity: use dm_bio_record and dm_bio_restore - xenbus: req->body should be updated before req->state - xenbus: req->err should be updated before req->state - block, bfq: fix overwrite of bfq_group pointer in bfq_find_set_group() - USB: Disable LPM on WD19's Realtek Hub - usb: quirks: add NO_LPM quirk for RTL8153 based ethernet adapters - USB: serial: option: add ME910G1 ECM composition 0x110b - [arm64,armhf] usb: host: xhci-plat: add a shutdown - USB: serial: pl2303: add device-id for HP LD381 - [x86] usb: xhci: apply XHCI_SUSPEND_DELAY to AMD XHCI controller 1022:145c - ALSA: line6: Fix endless MIDI read loop - ALSA: seq: virmidi: Fix running status after receiving sysex - ALSA: seq: oss: Fix running status after receiving sysex - ALSA: pcm: oss: Avoid plugin buffer overflow - ALSA: pcm: oss: Remove WARNING from snd_pcm_plug_alloc() checks - [armhf] iio: st_sensors: remap SMO8840 to LIS2DH12 - mmc: rtsx_pci: Fix support for speed-modes that relies on tuning - staging: rtl8188eu: Add device id for MERCUSYS MW150US v2 - staging/speakup: fix get_word non-space look-ahead - [x86] intel_th: Fix user-visible error codes - [x86] intel_th: pci: Add Elkhart Lake CPU support - xhci: Do not open code __print_symbolic() in xhci trace events - btrfs: fix log context list corruption after rename whiteout error - drm/amd/amdgpu: Fix GPR read from debugfs (v2) - drm/lease: fix WARNING in idr_destroy - memcg: fix NULL pointer dereference in __mem_cgroup_usage_unregister_event - mm: slub: be more careful about the double cmpxchg of freelist - mm, slub: prevent kmalloc_node crashes and memory leaks - page-flags: fix a crash at SetPageError(THP_SWAP) - [x86] mm: split vmalloc_sync_all() (Closes: #953017) - USB: cdc-acm: fix close_delay and closing_wait units in TIOCSSERIAL - USB: cdc-acm: fix rounding error in TIOCSSERIAL - futex: Fix inode life-time issue - futex: Unbreak futex hashing - Revert "vrf: mark skb for multicast or link-local as enslaved to VRF" - Revert "ipv6: Fix handling of LLA with VRF and sockets bound to VRF" - ALSA: hda/realtek: Fix pop noise on ALC225 - [arm64] smp: fix smp_send_stop() behaviour - [arm64] smp: fix crash_smp_send_stop() behaviour - [arm64,armhf] drm/bridge: dw-hdmi: fix AVI frame colorimetry https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.114 - mmc: core: Allow host controllers to require R1B for CMD6 - mmc: core: Respect MMC_CAP_NEED_RSP_BUSY for erase/trim/discard - mmc: core: Respect MMC_CAP_NEED_RSP_BUSY for eMMC sleep command - [armhf] mmc: sdhci-omap: Fix busy detection by enabling MMC_CAP_NEED_RSP_BUSY - [arm64,armhf] mmc: sdhci-tegra: Fix busy detection by enabling MMC_CAP_NEED_RSP_BUSY - geneve: move debug check after netdev unregister - macsec: restrict to ethernet devices - net: cbs: Fix software cbs to consider packet sending time - [armhf] net: dsa: Fix duplicate frames flooded by learning - [arm64,armhf] net: mvneta: Fix the case where the last poll did not process all rx - net/packet: tpacket_rcv: avoid a producer race condition - net: qmi_wwan: add support for ASKEY WWHC050 - net_sched: cls_route: remove the right filter from hashtable - net_sched: keep alloc_hash updated after hash allocation - [arm64,armhf] net: stmmac: dwmac-rk: fix error path in rk_gmac_probe - slcan: not call free_netdev before rtnl_unlock in slcan_open - bnxt_en: fix memory leaks in bnxt_dcbnl_ieee_getets() - bnxt_en: Reset rings if ring reservation fails during open() - net: ip_gre: Separate ERSPAN newlink / changelink callbacks - net: ip_gre: Accept IFLA_INFO_DATA-less configuration - r8169: re-enable MSI on RTL8168c - tcp: repair: fix TCP_QUEUE_SEQ implementation - vxlan: check return value of gro_cells_init() - cgroup-v1: cgroup_pidlist_next should update position index - nfs: add minor version to nfs_server_key for fscache - drivers/of/of_mdio.c:fix of_mdiobus_register() - cgroup1: don't call release_agent when it is "" - [s390x] qeth: handle error when backing RX buffer - scsi: ipr: Fix softlockup when rescanning devices in petitboot - mac80211: Do not send mesh HWMP PREQ if HWMP is disabled - [x86] ftrace: Anotate text_mutex split between ftrace_arch_code_modify_post_process() and ftrace_arch_code_modify_prepare() - [x86] Input: synaptics - enable RMI on HP Envy 13-ad105ng - Input: avoid BIT() macro usage in the serio.h UAPI header - ceph: check POOL_FLAG_FULL/NEARFULL in addition to OSDMAP_FULL/NEARFULL - perf probe: Do not depend on dwfl_module_addrsym() - scsi: sd: Fix optimal I/O size for devices that change reported values - nl80211: fix NL80211_ATTR_CHANNEL_WIDTH attribute type - mac80211: mark station unauthorized before key removal - [x86] gpiolib: acpi: Correct comment for HP x2 10 honor_wakeup quirk - gpiolib: acpi: Rework honor_wakeup option into an ignore_wake option - [x86] gpiolib: acpi: Add quirk to ignore EC wakeups on HP x2 10 BYT + AXP288 model - genirq: Fix reference leaks on irq affinity notifiers - xfrm: handle NETDEV_UNREGISTER for xfrm device - vti[6]: fix packet tx through bpf_redirect() in XinY cases - RDMA/mlx5: Block delay drop to unprivileged users - xfrm: fix uctx len check in verify_sec_ctx_len - xfrm: add the missing verify_sec_ctx_len check in xfrm_add_acquire - xfrm: policy: Fix doulbe free in xfrm_policy_timer - afs: Fix some tracing details - netfilter: flowtable: reload ip{v6}h in nf_flow_tuple_ip{v6} - netfilter: nft_fwd_netdev: validate family and chain type - bpf/btf: Fix BTF verification of enum members in struct/union - vti6: Fix memory leak of skb if input policy check fails - mac80211: add option for setting control flags - mac80211: set IEEE80211_TX_CTRL_PORT_CTRL_PROTO for nl80211 TX - USB: serial: option: add support for ASKEY WWHC050 - USB: serial: option: add BroadMobi BM806U - USB: serial: option: add Wistron Neweb D19Q1 - USB: cdc-acm: restore capability check order - USB: serial: io_edgeport: fix slab-out-of-bounds read in edge_interrupt_callback - [arm64,armhf] usb: musb: fix crash with highmen PIO and usbmon - media: flexcop-usb: fix endpoint sanity check - media: usbtv: fix control-message timeouts - staging: rtl8188eu: Add ASUS USB-N10 Nano B1 to device table - [x86] ahci: Add Intel Comet Lake H RAID PCI ID - libfs: fix infoleak in simple_attr_read() - media: ov519: add missing endpoint sanity checks (CVE-2020-11608) - media: dib0700: fix rc endpoint lookup - media: stv06xx: add missing descriptor sanity checks (CVE-2020-11609) - media: xirlink_cit: add missing descriptor sanity checks (CVE-2020-11668) - mac80211: Check port authorization in the ieee80211_tx_dequeue() case - mac80211: fix authentication with iwlwifi/mvm - vt: selection, introduce vc_is_sel - vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines - vt: switch vt_dont_switch to bool - vt: vt_ioctl: remove unnecessary console allocation checks - vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console - vt: vt_ioctl: fix use-after-free in vt_in_use() - [x86] platform: pmc_atom: Add Lex 2I385SW to critclk_systems DMI table - bpf: Explicitly memset the bpf_attr structure - bpf: Explicitly memset some bpf info structures declared on the stack - [x86] gpiolib: acpi: Add quirk to ignore EC wakeups on HP x2 10 CHT + AXP288 model - perf map: Fix off by one in strncpy() size argument - [armel] bcm2835-rpi-zero-w: Add missing pinctrl name - [armhf] dts: N900: fix onenand timings https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.115 - ipv4: fix a RCU-list lock in fib_triestat_seq_show - net, ip_tunnel: fix interface lookup with no key - sctp: fix refcount bug in sctp_wfree - sctp: fix possibly using a bad saddr with a given dst - nvme-rdma: Avoid double freeing of async event data - drm/bochs: downgrade pci_request_region failure from error to warning - drm/amdgpu: fix typo for vcn1 idle check - [x86] tools/power turbostat: Fix gcc build warnings - [x86] tools/power turbostat: Fix missing SYS_LPI counter on some Chromebooks - [armhf] drm/etnaviv: replace MMU flush marker with flush sequence - media: rc: IR signal for Panasonic air conditioner too long - misc: rtsx: set correct pcr_ops for rts522A - [x86] mei: me: add cedar fork device ids - ALSA: hda/ca0132 - Add Recon3Di quirk to handle integrated sound on EVGA X99 Classified motherboard - rxrpc: Fix sendmsg(MSG_WAITALL) handling - net: Fix Tx hash bound checking - padata: always acquire cpu_hotplug_lock before pinst->lock - mm: mempolicy: require at least one nodeid for MPOL_PREFERRED (CVE-2020-11565) - ipv6: don't auto-add link-local address to lag ports - [armhf] net: dsa: bcm_sf2: Do not register slave MDIO bus with OF - [armhf] net: dsa: bcm_sf2: Ensure correct sub-node is parsed - net: phy: micrel: kszphy_resume(): add delay after genphy_resume() before accessing PHY registers - [arm64,armhf] net: stmmac: dwmac1000: fix out-of-bounds mac address reg setting - slcan: Don't transmit uninitialized stack data in padding (CVE-2020-11494) - random: always use batched entropy for get_random_u{32,64} - [arm64,armhf] usb: dwc3: gadget: Wrap around when skip TRBs - [armhf] hwrng: imx-rngc - fix an error path - [amd64] IB/hfi1: Call kobject_put() when kobject_init_and_add() fails - [amd64] IB/hfi1: Fix memory leaks in sysfs registration and unregistration - ceph: remove the extra slashes in the server path - ceph: canonicalize server path in place - RDMA/ucma: Put a lock around every call to the rdma_cm layer - RDMA/cma: Teach lockdep about the order of rtnl and lock - Bluetooth: RFCOMM: fix ODEBUG bug in rfcomm_dev_ioctl - RDMA/cm: Update num_paths in cma_resolve_iboe_route error flow - fbcon: fix null-ptr-deref in fbcon_switch - [arm64] clk: qcom: rcg: Return failure for RCG update - [arm64] drm/msm: stop abusing dma_map/unmap for cache - [arm64] Fix size of __early_cpu_boot_status - [arm64] rpmsg: glink: Remove chunk size word align warning - [arm64,armhf] usb: dwc3: don't set gadget->is_otg flag - drm_dp_mst_topology: fix broken drm_dp_sideband_parse_remote_dpcd_read() - [arm64] drm/msm: Use the correct dma_sync calls in msm_gem https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.116 - [armhf] dts: sun8i-a83t-tbs-a711: HM5065 doesn't like such a high voltage - [arm64,armhf] bus: sunxi-rsb: Return correct data when mixing 16-bit and 8-bit reads - [x86,arm64] hinic: fix a bug of waitting for IO stopped - [x86,arm64] hinic: fix wrong para of wait_for_completion_timeout - cxgb4/ptp: pass the sign of offset delta in FW CMD - qlcnic: Fix bad kzalloc null test - [armhf] cpufreq: imx6q: Fixes unwanted cpu overclocking on i.MX6ULL - [arm64] media: venus: hfi_parser: Ignore HEVC encoding for V1 - null_blk: Fix the null_add_dev() error path - null_blk: Handle null_add_dev() failures properly - null_blk: fix spurious IO errors after failed past-wp access - xhci: bail out early if driver can't accress host in resume - [x86] Don't let pgprot_modify() change the page encryption bit - block: keep bdi->io_pages in sync with max_sectors_kb for stacked devices - sched: Avoid scale real weight down to zero - libata: Remove extra scsi_host_put() in ata_scsi_add_hosts() - [amd64,x86] pstore/platform: fix potential mem leak if pstore_init_fs failed - gfs2: Don't demote a glock until its revokes are written - [i386] efi/x86: Ignore the memory attributes table on i386 - genirq/irqdomain: Check pointer in irq_domain_alloc_irqs_hierarchy() - block: Fix use-after-free issue accessing struct io_cq - [arm64,armhf] usb: dwc3: core: add support for disabling SS instances in park mode - [arm64,armhf] irqchip/gic-v4: Provide irq_retrigger to avoid circular locking dependency - md: check arrays is suspended in mddev_detach before call quiesce operations - firmware: fix a double abort case with fw_load_sysfs_fallback - block, bfq: fix use-after-free in bfq_idle_slice_timer_body - btrfs: qgroup: ensure qgroup_rescan_running is only set when the worker is at least queued - btrfs: remove a BUG_ON() from merge_reloc_roots() - btrfs: track reloc roots based on their commit root bytenr - IB/mlx5: Replace tunnel mpls capability bits for tunnel_offloads - uapi: rename ext2_swab() to swab() and share globally in swab.h - slub: improve bit diffusion for freelist ptr obfuscation - ASoC: fix regwmask - ASoC: dapm: connect virtual mux with default value - ASoC: dpcm: allow start or stop during pause for backend - [x86] ASoC: topology: use name_prefix for new kcontrol - usb: gadget: f_fs: Fix use after free issue as part of queue failure - usb: gadget: composite: Inform controller driver of self-powered - ALSA: hda: Add driver blacklist - ALSA: hda: Fix potential access overflow in beep helper - ALSA: ice1724: Fix invalid access for enumerated ctl items - ALSA: pcm: oss: Fix regression by buffer overflow fix - ALSA: doc: Document PC Beep Hidden Register on Realtek ALC256 - ALSA: hda/realtek - Set principled PC Beep configuration for ALC256 - [x86] ALSA: hda/realtek - Remove now-unnecessary XPS 13 headphone noise fixups - [x86] ALSA: hda/realtek - Add quirk for MSI GL63 - [x86] acpi: ignore unspecified bit positions in the ACPI global lock field - nvme-fc: Revert "add module to ops template to allow module references" - nvme: Treat discovery subsystems as unique subsystems - PCI: pciehp: Fix indefinite wait on sysfs requests - PCI/ASPM: Clear the correct bits when enabling L1 substates - PCI: Add boot interrupt quirk mechanism for Xeon chipsets - tpm: Don't make log failures fatal - tpm: tpm1_bios_measurements_next should increase position index - tpm: tpm2_bios_measurements_next should increase position index - KEYS: reaching the keys quotas correctly - [amd64,x86] pstore: pstore_ftrace_seq_next should increase position index - [mips*el] tlbex: Fix LDDIR usage in setup_pw() for Loongson-3 - [mips*/octeon] irq: Fix potential NULL pointer dereference - ath9k: Handle txpower changes even when TPC is disabled - signal: Extend exec_id to 64bits - [i386] x86/entry/32: Add missing ASM_CLAC to general_protection entry - [x86] KVM: nVMX: Properly handle userspace interrupt window request - [s390x] KVM: vsie: Fix region 1 ASCE sanity shadow address checks - [s390x] KVM: vsie: Fix delivery of addressing exceptions - [x86] KVM: Allocate new rmap and large page tracking when moving memslot - [x86] KVM: VMX: Always VMCLEAR in-use VMCSes during crash with kexec support - [x86] KVM: Gracefully handle __vmalloc() failure during VM allocation - [x86] KVM: VMX: fix crash cleanup when KVM wasn't used - CIFS: Fix bug which the return value by asynchronous read is error - Btrfs: fix crash during unmount due to race with delayed inode workers - btrfs: set update the uuid generation as soon as possible - btrfs: drop block from cache on error in relocation - btrfs: fix missing file extent item for hole after ranged fsync - btrfs: fix missing semaphore unlock in btrfs_sync_file - [powerpc*] pseries: Drop pointless static qualifier in vpa_debugfs_init() - [x86] speculation: Remove redundant arch_smt_update() invocation - mm: Use fixed constant in page_frag_alloc instead of size + 1 - dm writecache: add cond_resched to avoid CPU hangs - [s390x] scsi: zfcp: fix missing erp_lock in port recovery trigger for point-to-point - [arm64] armv8_deprecated: Fix undef_hook mask for thumb setend - [armhf] drm/etnaviv: rework perfmon query infrastructure - [powerpc*] pseries: Avoid NULL pointer dereference when drmem is unavailable - NFS: Fix a page leak in nfs_destroy_unlinked_subrequests() - ext4: fix a data race at inode->i_blocks - fs/filesystems.c: downgrade user-reachable WARN_ONCE() to pr_warn_once() - ocfs2: no need try to truncate file beyond i_size - [s390x] diag: fix display of diagnose call statistics - [x86] Input: i8042 - add Acer Aspire 5738z to nomux list - kmod: make request_module() return an error when autoloading is disabled - [powerpc*] cpufreq: powernv: Fix use-after-free - hfsplus: fix crash and filesystem corruption when deleting files - libata: Return correct status in sata_pmp_eh_recover_pm() when ATA_DFLAG_DETACH is set - ipmi: fix hung processes in __get_guid() - xen/blkfront: fix memory allocation flags in blkfront_setup_indirect() - [powerpc*] powernv/idle: Restore AMR/UAMOR/AMOR after idle (CVE-2020-11669) - [powerpc*] 64/tm: Don't let userspace set regs->trap via sigreturn - [powerpc*] hash64/devmap: Use H_PAGE_THP_HUGE when setting up huge devmap PTE entries - [powerpc*] xive: Use XIVE_BAD_IRQ instead of zero to catch non configured IPIs - [powerpc*] kprobes: Ignore traps that happened in real mode - scsi: mpt3sas: Fix kernel panic observed on soft HBA unplug - [powerpc*] Add attributes for setjmp/longjmp - [powerpc*] Make setjmp/longjmp signature standard - btrfs: use nofs allocations for running delayed items - dm zoned: remove duplicate nr_rnd_zones increase in dmz_init_zone() - drm/dp_mst: Fix clearing payload state on topology disable - drm: Remove PageReserved manipulation from drm_pci_alloc - ftrace/kprobe: Show the maxactive number on kprobe_events - [armhf] etnaviv: perfmon: fix total and idle HI cyleces readout - [amd64] efi/x86: Fix the deletion of variables in mixed mode https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.117 - [amd64,arm64] amd-xgbe: Use __napi_schedule() in BH context - net: ipv6: do not consider routes via gateways for anycast address check - net: revert default NAPI poll timeout to 2 jiffies - [arm64,armhf] net: stmmac: dwmac-sunxi: Provide TX and RX fifo sizes - ovl: fix value of i_ino for lower hardlink corner case - scsi: ufs: Fix ufshcd_hold() caused scheduling while atomic - jbd2: improve comments about freeing data buffers whose page mapping is NULL - ext4: fix incorrect group count in ext4_fill_super error message - ext4: fix incorrect inodes per group in error message - [x86] ASoC: Intel: mrfld: fix incorrect check on p->sink - [x86] ASoC: Intel: mrfld: return error codes when an error occurs - ALSA: usb-audio: Filter error from connector kctl ops, too - ALSA: usb-audio: Don't override ignore_ctl_error value from the map - ALSA: usb-audio: Don't create jack controls for PCM terminals - ALSA: usb-audio: Check mapping at creating connector controls, too - keys: Fix proc_keys_next to increase position index - tracing: Fix the race between registering 'snapshot' event trigger and triggering 'snapshot' operation - btrfs: check commit root generation in should_ignore_root - mac80211_hwsim: Use kstrndup() in place of kasprintf() - [arm64,armhf] usb: dwc3: gadget: don't enable interrupt when disabling endpoint - [arm64,armhf] usb: dwc3: gadget: Don't clear flags before transfer ended - ext4: do not zeroout extents beyond i_disksize - [x86] kvm: Host feature SSBD doesn't imply guest feature SPEC_CTRL_SSBD - scsi: target: fix hang when multiple threads try to destroy the same iscsi session - [x86] microcode/AMD: Increase microcode PATCH_MAX_SIZE - wil6210: check rx_buff_mgmt before accessing it - wil6210: ignore HALP ICR if already handled - wil6210: add general initialization/size checks - wil6210: make sure Rx ring sizes are correlated - wil6210: remove reset file from debugfs - mm/vmalloc.c: move 'area->pages' after if statement https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.118 - [armel,armhf] bpf: Fix offset overflow for BPF_MEM BPF_DW - scsi: sg: add sg_remove_request in sg_common_write - ext4: use non-movable memory for superblock readahead - [arm64,armhf] watchdog: sp805: fix restart handler - [armel,armhf] arm, bpf: Fix bugs with ALU64 {RSH, ARSH} BPF_K shift by 0 - netfilter: nf_tables: report EOPNOTSUPP on unsupported flags/object type - [arm64] irqchip/mbigen: Free msi_desc on device teardown - ALSA: hda: Don't release card at firmware loading error - of: overlay: kmemleak in dup_and_fixup_symbol_prop() - [x86] Hyper-V: Report crash register data or kmsg before running crash kernel - rbd: avoid a deadlock on header_rwsem when flushing notifies - rbd: call rbd_dev_unprobe() after unwatching and flushing notifies - xsk: Add missing check on user supplied headroom size - [x86] Hyper-V: Unload vmbus channel in hv panic callback - [x86] Hyper-V: Free hv_panic_page when fail to register kmsg dump - [x86] Hyper-V: Trigger crash enlightenment only once during system crash. - [x86] Hyper-V: Report crash register data when sysctl_record_panic_msg is not set - [x86] Hyper-V: Report crash data in die() when panic_on_oops is set - power: supply: bq27xxx_battery: Silence deferred-probe error - [arm64,armhf] clk: tegra: Fix Tegra PMC clock out parents - [armhf] soc: imx: gpc: fix power up sequencing - NFSv4/pnfs: Return valid stateids in nfs_layout_find_inode_by_stateid() - NFS: direct.c: Fix memory leak of dreq when nfs_get_lock_context fails - [s390x] cpuinfo: fix wrong output when CPU0 is offline - [s390x] cpum_sf: Fix wrong page count in error message - ext4: do not commit super on read-only bdev - cifs: Allocate encryption header through kmalloc - include/linux/swapops.h: correct guards for non_swap_entry() - percpu_counter: fix a data race at vm_committed_as - [s390x] KVM: vsie: Fix possible race when shadowing region 3 tables - [x86] ACPI: fix CPU hotplug deadlock - [amd64] drm/amdkfd: kfree the wrong pointer - NFS: Fix memory leaks in nfs_pageio_stop_mirroring() - f2fs: fix NULL pointer dereference in f2fs_write_begin() - [arm*] drm/vc4: Fix HDMI mode validation - [amd64] iommu/vt-d: Fix mm reference leak - power: supply: axp288_fuel_gauge: Broaden vendor check for Intel Compute Sticks. - libnvdimm: Out of bounds read in __nd_ioctl() - f2fs: fix to wait all node page writeback - [armhf] net: dsa: bcm_sf2: Fix overflow checks - fbdev: potential information leak in do_fb_ioctl() - mtd: lpddr: Fix a double free in probe() - mtd: phram: fix a double free issue in error path - KEYS: Don't write out to userspace while holding key semaphore - bpf: fix buggy r0 retval refinement for tracing helpers . [ Salvatore Bonaccorso ] * Refresh "Revert "objtool: Fix CONFIG_STACK_VALIDATION=y warning for out-of-tree modules"" for context changes in 4.19.99 * Refresh "ARM: dts: bcm283x: Correct vchiq compatible string" for context changes in 4.19.99 * Drop "tools/lib/api/fs/fs.c: Fix misuse of strncpy()" * Refresh "net: ena: add MAX_QUEUES_EXT get feature admin command" for context changes in 4.19.108 * [rt] Update to 4.19.115-rt48: - Revert "genirq: Do not invoke the affinity callback via a workqueue on RT" * [rt] Refresh "pci/switchtec: Don't use completion's wait queue" for context changes in 4.19.116 * Refresh "firmware: Remove redundant log messages from drivers" for context changes in 4.19.118 * f2fs: fix to avoid memory leakage in f2fs_listxattr (CVE-2020-0067) * net: ipv6: add net argument to ip6_dst_lookup_flow * net: ipv6_stub: use ip6_dst_lookup_flow instead of ip6_dst_lookup (CVE-2020-1749) * blktrace: Protect q->blk_trace with RCU (CVE-2019-19768) * blktrace: fix dereference after null check . [ Ben Hutchings ] * [x86] Drop "Add a SysRq option to lift kernel lockdown" (Closes: #947021) - This patch allowed remotely disabling lockdown using usbip - Lockdown can be disabled by running "mokutil --disable-validation", rebooting, and confirming the change when prompted * debian/README.source: Refer to upload checklist in kernel-team.git * Bump ABI to 9 . [ YunQiang Su ] * [mips*] enable CONFIG_MIPS_O32_FP64_SUPPORT. * [mips*] enable CONFIG_CPU_HAS_MSA except octeon. . [ Steve McIntyre ] * [arm64] Include the Hisilicon Hibmc drm driver in fb-modules (Closes: #951274) . [ Noah Meyerhans ] * [cloud] Enable CONFIG_KSM (Closes: #955366) linux-signed-amd64 (4.19.98+1+deb10u1) buster-security; urgency=high . * Sign kernel from linux 4.19.98-1+deb10u1 . * [x86] KVM: nVMX: Don't emulate instructions in guest mode (CVE-2020-2732) * do_last(): fetch directory ->i_mode and ->i_uid before it's too late (CVE-2020-8428) * vfs: fix do_last() regression * vhost: Check docket sk_family instead of call getname (CVE-2020-10942) * mm: mempolicy: require at least one nodeid for MPOL_PREFERRED (CVE-2020-11565) * [s390x] mm: fix page table upgrade vs 2ndary address mode accesses (CVE-2020-11884) linux-signed-arm64 (4.19.118+2) buster; urgency=medium . * Sign kernel from linux 4.19.118-2 . * Merge changes from 4.19.67-2+deb10u2 to include all security fixes from DSA 4667-1. linux-signed-arm64 (4.19.118+1) buster; urgency=medium . * Sign kernel from linux 4.19.118-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.99 - Revert "efi: Fix debugobjects warning on 'efi_rts_work'" - xfs: Sanity check flags of Q_XQUOTARM call - [x86] mfd: intel-lpss: Add default I2C device properties for Gemini Lake - SUNRPC: Fix svcauth_gss_proxy_init() - [powerpc*] pseries: Enable support for ibm,drc-info property - tipc: update mon's self addr when node addr generated - tipc: fix wrong timeout input for tipc_wait_for_cond() - mt7601u: fix bbp version check in mt7601u_wait_bbp_ready - [armhf] crypto: sun4i-ss - fix big endian issues - perf map: No need to adjust the long name of modules - ipmi: Fix memory leak in __ipmi_bmc_register (CVE-2019-19046) - ixgbe: don't clear IPsec sa counters on HW clearing - drm/virtio: fix bounds check in virtio_gpu_cmd_get_capset() - iio: fix position relative kernel version - apparmor: Fix network performance issue in aa_label_sk_perm - ALSA: hda: fix unused variable warning - apparmor: don't try to replace stale label in ptrace access check - firmware: coreboot: Let OF core populate platform device - bridge: br_arp_nd_proxy: set icmp6_router if neigh has NTF_ROUTER - [arm64] drm/hisilicon: hibmc: Don't overwrite fb helper surface depth - IB/rxe: replace kvfree with vfree - [amd64] IB/hfi1: Add mtu check for operational data VLs - genirq/debugfs: Reinstate full OF path for domain name - [arm64] usb: dwc3: add EXTCON dependency for qcom - cfg80211: regulatory: make initialization more robust - [x86] mei: replace POLL* with EPOLL* for write queues. - [arm64] drm/msm: fix unsigned comparison with less than zero - ALSA: usb-audio: update quirk for B&W PX to remove microphone - iwlwifi: nvm: get num of hw addresses from firmware - netfilter: nft_osf: usage from output path is not valid - [x86] pwm: lpss: Release runtime-pm reference from the driver's remove callback - [powerpc*] pseries/memory-hotplug: Fix return value type of find_aa_index - rtlwifi: rtl8821ae: replace _rtl8821ae_mrate_idx_to_arfr_id with generic version - netfilter: nf_flow_table: do not remove offload when other netns's interface is down - tipc: eliminate message disordering during binding table update - [arm64] net: socionext: Add dummy PHY register read in phy_write() - [arm64,armhf] drm/sun4i: hdmi: Fix double flag assignation - [arm64] net: hns3: add error handler for hns3_nic_init_vector_data() - pcrypt: use format specifier in kobject_add - [armhf] ASoC: sun8i-codec: add missing route for ADC - [arm64] pinctrl: meson-gxl: remove invalid GPIOX tsin_a pins - [armhf] bus: ti-sysc: Add mcasp optional clocks flag - exportfs: fix 'passing zero to ERR_PTR()' warning - net: always initialize pagedlen - net: phy: Fix not to call phy_resume() if PHY is not attached - [amd64] IB/hfi1: Correctly process FECN and BECN in packets - IB/rxe: Fix incorrect cache cleanup in error flow - ipv6: add missing tx timestamping on IPPROTO_RAW - [arm64] net: hns3: fix error handling int the hns3_get_vector_ring_chain - vxlan: changelink: Fix handling of default remotes - fork,memcg: fix crash in free_thread_stack on memcg charge fail - [armhf] clk: highbank: fix refcount leak in hb_clk_init() - [armhf] clk: ti: fix refcount leak in ti_dt_clocks_register() - [armhf] clk: socfpga: fix refcount leak - [armhf] clk: samsung: exynos4: fix refcount leak in exynos4_get_xom() - [armhf] clk: imx6q: fix refcount leak in imx6q_clocks_init() - [armhf] clk: imx6sx: fix refcount leak in imx6sx_clocks_init() - [armhf] clk: armada-370: fix refcount leak in a370_clk_init() - [armel] clk: kirkwood: fix refcount leak in kirkwood_clk_init() - [armhf] clk: armada-xp: fix refcount leak in axp_clk_init() - [armhf] clk: mv98dx3236: fix refcount leak in mv98dx3236_clk_init() - [armhf] clk: dove: fix refcount leak in dove_clk_init() - drm: Fix error handling in drm_legacy_addctx - [armhf] drm/etnaviv: fix some off by one bugs - drm/fb-helper: generic: Fix setup error path - fork, memcg: fix cached_stacks case - [amd64] IB/usnic: Fix out of bounds index check in query pkey - RDMA/ocrdma: Fix out of bounds index check in query pkey - RDMA/qedr: Fix out of bounds index check in query pkey - RDMA/iw_cxgb4: Fix the unchecked ep dereference - net: phy: micrel: set soft_reset callback to genphy_soft_reset for KSZ9031 - [armhf] memory: tegra: Don't invoke Tegra30+ specific memory timing setup on Tegra20 - [armhf] drm/etnaviv: NULL vs IS_ERR() buf in etnaviv_core_dump() - kbuild: mark prepare0 as PHONY to fix external module build - crypto: tgr192 - fix unaligned memory access - [armhf] ASoC: imx-sgtl5000: put of nodes if finding codec fails - IB/iser: Pass the correct number of entries for dma mapped SGL - [arm64] net: hns3: fix wrong combined count returned by ethtool -l - IB/mlx5: Don't override existing ip_protocol - rtc: cmos: ignore bogus century byte - [i386] spi/topcliff_pch: Fix potential NULL dereference on allocation error - [arm64] net: hns3: fix bug of ethtool_ops.get_channels for VF - [armhf] clk: sunxi-ng: sun8i-a23: Enable PLL-MIPI LDOs when ungating it - iwlwifi: mvm: avoid possible access out of array. - net/mlx5: Take lock with IRQs disabled to avoid deadlock - ip_tunnel: Fix route fl4 init in ip_md_tunnel_xmit - iwlwifi: mvm: fix A-MPDU reference assignment - [armhf] bus: ti-sysc: Fix timer handling with drop pm_runtime_irq_safe() - [x86] tty: ipwireless: Fix potential NULL pointer dereference - driver: uio: fix possible memory leak in __uio_register_device - driver: uio: fix possible use-after-free in __uio_register_device - driver core: Fix DL_FLAG_AUTOREMOVE_SUPPLIER device link flag handling - driver core: Avoid careless re-use of existing device links - driver core: Do not resume suppliers under device_links_write_lock() - driver core: Fix handling of runtime PM flags in device_link_add() - driver core: Do not call rpm_put_suppliers() in pm_runtime_drop_link() - drm/xen-front: Fix mmap attributes for display buffers - iwlwifi: mvm: fix RSS config command - [mips*] rtc: ds1672: fix unintended sign extension - ath10k: fix dma unmap direction for management frames - net: phy: fixed_phy: Fix fixed_phy not checking GPIO - rtc: ds1307: rx8130: Fix alarm handling - net/smc: original socket family in inet_sock_diag - [arm64] rtc: pm8xxx: fix unintended sign extension - iw_cxgb4: use tos when importing the endpoint - iw_cxgb4: use tos when finding ipv6 routes - xsk: add missing smp_rmb() in xsk_mmap - [armhf] drm/etnaviv: potential NULL dereference - RDMA/mlx5: Fix memory leak in case we fail to add an IB device - driver core: Fix possible supplier PM-usage counter imbalance - [armhf] usb: phy: twl6030-usb: fix possible use-after-free on remove - block: don't use bio->bi_vcnt to figure out segment number - keys: Timestamp new keys - [armhf] net: dsa: b53: Fix default VLAN ID - [armhf] net: dsa: b53: Properly account for VLAN filtering - [armhf] net: dsa: b53: Do not program CPU port's PVID - mt76: usb: fix possible memory leak in mt76u_buf_free - vfio_pci: Enable memory accesses before calling pci_map_rom - mdio_bus: Fix PTR_ERR() usage after initialization to constant - [powerpc*] KVM: Release all hardware TCE tables attached to a group - [x86] staging: r8822be: check kzalloc return or bail - [arm*] dmaengine: mv_xor: Use correct device for DMA API - cdc-wdm: pass return value of recover_from_urb_loss - brcmfmac: create debugfs files for bus-specific layer - net/mlx5: Delete unused FPGA QPN variable - drm/nouveau/bios/ramcfg: fix missing parentheses when calculating RON - drm/nouveau/pmu: don't print reply values if exec is false - drm/nouveau: fix missing break in switch statement - driver core: Fix PM-runtime for links added during consumer probe - [arm64] ASoC: qcom: Fix of-node refcount unbalance in apq8016_sbc_parse_of() - [arm64,armhf] net: dsa: fix unintended change of bridge interface STP state - fs/nfs: Fix nfs_parse_devname to not modify it's argument - [x86] staging: rtlwifi: Use proper enum for return in halmac_parse_psd_data_88xx - [ppc64el] 64s: Fix logic when handling unknown CPU features - NFS: Fix a soft lockup in the delegation recovery code - perf: Copy parent's address filter offsets on clone - perf, pt, coresight: Fix address filters for vmas with non-zero offset - [armhf] clocksource/drivers/sun5i: Fail gracefully when clock rate is unavailable - [armhf] clocksource/drivers/exynos_mct: Fix error path in timer resources initialization - [x86] platform/x86: wmi: fix potential null pointer dereference - NFS/pnfs: Bulk destroy of layouts needs to be safe w.r.t. umount - ath10k: Fix length of wmi tlv command for protected mgmt frames - netfilter: nft_set_hash: fix lookups with fixed size hash on big endian - netfilter: nft_set_hash: bogus element self comparison from deactivation path - net: sched: act_csum: Fix csum calc for tagged packets - [arm*] hwrng: bcm2835 - fix probe as platform device - [amd64] iommu/vt-d: Fix NULL pointer reference in intel_svm_bind_mm() - NFS: Add missing encode / decode sequence_maxsz to v4.2 operations - NFSv4/flexfiles: Fix invalid deref in FF_LAYOUT_DEVID_NODE() - [amd64] net: aquantia: fixed instack structure overflow - media: dvb/earth-pt1: fix wrong initialization for demod blocks - rbd: clear ->xferred on error from rbd_obj_issue_copyup() - PCI: Fix "try" semantics of bus and slot reset - scsi: megaraid_sas: reduce module load time - xen, cpu_hotplug: Prevent an out of bounds access - net/mlx5: Fix multiple updates of steering rules in parallel - net/mlx5e: IPoIB, Fix RX checksum statistics update - [arm64,armhf] soc: amlogic: gx-socinfo: Add mask for each SoC packages - media: ivtv: update *pos correctly in ivtv_read_pos() - media: cx18: update *pos correctly in cx18_read_pos() - [armhf] media: wl128x: Fix an error code in fm_download_firmware() - media: cx23885: check allocation return - jfs: fix bogus variable self-initialization - [armhf] dts: sun9i: optimus: Fix fixed-regulators - net: phy: don't clear BMCR in genphy_soft_reset - [armhf] OMAP2+: Fix potentially uninitialized return value for _setup_reset() - [arm64,armhf] net: dsa: Avoid null pointer when failing to connect to PHY - media: tw5864: Fix possible NULL pointer dereference in tw5864_handle_frame - [arm64,armhf] spi: tegra114: clear packed bit for unpacked mode - [arm64,armhf] spi: tegra114: fix for unpacked mode transfers - [arm64,armhf] spi: tegra114: terminate dma and reset on transfer timeout - [arm64,armhf] spi: tegra114: flush fifos - [arm64,armhf] spi: tegra114: configure dma burst size to fifo trig level - [armhf] bus: ti-sysc: Fix sysc_unprepare() when no clocks have been allocated - [arm*] spi: bcm2835aux: fix driver to not allow 65535 (=-1) cs-gpios - drm/fb-helper: generic: Call drm_client_add() after setup is done - [arm64] vdso: don't leak kernel addresses - rtc: Fix timestamp value for RTC_TIMESTAMP_BEGIN_1900 - bpf: Add missed newline in verifier verbose log - [x86] drm/vmwgfx: Remove set but not used variable 'restart' - scsi: qla2xxx: Unregister chrdev if module initialization fails - net/sched: cbs: fix port_rate miscalculation - ACPI: button: reinitialize button state upon resume - [arm64,armhf] firmware: arm_scmi: fix of_node leak in scmi_mailbox_check - rxrpc: Fix detection of out of order acks - scsi: target/core: Fix a race condition in the LUN lookup code - brcmfmac: fix leak of mypkt on error return path - [arm64] net: hns3: fix for vport->bw_limit overflow problem - [x86] hwmon: (w83627hf) Use request_muxed_region for Super-IO accesses - perf/core: Fix the address filtering fix - [arm64,armhf] soc: amlogic: meson-gx-pwrc-vpu: Fix power on/off register bitmask - [x86] platform/x86: alienware-wmi: fix kfree on potentially uninitialized pointer - tipc: set sysctl_tipc_rmem and named_timeout right range - usb: typec: tcpm: Notify the tcpc to start connection-detection for SRPs - [arm64] net: hns3: fix loop condition of hns3_get_tx_timeo_queue_info() - 6lowpan: Off by one handling ->nexthdr - ALSA: usb-audio: Handle the error from snd_usb_mixer_apply_create_quirk() - afs: Fix AFS file locking to allow fine grained locks - afs: Further fix file locking - NFS: Don't interrupt file writeout due to fatal errors - scsi: qla2xxx: Fix a format specifier - scsi: qla2xxx: Fix error handling in qlt_alloc_qfull_cmd() - scsi: qla2xxx: Avoid that qlt_send_resp_ctio() corrupts memory - [ppc64el] KVM: PPC: Book3S HV: Fix lockdep warning when entering the guest - netfilter: nft_flow_offload: add entry to flowtable after confirmation - packet: in recvmsg msg_name return at least sizeof sockaddr_ll - ASoC: fix valid stream condition - [arm*] dwc2: gadget: Fix completed transfer size calculation in DDMA - IB/mlx5: Add missing XRC options to QP optional params mask - RDMA/rxe: Consider skb reserve space based on netdev of GID - [amd64] iommu/vt-d: Make kernel parameter igfx_off work with vIOMMU - [arm64] dmaengine: tegra210-adma: restore channel status - mmc: core: fix possible use after free of host - ath10k: Fix encoding for protected management frames - afs: Fix the afs.cell and afs.volume xattr handlers - l2tp: Fix possible NULL pointer dereference - [x86] platform/x86: alienware-wmi: printing the wrong error code - netfilter: ebtables: CONFIG_COMPAT: reject trailing data after last rule - [arm64,armhf] pwm: meson: Consider 128 a valid pre-divider - [arm64,armhf] pwm: meson: Don't disable PWM when setting duty repeatedly - nfp: bpf: fix static check error through tightening shift amount adjustment - netfilter: nf_tables: correct NFT_LOGLEVEL_MAX value - [arm*] thermal: cpu_cooling: Actually trace CPU load in thermal_power_cpu_get_power - EDAC/mc: Fix edac_mc_find() in case no device is found - afs: Fix key leak in afs_release() and afs_evict_inode() - afs: Don't invalidate callback if AFS_VNODE_DIR_VALID not set - afs: Fix lock-wait/callback-break double locking - afs: Fix double inc of vnode->cb_break - [armhf] dts: sun8i-h3: Fix wifi in Beelink X2 DT - [arm64] clk: meson: gxbb: no spread spectrum on mpll0 - [arm64] clk: meson: axg: spread spectrum is on mpll2 - [arm64] dmaengine: tegra210-adma: Fix crash during probe - [arm64] dts: meson: libretech-cc: set eMMC as removable - RDMA/qedr: Fix incorrect device rate. - [x86] crypto: ccp - fix AES CFB error exposed by new test vectors - [x86] crypto: ccp - Fix 3DES complaint from ccp-crypto module - iommu: Add missing new line for dma type - iommu: Use right function to get group for device - signal/cifs: Fix cifs_put_tcp_session to call send_sig instead of force_sig - inet: frags: call inet_frags_fini() after unregister_pernet_subsys() - [arm64] net: hns3: fix a memory leak issue for hclge_map_unmap_ring_to_vf_vector - [x86] netvsc: unshare skb in VF rx handler - net: core: support XDP generic on stacked devices. - RDMA/uverbs: check for allocation failure in uapi_add_elm() - net: don't clear sock->sk early to avoid trouble in strparser - [arm64] phy: qcom-qusb2: fix missing assignment of ret when calling clk_prepare_enable - [arm64] clk: sunxi-ng: sun50i-h6-r: Fix incorrect W1 clock gate register - media: vivid: fix incorrect assignment operation when setting video mode - [arm64] crypto: inside-secure - fix zeroing of the request in ahash_exit_inv - [arm64] crypto: inside-secure - fix queued len computation - mpls: fix warning with multi-label encap - [arm64] dts: meson-gxm-khadas-vim2: fix gpio-keys-polled node - [arm64] dts: meson-gxm-khadas-vim2: fix Bluetooth support - [amd64] iommu/vt-d: Duplicate iommu_resv_region objects per device list - qed: iWARP - Use READ_ONCE and smp_store_release to access ep->state - qed: iWARP - fix uninitialized callback - [powerpc*] cacheinfo: add cacheinfo_teardown, cacheinfo_rebuild - [powerpc*] pseries/mobility: rebuild cacheinfo hierarchy post-migration - bpf: fix the check that forwarding is enabled in bpf_ipv6_fib_lookup - [amd64] IB/hfi1: Handle port down properly in pio - [arm64] drm/msm/mdp5: Fix mdp5_cfg_init error return - net: netem: fix backlog accounting for corrupted GSO frames - net/udp_gso: Allow TX timestamp with UDP GSO - [s390x] net/af_iucv: build proper skbs for HiperTransport - [s390x] net/af_iucv: always register net_device notifier - [armhf] ASoC: ti: davinci-mcasp: Fix slot mask settings when using multiple AXRs - rtc: pcf8563: Fix interrupt trigger method - rtc: pcf8563: Clear event flags and disable interrupts before requesting irq - net/sched: cbs: Fix error path of cbs_module_init - [arm64] drm/msm/a3xx: remove TPL1 regs from snapshot - ip6_fib: Don't discard nodes with valid routing information in fib6_locate_1() - perf/ioctl: Add check for the sample_period value - [x86] dmaengine: hsu: Revert "set HSU_CH_MTSR to memory width" - tools: bpftool: use correct argument in cgroup errors - fork,memcg: alloc_thread_stack_node needs to set tsk->stack - bnxt_en: Fix ethtool selftest crash under error conditions. - bnxt_en: Suppress error messages when querying DSCP DCB capabilities. - [amd64] iommu: Make iommu_disable safer - [x86] mfd: intel-lpss: Release IDA resources - rxrpc: Fix uninitialized error code in rxrpc_send_data_packet() - xprtrdma: Fix use-after-free in rpcrdma_post_recvs - PM: ACPI/PCI: Resume all devices during hibernation - ACPI: PM: Simplify and fix PM domain hibernation callbacks - ACPI: PM: Introduce "poweroff" callbacks for ACPI PM domain and LPSS - devres: allow const resource arguments - [arm64] RDMA/hns: Fixs hw access invalid dma memory error - ceph: fix "ceph.dir.rctime" vxattr value - xdp: fix possible cq entry leak - scsi: libfc: fix null pointer dereference on a null lport - xfrm interface: ifname may be wrong in logs - [armhf] clk: sunxi-ng: v3s: add the missing PLL_DDR1 - PM: sleep: Fix possible overflow in pm_system_cancel_wakeup() - libertas_tf: Use correct channel range in lbtf_geo_init - qed: reduce maximum stack frame size - usb: host: xhci-hub: fix extra endianness conversion - [x86] crypto: ccp - Reduce maximum stack usage - tipc: reduce risk of wakeup queue starvation - net/mlx5: Fix mlx5_ifc_query_lag_out_bits - cifs: fix rmmod regression in cifs.ko caused by force_sig changes - net: fix bpf_xdp_adjust_head regression for generic-XDP - cxgb4: smt: Add lock for atomic_dec_and_test - ext4: set error return correctly when ext4_htree_store_dirent fails - [arm64] RDMA/hns: Bugfix for slab-out-of-bounds when unloading hip08 driver - [arm64] RDMA/hns: bugfix for slab-out-of-bounds when loading hip08 driver - net/rds: Add a few missing rds_stat_names entries - tools: bpftool: fix arguments for p_err() in do_event_pipe() - tools: bpftool: fix format strings and arguments for jsonw_printf() - bnxt_en: Fix handling FRAG_ERR when NVM_INSTALL_UPDATE cmd fails - signal: Allow cifs and drbd to receive their terminating signals - [ppc64el] 64s/radix: Fix memory hot-unplug page table split - [x86] dmaengine: dw: platform: Switch to acpi_dma_controller_register() - mac80211: minstrel_ht: fix per-group max throughput rate initialization - i40e: reduce stack usage in i40e_set_fc - [armhf] 8896/1: VDSO: Don't leak kernel addresses - [mips*] avoid explicit UB in assignment of mips_io_port_base - media: em28xx: Fix exception handling in em28xx_alloc_urbs() - ahci: Do not export local variable ahci_em_messages - rxrpc: Fix lack of conn cleanup when local endpoint is cleaned up - Partially revert "kfifo: fix kfifo_alloc() and kfifo_init()" - hwmon: (lm75) Fix write operations for negative temperatures - net/sched: cbs: Set default link speed to 10 Mbps in cbs_set_port_rate - power: supply: Init device wakeup after device_add() - [x86] perf: Fix the dependency of the x86 insn decoder selftest - irqdomain: Add the missing assignment of domain->fwnode for named fwnode - bcma: fix incorrect update of BCMA_CORE_PCI_MDIO_DATA - bcache: Fix an error code in bch_dump_read() - netfilter: ctnetlink: honor IPS_OFFLOAD flag - [arm64] wcn36xx: use dynamic allocation for large variables - xsk: avoid store-tearing when assigning queues - xsk: avoid store-tearing when assigning umem - led: triggers: Fix dereferencing of null pointer - [arm64] net: hns3: fix error VF index when setting VLAN offload - rtlwifi: Fix file release memory leak - f2fs: fix wrong error injection path in inc_valid_block_count() - f2fs: fix error path of f2fs_convert_inline_page() - [x86] scsi: fnic: fix msix interrupt allocation - Btrfs: fix hang when loading existing inode cache off disk - Btrfs: fix inode cache waiters hanging on failure to start caching thread - Btrfs: fix inode cache waiters hanging on path allocation failure - btrfs: use correct count in btrfs_file_write_iter() - ixgbe: sync the first fragment unconditionally - ath10k: adjust skb length in ath10k_sdio_mbox_rx_packet - RDMA/cma: Fix false error message - net/rds: Fix 'ib_evt_handler_call' element in 'rds_ib_stat_names' - bnxt_en: Increase timeout for HWRM_DBG_COREDUMP_XX commands - f2fs: fix to avoid accessing uninitialized field of inode page in is_alive() - [powerpc*] mm/mce: Keep irqs disabled during lockless page table walk - bpf: fix BTF limits - [amd64] iommu: Wait for completion of IOTLB flush in attach_device - [amd64] net: aquantia: Fix aq_vec_isr_legacy() return value - cxgb4: Signedness bug in init_one() - [arm64] net: hisilicon: Fix signedness bug in hix5hd2_dev_probe() - [arm64] net: netsec: Fix signedness bug in netsec_probe() - [arm64,armhf] net: stmmac: dwmac-meson8b: Fix signedness bug in probe - of: mdio: Fix a signedness bug in of_phy_get_and_connect() - [arm64] net: ethernet: stmmac: Fix signedness bug in ipq806x_gmac_of_parse() - net: sched: cbs: Avoid division by zero when calculating the port rate - nvme: retain split access workaround for capability reads - [arm64,armhf] net: stmmac: gmac4+: Not all Unicast addresses may be available - rxrpc: Fix trace-after-put looking at the put connection record - mac80211: accept deauth frames in IBSS mode - llc: fix another potential sk_buff leak in llc_ui_sendmsg() - llc: fix sk_buff refcounting in llc_conn_state_process() - ip6erspan: remove the incorrect mtu limit for ip6erspan - [arm64,armhf] net: stmmac: fix length of PTP clock's name string - [arm64,armhf] net: stmmac: fix disabling flexible PPS output - sctp: add chunks to sk_backlog when the newsk sk_socket is not set - [s390x] qeth: Fix error handling during VNICC initialization - [s390x] qeth: Fix initialization of vnicc cmd masks during set online - act_mirred: Fix mirred_init_module error handling - net: avoid possible false sharing in sk_leave_memory_pressure() - net: add {READ|WRITE}_ONCE() annotations on ->rskq_accept_head - tcp: annotate lockless access to tcp_memory_pressure - net/smc: receive returns without data - net/smc: receive pending data after RCV_SHUTDOWN - [arm64] drm/msm/dsi: Implement reset correctly - [armhf] dmaengine: imx-sdma: fix size check for sdma script_number - [arm64] hibernate: check pgd table allocation - net: netem: fix error path for corrupted GSO frames - net: netem: correct the parent's backlog when corrupted packet was dropped - xsk: Fix registration of Rx-only sockets - bpf, offload: Unlock on error in bpf_offload_dev_create() - afs: Fix missing timeout reset - [x86] hv_netvsc: Fix offset usage in netvsc_send_table() - [x86] hv_netvsc: Fix send_table offset in case of a host bug - afs: Fix large file support - [armhf] hwrng: omap3-rom - Fix missing clock by probing with device tree - [mips64el,mipsel] Loongson: Fix return value of loongson_hwmon_init - [x86] hv_netvsc: flag software created hash value - net: neigh: use long type to store jiffies delta - packet: fix data-race in fanout_flow_is_huge() - affs: fix a memory leak in affs_remount - afs: Remove set but not used variables 'before', 'after' - [armhf] dmaengine: ti: edma: fix missed failure handling - drm/radeon: fix bad DMA from INTERRUPT_CNTL2 - [arm64] dts: meson-gxm-khadas-vim2: fix uart_A bluetooth node https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.100 - can, slip: Protect tty->disc_data in write_wakeup and close with RCU - [x86] firestream: fix memory leaks - gtp: make sure only SOCK_DGRAM UDP sockets are accepted - ipv6: sr: remove SKB_GSO_IPXIP6 on End.D* actions - net: cxgb3_main: Add CAP_NET_ADMIN check to CHELSIO_GET_MEM - net: ip6_gre: fix moving ip6gre between namespaces - net, ip6_tunnel: fix namespaces move - net, ip_tunnel: fix namespaces move - net: rtnetlink: validate IFLA_MTU attribute in rtnl_create_link() - net_sched: fix datalen for ematch - net-sysfs: Fix reference count leak in rx|netdev_queue_add_kobject - net-sysfs: fix netdev_queue_add_kobject() breakage - net-sysfs: Call dev_hold always in netdev_queue_add_kobject - net-sysfs: Call dev_hold always in rx_queue_add_kobject - net-sysfs: Fix reference count leak - net: usb: lan78xx: Add .ndo_features_check - Revert "udp: do rmem bulk free even if the rx sk queue is empty" - tcp_bbr: improve arithmetic division in bbr_update_bw() - tcp: do not leave dangling pointers in tp->highest_sack - tun: add mutex_unlock() call and napi.skb clearing in tun_get_user() - afs: Fix characters allowed into cell names - hwmon: (adt7475) Make volt2reg return same reg as reg2volt input - hwmon: (core) Do not use device managed functions for memory allocations - PCI: Mark AMD Navi14 GPU rev 0xc5 ATS as broken - tracing: trigger: Replace unneeded RCU-list traversals - Input: keyspan-remote - fix control-message timeouts - [x86] Revert "Input: synaptics-rmi4 - don't increment rmiaddr for SMBus transfers" - [arm64,armhf] mmc: tegra: fix SDR50 tuning override - mmc: sdhci: fix minimum clock rate for v3 controller - [arm64] Documentation: Document arm64 kpti control - Input: sur40 - fix interface sanity checks - Input: gtco - fix endpoint sanity check - Input: aiptek - fix endpoint sanity check - Input: pegasus_notetaker - fix endpoint sanity check - [armhf] Input: sun4i-ts - add a check for devm_thermal_zone_of_sensor_register - netfilter: nft_osf: add missing check for DREG attribute - hwmon: (nct7802) Fix voltage limits to wrong registers - do_last(): fetch directory ->i_mode and ->i_uid before it's too late (CVE-2020-8428) - sd: Fix REQ_OP_ZONE_REPORT completion handling - [i386] crypto: geode-aes - switch to skcipher for cbc(aes) fallback - media: v4l2-ioctl.c: zero reserved fields for S/TRY_FMT - scsi: iscsi: Avoid potential deadlock in iscsi_if_rx func - netfilter: ipset: use bitmap infrastructure completely - netfilter: nf_tables: add __nft_chain_type_get() - mm/memory_hotplug: make remove_memory() take the device_hotplug_lock - mm, sparse: drop pgdat_resize_lock in sparse_add/remove_one_section() - mm, sparse: pass nid instead of pgdat to sparse_add_one_section() - drivers/base/memory.c: remove an unnecessary check on NR_MEM_SECTIONS - mm, memory_hotplug: add nid parameter to arch_remove_memory - mm/memory_hotplug: release memory resource after arch_remove_memory() - drivers/base/memory.c: clean up relics in function parameters - mm, memory_hotplug: update a comment in unregister_memory() - mm/memory_hotplug: make unregister_memory_section() never fail - mm/memory_hotplug: make __remove_section() never fail - [powerpc*] mm: Fix section mismatch warning - mm/memory_hotplug: make __remove_pages() and arch_remove_memory() never fail - [s390x] mm: implement arch_remove_memory() - mm/memory_hotplug: allow arch_remove_memory() without CONFIG_MEMORY_HOTREMOVE - drivers/base/memory: pass a block_id to init_memory_block() - mm/memory_hotplug: create memory block devices after arch_add_memory() - mm/memory_hotplug: remove memory block devices before arch_remove_memory() - mm/memory_hotplug: make unregister_memory_block_under_nodes() never fail - mm/memory_hotplug: remove "zone" parameter from sparse_remove_one_section - mm/hotplug: kill is_dev_zone() usage in __remove_pages() - drivers/base/node.c: simplify unregister_memory_block_under_nodes() - mm/memunmap: don't access uninitialized memmap in memunmap_pages() - mm/memory_hotplug: fix try_offline_node() - mm/memory_hotplug: shrink zones when offlining memory https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.101 - orinoco_usb: fix interface sanity check - rsi_91x_usb: fix interface sanity check - USB: serial: ir-usb: add missing endpoint sanity check - USB: serial: ir-usb: fix link-speed handling - USB: serial: ir-usb: fix IrLAP framing - [arm64,armhf] usb: dwc3: turn off VBUS when leaving host mode - staging: wlan-ng: ensure error return is actually returned - [x86] staging: vt6656: correct packet types for CTS protect, mode. - [x86] staging: vt6656: use NULLFUCTION stack on mac80211 - [x86] staging: vt6656: Fix false Tx excessive retries reporting. - [arm64,armel] serial: 8250_bcm2835aux: Fix line mismatch on driver unbind - component: do not dereference opaque pointer in debugfs - [x86] mei: me: add comet point (lake) H device ids - crypto: chelsio - fix writing tfm flags to wrong place - cifs: Fix memory allocation in __smb2_handle_cancelled_cmd() - ath9k: fix storage endpoint lookup - brcmfmac: fix interface sanity check - rtl8xxxu: fix interface sanity check - zd1211rw: fix storage endpoint lookup - net_sched: ematch: reject invalid TCF_EM_SIMPLE - net_sched: fix ops->bind_class() implementations - HID: multitouch: Add LG MELF0410 I2C touchscreen support - HID: Add quirk for Xin-Mo Dual Controller - HID: ite: Add USB id match for Acer SW5-012 keyboard dock - [x86] HID: Add quirk for incorrect input length on Lenovo Y720 - drivers/hid/hid-multitouch.c: fix a possible null pointer access. - [arm64] phy: qcom-qmp: Increase PHY ready timeout - drivers/net/b44: Change to non-atomic bit operations on pwol_mask - [i386] net: wan: sdla: Fix cast from pointer to integer of different size - [arm64] gpio: max77620: Add missing dependency on GPIOLIB_IRQCHIP - atm: eni: fix uninitialized variable warning - HID: steam: Fix input device disappearing - [x86] platform/x86: dell-laptop: disable kbd backlight on Inspiron 10xx - [amd64] PCI: Add DMA alias quirk for Intel VCA NTB - [amd64] iommu: Support multiple PCI DMA aliases in IRQ Remapping - usb-storage: Disable UAS on JMicron SATA enclosure - sched/fair: Add tmp_alone_branch assertion - sched/fair: Fix insertion in rq->leaf_cfs_rq_list - rsi: fix use-after-free on probe errors - rsi: fix memory leak on failed URB submission - rsi: fix non-atomic allocation in completion handler - crypto: af_alg - Use bh_lock_sock in sk_destruct - block: cleanup __blkdev_issue_discard() - block: fix 32 bit overflow in __blkdev_issue_discard() - [arm64] KVM: Write arch.mdcr_el2 changes since last vcpu_load on VHE https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.102 - vfs: fix do_last() regression - crypto: pcrypt - Fix user-after-free on module unload - perf c2c: Fix return type for histogram sorting comparision functions - PM / devfreq: Add new name attribute for sysfs - tools lib: Fix builds when glibc contains strlcpy() - ext4: validate the debug_want_extra_isize mount option at parse time - mm/mempolicy.c: fix out of bounds write in mpol_parse_str() - reiserfs: Fix memory leak of journal device string - media: digitv: don't continue if remote control state can't be read - media: af9005: uninitialized variable printked - media: vp7045: do not read uninitialized values if usb transfer fails - media: gspca: zero usb_buf - media: dvb-usb/dvb-usb-urb.c: initialize actlen to 0 - tomoyo: Use atomic_t for statistics counter - ttyprintk: fix a potential deadlock in interrupt context issue - Bluetooth: Fix race condition in hci_release_sock() - cgroup: Prevent double killing of css when enabling threaded cgroup - [armhf] dts: sun8i: a83t: Correct USB3503 GPIOs polarity - [armhf] dts: am57xx-beagle-x15/am57xx-idk: Remove "gpios" for endpoint dt nodes - [armhf] dts: beagle-x15-common: Model 5V0 regulator - [arm64] clk: sunxi-ng: h6-r: Fix AR100/R_APB2 parent order - mac80211: mesh: restrict airtime metric to peered established plinks - ASoC: rt5640: Fix NULL dereference on module unload - ixgbevf: Remove limit of 10 entries for unicast filter list - ixgbe: Fix calculation of queue with VFs and flow director on interface flap - igb: Fix SGMII SFP module discovery for 100FX/LX. - [x86] platform/x86: GPD pocket fan: Allow somewhat lower/higher temperature limits - qmi_wwan: Add support for Quectel RM500Q - wireless: fix enabling channel 12 for custom regulatory domain - cfg80211: Fix radar event during another phy CAC - mac80211: Fix TKIP replay protection immediately after key setup - netfilter: nft_tunnel: ERSPAN_VERSION must not be null - [armhf] net: dsa: bcm_sf2: Configure IMP port for 2Gb/sec - bnxt_en: Fix ipv6 RFS filter matching logic. - iwlwifi: Don't ignore the cap field upon mcc update - [armhf] dts: am335x-boneblack-common: fix memory size - vti[6]: fix packet tx through bpf_redirect() - xfrm interface: fix packet tx through bpf_redirect() - xfrm: interface: do not confirm neighbor when do pmtu update - scsi: fnic: do not queue commands during fwreset - [armhf] 8955/1: virt: Relax arch timer version check during early boot - [arm64] tee: optee: Fix compilation issue with nommu - airo: Fix possible info leak in AIROOLDIOCTL/SIOCDEVPRIVATE - airo: Add missing CAP_NET_ADMIN check in AIROOLDIOCTL/SIOCDEVPRIVATE - r8152: get default setting of WOL before initializing - qlcnic: Fix CPU soft lockup while collecting firmware dump - seq_tab_next() should increase position index - l2t_seq_next should increase position index - net: Fix skb->csum update in inet_proto_csum_replace16(). - btrfs: do not zero f_bavail if we have available space - perf report: Fix no libunwind compiled warning break s390 issue - mm/migrate.c: also overwrite error when it is bigger than zero https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.103 - [armhf] Revert "drm/sun4i: dsi: Change the start delay calculation" - ovl: fix lseek overflow on 32bit - kernel/module: Fix memleak in module_add_modinfo_attrs() - media: iguanair: fix endpoint sanity check - ocfs2: fix oops when writing cloned file - [x86] cpu: Update cached HLE state on write to TSX_CTRL_CPUID_CLEAR - udf: Allow writing to 'Rewritable' partitions - printk: fix exclusive_console replaying - iwlwifi: mvm: fix NVM check for 3168 devices - gtp: use __GFP_NOWARN to avoid memalloc warning - l2tp: Allow duplicate session creation with UDP - net_sched: fix an OOB access in cls_tcindex - [arm64,armhf] net: stmmac: Delete txtimer in suspend() - bnxt_en: Fix TC queue mapping. - tcp: clear tp->total_retrans in tcp_disconnect() - tcp: clear tp->delivered in tcp_disconnect() - tcp: clear tp->data_segs{in|out} in tcp_disconnect() - tcp: clear tp->segs_{in|out} in tcp_disconnect() - rxrpc: Fix use-after-free in rxrpc_put_local() - rxrpc: Fix insufficient receive notification generation - rxrpc: Fix missing active use pinning of rxrpc_local object - rxrpc: Fix NULL pointer deref due to call->conn being cleared on disconnect - media: uvcvideo: Avoid cyclic entity chains due to malformed USB descriptors - ipc/msg.c: consolidate all xxxctl_down() functions - tracing: Fix sched switch start/stop refcount racy updates - rcu: Avoid data-race in rcu_gp_fqs_check_wake() - brcmfmac: Fix memory leak in brcmf_usbdev_qinit - usb: gadget: f_ncm: Use atomic_t to track in-flight request - usb: gadget: f_ecm: Use atomic_t to track in-flight request - ALSA: usb-audio: Fix endianess in descriptor validation - ALSA: dummy: Fix PCM format loop in proc output - mm/memory_hotplug: fix remove_memory() lockdep splat - mm: move_pages: report the number of non-attempted pages - media/v4l2-core: set pages dirty upon releasing DMA buffers - media: v4l2-core: compat: ignore native command codes - media: v4l2-rect.h: fix v4l2_rect_map_inside() top/left adjustments - irqdomain: Fix a memory leak in irq_domain_push_irq() - [x86] platform/x86: intel_scu_ipc: Fix interrupt support - [x86] ALSA: hda: Add Clevo W65_67SB the power_save blacklist - [arm64] KVM: Correct PSTATE on exception entry - [arm64,armhf] KVM: Correct CPSR on exception entry - [arm64,armhf] KVM: Correct AArch32 SPSR on exception entry - [arm64] KVM: Only sign-extend MMIO up to register width - [s390x] mm: fix dynamic pagetable upgrade for hugetlbfs - [powerpc*] pseries: Advance pfn if section is not present in lmb_is_removable() - smb3: fix signing verification of large reads - [arm64,armhf] PCI: tegra: Fix return value check of pm_runtime_get_sync() - [arm64,armhf] mmc: spi: Toggle SPI polarity, do not hardcode it - [x86] ACPI: video: Do not export a non working backlight interface on MSI MS-7721 boards - [x86] ACPI / battery: Deal with design or full capacity being reported as -1 - [x86] ACPI / battery: Use design-cap for capacity calculations if full-cap is not available - [x86] ACPI / battery: Deal better with neither design nor full capacity not being reported - alarmtimer: Unregister wakeup source when module get fails - ubifs: Reject unsupported ioctl flags explicitly - ubifs: don't trigger assertion on invalid no-key filename - ubifs: Fix FS_IOC_SETFLAGS unexpectedly clearing encrypt flag - ubifs: Fix deadlock in concurrent bulk-read and writepage - [i386] crypto: geode-aes - convert to skcipher API and make thread-safe - [x86] hv_balloon: Balloon up according to request page number - mfd: axp20x: Mark AXP20X_VBUS_IPSOUT_MGMT as volatile - crypto: api - Check spawn->alg under lock in crypto_drop_spawn - scsi: qla2xxx: Fix mtcp dump collection failure - ovl: fix wrong WARN_ON() in ovl_cache_update_ino() - f2fs: choose hardlimit when softlimit is larger than hardlimit in f2fs_statfs_project() - f2fs: fix miscounted block limit in f2fs_statfs_project() - f2fs: code cleanup for f2fs_statfs_project() - PM: core: Fix handling of devices deleted during system-wide resume - dm zoned: support zone sizes smaller than 128MiB - dm space map common: fix to ensure new block isn't already in use - dm crypt: fix benbi IV constructor crash if used in authenticated mode - dm: fix potential for q->make_request_fn NULL pointer - dm writecache: fix incorrect flush sequence when doing SSD mode commit - padata: Remove broken queue flushing - tracing: Annotate ftrace_graph_hash pointer with __rcu - tracing: Annotate ftrace_graph_notrace_hash pointer with __rcu - ftrace: Add comment to why rcu_dereference_sched() is open coded - ftrace: Protect ftrace_graph_hash with ftrace_sync - [x86] crypto: ccp - set max RSA modulus size for v3 platform devices as well - crypto: pcrypt - Do not clear MAY_SLEEP flag in original request - crypto: api - Fix race condition in crypto_spawn_alg - scsi: qla2xxx: Fix unbound NVME response length - NFS: Fix memory leaks and corruption in readdir - NFS: Directory page cache pages need to be locked when read - jbd2_seq_info_next should increase position index - Btrfs: fix missing hole after hole punching and fsync when using NO_HOLES - btrfs: set trans->drity in btrfs_commit_transaction - Btrfs: fix race between adding and putting tree mod seq elements and nodes - [armhf] tegra: Enable PLLP bypass during Tegra124 LP1 - iwlwifi: don't throw error when trying to remove IGTK - mwifiex: fix unbalanced locking in mwifiex_process_country_ie() - sunrpc: expiry_time should be seconds not timeval - gfs2: move setting current->backing_dev_info - gfs2: fix O_SYNC write handling - drm/rect: Avoid division by zero - media: rc: ensure lirc is initialized before registering input device - xen/balloon: Support xend-based toolstack take two - watchdog: fix UAF in reboot notifier handling in watchdog core code - bcache: add readahead cache policy options via sysfs interface - eventfd: track eventfd_signal() recursion depth - aio: prevent potential eventfd recursion on poll - [x86] KVM: Refactor picdev_write() to prevent Spectre-v1/L1TF attacks - [x86] KVM: Refactor prefix decoding to prevent Spectre-v1/L1TF attacks - [x86] KVM: Protect pmu_intel.c from Spectre-v1/L1TF attacks - [x86] KVM: Protect DR-based index computations from Spectre-v1/L1TF attacks - [x86] KVM: Protect kvm_lapic_reg_write() from Spectre-v1/L1TF attacks - [x86] KVM: Protect kvm_hv_msr_[get|set]_crash_data() from Spectre-v1/L1TF attacks - [x86] KVM: Protect ioapic_write_indirect() from Spectre-v1/L1TF attacks - [x86] KVM: Protect MSR-based index computations in pmu.h from Spectre-v1/L1TF attacks - [x86] KVM: Protect ioapic_read_indirect() from Spectre-v1/L1TF attacks - [x86] KVM: Protect MSR-based index computations from Spectre-v1/L1TF attacks in x86.c - [x86] KVM: Protect x86_decode_insn from Spectre-v1/L1TF attacks - [x86] KVM: Protect MSR-based index computations in fixed_msr_to_seg_unit() from Spectre-v1/L1TF attacks - [x86] KVM: Fix potential put_fpu() w/o load_fpu() on MPX platform - [ppc64el] KVM: Book3S HV: Uninit vCPU if vcore creation fails - [ppc64el] KVM: Book3S PR: Free shared page if mmu initialization fails - [x86] kvm: Be careful not to clear KVM_VCPU_FLUSH_TLB bit (CVE-2019-3016) - [x86] KVM: Don't let userspace set host-reserved cr4 bits - [x86] KVM: Free wbinvd_dirty_mask if vCPU creation fails - [s390x] KVM: do not clobber registers during guest reset/store status - [arm64,armhf] clk: tegra: Mark fuse clock as critical - percpu: Separate decrypted varaibles anytime encryption can be enabled - scsi: qla2xxx: Fix the endianness of the qla82xx_get_fw_size() return type - scsi: csiostor: Adjust indentation in csio_device_reset - scsi: qla4xxx: Adjust indentation in qla4xxx_mem_free - scsi: ufs: Recheck bkops level if bkops is disabled - [arm64] phy: qualcomm: Adjust indentation in read_poll_timeout - ext2: Adjust indentation in ext2_fill_super - [arm64] drm: msm: mdp4: Adjust indentation in mdp4_dsi_encoder_enable - IB/mlx5: Fix outstanding_pi index for GSI qps - IB/core: Fix ODP get user pages flow - nfsd: fix delay timer on 32-bit architectures - nfsd: fix jiffies/time_t mixup in LRU list - nfsd: Return the correct number of bytes written to the file - ubi: fastmap: Fix inverted logic in seen selfcheck - ubi: Fix an error pointer dereference in error handling code - bonding/alb: properly access headers in bond_alb_xmit() - [armhf] net: dsa: bcm_sf2: Only 7278 supports 2Gb/sec IMP port - [arm64,armhf] net: mvneta: move rx_dropped and rx_errors in per-cpu stats - net_sched: fix a resource leak in tcindex_set_parms() - net/mlx5: IPsec, Fix esp modify function attribute - net/mlx5: IPsec, fix memory leak at mlx5_fpga_ipsec_delete_sa_ctx - [arm64] net: macb: Remove unnecessary alignment check for TSO - [arm64] net: macb: Limit maximum GEM TX length in TSO - [armhf] net: dsa: b53: Always use dev->vlan_enabled in b53_configure_vlan() - ext4: fix deadlock allocating crypto bounce page from mempool - btrfs: use bool argument in free_root_pointers() - btrfs: free block groups after free'ing fs trees - btrfs: flush write bio if we loop in extent_write_cache_pages - [x86] KVM: mmu: Apply max PA check for MMIO sptes to 32-bit KVM - [x86] KVM: Use gpa_t for cr2/gpa to fix TDP support on 32-bit KVM - [x86] KVM: nVMX: vmread should not set rflags to specify success in case of #PF - KVM: Use vcpu-specific gva->hva translation when querying host page size - KVM: Play nice with read-only memslots when querying host page size - mm: zero remaining unavailable struct pages - mm: return zero_resv_unavail optimization - mm/page_alloc.c: fix uninitialized memmaps on a partially populated last section - cifs: fail i/o on soft mounts if sessionsetup errors out - [x86] apic/msi: Plug non-maskable MSI affinity race - clocksource: Prevent double add_timer_on() for watchdog_timer - perf/core: Fix mlock accounting in perf_mmap() - rxrpc: Fix service call disconnection https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.104 - ASoC: pcm: update FE/BE trigger order based on the command - [x86] hv_sock: Remove the accept port restriction - IB/mlx4: Fix memory leak in add_gid error flow - RDMA/netlink: Do not always generate an ACK for some netlink operations - RDMA/core: Fix locking in ib_uverbs_event_read - scsi: ufs: Fix ufshcd_probe_hba() reture value in case ufshcd_scsi_add_wlus() fails - PCI/IOV: Fix memory leak in pci_iov_add_virtfn() - ath10k: pci: Only dump ATH10K_MEM_REGION_TYPE_IOREG when safe - PCI: Don't disable bridge BARs when assigning bus resources - nfs: NFS_SWAP should depend on SWAP - NFS: Revalidate the file size on a fatal write error - NFS/pnfs: Fix pnfs_generic_prepare_to_resend_writes() - NFSv4: try lease recovery on NFS4ERR_EXPIRED - [arm64] serial: uartps: Add a timeout to the tx empty wait - [arm64] gpio: zynq: Report gpio direction at boot - spi: spi-mem: Add extra sanity checks on the op param - spi: spi-mem: Fix inverted logic in op sanity check - rtc: cmos: Stop using shared IRQ - [x86] platform/x86: intel_mid_powerbtn: Take a copy of ddata - [powerpc*] pseries/vio: Fix iommu_table use-after-free refcount warning - [powerpc*] pseries: Allow not having ibm, hypertas-functions::hcall-multi-tce for DDW - [arm64] iommu/arm-smmu-v3: Populate VMID field for CMDQ_OP_TLBI_NH_VA - [arm64,armhf] KVM: vgic-its: Fix restoration of unmapped collections - [armel,armhf] 8949/1: mm: mark free_memmap as __init - [arm64] cpufeature: Fix the type of no FP/SIMD capability - [arm64] ptrace: nofpsimd: Fail FP/SIMD regset operations - [arm64,armhf] KVM: Fix young bit from mmu notifier - [arm64,armhf] KVM: Fix DFSR setting for non-LPAE aarch32 guests - [arm64,armhf] KVM: Make inject_abt32() inject an external abort instead - [arm64] KVM: pmu: Don't increment SW_INCR if PMCR.E is unset - mtd: onenand_base: Adjust indentation in onenand_read_ops_nolock - mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() - mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() - libertas: don't exit from lbs_ibss_join_existing() with RCU read lock held - libertas: make lbs_ibss_join_existing() return error code on rates overflow - scsi: megaraid_sas: Do not initiate OCR if controller is not in ready state - [x86] stackframe: Move ENCODE_FRAME_POINTER to asm/frame.h - [x86] x86/stackframe, x86/ftrace: Add pt_regs frame annotations - [arm64] serial: uartps: Move the spinlock after the read of the tx empty - padata: fix null pointer deref of pd->pinst https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.105 - Input: synaptics - switch T470s to RMI4 by default - Input: synaptics - enable SMBus on ThinkPad L470 - Input: synaptics - remove the LEN0049 dmi id from topbuttonpad list - ALSA: usb-audio: Fix UAC2/3 effect unit parsing - ALSA: hda/realtek - Fix silent output on MSI-GL73 - ALSA: usb-audio: Apply sample rate quirk for Audioengine D1 - [arm64] cpufeature: Set the FP/SIMD compat HWCAP bits properly - [arm64] nofpsmid: Handle TIF_FOREIGN_FPSTATE flag cleanly - ALSA: usb-audio: sound: usb: usb true/false for bool return type - ALSA: usb-audio: Add clock validity quirk for Denon MC7000/MCX8000 - ext4: don't assume that mmp_nodename/bdevname have NUL - ext4: fix support for inode sizes > 1024 bytes - ext4: fix checksum errors with indexed dirs - ext4: add cond_resched() to ext4_protect_reserved_inode (CVE-2020-8992) - ext4: improve explanation of a mount failure caused by a misconfigured kernel - Btrfs: fix race between using extent maps and merging them - btrfs: ref-verify: fix memory leaks - btrfs: print message when tree-log replay starts - btrfs: log message when rw remount is attempted with unclean tree-log - [arm64] ssbs: Fix context-switch when SSBS is present on all CPUs - [x86] perf/x86/amd: Add missing L2 misses event spec to AMD Family 17h's event map - nvme: fix the parameter order for nvme_get_log in nvme_get_fw_slot_info - [amd64] IB/hfi1: Acquire lock to release TID entries when user file is closed - [amd64] IB/hfi1: Close window for pq and request coliding - IB/rdmavt: Reset all QPs when the device is shut down - RDMA/core: Fix invalid memory access in spec_filter_size - [amd64] RDMA/hfi1: Fix memory leak in _dev_comp_vect_mappings_create - RDMA/rxe: Fix soft lockup problem due to using tasklets in softirq - RDMA/core: Fix protection fault in get_pkey_idx_qp_list - [s390x] time: Fix clk type in get_tod_clock - [x86] perf/x86/intel: Fix inaccurate period in context switch for auto- reload - NFSv4.1 make cachethis=no for writes - jbd2: move the clearing of b_modified flag to the journal_unmap_buffer() - jbd2: do not clear the BH_Mapped flag when forgetting a metadata buffer - [x86] KVM: mmu: Fix struct guest_walker arrays for 5-level paging https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.106 - core: Don't skip generic XDP program execution for cloned SKBs - enic: prevent waking up stopped tx queues over watchdog reset - net/smc: fix leak of kernel memory to user space - net/sched: matchall: add missing validation of TCA_MATCHALL_FLAGS - net/sched: flower: add missing validation of TCA_FLOWER_FLAGS - [x86] KVM: nVMX: Use correct root level for nested EPT shadow page tables - [x86] drm/gma500: Fixup fbdev stolen size usage evaluation - cpu/hotplug, stop_machine: Fix stop_machine vs hotplug order - brcmfmac: Fix use after free in brcmf_sdio_readframes() - ext4: fix ext4_dax_read/write inode locking sequence for IOCB_NOWAIT - ALSA: ctl: allow TLV read operation for callback type of element in locked case - [powerpc*] powernv/iov: Ensure the pdn for VFs always contains a valid PE number - [amd64] iommu/vt-d: Fix off-by-one in PASID allocation - [x86] pinctrl: baytrail: Do not clear IRQ flags on direct-irq enabled pins - [x86] efi: Map the entire EFI vendor string before copying it - [mips64el,mipsel] Loongson: Fix potential NULL dereference in loongson3_platform_init() - [arm*] usb: dwc2: Fix IN FIFO allocation - [armel,armhf] clocksource/drivers/bcm2835_timer: Fix memory leak of timer - jbd2: clear JBD2_ABORT flag before journal_reset to update log tail info when load journal - [armhf] pwm: omap-dmtimer: Simplify error handling - [s390x] pci: Fix possible deadlock in recover_store() - [powerpc*] iov: Move VF pdev fixup into pcibios_fixup_iov() - tracing: Fix tracing_stat return values in error handling paths - tracing: Fix very unlikely race of registering two stat tracers - ext4, jbd2: ensure panic when aborting with zero errno - ath10k: Correct the DMA direction for management tx buffers - nbd: add a flush_workqueue in nbd_start_device - [s390x] KVM: ENOTSUPP -> EOPNOTSUPP fixups - [arm64] clk: qcom: rcg2: Don't crash if our parent can't be found; return an error - drm/amdgpu: remove 4 set but not used variable in amdgpu_atombios_get_connector_info_from_object_table - [arm64,armhf] regulator: rk808: Lower log level on optional GPIOs being not available - NFC: port100: Convert cpu_to_le16(le16_to_cpu(E1) + E2) to use le16_add_cpu(). - selinux: fall back to ref-walk if audit is required - selinux: ensure we cleanup the internal AVC counters on error in avc_insert() - media: cx23885: Add support for AVerMedia CE310B - PCI: Add generic quirk for increasing D3hot delay - PCI: Increase D3 delay for AMD Ryzen5/7 XHCI controllers - media: v4l2-device.h: Explicitly compare grp{id,mask} to zero in v4l2_device macros - reiserfs: Fix spurious unlock in reiserfs_fill_super() error handling - fore200e: Fix incorrect checks of NULL pointer dereference - netfilter: nft_tunnel: add the missing ERSPAN_VERSION nla_policy - ALSA: usx2y: Adjust indentation in snd_usX2Y_hwdep_dsp_status - orinoco: avoid assertion in case of NULL pointer - ACPICA: Disassembler: create buffer fields in ACPI_PARSE_LOAD_PASS1 - scsi: ufs: Complete pending requests in host reset and restore path - scsi: aic7xxx: Adjust indentation in ahc_find_syncrate - selinux: ensure we cleanup the internal AVC counters on error in avc_update() - dmaengine: Store module owner in dma_device struct - [arm64] clk: sunxi-ng: add mux and pll notifiers for A64 CPU clock - tools lib api fs: Fix gcc9 stringop-truncation compilation error - [x86] ACPI: button: Add DMI quirk for Razer Blade Stealth 13 late 2019 lid switch - mlx5: work around high stack usage with gcc - drm: remove the newline for CRC source name. - usbip: Fix unsafe unaligned pointer usage - udf: Fix free space reporting for metadata and virtual partitions - staging: rtl8188: avoid excessive stack usage - [amd64] IB/hfi1: Add software counter for ctxt0 seq drop - [armhf] soc/tegra: fuse: Correct straps' address for older Tegra124 device trees - [x86] efi: Don't panic or BUG() on non-critical error conditions - rcu: Use WRITE_ONCE() for assignments to ->pprev for hlist_nulls - [x86] nmi: Remove irq_work from the long duration NMI handler - driver core: platform: Prevent resouce overflow from causing infinite loops - driver core: Print device when resources present in really_probe() - bpf: Return -EBADRQC for invalid map type in __bpf_tx_xdp_map - drm/nouveau/secboot/gm20b: initialize pointer in gm20b_secboot_new() - drm/nouveau/gr/gk20a,gm200-: add terminators to method lists read from fw - drm/nouveau: Fix copy-paste error in nouveau_fence_wait_uevent_handler - drm/nouveau/fault/gv100-: fix memory leak on module unload - [x86] drm/vmwgfx: prevent memory leak in vmw_cmdbuf_res_add - [armhf] usb: musb: omap2430: Get rid of musb .set_vbus for omap2430 glue - [arm64] iommu/arm-smmu-v3: Use WRITE_ONCE() when changing validity of an STE - f2fs: set I_LINKABLE early to avoid wrong access by vfs - f2fs: free sysfs kobject - scsi: iscsi: Don't destroy session if there are outstanding connections - watchdog/softlockup: Enforce that timestamp is valid on boot - f2fs: fix memleak of kobject - [x86] mm: Fix NX bit clearing issue in kernel_map_pages_in_pgd - [armhf] pwm: omap-dmtimer: Remove PWM chip in .remove before making it unfunctional - btrfs: fix possible NULL-pointer dereference in integrity checks - btrfs: safely advance counter when looking up bio csums - btrfs: device stats, log when stats are zeroed - module: avoid setting info->name early in case we can fall back to info->mod->name - ALSA: hda/hdmi - add retry logic to parse_intel_hdmi() - driver core: platform: fix u32 greater or equal to zero comparison - ALSA: hda - Add docking station support for Lenovo Thinkpad T420s - drm/nouveau/mmu: fix comptag memory leak - [powerpc*] sriov: Remove VF eeh_dev state when disabling SR-IOV - bcache: cached_dev_free needs to put the sb page - [amd64] iommu/vt-d: Remove unnecessary WARN_ON_ONCE() - jbd2: switch to use jbd2_journal_abort() when failed to submit the commit record - jbd2: make sure ESHUTDOWN to be recorded in the journal superblock - iwlegacy: ensure loop counter addr does not wrap and cause an infinite loop - cifs: fix NULL dereference in match_prepath - bpf: map_seq_next should always increase position index - ceph: check availability of mds cluster on mount after wait timeout - [arm64,armhf] irqchip/gic-v3: Only provision redistributors that are enabled in ACPI - drm/nouveau/disp/nv50-: prevent oops when no channel method map provided - ftrace: fpid_next() should increase position index - trigger_next should increase position index - radeon: insert 10ms sleep in dce5_crtc_load_lut - ocfs2: fix a NULL pointer dereference when call ocfs2_update_inode_fsync_trans() - reiserfs: prevent NULL pointer dereference in reiserfs_insert_item() - bcache: explicity type cast in bset_bkey_last() - [arm64,armhf] irqchip/gic-v3-its: Reference to its_invall_cmd descriptor when building INVALL - iwlwifi: mvm: Fix thermal zone registration - brd: check and limit max_part par - NFS: Fix memory leaks - help_next should increase position index - cifs: log warning message (once) if out of disk space - virtio_balloon: prevent pfn array overflow https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.107 - [arm64] iommu/qcom: Fix bogus detach logic - ALSA: hda: Use scnprintf() for printing texts for sysfs/procfs - [x86] ALSA: hda/realtek - Apply quirk for MSI GP63, too - [x86] ALSA: hda/realtek - Apply quirk for yet another MSI laptop - [armhf] ASoC: sun8i-codec: Fix setting DAI data format - ecryptfs: fix a memory leak bug in parse_tag_1_packet() - ecryptfs: fix a memory leak bug in ecryptfs_init_messaging() - [x86] thunderbolt: Prevent crash if non-active NVMem file is read - USB: misc: iowarrior: add support for 2 OEMed devices - USB: misc: iowarrior: add support for the 28 and 28L devices - USB: misc: iowarrior: add support for the 100 device - floppy: check FDC index for errors before assigning it (CVE-2020-9383) - vt: fix scrollback flushing on background consoles - vt: selection, handle pending signals in paste_selection - vt: vt_ioctl: fix race in VT_RESIZEX - [arm*] staging: android: ashmem: Disallow ashmem memory from being remapped (CVE-2020-0009) - [x86] staging: vt6656: fix sign of rx_dbm to bb_pre_ed_rssi. - xhci: Force Maximum Packet size for Full-speed bulk devices to valid range. - xhci: fix runtime pm enabling for quirky Intel hosts - xhci: Fix memory leak when caching protocol extended capability PSI tables - take 2 - usb: host: xhci: update event ring dequeue pointer on purpose - USB: core: add endpoint-blacklist quirk - USB: quirks: blacklist duplicate ep on Sound Devices USBPre2 - usb: uas: fix a plug & unplug racing - USB: Fix novation SourceControl XL after suspend - USB: hub: Don't record a connect-change event during reset-resume - USB: hub: Fix the broken detection of USB3 device in SMSC hub - [arm*] usb: dwc2: Fix SET/CLEAR_FEATURE and GET_STATUS flows - [arm64,armhf] usb: dwc3: gadget: Check for IOC/LST bit in TRB->ctrl fields - staging: rtl8188eu: Fix potential security hole - staging: rtl8188eu: Fix potential overuse of kernel memory - staging: rtl8723bs: Fix potential security hole - staging: rtl8723bs: Fix potential overuse of kernel memory - [powerpc*] tm: Fix clearing MSR[TS] in current when reclaiming on signal delivery - jbd2: fix ocfs2 corrupt when clearing block group bits - [x86] mce/amd: Publish the bank pointer only after setup has succeeded - [x86] mce/amd: Fix kobject lifetime - [x86] cpu/amd: Enable the fixed Instructions Retired counter IRPERF - serial: 8250: Check UPF_IRQ_SHARED in advance - [armhf] tty: serial: imx: setup the correct sg entry for tx dma - serdev: ttyport: restore client ops on deregistration - Revert "ipc,sem: remove uneeded sem_undo_list lock usage in exit_sem()" - mm/memcontrol.c: lost css_put in memcg_expand_shrinker_maps() - nvme-multipath: Fix memory leak with ana_log_buf - genirq/irqdomain: Make sure all irq domain flags are distinct - mm/vmscan.c: don't round up scan size for online memory cgroup - drm/amdgpu/soc15: fix xclk for raven - [x86] xhci: apply XHCI_PME_STUCK_QUIRK to Intel Comet Lake platforms - [x86] KVM: nVMX: Don't emulate instructions in guest mode (CVE-2020-2732) - [x86] KVM: don't notify userspace IOAPIC on edge-triggered interrupt EOI - drm/nouveau/kms/gv100-: Re-set LUT after clearing for modesets - ext4: fix a data race in EXT4_I(inode)->i_disksize - ext4: add cond_resched() to __ext4_find_entry() - ext4: fix potential race between online resizing and write operations - ext4: fix potential race between s_group_info online resizing and access - ext4: fix potential race between s_flex_groups online resizing and access - ext4: fix mount failure with quota configured as module - ext4: rename s_journal_flag_rwsem to s_writepages_rwsem - ext4: fix race between writepages and enabling EXT4_EXTENTS_FL - [x86] KVM: nVMX: Refactor IO bitmap checks into helper function - [x86] KVM: nVMX: Check IO instruction VM-exit conditions - [x86] KVM: nVMX: handle nested posted interrupts when apicv is disabled for L1 - [x86] KVM: apic: avoid calculating pending eoi from an uninitialized val - btrfs: fix bytes_may_use underflow in prealloc error condtition - btrfs: reset fs_root to NULL on error in open_ctree - btrfs: do not check delayed items are empty for single transaction cleanup - Btrfs: fix btrfs_wait_ordered_range() so that it waits for all ordered extents - scsi: Revert "target: iscsi: Wait for all commands to finish before freeing a session" - usb: gadget: composite: Fix bMaxPower for SuperSpeedPlus - [arm*] usb: dwc2: Fix in ISOC request length checking - staging: rtl8723bs: fix copy of overlapping memory - ecryptfs: replace BUG_ON with error handling code - genirq/proc: Reject invalid affinity masks (again) - bpf, offload: Replace bitwise AND by logical AND in bpf_prog_offload_info_fill - ALSA: seq: Avoid concurrent access to queue flags - ALSA: seq: Fix concurrent access to queue current tick/time - netfilter: xt_hashlimit: limit the max size of hashtable - rxrpc: Fix call RCU cleanup using non-bh-safe locks - ata: ahci: Add shutdown to freeze hardware resources of ahci - xen: Enable interrupts when calling _cond_resched() - [s390x] mm: Explicitly compare PAGE_DEFAULT_KEY against zero in storage_key_init_range https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.108 - [arm64,armhf] irqchip/gic-v3-its: Fix misuse of GENMASK macro - iwlwifi: pcie: fix rb_allocator workqueue allocation - ipmi:ssif: Handle a possible NULL pointer reference - [arm64] drm/msm: Set dma maximum segment size for mdss - dax: pass NOWAIT flag to iomap_apply - mac80211: consider more elements in parsing CRC - cfg80211: check wiphy driver existence for drvinfo report - [s390x] zcrypt: fix card and queue total counter wrap - qmi_wwan: re-add DW5821e pre-production variant - qmi_wwan: unconditionally reject 2 ep interfaces - [arm64] soc/tegra: fuse: Fix build with Tegra194 configuration - net: ena: fix potential crash when rxfh key is NULL - net: ena: fix uses of round_jiffies() - net: ena: add missing ethtool TX timestamping indication - net: ena: fix incorrect default RSS key - net: ena: rss: fix failure to get indirection table - net: ena: rss: store hash function as values and not bits - net: ena: fix incorrectly saving queue numbers when setting RSS indirection table - net: ena: ethtool: use correct value for crc32 hash - net: ena: ena-com.c: prevent NULL pointer dereference - cifs: Fix mode output in debugging statements - cfg80211: add missing policy for NL80211_ATTR_STATUS_CODE - sysrq: Restore original console_loglevel when sysrq disabled - sysrq: Remove duplicated sysrq message - net: fib_rules: Correctly set table field when table number exceeds 8 bits - net: sched: correct flower port blocking - sctp: move the format error check out of __sctp_sf_do_9_1_abort - ipv6: Fix route replacement with dev-only route - ipv6: Fix nlmsg_flags when splitting a multipath route - qede: Fix race between rdma destroy workqueue and link change event - ext4: potential crash on allocation error in ext4_alloc_flex_bg_array() - audit: fix error handling in audit_data_to_entry() - ACPICA: Introduce ACPI_ACCESS_BYTE_WIDTH() macro - [arm64,x86] ACPI: watchdog: Fix gas->access_width usage - [x86] KVM: VMX: check descriptor table exits on instruction emulation - HID: ite: Only bind to keyboard USB interface on Acer SW5-012 keyboard dock - HID: core: fix off-by-one memset in hid_report_raw_event() - HID: core: increase HID report buffer size to 8KiB - tracing: Disable trace_printk() on post poned tests - Revert "PM / devfreq: Modify the device name as devfreq(X) for sysfs" - amdgpu/gmc_v9: save/restore sdpif regs during S3 - vhost: Check docket sk_family instead of call getname (CVE-2020-10942) - HID: alps: Fix an error handling path in 'alps_input_configured()' - HID: hiddev: Fix race in in hiddev_disconnect() - [x86] hv_netvsc: Fix unwanted wakeup in netvsc_attach() - [s390x] qeth: vnicc Fix EOPNOTSUPP precedence - net: netlink: cap max groups which will be considered in netlink_bind() - [amd64] net: atlantic: fix use after free kasan warn - [amd64] net: atlantic: fix potential error handling - net/smc: no peer ID in CLC decline for SMCD - net: ena: make ena rxfh support ETH_RSS_HASH_NO_CHANGE - namei: only return -ECHILD from follow_dotdot_rcu() - mwifiex: drop most magic numbers from mwifiex_process_tdls_action_frame() - [x86] KVM: SVM: Override default MMIO mask if memory encryption is enabled - KVM: Check for a bad hva before dropping into the ghc slow path - sched/fair: Optimize update_blocked_averages() - sched/fair: Fix O(nr_cgroups) in the load balancing path - perf stat: Use perf_evsel__is_clocki() for clock events - perf stat: Fix shadow stats for clock events - [arm64] drivers: net: xgene: Fix the order of the arguments of 'alloc_etherdev_mqs()' - kprobes: Set unoptimized flag after unoptimizing code - [armhf] pwm: omap-dmtimer: put_device() after of_find_device_by_node() - perf hists browser: Restore ESC as "Zoom out" of DSO/thread/etc - [x86] KVM: Remove spurious kvm_mmu_unload() from vcpu destruction path - [x86] KVM: Remove spurious clearing of async #PF MSR - netfilter: nft_tunnel: no need to call htons() when dumping ports - mm/huge_memory.c: use head to check huge zero page - mm, thp: fix defrag setting if newline is not used - audit: always check the netlink payload length in audit_receive_msg() https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.109 - [x86] EDAC/amd64: Set grain per DIMM - ALSA: hda/realtek - Fix a regression for mute led on Lenovo Carbon X1 - [armhf] net: dsa: bcm_sf2: Forcibly configure IMP port for 1Gb/sec - kprobes: Fix optimize_kprobe()/unoptimize_kprobe() cancellation logic - [x86] ALSA: hda: do not override bus codec_mask in link_get() - usb: gadget: composite: Support more than 500mA MaxPower - usb: gadget: ffs: ffs_aio_cancel(): Save/restore IRQ flags - usb: gadget: serial: fix Tx stall after buffer overflow - [arm64] drm/msm/mdp5: rate limit pp done timeout warnings - [arm64] drm: msm: Fix return type of dsi_mgr_connector_mode_valid for kCFI - scsi: megaraid_sas: silence a warning - [arm64] drm/msm/dsi: save pll state before dsi host is powered off - [arm64] drm/msm/dsi/pll: call vco set rate explicitly - [armhf] net: dsa: b53: Ensure the default VID is untagged - [s390x] cio: cio_ignore_proc_seq_next should increase position index - [s390x] qdio: fill SL with absolute addresses - ice: Don't tell the OS that link is going down - [arm64] net: thunderx: workaround BGX TX Underflow issue - ALSA: hda/realtek - Add Headset Mic supported - ALSA: hda/realtek - Fix silent output on Gigabyte X570 Aorus Master - cifs: don't leak -EAGAIN for stat() during reconnect - usb: storage: Add quirk for Samsung Fit flash - usb: quirks: add NO_LPM quirk for Logitech Screen Share - [arm64,armhf] usb: dwc3: gadget: Update chain bit correctly when using sg list - usb: core: hub: fix unhandled return by employing a void function - usb: core: hub: do error out if usb_autopm_get_interface() fails - usb: core: port: do error out if usb_autopm_get_interface() fails - vgacon: Fix a UAF in vgacon_invert_region (CVE-2020-8647, CVE-2020-8649) - mm, numa: fix bad pmd by atomically check for pmd_trans_huge when marking page tables prot_numa - mm: fix possible PMD dirty bit lost in set_pmd_migration_entry() - fat: fix uninit-memory access for partial initialized inode - [arm64] tty:serial:mvebu-uart:fix a wrong return - serial: 8250_exar: add support for ACCES cards - vt: selection, close sel_buffer race (CVE-2020-8648) - vt: selection, push console lock down - vt: selection, push sel_lock up - [arm64,armhf] media: v4l2-mem2mem.c: fix broken links - [x86] pkeys: Manually set X86_FEATURE_OSPKE to preserve existing changes - [arm64,armhf] dmaengine: tegra-apb: Fix use-after-free - [arm64,armhf] dmaengine: tegra-apb: Prevent race conditions of tasklet vs free list - dm cache: fix a crash due to incorrect work item cancelling - dm: report suspended device during destroy - dm writecache: verify watermark during resume - [x86] ASoC: topology: Fix memleak in soc_tplg_link_elems_load() - [x86] ASoC: topology: Fix memleak in soc_tplg_manifest_load() - [x86] ASoC: intel: skl: Fix pin debug prints - [x86] ASoC: intel: skl: Fix possible buffer overflow in debug outputs - [armhf] dmaengine: imx-sdma: remove dma_slave_config direction usage and leave sdma_event_enable() - ASoC: pcm: Fix possible buffer overflow in dpcm state sysfs output - ASoC: dapm: Correct DAPM handling of active widgets during shutdown - [armhf] drm/sun4i: Fix DE2 VI layer format support - [armhf] drm/sun4i: de2/de3: Remove unsupported VI layer formats - RDMA/iwcm: Fix iwcm work deallocation - RMDA/cm: Fix missing ib_cm_destroy_id() in ib_cm_insert_listen() - [amd64] IB/hfi1, qib: Ensure RCU is locked when accessing list - [armhf] ARM: imx: build v7_cpu_resume() unconditionally - hwmon: (adt7462) Fix an error return in ADT7462_REG_VOLT() - [powerpc*] fix hardware PMU exception bug on PowerVM compatibility mode systems - [amd64] efi/x86: Align GUIDs to their size in the mixed mode runtime wrapper - [amd64] efi/x86: Handle by-ref arguments covering multiple pages in mixed mode - dm integrity: fix a deadlock due to offloading to an incorrect workqueue - scsi: pm80xx: Fixed kernel panic during error recovery for SATA drive https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.110 - [x86] KVM: SVM: fix up incorrect backport https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.111 - phy: Revert toggling reset changes. - net: phy: Avoid multiple suspends - cgroup, netclassid: periodically release file_lock on classid updating - gre: fix uninit-value in __iptunnel_pull_header - inet_diag: return classid for all socket types - ipv6/addrconf: call ipv6_mc_up() for non-Ethernet interface - ipvlan: add cond_resched_rcu() while processing muticast backlog - ipvlan: do not add hardware address of master to its unicast filter list - ipvlan: do not use cond_resched_rcu() in ipvlan_process_multicast() - ipvlan: don't deref eth hdr before checking it's set - net/ipv6: use configured metric when add peer route - netlink: Use netlink header as base to calculate bad attribute offset - net: macsec: update SCI upon MAC address change. - net: nfc: fix bounds checking bugs on "pipe" - net/packet: tpacket_rcv: do not increment ring index on drop - [arm64,armhf] net: stmmac: dwmac1000: Disable ACS if enhanced descs are not used - r8152: check disconnect status after long sleep - sfc: detach from cb_page in efx_copy_channel() - bnxt_en: reinitialize IRQs when MTU is modified - cgroup: memcg: net: do not associate sock with unrelated cgroup - net: memcg: late association of sock to memcg - net: memcg: fix lockdep splat in inet_csk_accept() - devlink: validate length of param values - nl802154: add missing attribute validation - nl802154: add missing attribute validation for dev_type - can: add missing attribute validation for termination - macsec: add missing attribute validation for port - net: fq: add missing attribute validation for orphan mask - team: add missing attribute validation for port ifindex - team: add missing attribute validation for array index - nfc: add missing attribute validation for SE API - nfc: add missing attribute validation for deactivate target - nfc: add missing attribute validation for vendor subcommand - net: phy: fix MDIO bus PM PHY resuming - net/ipv6: need update peer route when modify metric - net/ipv6: remove the old peer route if change it to a new one - tipc: add missing attribute validation for MTU property - devlink: validate length of region addr/len - bonding/alb: make sure arp header is pulled before accessing it - slip: make slhc_compress() more robust against malicious packets - [armhf] net: fec: validate the new settings in fec_enet_set_coalesce() - macvlan: add cond_resched() during multicast processing - cgroup: cgroup_procs_next should increase position index - cgroup: Iterate tasks that did not finish do_exit() - iwlwifi: mvm: Do not require PHY_SKU NVM section for 3168 devices - virtio-blk: fix hw_queue stopped on arbitrary error - [amd64] iommu/vt-d: quirk_ioat_snb_local_iommu: replace WARN_TAINT with pr_warn + add_taint - netfilter: nf_conntrack: ct_cpu_seq_next should increase position index - netfilter: synproxy: synproxy_cpu_seq_next should increase position index - netfilter: xt_recent: recent_seq_next should increase position index - netfilter: x_tables: xt_mttg_seq_next should increase position index - workqueue: don't use wq_select_unbound_cpu() for bound works - drm/amd/display: remove duplicated assignment to grph_obj_type - cifs_atomic_open(): fix double-put on late allocation failure - gfs2_atomic_open(): fix O_EXCL|O_CREAT handling on cold dcache - [x86] KVM: clear stale x86_emulate_ctxt->intercept value - efi: Fix a race and a buffer overflow while reading efivars via sysfs - efi: Make efi_rts_work accessible to efi page fault handler - mt76: fix array overflow on receiving too many fragments for a packet - [x86] mce: Fix logic and comments around MSR_PPIN_CTL - [arm64] iommu/dma: Fix MSI reservation allocation - [amd64] iommu/vt-d: dmar: replace WARN_TAINT with pr_warn + add_taint - [amd64] iommu/vt-d: Fix a bug in intel_iommu_iova_to_phys() for huge page - batman-adv: Don't schedule OGM for disabled interface - [arm64] pinctrl: meson-gxl: fix GPIOX sdio pins - pinctrl: core: Remove extra kref_get which blocks hogs being freed - [arm64,armhf] i2c: gpio: suppress error on probe defer - nl80211: add missing attribute validation for critical protocol indication - nl80211: add missing attribute validation for beacon report scanning - nl80211: add missing attribute validation for channel switch - perf bench futex-wake: Restore thread count default to online CPU count - netfilter: cthelper: add missing attribute validation for cthelper - netfilter: nft_payload: add missing attribute validation for payload csum flags - netfilter: nft_tunnel: add missing attribute validation for tunnels - [amd64] iommu/vt-d: Fix the wrong printing in RHSA parsing - [amd64] iommu/vt-d: Ignore devices with out-of-spec domain number - [arm64,x86] i2c: acpi: put device when verifying client fails - ipv6: restrict IPV6_ADDRFORM operation - net/smc: check for valid ib_client_data - net/smc: cancel event worker during device removal - efi: Add a sanity check to efivar_store_raw() - batman-adv: Avoid free/alloc race when handling OGM2 buffer https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.112 - [x86] perf/amd/uncore: Replace manual sampling check with CAP_NO_INTERRUPT flag - [armhf] mmc: sdhci-omap: Add platform specific reset callback - [armhf] mmc: sdhci-omap: Workaround errata regarding SDR104/HS200 tuning failures (i929) - ACPI: watchdog: Allow disabling WDAT at boot - HID: apple: Add support for recent firmware on Magic Keyboards - [x86] HID: i2c-hid: add Trekstor Surfbook E11B to descriptor override - cfg80211: check reg_rule for NULL in handle_channel_custom() - scsi: libfc: free response frame from GPN_ID - net: usb: qmi_wwan: restore mtu min/max values after raw_ip switch - mac80211: rx: avoid RCU list traversal under mutex - signal: avoid double atomic counter increments for user accounting - slip: not call free_netdev before rtnl_unlock in slip_open - [x86,arm64] hinic: fix a irq affinity bug - [x86,arm64] hinic: fix a bug of setting hw_ioctxt - sfc: fix timestamp reconstruction at 16-bit rollover points - jbd2: fix data races at struct journal_head - [armhf] mmc: sdhci-omap: Don't finish_mrq() on a command error during tuning - [armhf] mmc: sdhci-omap: Fix Tuning procedure for temperatures < -20C - driver core: Remove the link if there is no driver with AUTO flag - driver core: Fix adding device links to probing suppliers - driver core: Make driver core own stateful device links - driver core: Add device link flag DL_FLAG_AUTOPROBE_CONSUMER - driver core: Remove device link creation limitation - driver core: Fix creation of device links with PM-runtime flags - mm: slub: add missing TID bump in kmem_cache_alloc_bulk() - efi: Fix debugobjects warning on 'efi_rts_work' https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.113 - [arm64] spi: qup: call spi_qup_pm_resume_runtime before suspending - [amd64] spi: pxa2xx: Add CS control clock quirk - [armhf] drm/exynos: dsi: fix workaround for the legacy clock name - [arm64] drivers/perf: arm_pmu_acpi: Fix incorrect checking of gicc pointer - dm bio record: save/restore bi_end_io and bi_integrity - dm integrity: use dm_bio_record and dm_bio_restore - xenbus: req->body should be updated before req->state - xenbus: req->err should be updated before req->state - block, bfq: fix overwrite of bfq_group pointer in bfq_find_set_group() - USB: Disable LPM on WD19's Realtek Hub - usb: quirks: add NO_LPM quirk for RTL8153 based ethernet adapters - USB: serial: option: add ME910G1 ECM composition 0x110b - [arm64,armhf] usb: host: xhci-plat: add a shutdown - USB: serial: pl2303: add device-id for HP LD381 - [x86] usb: xhci: apply XHCI_SUSPEND_DELAY to AMD XHCI controller 1022:145c - ALSA: line6: Fix endless MIDI read loop - ALSA: seq: virmidi: Fix running status after receiving sysex - ALSA: seq: oss: Fix running status after receiving sysex - ALSA: pcm: oss: Avoid plugin buffer overflow - ALSA: pcm: oss: Remove WARNING from snd_pcm_plug_alloc() checks - [armhf] iio: st_sensors: remap SMO8840 to LIS2DH12 - mmc: rtsx_pci: Fix support for speed-modes that relies on tuning - staging: rtl8188eu: Add device id for MERCUSYS MW150US v2 - staging/speakup: fix get_word non-space look-ahead - [x86] intel_th: Fix user-visible error codes - [x86] intel_th: pci: Add Elkhart Lake CPU support - xhci: Do not open code __print_symbolic() in xhci trace events - btrfs: fix log context list corruption after rename whiteout error - drm/amd/amdgpu: Fix GPR read from debugfs (v2) - drm/lease: fix WARNING in idr_destroy - memcg: fix NULL pointer dereference in __mem_cgroup_usage_unregister_event - mm: slub: be more careful about the double cmpxchg of freelist - mm, slub: prevent kmalloc_node crashes and memory leaks - page-flags: fix a crash at SetPageError(THP_SWAP) - [x86] mm: split vmalloc_sync_all() (Closes: #953017) - USB: cdc-acm: fix close_delay and closing_wait units in TIOCSSERIAL - USB: cdc-acm: fix rounding error in TIOCSSERIAL - futex: Fix inode life-time issue - futex: Unbreak futex hashing - Revert "vrf: mark skb for multicast or link-local as enslaved to VRF" - Revert "ipv6: Fix handling of LLA with VRF and sockets bound to VRF" - ALSA: hda/realtek: Fix pop noise on ALC225 - [arm64] smp: fix smp_send_stop() behaviour - [arm64] smp: fix crash_smp_send_stop() behaviour - [arm64,armhf] drm/bridge: dw-hdmi: fix AVI frame colorimetry https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.114 - mmc: core: Allow host controllers to require R1B for CMD6 - mmc: core: Respect MMC_CAP_NEED_RSP_BUSY for erase/trim/discard - mmc: core: Respect MMC_CAP_NEED_RSP_BUSY for eMMC sleep command - [armhf] mmc: sdhci-omap: Fix busy detection by enabling MMC_CAP_NEED_RSP_BUSY - [arm64,armhf] mmc: sdhci-tegra: Fix busy detection by enabling MMC_CAP_NEED_RSP_BUSY - geneve: move debug check after netdev unregister - macsec: restrict to ethernet devices - net: cbs: Fix software cbs to consider packet sending time - [armhf] net: dsa: Fix duplicate frames flooded by learning - [arm64,armhf] net: mvneta: Fix the case where the last poll did not process all rx - net/packet: tpacket_rcv: avoid a producer race condition - net: qmi_wwan: add support for ASKEY WWHC050 - net_sched: cls_route: remove the right filter from hashtable - net_sched: keep alloc_hash updated after hash allocation - [arm64,armhf] net: stmmac: dwmac-rk: fix error path in rk_gmac_probe - slcan: not call free_netdev before rtnl_unlock in slcan_open - bnxt_en: fix memory leaks in bnxt_dcbnl_ieee_getets() - bnxt_en: Reset rings if ring reservation fails during open() - net: ip_gre: Separate ERSPAN newlink / changelink callbacks - net: ip_gre: Accept IFLA_INFO_DATA-less configuration - r8169: re-enable MSI on RTL8168c - tcp: repair: fix TCP_QUEUE_SEQ implementation - vxlan: check return value of gro_cells_init() - cgroup-v1: cgroup_pidlist_next should update position index - nfs: add minor version to nfs_server_key for fscache - drivers/of/of_mdio.c:fix of_mdiobus_register() - cgroup1: don't call release_agent when it is "" - [s390x] qeth: handle error when backing RX buffer - scsi: ipr: Fix softlockup when rescanning devices in petitboot - mac80211: Do not send mesh HWMP PREQ if HWMP is disabled - [x86] ftrace: Anotate text_mutex split between ftrace_arch_code_modify_post_process() and ftrace_arch_code_modify_prepare() - [x86] Input: synaptics - enable RMI on HP Envy 13-ad105ng - Input: avoid BIT() macro usage in the serio.h UAPI header - ceph: check POOL_FLAG_FULL/NEARFULL in addition to OSDMAP_FULL/NEARFULL - perf probe: Do not depend on dwfl_module_addrsym() - scsi: sd: Fix optimal I/O size for devices that change reported values - nl80211: fix NL80211_ATTR_CHANNEL_WIDTH attribute type - mac80211: mark station unauthorized before key removal - [x86] gpiolib: acpi: Correct comment for HP x2 10 honor_wakeup quirk - gpiolib: acpi: Rework honor_wakeup option into an ignore_wake option - [x86] gpiolib: acpi: Add quirk to ignore EC wakeups on HP x2 10 BYT + AXP288 model - genirq: Fix reference leaks on irq affinity notifiers - xfrm: handle NETDEV_UNREGISTER for xfrm device - vti[6]: fix packet tx through bpf_redirect() in XinY cases - RDMA/mlx5: Block delay drop to unprivileged users - xfrm: fix uctx len check in verify_sec_ctx_len - xfrm: add the missing verify_sec_ctx_len check in xfrm_add_acquire - xfrm: policy: Fix doulbe free in xfrm_policy_timer - afs: Fix some tracing details - netfilter: flowtable: reload ip{v6}h in nf_flow_tuple_ip{v6} - netfilter: nft_fwd_netdev: validate family and chain type - bpf/btf: Fix BTF verification of enum members in struct/union - vti6: Fix memory leak of skb if input policy check fails - mac80211: add option for setting control flags - mac80211: set IEEE80211_TX_CTRL_PORT_CTRL_PROTO for nl80211 TX - USB: serial: option: add support for ASKEY WWHC050 - USB: serial: option: add BroadMobi BM806U - USB: serial: option: add Wistron Neweb D19Q1 - USB: cdc-acm: restore capability check order - USB: serial: io_edgeport: fix slab-out-of-bounds read in edge_interrupt_callback - [arm64,armhf] usb: musb: fix crash with highmen PIO and usbmon - media: flexcop-usb: fix endpoint sanity check - media: usbtv: fix control-message timeouts - staging: rtl8188eu: Add ASUS USB-N10 Nano B1 to device table - [x86] ahci: Add Intel Comet Lake H RAID PCI ID - libfs: fix infoleak in simple_attr_read() - media: ov519: add missing endpoint sanity checks (CVE-2020-11608) - media: dib0700: fix rc endpoint lookup - media: stv06xx: add missing descriptor sanity checks (CVE-2020-11609) - media: xirlink_cit: add missing descriptor sanity checks (CVE-2020-11668) - mac80211: Check port authorization in the ieee80211_tx_dequeue() case - mac80211: fix authentication with iwlwifi/mvm - vt: selection, introduce vc_is_sel - vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines - vt: switch vt_dont_switch to bool - vt: vt_ioctl: remove unnecessary console allocation checks - vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console - vt: vt_ioctl: fix use-after-free in vt_in_use() - [x86] platform: pmc_atom: Add Lex 2I385SW to critclk_systems DMI table - bpf: Explicitly memset the bpf_attr structure - bpf: Explicitly memset some bpf info structures declared on the stack - [x86] gpiolib: acpi: Add quirk to ignore EC wakeups on HP x2 10 CHT + AXP288 model - perf map: Fix off by one in strncpy() size argument - [armel] bcm2835-rpi-zero-w: Add missing pinctrl name - [armhf] dts: N900: fix onenand timings https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.115 - ipv4: fix a RCU-list lock in fib_triestat_seq_show - net, ip_tunnel: fix interface lookup with no key - sctp: fix refcount bug in sctp_wfree - sctp: fix possibly using a bad saddr with a given dst - nvme-rdma: Avoid double freeing of async event data - drm/bochs: downgrade pci_request_region failure from error to warning - drm/amdgpu: fix typo for vcn1 idle check - [x86] tools/power turbostat: Fix gcc build warnings - [x86] tools/power turbostat: Fix missing SYS_LPI counter on some Chromebooks - [armhf] drm/etnaviv: replace MMU flush marker with flush sequence - media: rc: IR signal for Panasonic air conditioner too long - misc: rtsx: set correct pcr_ops for rts522A - [x86] mei: me: add cedar fork device ids - ALSA: hda/ca0132 - Add Recon3Di quirk to handle integrated sound on EVGA X99 Classified motherboard - rxrpc: Fix sendmsg(MSG_WAITALL) handling - net: Fix Tx hash bound checking - padata: always acquire cpu_hotplug_lock before pinst->lock - mm: mempolicy: require at least one nodeid for MPOL_PREFERRED (CVE-2020-11565) - ipv6: don't auto-add link-local address to lag ports - [armhf] net: dsa: bcm_sf2: Do not register slave MDIO bus with OF - [armhf] net: dsa: bcm_sf2: Ensure correct sub-node is parsed - net: phy: micrel: kszphy_resume(): add delay after genphy_resume() before accessing PHY registers - [arm64,armhf] net: stmmac: dwmac1000: fix out-of-bounds mac address reg setting - slcan: Don't transmit uninitialized stack data in padding (CVE-2020-11494) - random: always use batched entropy for get_random_u{32,64} - [arm64,armhf] usb: dwc3: gadget: Wrap around when skip TRBs - [armhf] hwrng: imx-rngc - fix an error path - [amd64] IB/hfi1: Call kobject_put() when kobject_init_and_add() fails - [amd64] IB/hfi1: Fix memory leaks in sysfs registration and unregistration - ceph: remove the extra slashes in the server path - ceph: canonicalize server path in place - RDMA/ucma: Put a lock around every call to the rdma_cm layer - RDMA/cma: Teach lockdep about the order of rtnl and lock - Bluetooth: RFCOMM: fix ODEBUG bug in rfcomm_dev_ioctl - RDMA/cm: Update num_paths in cma_resolve_iboe_route error flow - fbcon: fix null-ptr-deref in fbcon_switch - [arm64] clk: qcom: rcg: Return failure for RCG update - [arm64] drm/msm: stop abusing dma_map/unmap for cache - [arm64] Fix size of __early_cpu_boot_status - [arm64] rpmsg: glink: Remove chunk size word align warning - [arm64,armhf] usb: dwc3: don't set gadget->is_otg flag - drm_dp_mst_topology: fix broken drm_dp_sideband_parse_remote_dpcd_read() - [arm64] drm/msm: Use the correct dma_sync calls in msm_gem https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.116 - [armhf] dts: sun8i-a83t-tbs-a711: HM5065 doesn't like such a high voltage - [arm64,armhf] bus: sunxi-rsb: Return correct data when mixing 16-bit and 8-bit reads - [x86,arm64] hinic: fix a bug of waitting for IO stopped - [x86,arm64] hinic: fix wrong para of wait_for_completion_timeout - cxgb4/ptp: pass the sign of offset delta in FW CMD - qlcnic: Fix bad kzalloc null test - [armhf] cpufreq: imx6q: Fixes unwanted cpu overclocking on i.MX6ULL - [arm64] media: venus: hfi_parser: Ignore HEVC encoding for V1 - null_blk: Fix the null_add_dev() error path - null_blk: Handle null_add_dev() failures properly - null_blk: fix spurious IO errors after failed past-wp access - xhci: bail out early if driver can't accress host in resume - [x86] Don't let pgprot_modify() change the page encryption bit - block: keep bdi->io_pages in sync with max_sectors_kb for stacked devices - sched: Avoid scale real weight down to zero - libata: Remove extra scsi_host_put() in ata_scsi_add_hosts() - [amd64,x86] pstore/platform: fix potential mem leak if pstore_init_fs failed - gfs2: Don't demote a glock until its revokes are written - [i386] efi/x86: Ignore the memory attributes table on i386 - genirq/irqdomain: Check pointer in irq_domain_alloc_irqs_hierarchy() - block: Fix use-after-free issue accessing struct io_cq - [arm64,armhf] usb: dwc3: core: add support for disabling SS instances in park mode - [arm64,armhf] irqchip/gic-v4: Provide irq_retrigger to avoid circular locking dependency - md: check arrays is suspended in mddev_detach before call quiesce operations - firmware: fix a double abort case with fw_load_sysfs_fallback - block, bfq: fix use-after-free in bfq_idle_slice_timer_body - btrfs: qgroup: ensure qgroup_rescan_running is only set when the worker is at least queued - btrfs: remove a BUG_ON() from merge_reloc_roots() - btrfs: track reloc roots based on their commit root bytenr - IB/mlx5: Replace tunnel mpls capability bits for tunnel_offloads - uapi: rename ext2_swab() to swab() and share globally in swab.h - slub: improve bit diffusion for freelist ptr obfuscation - ASoC: fix regwmask - ASoC: dapm: connect virtual mux with default value - ASoC: dpcm: allow start or stop during pause for backend - [x86] ASoC: topology: use name_prefix for new kcontrol - usb: gadget: f_fs: Fix use after free issue as part of queue failure - usb: gadget: composite: Inform controller driver of self-powered - ALSA: hda: Add driver blacklist - ALSA: hda: Fix potential access overflow in beep helper - ALSA: ice1724: Fix invalid access for enumerated ctl items - ALSA: pcm: oss: Fix regression by buffer overflow fix - ALSA: doc: Document PC Beep Hidden Register on Realtek ALC256 - ALSA: hda/realtek - Set principled PC Beep configuration for ALC256 - [x86] ALSA: hda/realtek - Remove now-unnecessary XPS 13 headphone noise fixups - [x86] ALSA: hda/realtek - Add quirk for MSI GL63 - [x86] acpi: ignore unspecified bit positions in the ACPI global lock field - nvme-fc: Revert "add module to ops template to allow module references" - nvme: Treat discovery subsystems as unique subsystems - PCI: pciehp: Fix indefinite wait on sysfs requests - PCI/ASPM: Clear the correct bits when enabling L1 substates - PCI: Add boot interrupt quirk mechanism for Xeon chipsets - tpm: Don't make log failures fatal - tpm: tpm1_bios_measurements_next should increase position index - tpm: tpm2_bios_measurements_next should increase position index - KEYS: reaching the keys quotas correctly - [amd64,x86] pstore: pstore_ftrace_seq_next should increase position index - [mips*el] tlbex: Fix LDDIR usage in setup_pw() for Loongson-3 - [mips*/octeon] irq: Fix potential NULL pointer dereference - ath9k: Handle txpower changes even when TPC is disabled - signal: Extend exec_id to 64bits - [i386] x86/entry/32: Add missing ASM_CLAC to general_protection entry - [x86] KVM: nVMX: Properly handle userspace interrupt window request - [s390x] KVM: vsie: Fix region 1 ASCE sanity shadow address checks - [s390x] KVM: vsie: Fix delivery of addressing exceptions - [x86] KVM: Allocate new rmap and large page tracking when moving memslot - [x86] KVM: VMX: Always VMCLEAR in-use VMCSes during crash with kexec support - [x86] KVM: Gracefully handle __vmalloc() failure during VM allocation - [x86] KVM: VMX: fix crash cleanup when KVM wasn't used - CIFS: Fix bug which the return value by asynchronous read is error - Btrfs: fix crash during unmount due to race with delayed inode workers - btrfs: set update the uuid generation as soon as possible - btrfs: drop block from cache on error in relocation - btrfs: fix missing file extent item for hole after ranged fsync - btrfs: fix missing semaphore unlock in btrfs_sync_file - [powerpc*] pseries: Drop pointless static qualifier in vpa_debugfs_init() - [x86] speculation: Remove redundant arch_smt_update() invocation - mm: Use fixed constant in page_frag_alloc instead of size + 1 - dm writecache: add cond_resched to avoid CPU hangs - [s390x] scsi: zfcp: fix missing erp_lock in port recovery trigger for point-to-point - [arm64] armv8_deprecated: Fix undef_hook mask for thumb setend - [armhf] drm/etnaviv: rework perfmon query infrastructure - [powerpc*] pseries: Avoid NULL pointer dereference when drmem is unavailable - NFS: Fix a page leak in nfs_destroy_unlinked_subrequests() - ext4: fix a data race at inode->i_blocks - fs/filesystems.c: downgrade user-reachable WARN_ONCE() to pr_warn_once() - ocfs2: no need try to truncate file beyond i_size - [s390x] diag: fix display of diagnose call statistics - [x86] Input: i8042 - add Acer Aspire 5738z to nomux list - kmod: make request_module() return an error when autoloading is disabled - [powerpc*] cpufreq: powernv: Fix use-after-free - hfsplus: fix crash and filesystem corruption when deleting files - libata: Return correct status in sata_pmp_eh_recover_pm() when ATA_DFLAG_DETACH is set - ipmi: fix hung processes in __get_guid() - xen/blkfront: fix memory allocation flags in blkfront_setup_indirect() - [powerpc*] powernv/idle: Restore AMR/UAMOR/AMOR after idle (CVE-2020-11669) - [powerpc*] 64/tm: Don't let userspace set regs->trap via sigreturn - [powerpc*] hash64/devmap: Use H_PAGE_THP_HUGE when setting up huge devmap PTE entries - [powerpc*] xive: Use XIVE_BAD_IRQ instead of zero to catch non configured IPIs - [powerpc*] kprobes: Ignore traps that happened in real mode - scsi: mpt3sas: Fix kernel panic observed on soft HBA unplug - [powerpc*] Add attributes for setjmp/longjmp - [powerpc*] Make setjmp/longjmp signature standard - btrfs: use nofs allocations for running delayed items - dm zoned: remove duplicate nr_rnd_zones increase in dmz_init_zone() - drm/dp_mst: Fix clearing payload state on topology disable - drm: Remove PageReserved manipulation from drm_pci_alloc - ftrace/kprobe: Show the maxactive number on kprobe_events - [armhf] etnaviv: perfmon: fix total and idle HI cyleces readout - [amd64] efi/x86: Fix the deletion of variables in mixed mode https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.117 - [amd64,arm64] amd-xgbe: Use __napi_schedule() in BH context - net: ipv6: do not consider routes via gateways for anycast address check - net: revert default NAPI poll timeout to 2 jiffies - [arm64,armhf] net: stmmac: dwmac-sunxi: Provide TX and RX fifo sizes - ovl: fix value of i_ino for lower hardlink corner case - scsi: ufs: Fix ufshcd_hold() caused scheduling while atomic - jbd2: improve comments about freeing data buffers whose page mapping is NULL - ext4: fix incorrect group count in ext4_fill_super error message - ext4: fix incorrect inodes per group in error message - [x86] ASoC: Intel: mrfld: fix incorrect check on p->sink - [x86] ASoC: Intel: mrfld: return error codes when an error occurs - ALSA: usb-audio: Filter error from connector kctl ops, too - ALSA: usb-audio: Don't override ignore_ctl_error value from the map - ALSA: usb-audio: Don't create jack controls for PCM terminals - ALSA: usb-audio: Check mapping at creating connector controls, too - keys: Fix proc_keys_next to increase position index - tracing: Fix the race between registering 'snapshot' event trigger and triggering 'snapshot' operation - btrfs: check commit root generation in should_ignore_root - mac80211_hwsim: Use kstrndup() in place of kasprintf() - [arm64,armhf] usb: dwc3: gadget: don't enable interrupt when disabling endpoint - [arm64,armhf] usb: dwc3: gadget: Don't clear flags before transfer ended - ext4: do not zeroout extents beyond i_disksize - [x86] kvm: Host feature SSBD doesn't imply guest feature SPEC_CTRL_SSBD - scsi: target: fix hang when multiple threads try to destroy the same iscsi session - [x86] microcode/AMD: Increase microcode PATCH_MAX_SIZE - wil6210: check rx_buff_mgmt before accessing it - wil6210: ignore HALP ICR if already handled - wil6210: add general initialization/size checks - wil6210: make sure Rx ring sizes are correlated - wil6210: remove reset file from debugfs - mm/vmalloc.c: move 'area->pages' after if statement https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.118 - [armel,armhf] bpf: Fix offset overflow for BPF_MEM BPF_DW - scsi: sg: add sg_remove_request in sg_common_write - ext4: use non-movable memory for superblock readahead - [arm64,armhf] watchdog: sp805: fix restart handler - [armel,armhf] arm, bpf: Fix bugs with ALU64 {RSH, ARSH} BPF_K shift by 0 - netfilter: nf_tables: report EOPNOTSUPP on unsupported flags/object type - [arm64] irqchip/mbigen: Free msi_desc on device teardown - ALSA: hda: Don't release card at firmware loading error - of: overlay: kmemleak in dup_and_fixup_symbol_prop() - [x86] Hyper-V: Report crash register data or kmsg before running crash kernel - rbd: avoid a deadlock on header_rwsem when flushing notifies - rbd: call rbd_dev_unprobe() after unwatching and flushing notifies - xsk: Add missing check on user supplied headroom size - [x86] Hyper-V: Unload vmbus channel in hv panic callback - [x86] Hyper-V: Free hv_panic_page when fail to register kmsg dump - [x86] Hyper-V: Trigger crash enlightenment only once during system crash. - [x86] Hyper-V: Report crash register data when sysctl_record_panic_msg is not set - [x86] Hyper-V: Report crash data in die() when panic_on_oops is set - power: supply: bq27xxx_battery: Silence deferred-probe error - [arm64,armhf] clk: tegra: Fix Tegra PMC clock out parents - [armhf] soc: imx: gpc: fix power up sequencing - NFSv4/pnfs: Return valid stateids in nfs_layout_find_inode_by_stateid() - NFS: direct.c: Fix memory leak of dreq when nfs_get_lock_context fails - [s390x] cpuinfo: fix wrong output when CPU0 is offline - [s390x] cpum_sf: Fix wrong page count in error message - ext4: do not commit super on read-only bdev - cifs: Allocate encryption header through kmalloc - include/linux/swapops.h: correct guards for non_swap_entry() - percpu_counter: fix a data race at vm_committed_as - [s390x] KVM: vsie: Fix possible race when shadowing region 3 tables - [x86] ACPI: fix CPU hotplug deadlock - [amd64] drm/amdkfd: kfree the wrong pointer - NFS: Fix memory leaks in nfs_pageio_stop_mirroring() - f2fs: fix NULL pointer dereference in f2fs_write_begin() - [arm*] drm/vc4: Fix HDMI mode validation - [amd64] iommu/vt-d: Fix mm reference leak - power: supply: axp288_fuel_gauge: Broaden vendor check for Intel Compute Sticks. - libnvdimm: Out of bounds read in __nd_ioctl() - f2fs: fix to wait all node page writeback - [armhf] net: dsa: bcm_sf2: Fix overflow checks - fbdev: potential information leak in do_fb_ioctl() - mtd: lpddr: Fix a double free in probe() - mtd: phram: fix a double free issue in error path - KEYS: Don't write out to userspace while holding key semaphore - bpf: fix buggy r0 retval refinement for tracing helpers . [ Salvatore Bonaccorso ] * Refresh "Revert "objtool: Fix CONFIG_STACK_VALIDATION=y warning for out-of-tree modules"" for context changes in 4.19.99 * Refresh "ARM: dts: bcm283x: Correct vchiq compatible string" for context changes in 4.19.99 * Drop "tools/lib/api/fs/fs.c: Fix misuse of strncpy()" * Refresh "net: ena: add MAX_QUEUES_EXT get feature admin command" for context changes in 4.19.108 * [rt] Update to 4.19.115-rt48: - Revert "genirq: Do not invoke the affinity callback via a workqueue on RT" * [rt] Refresh "pci/switchtec: Don't use completion's wait queue" for context changes in 4.19.116 * Refresh "firmware: Remove redundant log messages from drivers" for context changes in 4.19.118 * f2fs: fix to avoid memory leakage in f2fs_listxattr (CVE-2020-0067) * net: ipv6: add net argument to ip6_dst_lookup_flow * net: ipv6_stub: use ip6_dst_lookup_flow instead of ip6_dst_lookup (CVE-2020-1749) * blktrace: Protect q->blk_trace with RCU (CVE-2019-19768) * blktrace: fix dereference after null check . [ Ben Hutchings ] * [x86] Drop "Add a SysRq option to lift kernel lockdown" (Closes: #947021) - This patch allowed remotely disabling lockdown using usbip - Lockdown can be disabled by running "mokutil --disable-validation", rebooting, and confirming the change when prompted * debian/README.source: Refer to upload checklist in kernel-team.git * Bump ABI to 9 . [ YunQiang Su ] * [mips*] enable CONFIG_MIPS_O32_FP64_SUPPORT. * [mips*] enable CONFIG_CPU_HAS_MSA except octeon. . [ Steve McIntyre ] * [arm64] Include the Hisilicon Hibmc drm driver in fb-modules (Closes: #951274) . [ Noah Meyerhans ] * [cloud] Enable CONFIG_KSM (Closes: #955366) linux-signed-arm64 (4.19.98+1+deb10u1) buster-security; urgency=high . * Sign kernel from linux 4.19.98-1+deb10u1 . * [x86] KVM: nVMX: Don't emulate instructions in guest mode (CVE-2020-2732) * do_last(): fetch directory ->i_mode and ->i_uid before it's too late (CVE-2020-8428) * vfs: fix do_last() regression * vhost: Check docket sk_family instead of call getname (CVE-2020-10942) * mm: mempolicy: require at least one nodeid for MPOL_PREFERRED (CVE-2020-11565) * [s390x] mm: fix page table upgrade vs 2ndary address mode accesses (CVE-2020-11884) linux-signed-i386 (4.19.118+2) buster; urgency=medium . * Sign kernel from linux 4.19.118-2 . * Merge changes from 4.19.67-2+deb10u2 to include all security fixes from DSA 4667-1. linux-signed-i386 (4.19.118+1) buster; urgency=medium . * Sign kernel from linux 4.19.118-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.99 - Revert "efi: Fix debugobjects warning on 'efi_rts_work'" - xfs: Sanity check flags of Q_XQUOTARM call - [x86] mfd: intel-lpss: Add default I2C device properties for Gemini Lake - SUNRPC: Fix svcauth_gss_proxy_init() - [powerpc*] pseries: Enable support for ibm,drc-info property - tipc: update mon's self addr when node addr generated - tipc: fix wrong timeout input for tipc_wait_for_cond() - mt7601u: fix bbp version check in mt7601u_wait_bbp_ready - [armhf] crypto: sun4i-ss - fix big endian issues - perf map: No need to adjust the long name of modules - ipmi: Fix memory leak in __ipmi_bmc_register (CVE-2019-19046) - ixgbe: don't clear IPsec sa counters on HW clearing - drm/virtio: fix bounds check in virtio_gpu_cmd_get_capset() - iio: fix position relative kernel version - apparmor: Fix network performance issue in aa_label_sk_perm - ALSA: hda: fix unused variable warning - apparmor: don't try to replace stale label in ptrace access check - firmware: coreboot: Let OF core populate platform device - bridge: br_arp_nd_proxy: set icmp6_router if neigh has NTF_ROUTER - [arm64] drm/hisilicon: hibmc: Don't overwrite fb helper surface depth - IB/rxe: replace kvfree with vfree - [amd64] IB/hfi1: Add mtu check for operational data VLs - genirq/debugfs: Reinstate full OF path for domain name - [arm64] usb: dwc3: add EXTCON dependency for qcom - cfg80211: regulatory: make initialization more robust - [x86] mei: replace POLL* with EPOLL* for write queues. - [arm64] drm/msm: fix unsigned comparison with less than zero - ALSA: usb-audio: update quirk for B&W PX to remove microphone - iwlwifi: nvm: get num of hw addresses from firmware - netfilter: nft_osf: usage from output path is not valid - [x86] pwm: lpss: Release runtime-pm reference from the driver's remove callback - [powerpc*] pseries/memory-hotplug: Fix return value type of find_aa_index - rtlwifi: rtl8821ae: replace _rtl8821ae_mrate_idx_to_arfr_id with generic version - netfilter: nf_flow_table: do not remove offload when other netns's interface is down - tipc: eliminate message disordering during binding table update - [arm64] net: socionext: Add dummy PHY register read in phy_write() - [arm64,armhf] drm/sun4i: hdmi: Fix double flag assignation - [arm64] net: hns3: add error handler for hns3_nic_init_vector_data() - pcrypt: use format specifier in kobject_add - [armhf] ASoC: sun8i-codec: add missing route for ADC - [arm64] pinctrl: meson-gxl: remove invalid GPIOX tsin_a pins - [armhf] bus: ti-sysc: Add mcasp optional clocks flag - exportfs: fix 'passing zero to ERR_PTR()' warning - net: always initialize pagedlen - net: phy: Fix not to call phy_resume() if PHY is not attached - [amd64] IB/hfi1: Correctly process FECN and BECN in packets - IB/rxe: Fix incorrect cache cleanup in error flow - ipv6: add missing tx timestamping on IPPROTO_RAW - [arm64] net: hns3: fix error handling int the hns3_get_vector_ring_chain - vxlan: changelink: Fix handling of default remotes - fork,memcg: fix crash in free_thread_stack on memcg charge fail - [armhf] clk: highbank: fix refcount leak in hb_clk_init() - [armhf] clk: ti: fix refcount leak in ti_dt_clocks_register() - [armhf] clk: socfpga: fix refcount leak - [armhf] clk: samsung: exynos4: fix refcount leak in exynos4_get_xom() - [armhf] clk: imx6q: fix refcount leak in imx6q_clocks_init() - [armhf] clk: imx6sx: fix refcount leak in imx6sx_clocks_init() - [armhf] clk: armada-370: fix refcount leak in a370_clk_init() - [armel] clk: kirkwood: fix refcount leak in kirkwood_clk_init() - [armhf] clk: armada-xp: fix refcount leak in axp_clk_init() - [armhf] clk: mv98dx3236: fix refcount leak in mv98dx3236_clk_init() - [armhf] clk: dove: fix refcount leak in dove_clk_init() - drm: Fix error handling in drm_legacy_addctx - [armhf] drm/etnaviv: fix some off by one bugs - drm/fb-helper: generic: Fix setup error path - fork, memcg: fix cached_stacks case - [amd64] IB/usnic: Fix out of bounds index check in query pkey - RDMA/ocrdma: Fix out of bounds index check in query pkey - RDMA/qedr: Fix out of bounds index check in query pkey - RDMA/iw_cxgb4: Fix the unchecked ep dereference - net: phy: micrel: set soft_reset callback to genphy_soft_reset for KSZ9031 - [armhf] memory: tegra: Don't invoke Tegra30+ specific memory timing setup on Tegra20 - [armhf] drm/etnaviv: NULL vs IS_ERR() buf in etnaviv_core_dump() - kbuild: mark prepare0 as PHONY to fix external module build - crypto: tgr192 - fix unaligned memory access - [armhf] ASoC: imx-sgtl5000: put of nodes if finding codec fails - IB/iser: Pass the correct number of entries for dma mapped SGL - [arm64] net: hns3: fix wrong combined count returned by ethtool -l - IB/mlx5: Don't override existing ip_protocol - rtc: cmos: ignore bogus century byte - [i386] spi/topcliff_pch: Fix potential NULL dereference on allocation error - [arm64] net: hns3: fix bug of ethtool_ops.get_channels for VF - [armhf] clk: sunxi-ng: sun8i-a23: Enable PLL-MIPI LDOs when ungating it - iwlwifi: mvm: avoid possible access out of array. - net/mlx5: Take lock with IRQs disabled to avoid deadlock - ip_tunnel: Fix route fl4 init in ip_md_tunnel_xmit - iwlwifi: mvm: fix A-MPDU reference assignment - [armhf] bus: ti-sysc: Fix timer handling with drop pm_runtime_irq_safe() - [x86] tty: ipwireless: Fix potential NULL pointer dereference - driver: uio: fix possible memory leak in __uio_register_device - driver: uio: fix possible use-after-free in __uio_register_device - driver core: Fix DL_FLAG_AUTOREMOVE_SUPPLIER device link flag handling - driver core: Avoid careless re-use of existing device links - driver core: Do not resume suppliers under device_links_write_lock() - driver core: Fix handling of runtime PM flags in device_link_add() - driver core: Do not call rpm_put_suppliers() in pm_runtime_drop_link() - drm/xen-front: Fix mmap attributes for display buffers - iwlwifi: mvm: fix RSS config command - [mips*] rtc: ds1672: fix unintended sign extension - ath10k: fix dma unmap direction for management frames - net: phy: fixed_phy: Fix fixed_phy not checking GPIO - rtc: ds1307: rx8130: Fix alarm handling - net/smc: original socket family in inet_sock_diag - [arm64] rtc: pm8xxx: fix unintended sign extension - iw_cxgb4: use tos when importing the endpoint - iw_cxgb4: use tos when finding ipv6 routes - xsk: add missing smp_rmb() in xsk_mmap - [armhf] drm/etnaviv: potential NULL dereference - RDMA/mlx5: Fix memory leak in case we fail to add an IB device - driver core: Fix possible supplier PM-usage counter imbalance - [armhf] usb: phy: twl6030-usb: fix possible use-after-free on remove - block: don't use bio->bi_vcnt to figure out segment number - keys: Timestamp new keys - [armhf] net: dsa: b53: Fix default VLAN ID - [armhf] net: dsa: b53: Properly account for VLAN filtering - [armhf] net: dsa: b53: Do not program CPU port's PVID - mt76: usb: fix possible memory leak in mt76u_buf_free - vfio_pci: Enable memory accesses before calling pci_map_rom - mdio_bus: Fix PTR_ERR() usage after initialization to constant - [powerpc*] KVM: Release all hardware TCE tables attached to a group - [x86] staging: r8822be: check kzalloc return or bail - [arm*] dmaengine: mv_xor: Use correct device for DMA API - cdc-wdm: pass return value of recover_from_urb_loss - brcmfmac: create debugfs files for bus-specific layer - net/mlx5: Delete unused FPGA QPN variable - drm/nouveau/bios/ramcfg: fix missing parentheses when calculating RON - drm/nouveau/pmu: don't print reply values if exec is false - drm/nouveau: fix missing break in switch statement - driver core: Fix PM-runtime for links added during consumer probe - [arm64] ASoC: qcom: Fix of-node refcount unbalance in apq8016_sbc_parse_of() - [arm64,armhf] net: dsa: fix unintended change of bridge interface STP state - fs/nfs: Fix nfs_parse_devname to not modify it's argument - [x86] staging: rtlwifi: Use proper enum for return in halmac_parse_psd_data_88xx - [ppc64el] 64s: Fix logic when handling unknown CPU features - NFS: Fix a soft lockup in the delegation recovery code - perf: Copy parent's address filter offsets on clone - perf, pt, coresight: Fix address filters for vmas with non-zero offset - [armhf] clocksource/drivers/sun5i: Fail gracefully when clock rate is unavailable - [armhf] clocksource/drivers/exynos_mct: Fix error path in timer resources initialization - [x86] platform/x86: wmi: fix potential null pointer dereference - NFS/pnfs: Bulk destroy of layouts needs to be safe w.r.t. umount - ath10k: Fix length of wmi tlv command for protected mgmt frames - netfilter: nft_set_hash: fix lookups with fixed size hash on big endian - netfilter: nft_set_hash: bogus element self comparison from deactivation path - net: sched: act_csum: Fix csum calc for tagged packets - [arm*] hwrng: bcm2835 - fix probe as platform device - [amd64] iommu/vt-d: Fix NULL pointer reference in intel_svm_bind_mm() - NFS: Add missing encode / decode sequence_maxsz to v4.2 operations - NFSv4/flexfiles: Fix invalid deref in FF_LAYOUT_DEVID_NODE() - [amd64] net: aquantia: fixed instack structure overflow - media: dvb/earth-pt1: fix wrong initialization for demod blocks - rbd: clear ->xferred on error from rbd_obj_issue_copyup() - PCI: Fix "try" semantics of bus and slot reset - scsi: megaraid_sas: reduce module load time - xen, cpu_hotplug: Prevent an out of bounds access - net/mlx5: Fix multiple updates of steering rules in parallel - net/mlx5e: IPoIB, Fix RX checksum statistics update - [arm64,armhf] soc: amlogic: gx-socinfo: Add mask for each SoC packages - media: ivtv: update *pos correctly in ivtv_read_pos() - media: cx18: update *pos correctly in cx18_read_pos() - [armhf] media: wl128x: Fix an error code in fm_download_firmware() - media: cx23885: check allocation return - jfs: fix bogus variable self-initialization - [armhf] dts: sun9i: optimus: Fix fixed-regulators - net: phy: don't clear BMCR in genphy_soft_reset - [armhf] OMAP2+: Fix potentially uninitialized return value for _setup_reset() - [arm64,armhf] net: dsa: Avoid null pointer when failing to connect to PHY - media: tw5864: Fix possible NULL pointer dereference in tw5864_handle_frame - [arm64,armhf] spi: tegra114: clear packed bit for unpacked mode - [arm64,armhf] spi: tegra114: fix for unpacked mode transfers - [arm64,armhf] spi: tegra114: terminate dma and reset on transfer timeout - [arm64,armhf] spi: tegra114: flush fifos - [arm64,armhf] spi: tegra114: configure dma burst size to fifo trig level - [armhf] bus: ti-sysc: Fix sysc_unprepare() when no clocks have been allocated - [arm*] spi: bcm2835aux: fix driver to not allow 65535 (=-1) cs-gpios - drm/fb-helper: generic: Call drm_client_add() after setup is done - [arm64] vdso: don't leak kernel addresses - rtc: Fix timestamp value for RTC_TIMESTAMP_BEGIN_1900 - bpf: Add missed newline in verifier verbose log - [x86] drm/vmwgfx: Remove set but not used variable 'restart' - scsi: qla2xxx: Unregister chrdev if module initialization fails - net/sched: cbs: fix port_rate miscalculation - ACPI: button: reinitialize button state upon resume - [arm64,armhf] firmware: arm_scmi: fix of_node leak in scmi_mailbox_check - rxrpc: Fix detection of out of order acks - scsi: target/core: Fix a race condition in the LUN lookup code - brcmfmac: fix leak of mypkt on error return path - [arm64] net: hns3: fix for vport->bw_limit overflow problem - [x86] hwmon: (w83627hf) Use request_muxed_region for Super-IO accesses - perf/core: Fix the address filtering fix - [arm64,armhf] soc: amlogic: meson-gx-pwrc-vpu: Fix power on/off register bitmask - [x86] platform/x86: alienware-wmi: fix kfree on potentially uninitialized pointer - tipc: set sysctl_tipc_rmem and named_timeout right range - usb: typec: tcpm: Notify the tcpc to start connection-detection for SRPs - [arm64] net: hns3: fix loop condition of hns3_get_tx_timeo_queue_info() - 6lowpan: Off by one handling ->nexthdr - ALSA: usb-audio: Handle the error from snd_usb_mixer_apply_create_quirk() - afs: Fix AFS file locking to allow fine grained locks - afs: Further fix file locking - NFS: Don't interrupt file writeout due to fatal errors - scsi: qla2xxx: Fix a format specifier - scsi: qla2xxx: Fix error handling in qlt_alloc_qfull_cmd() - scsi: qla2xxx: Avoid that qlt_send_resp_ctio() corrupts memory - [ppc64el] KVM: PPC: Book3S HV: Fix lockdep warning when entering the guest - netfilter: nft_flow_offload: add entry to flowtable after confirmation - packet: in recvmsg msg_name return at least sizeof sockaddr_ll - ASoC: fix valid stream condition - [arm*] dwc2: gadget: Fix completed transfer size calculation in DDMA - IB/mlx5: Add missing XRC options to QP optional params mask - RDMA/rxe: Consider skb reserve space based on netdev of GID - [amd64] iommu/vt-d: Make kernel parameter igfx_off work with vIOMMU - [arm64] dmaengine: tegra210-adma: restore channel status - mmc: core: fix possible use after free of host - ath10k: Fix encoding for protected management frames - afs: Fix the afs.cell and afs.volume xattr handlers - l2tp: Fix possible NULL pointer dereference - [x86] platform/x86: alienware-wmi: printing the wrong error code - netfilter: ebtables: CONFIG_COMPAT: reject trailing data after last rule - [arm64,armhf] pwm: meson: Consider 128 a valid pre-divider - [arm64,armhf] pwm: meson: Don't disable PWM when setting duty repeatedly - nfp: bpf: fix static check error through tightening shift amount adjustment - netfilter: nf_tables: correct NFT_LOGLEVEL_MAX value - [arm*] thermal: cpu_cooling: Actually trace CPU load in thermal_power_cpu_get_power - EDAC/mc: Fix edac_mc_find() in case no device is found - afs: Fix key leak in afs_release() and afs_evict_inode() - afs: Don't invalidate callback if AFS_VNODE_DIR_VALID not set - afs: Fix lock-wait/callback-break double locking - afs: Fix double inc of vnode->cb_break - [armhf] dts: sun8i-h3: Fix wifi in Beelink X2 DT - [arm64] clk: meson: gxbb: no spread spectrum on mpll0 - [arm64] clk: meson: axg: spread spectrum is on mpll2 - [arm64] dmaengine: tegra210-adma: Fix crash during probe - [arm64] dts: meson: libretech-cc: set eMMC as removable - RDMA/qedr: Fix incorrect device rate. - [x86] crypto: ccp - fix AES CFB error exposed by new test vectors - [x86] crypto: ccp - Fix 3DES complaint from ccp-crypto module - iommu: Add missing new line for dma type - iommu: Use right function to get group for device - signal/cifs: Fix cifs_put_tcp_session to call send_sig instead of force_sig - inet: frags: call inet_frags_fini() after unregister_pernet_subsys() - [arm64] net: hns3: fix a memory leak issue for hclge_map_unmap_ring_to_vf_vector - [x86] netvsc: unshare skb in VF rx handler - net: core: support XDP generic on stacked devices. - RDMA/uverbs: check for allocation failure in uapi_add_elm() - net: don't clear sock->sk early to avoid trouble in strparser - [arm64] phy: qcom-qusb2: fix missing assignment of ret when calling clk_prepare_enable - [arm64] clk: sunxi-ng: sun50i-h6-r: Fix incorrect W1 clock gate register - media: vivid: fix incorrect assignment operation when setting video mode - [arm64] crypto: inside-secure - fix zeroing of the request in ahash_exit_inv - [arm64] crypto: inside-secure - fix queued len computation - mpls: fix warning with multi-label encap - [arm64] dts: meson-gxm-khadas-vim2: fix gpio-keys-polled node - [arm64] dts: meson-gxm-khadas-vim2: fix Bluetooth support - [amd64] iommu/vt-d: Duplicate iommu_resv_region objects per device list - qed: iWARP - Use READ_ONCE and smp_store_release to access ep->state - qed: iWARP - fix uninitialized callback - [powerpc*] cacheinfo: add cacheinfo_teardown, cacheinfo_rebuild - [powerpc*] pseries/mobility: rebuild cacheinfo hierarchy post-migration - bpf: fix the check that forwarding is enabled in bpf_ipv6_fib_lookup - [amd64] IB/hfi1: Handle port down properly in pio - [arm64] drm/msm/mdp5: Fix mdp5_cfg_init error return - net: netem: fix backlog accounting for corrupted GSO frames - net/udp_gso: Allow TX timestamp with UDP GSO - [s390x] net/af_iucv: build proper skbs for HiperTransport - [s390x] net/af_iucv: always register net_device notifier - [armhf] ASoC: ti: davinci-mcasp: Fix slot mask settings when using multiple AXRs - rtc: pcf8563: Fix interrupt trigger method - rtc: pcf8563: Clear event flags and disable interrupts before requesting irq - net/sched: cbs: Fix error path of cbs_module_init - [arm64] drm/msm/a3xx: remove TPL1 regs from snapshot - ip6_fib: Don't discard nodes with valid routing information in fib6_locate_1() - perf/ioctl: Add check for the sample_period value - [x86] dmaengine: hsu: Revert "set HSU_CH_MTSR to memory width" - tools: bpftool: use correct argument in cgroup errors - fork,memcg: alloc_thread_stack_node needs to set tsk->stack - bnxt_en: Fix ethtool selftest crash under error conditions. - bnxt_en: Suppress error messages when querying DSCP DCB capabilities. - [amd64] iommu: Make iommu_disable safer - [x86] mfd: intel-lpss: Release IDA resources - rxrpc: Fix uninitialized error code in rxrpc_send_data_packet() - xprtrdma: Fix use-after-free in rpcrdma_post_recvs - PM: ACPI/PCI: Resume all devices during hibernation - ACPI: PM: Simplify and fix PM domain hibernation callbacks - ACPI: PM: Introduce "poweroff" callbacks for ACPI PM domain and LPSS - devres: allow const resource arguments - [arm64] RDMA/hns: Fixs hw access invalid dma memory error - ceph: fix "ceph.dir.rctime" vxattr value - xdp: fix possible cq entry leak - scsi: libfc: fix null pointer dereference on a null lport - xfrm interface: ifname may be wrong in logs - [armhf] clk: sunxi-ng: v3s: add the missing PLL_DDR1 - PM: sleep: Fix possible overflow in pm_system_cancel_wakeup() - libertas_tf: Use correct channel range in lbtf_geo_init - qed: reduce maximum stack frame size - usb: host: xhci-hub: fix extra endianness conversion - [x86] crypto: ccp - Reduce maximum stack usage - tipc: reduce risk of wakeup queue starvation - net/mlx5: Fix mlx5_ifc_query_lag_out_bits - cifs: fix rmmod regression in cifs.ko caused by force_sig changes - net: fix bpf_xdp_adjust_head regression for generic-XDP - cxgb4: smt: Add lock for atomic_dec_and_test - ext4: set error return correctly when ext4_htree_store_dirent fails - [arm64] RDMA/hns: Bugfix for slab-out-of-bounds when unloading hip08 driver - [arm64] RDMA/hns: bugfix for slab-out-of-bounds when loading hip08 driver - net/rds: Add a few missing rds_stat_names entries - tools: bpftool: fix arguments for p_err() in do_event_pipe() - tools: bpftool: fix format strings and arguments for jsonw_printf() - bnxt_en: Fix handling FRAG_ERR when NVM_INSTALL_UPDATE cmd fails - signal: Allow cifs and drbd to receive their terminating signals - [ppc64el] 64s/radix: Fix memory hot-unplug page table split - [x86] dmaengine: dw: platform: Switch to acpi_dma_controller_register() - mac80211: minstrel_ht: fix per-group max throughput rate initialization - i40e: reduce stack usage in i40e_set_fc - [armhf] 8896/1: VDSO: Don't leak kernel addresses - [mips*] avoid explicit UB in assignment of mips_io_port_base - media: em28xx: Fix exception handling in em28xx_alloc_urbs() - ahci: Do not export local variable ahci_em_messages - rxrpc: Fix lack of conn cleanup when local endpoint is cleaned up - Partially revert "kfifo: fix kfifo_alloc() and kfifo_init()" - hwmon: (lm75) Fix write operations for negative temperatures - net/sched: cbs: Set default link speed to 10 Mbps in cbs_set_port_rate - power: supply: Init device wakeup after device_add() - [x86] perf: Fix the dependency of the x86 insn decoder selftest - irqdomain: Add the missing assignment of domain->fwnode for named fwnode - bcma: fix incorrect update of BCMA_CORE_PCI_MDIO_DATA - bcache: Fix an error code in bch_dump_read() - netfilter: ctnetlink: honor IPS_OFFLOAD flag - [arm64] wcn36xx: use dynamic allocation for large variables - xsk: avoid store-tearing when assigning queues - xsk: avoid store-tearing when assigning umem - led: triggers: Fix dereferencing of null pointer - [arm64] net: hns3: fix error VF index when setting VLAN offload - rtlwifi: Fix file release memory leak - f2fs: fix wrong error injection path in inc_valid_block_count() - f2fs: fix error path of f2fs_convert_inline_page() - [x86] scsi: fnic: fix msix interrupt allocation - Btrfs: fix hang when loading existing inode cache off disk - Btrfs: fix inode cache waiters hanging on failure to start caching thread - Btrfs: fix inode cache waiters hanging on path allocation failure - btrfs: use correct count in btrfs_file_write_iter() - ixgbe: sync the first fragment unconditionally - ath10k: adjust skb length in ath10k_sdio_mbox_rx_packet - RDMA/cma: Fix false error message - net/rds: Fix 'ib_evt_handler_call' element in 'rds_ib_stat_names' - bnxt_en: Increase timeout for HWRM_DBG_COREDUMP_XX commands - f2fs: fix to avoid accessing uninitialized field of inode page in is_alive() - [powerpc*] mm/mce: Keep irqs disabled during lockless page table walk - bpf: fix BTF limits - [amd64] iommu: Wait for completion of IOTLB flush in attach_device - [amd64] net: aquantia: Fix aq_vec_isr_legacy() return value - cxgb4: Signedness bug in init_one() - [arm64] net: hisilicon: Fix signedness bug in hix5hd2_dev_probe() - [arm64] net: netsec: Fix signedness bug in netsec_probe() - [arm64,armhf] net: stmmac: dwmac-meson8b: Fix signedness bug in probe - of: mdio: Fix a signedness bug in of_phy_get_and_connect() - [arm64] net: ethernet: stmmac: Fix signedness bug in ipq806x_gmac_of_parse() - net: sched: cbs: Avoid division by zero when calculating the port rate - nvme: retain split access workaround for capability reads - [arm64,armhf] net: stmmac: gmac4+: Not all Unicast addresses may be available - rxrpc: Fix trace-after-put looking at the put connection record - mac80211: accept deauth frames in IBSS mode - llc: fix another potential sk_buff leak in llc_ui_sendmsg() - llc: fix sk_buff refcounting in llc_conn_state_process() - ip6erspan: remove the incorrect mtu limit for ip6erspan - [arm64,armhf] net: stmmac: fix length of PTP clock's name string - [arm64,armhf] net: stmmac: fix disabling flexible PPS output - sctp: add chunks to sk_backlog when the newsk sk_socket is not set - [s390x] qeth: Fix error handling during VNICC initialization - [s390x] qeth: Fix initialization of vnicc cmd masks during set online - act_mirred: Fix mirred_init_module error handling - net: avoid possible false sharing in sk_leave_memory_pressure() - net: add {READ|WRITE}_ONCE() annotations on ->rskq_accept_head - tcp: annotate lockless access to tcp_memory_pressure - net/smc: receive returns without data - net/smc: receive pending data after RCV_SHUTDOWN - [arm64] drm/msm/dsi: Implement reset correctly - [armhf] dmaengine: imx-sdma: fix size check for sdma script_number - [arm64] hibernate: check pgd table allocation - net: netem: fix error path for corrupted GSO frames - net: netem: correct the parent's backlog when corrupted packet was dropped - xsk: Fix registration of Rx-only sockets - bpf, offload: Unlock on error in bpf_offload_dev_create() - afs: Fix missing timeout reset - [x86] hv_netvsc: Fix offset usage in netvsc_send_table() - [x86] hv_netvsc: Fix send_table offset in case of a host bug - afs: Fix large file support - [armhf] hwrng: omap3-rom - Fix missing clock by probing with device tree - [mips64el,mipsel] Loongson: Fix return value of loongson_hwmon_init - [x86] hv_netvsc: flag software created hash value - net: neigh: use long type to store jiffies delta - packet: fix data-race in fanout_flow_is_huge() - affs: fix a memory leak in affs_remount - afs: Remove set but not used variables 'before', 'after' - [armhf] dmaengine: ti: edma: fix missed failure handling - drm/radeon: fix bad DMA from INTERRUPT_CNTL2 - [arm64] dts: meson-gxm-khadas-vim2: fix uart_A bluetooth node https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.100 - can, slip: Protect tty->disc_data in write_wakeup and close with RCU - [x86] firestream: fix memory leaks - gtp: make sure only SOCK_DGRAM UDP sockets are accepted - ipv6: sr: remove SKB_GSO_IPXIP6 on End.D* actions - net: cxgb3_main: Add CAP_NET_ADMIN check to CHELSIO_GET_MEM - net: ip6_gre: fix moving ip6gre between namespaces - net, ip6_tunnel: fix namespaces move - net, ip_tunnel: fix namespaces move - net: rtnetlink: validate IFLA_MTU attribute in rtnl_create_link() - net_sched: fix datalen for ematch - net-sysfs: Fix reference count leak in rx|netdev_queue_add_kobject - net-sysfs: fix netdev_queue_add_kobject() breakage - net-sysfs: Call dev_hold always in netdev_queue_add_kobject - net-sysfs: Call dev_hold always in rx_queue_add_kobject - net-sysfs: Fix reference count leak - net: usb: lan78xx: Add .ndo_features_check - Revert "udp: do rmem bulk free even if the rx sk queue is empty" - tcp_bbr: improve arithmetic division in bbr_update_bw() - tcp: do not leave dangling pointers in tp->highest_sack - tun: add mutex_unlock() call and napi.skb clearing in tun_get_user() - afs: Fix characters allowed into cell names - hwmon: (adt7475) Make volt2reg return same reg as reg2volt input - hwmon: (core) Do not use device managed functions for memory allocations - PCI: Mark AMD Navi14 GPU rev 0xc5 ATS as broken - tracing: trigger: Replace unneeded RCU-list traversals - Input: keyspan-remote - fix control-message timeouts - [x86] Revert "Input: synaptics-rmi4 - don't increment rmiaddr for SMBus transfers" - [arm64,armhf] mmc: tegra: fix SDR50 tuning override - mmc: sdhci: fix minimum clock rate for v3 controller - [arm64] Documentation: Document arm64 kpti control - Input: sur40 - fix interface sanity checks - Input: gtco - fix endpoint sanity check - Input: aiptek - fix endpoint sanity check - Input: pegasus_notetaker - fix endpoint sanity check - [armhf] Input: sun4i-ts - add a check for devm_thermal_zone_of_sensor_register - netfilter: nft_osf: add missing check for DREG attribute - hwmon: (nct7802) Fix voltage limits to wrong registers - do_last(): fetch directory ->i_mode and ->i_uid before it's too late (CVE-2020-8428) - sd: Fix REQ_OP_ZONE_REPORT completion handling - [i386] crypto: geode-aes - switch to skcipher for cbc(aes) fallback - media: v4l2-ioctl.c: zero reserved fields for S/TRY_FMT - scsi: iscsi: Avoid potential deadlock in iscsi_if_rx func - netfilter: ipset: use bitmap infrastructure completely - netfilter: nf_tables: add __nft_chain_type_get() - mm/memory_hotplug: make remove_memory() take the device_hotplug_lock - mm, sparse: drop pgdat_resize_lock in sparse_add/remove_one_section() - mm, sparse: pass nid instead of pgdat to sparse_add_one_section() - drivers/base/memory.c: remove an unnecessary check on NR_MEM_SECTIONS - mm, memory_hotplug: add nid parameter to arch_remove_memory - mm/memory_hotplug: release memory resource after arch_remove_memory() - drivers/base/memory.c: clean up relics in function parameters - mm, memory_hotplug: update a comment in unregister_memory() - mm/memory_hotplug: make unregister_memory_section() never fail - mm/memory_hotplug: make __remove_section() never fail - [powerpc*] mm: Fix section mismatch warning - mm/memory_hotplug: make __remove_pages() and arch_remove_memory() never fail - [s390x] mm: implement arch_remove_memory() - mm/memory_hotplug: allow arch_remove_memory() without CONFIG_MEMORY_HOTREMOVE - drivers/base/memory: pass a block_id to init_memory_block() - mm/memory_hotplug: create memory block devices after arch_add_memory() - mm/memory_hotplug: remove memory block devices before arch_remove_memory() - mm/memory_hotplug: make unregister_memory_block_under_nodes() never fail - mm/memory_hotplug: remove "zone" parameter from sparse_remove_one_section - mm/hotplug: kill is_dev_zone() usage in __remove_pages() - drivers/base/node.c: simplify unregister_memory_block_under_nodes() - mm/memunmap: don't access uninitialized memmap in memunmap_pages() - mm/memory_hotplug: fix try_offline_node() - mm/memory_hotplug: shrink zones when offlining memory https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.101 - orinoco_usb: fix interface sanity check - rsi_91x_usb: fix interface sanity check - USB: serial: ir-usb: add missing endpoint sanity check - USB: serial: ir-usb: fix link-speed handling - USB: serial: ir-usb: fix IrLAP framing - [arm64,armhf] usb: dwc3: turn off VBUS when leaving host mode - staging: wlan-ng: ensure error return is actually returned - [x86] staging: vt6656: correct packet types for CTS protect, mode. - [x86] staging: vt6656: use NULLFUCTION stack on mac80211 - [x86] staging: vt6656: Fix false Tx excessive retries reporting. - [arm64,armel] serial: 8250_bcm2835aux: Fix line mismatch on driver unbind - component: do not dereference opaque pointer in debugfs - [x86] mei: me: add comet point (lake) H device ids - crypto: chelsio - fix writing tfm flags to wrong place - cifs: Fix memory allocation in __smb2_handle_cancelled_cmd() - ath9k: fix storage endpoint lookup - brcmfmac: fix interface sanity check - rtl8xxxu: fix interface sanity check - zd1211rw: fix storage endpoint lookup - net_sched: ematch: reject invalid TCF_EM_SIMPLE - net_sched: fix ops->bind_class() implementations - HID: multitouch: Add LG MELF0410 I2C touchscreen support - HID: Add quirk for Xin-Mo Dual Controller - HID: ite: Add USB id match for Acer SW5-012 keyboard dock - [x86] HID: Add quirk for incorrect input length on Lenovo Y720 - drivers/hid/hid-multitouch.c: fix a possible null pointer access. - [arm64] phy: qcom-qmp: Increase PHY ready timeout - drivers/net/b44: Change to non-atomic bit operations on pwol_mask - [i386] net: wan: sdla: Fix cast from pointer to integer of different size - [arm64] gpio: max77620: Add missing dependency on GPIOLIB_IRQCHIP - atm: eni: fix uninitialized variable warning - HID: steam: Fix input device disappearing - [x86] platform/x86: dell-laptop: disable kbd backlight on Inspiron 10xx - [amd64] PCI: Add DMA alias quirk for Intel VCA NTB - [amd64] iommu: Support multiple PCI DMA aliases in IRQ Remapping - usb-storage: Disable UAS on JMicron SATA enclosure - sched/fair: Add tmp_alone_branch assertion - sched/fair: Fix insertion in rq->leaf_cfs_rq_list - rsi: fix use-after-free on probe errors - rsi: fix memory leak on failed URB submission - rsi: fix non-atomic allocation in completion handler - crypto: af_alg - Use bh_lock_sock in sk_destruct - block: cleanup __blkdev_issue_discard() - block: fix 32 bit overflow in __blkdev_issue_discard() - [arm64] KVM: Write arch.mdcr_el2 changes since last vcpu_load on VHE https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.102 - vfs: fix do_last() regression - crypto: pcrypt - Fix user-after-free on module unload - perf c2c: Fix return type for histogram sorting comparision functions - PM / devfreq: Add new name attribute for sysfs - tools lib: Fix builds when glibc contains strlcpy() - ext4: validate the debug_want_extra_isize mount option at parse time - mm/mempolicy.c: fix out of bounds write in mpol_parse_str() - reiserfs: Fix memory leak of journal device string - media: digitv: don't continue if remote control state can't be read - media: af9005: uninitialized variable printked - media: vp7045: do not read uninitialized values if usb transfer fails - media: gspca: zero usb_buf - media: dvb-usb/dvb-usb-urb.c: initialize actlen to 0 - tomoyo: Use atomic_t for statistics counter - ttyprintk: fix a potential deadlock in interrupt context issue - Bluetooth: Fix race condition in hci_release_sock() - cgroup: Prevent double killing of css when enabling threaded cgroup - [armhf] dts: sun8i: a83t: Correct USB3503 GPIOs polarity - [armhf] dts: am57xx-beagle-x15/am57xx-idk: Remove "gpios" for endpoint dt nodes - [armhf] dts: beagle-x15-common: Model 5V0 regulator - [arm64] clk: sunxi-ng: h6-r: Fix AR100/R_APB2 parent order - mac80211: mesh: restrict airtime metric to peered established plinks - ASoC: rt5640: Fix NULL dereference on module unload - ixgbevf: Remove limit of 10 entries for unicast filter list - ixgbe: Fix calculation of queue with VFs and flow director on interface flap - igb: Fix SGMII SFP module discovery for 100FX/LX. - [x86] platform/x86: GPD pocket fan: Allow somewhat lower/higher temperature limits - qmi_wwan: Add support for Quectel RM500Q - wireless: fix enabling channel 12 for custom regulatory domain - cfg80211: Fix radar event during another phy CAC - mac80211: Fix TKIP replay protection immediately after key setup - netfilter: nft_tunnel: ERSPAN_VERSION must not be null - [armhf] net: dsa: bcm_sf2: Configure IMP port for 2Gb/sec - bnxt_en: Fix ipv6 RFS filter matching logic. - iwlwifi: Don't ignore the cap field upon mcc update - [armhf] dts: am335x-boneblack-common: fix memory size - vti[6]: fix packet tx through bpf_redirect() - xfrm interface: fix packet tx through bpf_redirect() - xfrm: interface: do not confirm neighbor when do pmtu update - scsi: fnic: do not queue commands during fwreset - [armhf] 8955/1: virt: Relax arch timer version check during early boot - [arm64] tee: optee: Fix compilation issue with nommu - airo: Fix possible info leak in AIROOLDIOCTL/SIOCDEVPRIVATE - airo: Add missing CAP_NET_ADMIN check in AIROOLDIOCTL/SIOCDEVPRIVATE - r8152: get default setting of WOL before initializing - qlcnic: Fix CPU soft lockup while collecting firmware dump - seq_tab_next() should increase position index - l2t_seq_next should increase position index - net: Fix skb->csum update in inet_proto_csum_replace16(). - btrfs: do not zero f_bavail if we have available space - perf report: Fix no libunwind compiled warning break s390 issue - mm/migrate.c: also overwrite error when it is bigger than zero https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.103 - [armhf] Revert "drm/sun4i: dsi: Change the start delay calculation" - ovl: fix lseek overflow on 32bit - kernel/module: Fix memleak in module_add_modinfo_attrs() - media: iguanair: fix endpoint sanity check - ocfs2: fix oops when writing cloned file - [x86] cpu: Update cached HLE state on write to TSX_CTRL_CPUID_CLEAR - udf: Allow writing to 'Rewritable' partitions - printk: fix exclusive_console replaying - iwlwifi: mvm: fix NVM check for 3168 devices - gtp: use __GFP_NOWARN to avoid memalloc warning - l2tp: Allow duplicate session creation with UDP - net_sched: fix an OOB access in cls_tcindex - [arm64,armhf] net: stmmac: Delete txtimer in suspend() - bnxt_en: Fix TC queue mapping. - tcp: clear tp->total_retrans in tcp_disconnect() - tcp: clear tp->delivered in tcp_disconnect() - tcp: clear tp->data_segs{in|out} in tcp_disconnect() - tcp: clear tp->segs_{in|out} in tcp_disconnect() - rxrpc: Fix use-after-free in rxrpc_put_local() - rxrpc: Fix insufficient receive notification generation - rxrpc: Fix missing active use pinning of rxrpc_local object - rxrpc: Fix NULL pointer deref due to call->conn being cleared on disconnect - media: uvcvideo: Avoid cyclic entity chains due to malformed USB descriptors - ipc/msg.c: consolidate all xxxctl_down() functions - tracing: Fix sched switch start/stop refcount racy updates - rcu: Avoid data-race in rcu_gp_fqs_check_wake() - brcmfmac: Fix memory leak in brcmf_usbdev_qinit - usb: gadget: f_ncm: Use atomic_t to track in-flight request - usb: gadget: f_ecm: Use atomic_t to track in-flight request - ALSA: usb-audio: Fix endianess in descriptor validation - ALSA: dummy: Fix PCM format loop in proc output - mm/memory_hotplug: fix remove_memory() lockdep splat - mm: move_pages: report the number of non-attempted pages - media/v4l2-core: set pages dirty upon releasing DMA buffers - media: v4l2-core: compat: ignore native command codes - media: v4l2-rect.h: fix v4l2_rect_map_inside() top/left adjustments - irqdomain: Fix a memory leak in irq_domain_push_irq() - [x86] platform/x86: intel_scu_ipc: Fix interrupt support - [x86] ALSA: hda: Add Clevo W65_67SB the power_save blacklist - [arm64] KVM: Correct PSTATE on exception entry - [arm64,armhf] KVM: Correct CPSR on exception entry - [arm64,armhf] KVM: Correct AArch32 SPSR on exception entry - [arm64] KVM: Only sign-extend MMIO up to register width - [s390x] mm: fix dynamic pagetable upgrade for hugetlbfs - [powerpc*] pseries: Advance pfn if section is not present in lmb_is_removable() - smb3: fix signing verification of large reads - [arm64,armhf] PCI: tegra: Fix return value check of pm_runtime_get_sync() - [arm64,armhf] mmc: spi: Toggle SPI polarity, do not hardcode it - [x86] ACPI: video: Do not export a non working backlight interface on MSI MS-7721 boards - [x86] ACPI / battery: Deal with design or full capacity being reported as -1 - [x86] ACPI / battery: Use design-cap for capacity calculations if full-cap is not available - [x86] ACPI / battery: Deal better with neither design nor full capacity not being reported - alarmtimer: Unregister wakeup source when module get fails - ubifs: Reject unsupported ioctl flags explicitly - ubifs: don't trigger assertion on invalid no-key filename - ubifs: Fix FS_IOC_SETFLAGS unexpectedly clearing encrypt flag - ubifs: Fix deadlock in concurrent bulk-read and writepage - [i386] crypto: geode-aes - convert to skcipher API and make thread-safe - [x86] hv_balloon: Balloon up according to request page number - mfd: axp20x: Mark AXP20X_VBUS_IPSOUT_MGMT as volatile - crypto: api - Check spawn->alg under lock in crypto_drop_spawn - scsi: qla2xxx: Fix mtcp dump collection failure - ovl: fix wrong WARN_ON() in ovl_cache_update_ino() - f2fs: choose hardlimit when softlimit is larger than hardlimit in f2fs_statfs_project() - f2fs: fix miscounted block limit in f2fs_statfs_project() - f2fs: code cleanup for f2fs_statfs_project() - PM: core: Fix handling of devices deleted during system-wide resume - dm zoned: support zone sizes smaller than 128MiB - dm space map common: fix to ensure new block isn't already in use - dm crypt: fix benbi IV constructor crash if used in authenticated mode - dm: fix potential for q->make_request_fn NULL pointer - dm writecache: fix incorrect flush sequence when doing SSD mode commit - padata: Remove broken queue flushing - tracing: Annotate ftrace_graph_hash pointer with __rcu - tracing: Annotate ftrace_graph_notrace_hash pointer with __rcu - ftrace: Add comment to why rcu_dereference_sched() is open coded - ftrace: Protect ftrace_graph_hash with ftrace_sync - [x86] crypto: ccp - set max RSA modulus size for v3 platform devices as well - crypto: pcrypt - Do not clear MAY_SLEEP flag in original request - crypto: api - Fix race condition in crypto_spawn_alg - scsi: qla2xxx: Fix unbound NVME response length - NFS: Fix memory leaks and corruption in readdir - NFS: Directory page cache pages need to be locked when read - jbd2_seq_info_next should increase position index - Btrfs: fix missing hole after hole punching and fsync when using NO_HOLES - btrfs: set trans->drity in btrfs_commit_transaction - Btrfs: fix race between adding and putting tree mod seq elements and nodes - [armhf] tegra: Enable PLLP bypass during Tegra124 LP1 - iwlwifi: don't throw error when trying to remove IGTK - mwifiex: fix unbalanced locking in mwifiex_process_country_ie() - sunrpc: expiry_time should be seconds not timeval - gfs2: move setting current->backing_dev_info - gfs2: fix O_SYNC write handling - drm/rect: Avoid division by zero - media: rc: ensure lirc is initialized before registering input device - xen/balloon: Support xend-based toolstack take two - watchdog: fix UAF in reboot notifier handling in watchdog core code - bcache: add readahead cache policy options via sysfs interface - eventfd: track eventfd_signal() recursion depth - aio: prevent potential eventfd recursion on poll - [x86] KVM: Refactor picdev_write() to prevent Spectre-v1/L1TF attacks - [x86] KVM: Refactor prefix decoding to prevent Spectre-v1/L1TF attacks - [x86] KVM: Protect pmu_intel.c from Spectre-v1/L1TF attacks - [x86] KVM: Protect DR-based index computations from Spectre-v1/L1TF attacks - [x86] KVM: Protect kvm_lapic_reg_write() from Spectre-v1/L1TF attacks - [x86] KVM: Protect kvm_hv_msr_[get|set]_crash_data() from Spectre-v1/L1TF attacks - [x86] KVM: Protect ioapic_write_indirect() from Spectre-v1/L1TF attacks - [x86] KVM: Protect MSR-based index computations in pmu.h from Spectre-v1/L1TF attacks - [x86] KVM: Protect ioapic_read_indirect() from Spectre-v1/L1TF attacks - [x86] KVM: Protect MSR-based index computations from Spectre-v1/L1TF attacks in x86.c - [x86] KVM: Protect x86_decode_insn from Spectre-v1/L1TF attacks - [x86] KVM: Protect MSR-based index computations in fixed_msr_to_seg_unit() from Spectre-v1/L1TF attacks - [x86] KVM: Fix potential put_fpu() w/o load_fpu() on MPX platform - [ppc64el] KVM: Book3S HV: Uninit vCPU if vcore creation fails - [ppc64el] KVM: Book3S PR: Free shared page if mmu initialization fails - [x86] kvm: Be careful not to clear KVM_VCPU_FLUSH_TLB bit (CVE-2019-3016) - [x86] KVM: Don't let userspace set host-reserved cr4 bits - [x86] KVM: Free wbinvd_dirty_mask if vCPU creation fails - [s390x] KVM: do not clobber registers during guest reset/store status - [arm64,armhf] clk: tegra: Mark fuse clock as critical - percpu: Separate decrypted varaibles anytime encryption can be enabled - scsi: qla2xxx: Fix the endianness of the qla82xx_get_fw_size() return type - scsi: csiostor: Adjust indentation in csio_device_reset - scsi: qla4xxx: Adjust indentation in qla4xxx_mem_free - scsi: ufs: Recheck bkops level if bkops is disabled - [arm64] phy: qualcomm: Adjust indentation in read_poll_timeout - ext2: Adjust indentation in ext2_fill_super - [arm64] drm: msm: mdp4: Adjust indentation in mdp4_dsi_encoder_enable - IB/mlx5: Fix outstanding_pi index for GSI qps - IB/core: Fix ODP get user pages flow - nfsd: fix delay timer on 32-bit architectures - nfsd: fix jiffies/time_t mixup in LRU list - nfsd: Return the correct number of bytes written to the file - ubi: fastmap: Fix inverted logic in seen selfcheck - ubi: Fix an error pointer dereference in error handling code - bonding/alb: properly access headers in bond_alb_xmit() - [armhf] net: dsa: bcm_sf2: Only 7278 supports 2Gb/sec IMP port - [arm64,armhf] net: mvneta: move rx_dropped and rx_errors in per-cpu stats - net_sched: fix a resource leak in tcindex_set_parms() - net/mlx5: IPsec, Fix esp modify function attribute - net/mlx5: IPsec, fix memory leak at mlx5_fpga_ipsec_delete_sa_ctx - [arm64] net: macb: Remove unnecessary alignment check for TSO - [arm64] net: macb: Limit maximum GEM TX length in TSO - [armhf] net: dsa: b53: Always use dev->vlan_enabled in b53_configure_vlan() - ext4: fix deadlock allocating crypto bounce page from mempool - btrfs: use bool argument in free_root_pointers() - btrfs: free block groups after free'ing fs trees - btrfs: flush write bio if we loop in extent_write_cache_pages - [x86] KVM: mmu: Apply max PA check for MMIO sptes to 32-bit KVM - [x86] KVM: Use gpa_t for cr2/gpa to fix TDP support on 32-bit KVM - [x86] KVM: nVMX: vmread should not set rflags to specify success in case of #PF - KVM: Use vcpu-specific gva->hva translation when querying host page size - KVM: Play nice with read-only memslots when querying host page size - mm: zero remaining unavailable struct pages - mm: return zero_resv_unavail optimization - mm/page_alloc.c: fix uninitialized memmaps on a partially populated last section - cifs: fail i/o on soft mounts if sessionsetup errors out - [x86] apic/msi: Plug non-maskable MSI affinity race - clocksource: Prevent double add_timer_on() for watchdog_timer - perf/core: Fix mlock accounting in perf_mmap() - rxrpc: Fix service call disconnection https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.104 - ASoC: pcm: update FE/BE trigger order based on the command - [x86] hv_sock: Remove the accept port restriction - IB/mlx4: Fix memory leak in add_gid error flow - RDMA/netlink: Do not always generate an ACK for some netlink operations - RDMA/core: Fix locking in ib_uverbs_event_read - scsi: ufs: Fix ufshcd_probe_hba() reture value in case ufshcd_scsi_add_wlus() fails - PCI/IOV: Fix memory leak in pci_iov_add_virtfn() - ath10k: pci: Only dump ATH10K_MEM_REGION_TYPE_IOREG when safe - PCI: Don't disable bridge BARs when assigning bus resources - nfs: NFS_SWAP should depend on SWAP - NFS: Revalidate the file size on a fatal write error - NFS/pnfs: Fix pnfs_generic_prepare_to_resend_writes() - NFSv4: try lease recovery on NFS4ERR_EXPIRED - [arm64] serial: uartps: Add a timeout to the tx empty wait - [arm64] gpio: zynq: Report gpio direction at boot - spi: spi-mem: Add extra sanity checks on the op param - spi: spi-mem: Fix inverted logic in op sanity check - rtc: cmos: Stop using shared IRQ - [x86] platform/x86: intel_mid_powerbtn: Take a copy of ddata - [powerpc*] pseries/vio: Fix iommu_table use-after-free refcount warning - [powerpc*] pseries: Allow not having ibm, hypertas-functions::hcall-multi-tce for DDW - [arm64] iommu/arm-smmu-v3: Populate VMID field for CMDQ_OP_TLBI_NH_VA - [arm64,armhf] KVM: vgic-its: Fix restoration of unmapped collections - [armel,armhf] 8949/1: mm: mark free_memmap as __init - [arm64] cpufeature: Fix the type of no FP/SIMD capability - [arm64] ptrace: nofpsimd: Fail FP/SIMD regset operations - [arm64,armhf] KVM: Fix young bit from mmu notifier - [arm64,armhf] KVM: Fix DFSR setting for non-LPAE aarch32 guests - [arm64,armhf] KVM: Make inject_abt32() inject an external abort instead - [arm64] KVM: pmu: Don't increment SW_INCR if PMCR.E is unset - mtd: onenand_base: Adjust indentation in onenand_read_ops_nolock - mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() - mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() - libertas: don't exit from lbs_ibss_join_existing() with RCU read lock held - libertas: make lbs_ibss_join_existing() return error code on rates overflow - scsi: megaraid_sas: Do not initiate OCR if controller is not in ready state - [x86] stackframe: Move ENCODE_FRAME_POINTER to asm/frame.h - [x86] x86/stackframe, x86/ftrace: Add pt_regs frame annotations - [arm64] serial: uartps: Move the spinlock after the read of the tx empty - padata: fix null pointer deref of pd->pinst https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.105 - Input: synaptics - switch T470s to RMI4 by default - Input: synaptics - enable SMBus on ThinkPad L470 - Input: synaptics - remove the LEN0049 dmi id from topbuttonpad list - ALSA: usb-audio: Fix UAC2/3 effect unit parsing - ALSA: hda/realtek - Fix silent output on MSI-GL73 - ALSA: usb-audio: Apply sample rate quirk for Audioengine D1 - [arm64] cpufeature: Set the FP/SIMD compat HWCAP bits properly - [arm64] nofpsmid: Handle TIF_FOREIGN_FPSTATE flag cleanly - ALSA: usb-audio: sound: usb: usb true/false for bool return type - ALSA: usb-audio: Add clock validity quirk for Denon MC7000/MCX8000 - ext4: don't assume that mmp_nodename/bdevname have NUL - ext4: fix support for inode sizes > 1024 bytes - ext4: fix checksum errors with indexed dirs - ext4: add cond_resched() to ext4_protect_reserved_inode (CVE-2020-8992) - ext4: improve explanation of a mount failure caused by a misconfigured kernel - Btrfs: fix race between using extent maps and merging them - btrfs: ref-verify: fix memory leaks - btrfs: print message when tree-log replay starts - btrfs: log message when rw remount is attempted with unclean tree-log - [arm64] ssbs: Fix context-switch when SSBS is present on all CPUs - [x86] perf/x86/amd: Add missing L2 misses event spec to AMD Family 17h's event map - nvme: fix the parameter order for nvme_get_log in nvme_get_fw_slot_info - [amd64] IB/hfi1: Acquire lock to release TID entries when user file is closed - [amd64] IB/hfi1: Close window for pq and request coliding - IB/rdmavt: Reset all QPs when the device is shut down - RDMA/core: Fix invalid memory access in spec_filter_size - [amd64] RDMA/hfi1: Fix memory leak in _dev_comp_vect_mappings_create - RDMA/rxe: Fix soft lockup problem due to using tasklets in softirq - RDMA/core: Fix protection fault in get_pkey_idx_qp_list - [s390x] time: Fix clk type in get_tod_clock - [x86] perf/x86/intel: Fix inaccurate period in context switch for auto- reload - NFSv4.1 make cachethis=no for writes - jbd2: move the clearing of b_modified flag to the journal_unmap_buffer() - jbd2: do not clear the BH_Mapped flag when forgetting a metadata buffer - [x86] KVM: mmu: Fix struct guest_walker arrays for 5-level paging https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.106 - core: Don't skip generic XDP program execution for cloned SKBs - enic: prevent waking up stopped tx queues over watchdog reset - net/smc: fix leak of kernel memory to user space - net/sched: matchall: add missing validation of TCA_MATCHALL_FLAGS - net/sched: flower: add missing validation of TCA_FLOWER_FLAGS - [x86] KVM: nVMX: Use correct root level for nested EPT shadow page tables - [x86] drm/gma500: Fixup fbdev stolen size usage evaluation - cpu/hotplug, stop_machine: Fix stop_machine vs hotplug order - brcmfmac: Fix use after free in brcmf_sdio_readframes() - ext4: fix ext4_dax_read/write inode locking sequence for IOCB_NOWAIT - ALSA: ctl: allow TLV read operation for callback type of element in locked case - [powerpc*] powernv/iov: Ensure the pdn for VFs always contains a valid PE number - [amd64] iommu/vt-d: Fix off-by-one in PASID allocation - [x86] pinctrl: baytrail: Do not clear IRQ flags on direct-irq enabled pins - [x86] efi: Map the entire EFI vendor string before copying it - [mips64el,mipsel] Loongson: Fix potential NULL dereference in loongson3_platform_init() - [arm*] usb: dwc2: Fix IN FIFO allocation - [armel,armhf] clocksource/drivers/bcm2835_timer: Fix memory leak of timer - jbd2: clear JBD2_ABORT flag before journal_reset to update log tail info when load journal - [armhf] pwm: omap-dmtimer: Simplify error handling - [s390x] pci: Fix possible deadlock in recover_store() - [powerpc*] iov: Move VF pdev fixup into pcibios_fixup_iov() - tracing: Fix tracing_stat return values in error handling paths - tracing: Fix very unlikely race of registering two stat tracers - ext4, jbd2: ensure panic when aborting with zero errno - ath10k: Correct the DMA direction for management tx buffers - nbd: add a flush_workqueue in nbd_start_device - [s390x] KVM: ENOTSUPP -> EOPNOTSUPP fixups - [arm64] clk: qcom: rcg2: Don't crash if our parent can't be found; return an error - drm/amdgpu: remove 4 set but not used variable in amdgpu_atombios_get_connector_info_from_object_table - [arm64,armhf] regulator: rk808: Lower log level on optional GPIOs being not available - NFC: port100: Convert cpu_to_le16(le16_to_cpu(E1) + E2) to use le16_add_cpu(). - selinux: fall back to ref-walk if audit is required - selinux: ensure we cleanup the internal AVC counters on error in avc_insert() - media: cx23885: Add support for AVerMedia CE310B - PCI: Add generic quirk for increasing D3hot delay - PCI: Increase D3 delay for AMD Ryzen5/7 XHCI controllers - media: v4l2-device.h: Explicitly compare grp{id,mask} to zero in v4l2_device macros - reiserfs: Fix spurious unlock in reiserfs_fill_super() error handling - fore200e: Fix incorrect checks of NULL pointer dereference - netfilter: nft_tunnel: add the missing ERSPAN_VERSION nla_policy - ALSA: usx2y: Adjust indentation in snd_usX2Y_hwdep_dsp_status - orinoco: avoid assertion in case of NULL pointer - ACPICA: Disassembler: create buffer fields in ACPI_PARSE_LOAD_PASS1 - scsi: ufs: Complete pending requests in host reset and restore path - scsi: aic7xxx: Adjust indentation in ahc_find_syncrate - selinux: ensure we cleanup the internal AVC counters on error in avc_update() - dmaengine: Store module owner in dma_device struct - [arm64] clk: sunxi-ng: add mux and pll notifiers for A64 CPU clock - tools lib api fs: Fix gcc9 stringop-truncation compilation error - [x86] ACPI: button: Add DMI quirk for Razer Blade Stealth 13 late 2019 lid switch - mlx5: work around high stack usage with gcc - drm: remove the newline for CRC source name. - usbip: Fix unsafe unaligned pointer usage - udf: Fix free space reporting for metadata and virtual partitions - staging: rtl8188: avoid excessive stack usage - [amd64] IB/hfi1: Add software counter for ctxt0 seq drop - [armhf] soc/tegra: fuse: Correct straps' address for older Tegra124 device trees - [x86] efi: Don't panic or BUG() on non-critical error conditions - rcu: Use WRITE_ONCE() for assignments to ->pprev for hlist_nulls - [x86] nmi: Remove irq_work from the long duration NMI handler - driver core: platform: Prevent resouce overflow from causing infinite loops - driver core: Print device when resources present in really_probe() - bpf: Return -EBADRQC for invalid map type in __bpf_tx_xdp_map - drm/nouveau/secboot/gm20b: initialize pointer in gm20b_secboot_new() - drm/nouveau/gr/gk20a,gm200-: add terminators to method lists read from fw - drm/nouveau: Fix copy-paste error in nouveau_fence_wait_uevent_handler - drm/nouveau/fault/gv100-: fix memory leak on module unload - [x86] drm/vmwgfx: prevent memory leak in vmw_cmdbuf_res_add - [armhf] usb: musb: omap2430: Get rid of musb .set_vbus for omap2430 glue - [arm64] iommu/arm-smmu-v3: Use WRITE_ONCE() when changing validity of an STE - f2fs: set I_LINKABLE early to avoid wrong access by vfs - f2fs: free sysfs kobject - scsi: iscsi: Don't destroy session if there are outstanding connections - watchdog/softlockup: Enforce that timestamp is valid on boot - f2fs: fix memleak of kobject - [x86] mm: Fix NX bit clearing issue in kernel_map_pages_in_pgd - [armhf] pwm: omap-dmtimer: Remove PWM chip in .remove before making it unfunctional - btrfs: fix possible NULL-pointer dereference in integrity checks - btrfs: safely advance counter when looking up bio csums - btrfs: device stats, log when stats are zeroed - module: avoid setting info->name early in case we can fall back to info->mod->name - ALSA: hda/hdmi - add retry logic to parse_intel_hdmi() - driver core: platform: fix u32 greater or equal to zero comparison - ALSA: hda - Add docking station support for Lenovo Thinkpad T420s - drm/nouveau/mmu: fix comptag memory leak - [powerpc*] sriov: Remove VF eeh_dev state when disabling SR-IOV - bcache: cached_dev_free needs to put the sb page - [amd64] iommu/vt-d: Remove unnecessary WARN_ON_ONCE() - jbd2: switch to use jbd2_journal_abort() when failed to submit the commit record - jbd2: make sure ESHUTDOWN to be recorded in the journal superblock - iwlegacy: ensure loop counter addr does not wrap and cause an infinite loop - cifs: fix NULL dereference in match_prepath - bpf: map_seq_next should always increase position index - ceph: check availability of mds cluster on mount after wait timeout - [arm64,armhf] irqchip/gic-v3: Only provision redistributors that are enabled in ACPI - drm/nouveau/disp/nv50-: prevent oops when no channel method map provided - ftrace: fpid_next() should increase position index - trigger_next should increase position index - radeon: insert 10ms sleep in dce5_crtc_load_lut - ocfs2: fix a NULL pointer dereference when call ocfs2_update_inode_fsync_trans() - reiserfs: prevent NULL pointer dereference in reiserfs_insert_item() - bcache: explicity type cast in bset_bkey_last() - [arm64,armhf] irqchip/gic-v3-its: Reference to its_invall_cmd descriptor when building INVALL - iwlwifi: mvm: Fix thermal zone registration - brd: check and limit max_part par - NFS: Fix memory leaks - help_next should increase position index - cifs: log warning message (once) if out of disk space - virtio_balloon: prevent pfn array overflow https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.107 - [arm64] iommu/qcom: Fix bogus detach logic - ALSA: hda: Use scnprintf() for printing texts for sysfs/procfs - [x86] ALSA: hda/realtek - Apply quirk for MSI GP63, too - [x86] ALSA: hda/realtek - Apply quirk for yet another MSI laptop - [armhf] ASoC: sun8i-codec: Fix setting DAI data format - ecryptfs: fix a memory leak bug in parse_tag_1_packet() - ecryptfs: fix a memory leak bug in ecryptfs_init_messaging() - [x86] thunderbolt: Prevent crash if non-active NVMem file is read - USB: misc: iowarrior: add support for 2 OEMed devices - USB: misc: iowarrior: add support for the 28 and 28L devices - USB: misc: iowarrior: add support for the 100 device - floppy: check FDC index for errors before assigning it (CVE-2020-9383) - vt: fix scrollback flushing on background consoles - vt: selection, handle pending signals in paste_selection - vt: vt_ioctl: fix race in VT_RESIZEX - [arm*] staging: android: ashmem: Disallow ashmem memory from being remapped (CVE-2020-0009) - [x86] staging: vt6656: fix sign of rx_dbm to bb_pre_ed_rssi. - xhci: Force Maximum Packet size for Full-speed bulk devices to valid range. - xhci: fix runtime pm enabling for quirky Intel hosts - xhci: Fix memory leak when caching protocol extended capability PSI tables - take 2 - usb: host: xhci: update event ring dequeue pointer on purpose - USB: core: add endpoint-blacklist quirk - USB: quirks: blacklist duplicate ep on Sound Devices USBPre2 - usb: uas: fix a plug & unplug racing - USB: Fix novation SourceControl XL after suspend - USB: hub: Don't record a connect-change event during reset-resume - USB: hub: Fix the broken detection of USB3 device in SMSC hub - [arm*] usb: dwc2: Fix SET/CLEAR_FEATURE and GET_STATUS flows - [arm64,armhf] usb: dwc3: gadget: Check for IOC/LST bit in TRB->ctrl fields - staging: rtl8188eu: Fix potential security hole - staging: rtl8188eu: Fix potential overuse of kernel memory - staging: rtl8723bs: Fix potential security hole - staging: rtl8723bs: Fix potential overuse of kernel memory - [powerpc*] tm: Fix clearing MSR[TS] in current when reclaiming on signal delivery - jbd2: fix ocfs2 corrupt when clearing block group bits - [x86] mce/amd: Publish the bank pointer only after setup has succeeded - [x86] mce/amd: Fix kobject lifetime - [x86] cpu/amd: Enable the fixed Instructions Retired counter IRPERF - serial: 8250: Check UPF_IRQ_SHARED in advance - [armhf] tty: serial: imx: setup the correct sg entry for tx dma - serdev: ttyport: restore client ops on deregistration - Revert "ipc,sem: remove uneeded sem_undo_list lock usage in exit_sem()" - mm/memcontrol.c: lost css_put in memcg_expand_shrinker_maps() - nvme-multipath: Fix memory leak with ana_log_buf - genirq/irqdomain: Make sure all irq domain flags are distinct - mm/vmscan.c: don't round up scan size for online memory cgroup - drm/amdgpu/soc15: fix xclk for raven - [x86] xhci: apply XHCI_PME_STUCK_QUIRK to Intel Comet Lake platforms - [x86] KVM: nVMX: Don't emulate instructions in guest mode (CVE-2020-2732) - [x86] KVM: don't notify userspace IOAPIC on edge-triggered interrupt EOI - drm/nouveau/kms/gv100-: Re-set LUT after clearing for modesets - ext4: fix a data race in EXT4_I(inode)->i_disksize - ext4: add cond_resched() to __ext4_find_entry() - ext4: fix potential race between online resizing and write operations - ext4: fix potential race between s_group_info online resizing and access - ext4: fix potential race between s_flex_groups online resizing and access - ext4: fix mount failure with quota configured as module - ext4: rename s_journal_flag_rwsem to s_writepages_rwsem - ext4: fix race between writepages and enabling EXT4_EXTENTS_FL - [x86] KVM: nVMX: Refactor IO bitmap checks into helper function - [x86] KVM: nVMX: Check IO instruction VM-exit conditions - [x86] KVM: nVMX: handle nested posted interrupts when apicv is disabled for L1 - [x86] KVM: apic: avoid calculating pending eoi from an uninitialized val - btrfs: fix bytes_may_use underflow in prealloc error condtition - btrfs: reset fs_root to NULL on error in open_ctree - btrfs: do not check delayed items are empty for single transaction cleanup - Btrfs: fix btrfs_wait_ordered_range() so that it waits for all ordered extents - scsi: Revert "target: iscsi: Wait for all commands to finish before freeing a session" - usb: gadget: composite: Fix bMaxPower for SuperSpeedPlus - [arm*] usb: dwc2: Fix in ISOC request length checking - staging: rtl8723bs: fix copy of overlapping memory - ecryptfs: replace BUG_ON with error handling code - genirq/proc: Reject invalid affinity masks (again) - bpf, offload: Replace bitwise AND by logical AND in bpf_prog_offload_info_fill - ALSA: seq: Avoid concurrent access to queue flags - ALSA: seq: Fix concurrent access to queue current tick/time - netfilter: xt_hashlimit: limit the max size of hashtable - rxrpc: Fix call RCU cleanup using non-bh-safe locks - ata: ahci: Add shutdown to freeze hardware resources of ahci - xen: Enable interrupts when calling _cond_resched() - [s390x] mm: Explicitly compare PAGE_DEFAULT_KEY against zero in storage_key_init_range https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.108 - [arm64,armhf] irqchip/gic-v3-its: Fix misuse of GENMASK macro - iwlwifi: pcie: fix rb_allocator workqueue allocation - ipmi:ssif: Handle a possible NULL pointer reference - [arm64] drm/msm: Set dma maximum segment size for mdss - dax: pass NOWAIT flag to iomap_apply - mac80211: consider more elements in parsing CRC - cfg80211: check wiphy driver existence for drvinfo report - [s390x] zcrypt: fix card and queue total counter wrap - qmi_wwan: re-add DW5821e pre-production variant - qmi_wwan: unconditionally reject 2 ep interfaces - [arm64] soc/tegra: fuse: Fix build with Tegra194 configuration - net: ena: fix potential crash when rxfh key is NULL - net: ena: fix uses of round_jiffies() - net: ena: add missing ethtool TX timestamping indication - net: ena: fix incorrect default RSS key - net: ena: rss: fix failure to get indirection table - net: ena: rss: store hash function as values and not bits - net: ena: fix incorrectly saving queue numbers when setting RSS indirection table - net: ena: ethtool: use correct value for crc32 hash - net: ena: ena-com.c: prevent NULL pointer dereference - cifs: Fix mode output in debugging statements - cfg80211: add missing policy for NL80211_ATTR_STATUS_CODE - sysrq: Restore original console_loglevel when sysrq disabled - sysrq: Remove duplicated sysrq message - net: fib_rules: Correctly set table field when table number exceeds 8 bits - net: sched: correct flower port blocking - sctp: move the format error check out of __sctp_sf_do_9_1_abort - ipv6: Fix route replacement with dev-only route - ipv6: Fix nlmsg_flags when splitting a multipath route - qede: Fix race between rdma destroy workqueue and link change event - ext4: potential crash on allocation error in ext4_alloc_flex_bg_array() - audit: fix error handling in audit_data_to_entry() - ACPICA: Introduce ACPI_ACCESS_BYTE_WIDTH() macro - [arm64,x86] ACPI: watchdog: Fix gas->access_width usage - [x86] KVM: VMX: check descriptor table exits on instruction emulation - HID: ite: Only bind to keyboard USB interface on Acer SW5-012 keyboard dock - HID: core: fix off-by-one memset in hid_report_raw_event() - HID: core: increase HID report buffer size to 8KiB - tracing: Disable trace_printk() on post poned tests - Revert "PM / devfreq: Modify the device name as devfreq(X) for sysfs" - amdgpu/gmc_v9: save/restore sdpif regs during S3 - vhost: Check docket sk_family instead of call getname (CVE-2020-10942) - HID: alps: Fix an error handling path in 'alps_input_configured()' - HID: hiddev: Fix race in in hiddev_disconnect() - [x86] hv_netvsc: Fix unwanted wakeup in netvsc_attach() - [s390x] qeth: vnicc Fix EOPNOTSUPP precedence - net: netlink: cap max groups which will be considered in netlink_bind() - [amd64] net: atlantic: fix use after free kasan warn - [amd64] net: atlantic: fix potential error handling - net/smc: no peer ID in CLC decline for SMCD - net: ena: make ena rxfh support ETH_RSS_HASH_NO_CHANGE - namei: only return -ECHILD from follow_dotdot_rcu() - mwifiex: drop most magic numbers from mwifiex_process_tdls_action_frame() - [x86] KVM: SVM: Override default MMIO mask if memory encryption is enabled - KVM: Check for a bad hva before dropping into the ghc slow path - sched/fair: Optimize update_blocked_averages() - sched/fair: Fix O(nr_cgroups) in the load balancing path - perf stat: Use perf_evsel__is_clocki() for clock events - perf stat: Fix shadow stats for clock events - [arm64] drivers: net: xgene: Fix the order of the arguments of 'alloc_etherdev_mqs()' - kprobes: Set unoptimized flag after unoptimizing code - [armhf] pwm: omap-dmtimer: put_device() after of_find_device_by_node() - perf hists browser: Restore ESC as "Zoom out" of DSO/thread/etc - [x86] KVM: Remove spurious kvm_mmu_unload() from vcpu destruction path - [x86] KVM: Remove spurious clearing of async #PF MSR - netfilter: nft_tunnel: no need to call htons() when dumping ports - mm/huge_memory.c: use head to check huge zero page - mm, thp: fix defrag setting if newline is not used - audit: always check the netlink payload length in audit_receive_msg() https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.109 - [x86] EDAC/amd64: Set grain per DIMM - ALSA: hda/realtek - Fix a regression for mute led on Lenovo Carbon X1 - [armhf] net: dsa: bcm_sf2: Forcibly configure IMP port for 1Gb/sec - kprobes: Fix optimize_kprobe()/unoptimize_kprobe() cancellation logic - [x86] ALSA: hda: do not override bus codec_mask in link_get() - usb: gadget: composite: Support more than 500mA MaxPower - usb: gadget: ffs: ffs_aio_cancel(): Save/restore IRQ flags - usb: gadget: serial: fix Tx stall after buffer overflow - [arm64] drm/msm/mdp5: rate limit pp done timeout warnings - [arm64] drm: msm: Fix return type of dsi_mgr_connector_mode_valid for kCFI - scsi: megaraid_sas: silence a warning - [arm64] drm/msm/dsi: save pll state before dsi host is powered off - [arm64] drm/msm/dsi/pll: call vco set rate explicitly - [armhf] net: dsa: b53: Ensure the default VID is untagged - [s390x] cio: cio_ignore_proc_seq_next should increase position index - [s390x] qdio: fill SL with absolute addresses - ice: Don't tell the OS that link is going down - [arm64] net: thunderx: workaround BGX TX Underflow issue - ALSA: hda/realtek - Add Headset Mic supported - ALSA: hda/realtek - Fix silent output on Gigabyte X570 Aorus Master - cifs: don't leak -EAGAIN for stat() during reconnect - usb: storage: Add quirk for Samsung Fit flash - usb: quirks: add NO_LPM quirk for Logitech Screen Share - [arm64,armhf] usb: dwc3: gadget: Update chain bit correctly when using sg list - usb: core: hub: fix unhandled return by employing a void function - usb: core: hub: do error out if usb_autopm_get_interface() fails - usb: core: port: do error out if usb_autopm_get_interface() fails - vgacon: Fix a UAF in vgacon_invert_region (CVE-2020-8647, CVE-2020-8649) - mm, numa: fix bad pmd by atomically check for pmd_trans_huge when marking page tables prot_numa - mm: fix possible PMD dirty bit lost in set_pmd_migration_entry() - fat: fix uninit-memory access for partial initialized inode - [arm64] tty:serial:mvebu-uart:fix a wrong return - serial: 8250_exar: add support for ACCES cards - vt: selection, close sel_buffer race (CVE-2020-8648) - vt: selection, push console lock down - vt: selection, push sel_lock up - [arm64,armhf] media: v4l2-mem2mem.c: fix broken links - [x86] pkeys: Manually set X86_FEATURE_OSPKE to preserve existing changes - [arm64,armhf] dmaengine: tegra-apb: Fix use-after-free - [arm64,armhf] dmaengine: tegra-apb: Prevent race conditions of tasklet vs free list - dm cache: fix a crash due to incorrect work item cancelling - dm: report suspended device during destroy - dm writecache: verify watermark during resume - [x86] ASoC: topology: Fix memleak in soc_tplg_link_elems_load() - [x86] ASoC: topology: Fix memleak in soc_tplg_manifest_load() - [x86] ASoC: intel: skl: Fix pin debug prints - [x86] ASoC: intel: skl: Fix possible buffer overflow in debug outputs - [armhf] dmaengine: imx-sdma: remove dma_slave_config direction usage and leave sdma_event_enable() - ASoC: pcm: Fix possible buffer overflow in dpcm state sysfs output - ASoC: dapm: Correct DAPM handling of active widgets during shutdown - [armhf] drm/sun4i: Fix DE2 VI layer format support - [armhf] drm/sun4i: de2/de3: Remove unsupported VI layer formats - RDMA/iwcm: Fix iwcm work deallocation - RMDA/cm: Fix missing ib_cm_destroy_id() in ib_cm_insert_listen() - [amd64] IB/hfi1, qib: Ensure RCU is locked when accessing list - [armhf] ARM: imx: build v7_cpu_resume() unconditionally - hwmon: (adt7462) Fix an error return in ADT7462_REG_VOLT() - [powerpc*] fix hardware PMU exception bug on PowerVM compatibility mode systems - [amd64] efi/x86: Align GUIDs to their size in the mixed mode runtime wrapper - [amd64] efi/x86: Handle by-ref arguments covering multiple pages in mixed mode - dm integrity: fix a deadlock due to offloading to an incorrect workqueue - scsi: pm80xx: Fixed kernel panic during error recovery for SATA drive https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.110 - [x86] KVM: SVM: fix up incorrect backport https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.111 - phy: Revert toggling reset changes. - net: phy: Avoid multiple suspends - cgroup, netclassid: periodically release file_lock on classid updating - gre: fix uninit-value in __iptunnel_pull_header - inet_diag: return classid for all socket types - ipv6/addrconf: call ipv6_mc_up() for non-Ethernet interface - ipvlan: add cond_resched_rcu() while processing muticast backlog - ipvlan: do not add hardware address of master to its unicast filter list - ipvlan: do not use cond_resched_rcu() in ipvlan_process_multicast() - ipvlan: don't deref eth hdr before checking it's set - net/ipv6: use configured metric when add peer route - netlink: Use netlink header as base to calculate bad attribute offset - net: macsec: update SCI upon MAC address change. - net: nfc: fix bounds checking bugs on "pipe" - net/packet: tpacket_rcv: do not increment ring index on drop - [arm64,armhf] net: stmmac: dwmac1000: Disable ACS if enhanced descs are not used - r8152: check disconnect status after long sleep - sfc: detach from cb_page in efx_copy_channel() - bnxt_en: reinitialize IRQs when MTU is modified - cgroup: memcg: net: do not associate sock with unrelated cgroup - net: memcg: late association of sock to memcg - net: memcg: fix lockdep splat in inet_csk_accept() - devlink: validate length of param values - nl802154: add missing attribute validation - nl802154: add missing attribute validation for dev_type - can: add missing attribute validation for termination - macsec: add missing attribute validation for port - net: fq: add missing attribute validation for orphan mask - team: add missing attribute validation for port ifindex - team: add missing attribute validation for array index - nfc: add missing attribute validation for SE API - nfc: add missing attribute validation for deactivate target - nfc: add missing attribute validation for vendor subcommand - net: phy: fix MDIO bus PM PHY resuming - net/ipv6: need update peer route when modify metric - net/ipv6: remove the old peer route if change it to a new one - tipc: add missing attribute validation for MTU property - devlink: validate length of region addr/len - bonding/alb: make sure arp header is pulled before accessing it - slip: make slhc_compress() more robust against malicious packets - [armhf] net: fec: validate the new settings in fec_enet_set_coalesce() - macvlan: add cond_resched() during multicast processing - cgroup: cgroup_procs_next should increase position index - cgroup: Iterate tasks that did not finish do_exit() - iwlwifi: mvm: Do not require PHY_SKU NVM section for 3168 devices - virtio-blk: fix hw_queue stopped on arbitrary error - [amd64] iommu/vt-d: quirk_ioat_snb_local_iommu: replace WARN_TAINT with pr_warn + add_taint - netfilter: nf_conntrack: ct_cpu_seq_next should increase position index - netfilter: synproxy: synproxy_cpu_seq_next should increase position index - netfilter: xt_recent: recent_seq_next should increase position index - netfilter: x_tables: xt_mttg_seq_next should increase position index - workqueue: don't use wq_select_unbound_cpu() for bound works - drm/amd/display: remove duplicated assignment to grph_obj_type - cifs_atomic_open(): fix double-put on late allocation failure - gfs2_atomic_open(): fix O_EXCL|O_CREAT handling on cold dcache - [x86] KVM: clear stale x86_emulate_ctxt->intercept value - efi: Fix a race and a buffer overflow while reading efivars via sysfs - efi: Make efi_rts_work accessible to efi page fault handler - mt76: fix array overflow on receiving too many fragments for a packet - [x86] mce: Fix logic and comments around MSR_PPIN_CTL - [arm64] iommu/dma: Fix MSI reservation allocation - [amd64] iommu/vt-d: dmar: replace WARN_TAINT with pr_warn + add_taint - [amd64] iommu/vt-d: Fix a bug in intel_iommu_iova_to_phys() for huge page - batman-adv: Don't schedule OGM for disabled interface - [arm64] pinctrl: meson-gxl: fix GPIOX sdio pins - pinctrl: core: Remove extra kref_get which blocks hogs being freed - [arm64,armhf] i2c: gpio: suppress error on probe defer - nl80211: add missing attribute validation for critical protocol indication - nl80211: add missing attribute validation for beacon report scanning - nl80211: add missing attribute validation for channel switch - perf bench futex-wake: Restore thread count default to online CPU count - netfilter: cthelper: add missing attribute validation for cthelper - netfilter: nft_payload: add missing attribute validation for payload csum flags - netfilter: nft_tunnel: add missing attribute validation for tunnels - [amd64] iommu/vt-d: Fix the wrong printing in RHSA parsing - [amd64] iommu/vt-d: Ignore devices with out-of-spec domain number - [arm64,x86] i2c: acpi: put device when verifying client fails - ipv6: restrict IPV6_ADDRFORM operation - net/smc: check for valid ib_client_data - net/smc: cancel event worker during device removal - efi: Add a sanity check to efivar_store_raw() - batman-adv: Avoid free/alloc race when handling OGM2 buffer https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.112 - [x86] perf/amd/uncore: Replace manual sampling check with CAP_NO_INTERRUPT flag - [armhf] mmc: sdhci-omap: Add platform specific reset callback - [armhf] mmc: sdhci-omap: Workaround errata regarding SDR104/HS200 tuning failures (i929) - ACPI: watchdog: Allow disabling WDAT at boot - HID: apple: Add support for recent firmware on Magic Keyboards - [x86] HID: i2c-hid: add Trekstor Surfbook E11B to descriptor override - cfg80211: check reg_rule for NULL in handle_channel_custom() - scsi: libfc: free response frame from GPN_ID - net: usb: qmi_wwan: restore mtu min/max values after raw_ip switch - mac80211: rx: avoid RCU list traversal under mutex - signal: avoid double atomic counter increments for user accounting - slip: not call free_netdev before rtnl_unlock in slip_open - [x86,arm64] hinic: fix a irq affinity bug - [x86,arm64] hinic: fix a bug of setting hw_ioctxt - sfc: fix timestamp reconstruction at 16-bit rollover points - jbd2: fix data races at struct journal_head - [armhf] mmc: sdhci-omap: Don't finish_mrq() on a command error during tuning - [armhf] mmc: sdhci-omap: Fix Tuning procedure for temperatures < -20C - driver core: Remove the link if there is no driver with AUTO flag - driver core: Fix adding device links to probing suppliers - driver core: Make driver core own stateful device links - driver core: Add device link flag DL_FLAG_AUTOPROBE_CONSUMER - driver core: Remove device link creation limitation - driver core: Fix creation of device links with PM-runtime flags - mm: slub: add missing TID bump in kmem_cache_alloc_bulk() - efi: Fix debugobjects warning on 'efi_rts_work' https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.113 - [arm64] spi: qup: call spi_qup_pm_resume_runtime before suspending - [amd64] spi: pxa2xx: Add CS control clock quirk - [armhf] drm/exynos: dsi: fix workaround for the legacy clock name - [arm64] drivers/perf: arm_pmu_acpi: Fix incorrect checking of gicc pointer - dm bio record: save/restore bi_end_io and bi_integrity - dm integrity: use dm_bio_record and dm_bio_restore - xenbus: req->body should be updated before req->state - xenbus: req->err should be updated before req->state - block, bfq: fix overwrite of bfq_group pointer in bfq_find_set_group() - USB: Disable LPM on WD19's Realtek Hub - usb: quirks: add NO_LPM quirk for RTL8153 based ethernet adapters - USB: serial: option: add ME910G1 ECM composition 0x110b - [arm64,armhf] usb: host: xhci-plat: add a shutdown - USB: serial: pl2303: add device-id for HP LD381 - [x86] usb: xhci: apply XHCI_SUSPEND_DELAY to AMD XHCI controller 1022:145c - ALSA: line6: Fix endless MIDI read loop - ALSA: seq: virmidi: Fix running status after receiving sysex - ALSA: seq: oss: Fix running status after receiving sysex - ALSA: pcm: oss: Avoid plugin buffer overflow - ALSA: pcm: oss: Remove WARNING from snd_pcm_plug_alloc() checks - [armhf] iio: st_sensors: remap SMO8840 to LIS2DH12 - mmc: rtsx_pci: Fix support for speed-modes that relies on tuning - staging: rtl8188eu: Add device id for MERCUSYS MW150US v2 - staging/speakup: fix get_word non-space look-ahead - [x86] intel_th: Fix user-visible error codes - [x86] intel_th: pci: Add Elkhart Lake CPU support - xhci: Do not open code __print_symbolic() in xhci trace events - btrfs: fix log context list corruption after rename whiteout error - drm/amd/amdgpu: Fix GPR read from debugfs (v2) - drm/lease: fix WARNING in idr_destroy - memcg: fix NULL pointer dereference in __mem_cgroup_usage_unregister_event - mm: slub: be more careful about the double cmpxchg of freelist - mm, slub: prevent kmalloc_node crashes and memory leaks - page-flags: fix a crash at SetPageError(THP_SWAP) - [x86] mm: split vmalloc_sync_all() (Closes: #953017) - USB: cdc-acm: fix close_delay and closing_wait units in TIOCSSERIAL - USB: cdc-acm: fix rounding error in TIOCSSERIAL - futex: Fix inode life-time issue - futex: Unbreak futex hashing - Revert "vrf: mark skb for multicast or link-local as enslaved to VRF" - Revert "ipv6: Fix handling of LLA with VRF and sockets bound to VRF" - ALSA: hda/realtek: Fix pop noise on ALC225 - [arm64] smp: fix smp_send_stop() behaviour - [arm64] smp: fix crash_smp_send_stop() behaviour - [arm64,armhf] drm/bridge: dw-hdmi: fix AVI frame colorimetry https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.114 - mmc: core: Allow host controllers to require R1B for CMD6 - mmc: core: Respect MMC_CAP_NEED_RSP_BUSY for erase/trim/discard - mmc: core: Respect MMC_CAP_NEED_RSP_BUSY for eMMC sleep command - [armhf] mmc: sdhci-omap: Fix busy detection by enabling MMC_CAP_NEED_RSP_BUSY - [arm64,armhf] mmc: sdhci-tegra: Fix busy detection by enabling MMC_CAP_NEED_RSP_BUSY - geneve: move debug check after netdev unregister - macsec: restrict to ethernet devices - net: cbs: Fix software cbs to consider packet sending time - [armhf] net: dsa: Fix duplicate frames flooded by learning - [arm64,armhf] net: mvneta: Fix the case where the last poll did not process all rx - net/packet: tpacket_rcv: avoid a producer race condition - net: qmi_wwan: add support for ASKEY WWHC050 - net_sched: cls_route: remove the right filter from hashtable - net_sched: keep alloc_hash updated after hash allocation - [arm64,armhf] net: stmmac: dwmac-rk: fix error path in rk_gmac_probe - slcan: not call free_netdev before rtnl_unlock in slcan_open - bnxt_en: fix memory leaks in bnxt_dcbnl_ieee_getets() - bnxt_en: Reset rings if ring reservation fails during open() - net: ip_gre: Separate ERSPAN newlink / changelink callbacks - net: ip_gre: Accept IFLA_INFO_DATA-less configuration - r8169: re-enable MSI on RTL8168c - tcp: repair: fix TCP_QUEUE_SEQ implementation - vxlan: check return value of gro_cells_init() - cgroup-v1: cgroup_pidlist_next should update position index - nfs: add minor version to nfs_server_key for fscache - drivers/of/of_mdio.c:fix of_mdiobus_register() - cgroup1: don't call release_agent when it is "" - [s390x] qeth: handle error when backing RX buffer - scsi: ipr: Fix softlockup when rescanning devices in petitboot - mac80211: Do not send mesh HWMP PREQ if HWMP is disabled - [x86] ftrace: Anotate text_mutex split between ftrace_arch_code_modify_post_process() and ftrace_arch_code_modify_prepare() - [x86] Input: synaptics - enable RMI on HP Envy 13-ad105ng - Input: avoid BIT() macro usage in the serio.h UAPI header - ceph: check POOL_FLAG_FULL/NEARFULL in addition to OSDMAP_FULL/NEARFULL - perf probe: Do not depend on dwfl_module_addrsym() - scsi: sd: Fix optimal I/O size for devices that change reported values - nl80211: fix NL80211_ATTR_CHANNEL_WIDTH attribute type - mac80211: mark station unauthorized before key removal - [x86] gpiolib: acpi: Correct comment for HP x2 10 honor_wakeup quirk - gpiolib: acpi: Rework honor_wakeup option into an ignore_wake option - [x86] gpiolib: acpi: Add quirk to ignore EC wakeups on HP x2 10 BYT + AXP288 model - genirq: Fix reference leaks on irq affinity notifiers - xfrm: handle NETDEV_UNREGISTER for xfrm device - vti[6]: fix packet tx through bpf_redirect() in XinY cases - RDMA/mlx5: Block delay drop to unprivileged users - xfrm: fix uctx len check in verify_sec_ctx_len - xfrm: add the missing verify_sec_ctx_len check in xfrm_add_acquire - xfrm: policy: Fix doulbe free in xfrm_policy_timer - afs: Fix some tracing details - netfilter: flowtable: reload ip{v6}h in nf_flow_tuple_ip{v6} - netfilter: nft_fwd_netdev: validate family and chain type - bpf/btf: Fix BTF verification of enum members in struct/union - vti6: Fix memory leak of skb if input policy check fails - mac80211: add option for setting control flags - mac80211: set IEEE80211_TX_CTRL_PORT_CTRL_PROTO for nl80211 TX - USB: serial: option: add support for ASKEY WWHC050 - USB: serial: option: add BroadMobi BM806U - USB: serial: option: add Wistron Neweb D19Q1 - USB: cdc-acm: restore capability check order - USB: serial: io_edgeport: fix slab-out-of-bounds read in edge_interrupt_callback - [arm64,armhf] usb: musb: fix crash with highmen PIO and usbmon - media: flexcop-usb: fix endpoint sanity check - media: usbtv: fix control-message timeouts - staging: rtl8188eu: Add ASUS USB-N10 Nano B1 to device table - [x86] ahci: Add Intel Comet Lake H RAID PCI ID - libfs: fix infoleak in simple_attr_read() - media: ov519: add missing endpoint sanity checks (CVE-2020-11608) - media: dib0700: fix rc endpoint lookup - media: stv06xx: add missing descriptor sanity checks (CVE-2020-11609) - media: xirlink_cit: add missing descriptor sanity checks (CVE-2020-11668) - mac80211: Check port authorization in the ieee80211_tx_dequeue() case - mac80211: fix authentication with iwlwifi/mvm - vt: selection, introduce vc_is_sel - vt: ioctl, switch VT_IS_IN_USE and VT_BUSY to inlines - vt: switch vt_dont_switch to bool - vt: vt_ioctl: remove unnecessary console allocation checks - vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console - vt: vt_ioctl: fix use-after-free in vt_in_use() - [x86] platform: pmc_atom: Add Lex 2I385SW to critclk_systems DMI table - bpf: Explicitly memset the bpf_attr structure - bpf: Explicitly memset some bpf info structures declared on the stack - [x86] gpiolib: acpi: Add quirk to ignore EC wakeups on HP x2 10 CHT + AXP288 model - perf map: Fix off by one in strncpy() size argument - [armel] bcm2835-rpi-zero-w: Add missing pinctrl name - [armhf] dts: N900: fix onenand timings https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.115 - ipv4: fix a RCU-list lock in fib_triestat_seq_show - net, ip_tunnel: fix interface lookup with no key - sctp: fix refcount bug in sctp_wfree - sctp: fix possibly using a bad saddr with a given dst - nvme-rdma: Avoid double freeing of async event data - drm/bochs: downgrade pci_request_region failure from error to warning - drm/amdgpu: fix typo for vcn1 idle check - [x86] tools/power turbostat: Fix gcc build warnings - [x86] tools/power turbostat: Fix missing SYS_LPI counter on some Chromebooks - [armhf] drm/etnaviv: replace MMU flush marker with flush sequence - media: rc: IR signal for Panasonic air conditioner too long - misc: rtsx: set correct pcr_ops for rts522A - [x86] mei: me: add cedar fork device ids - ALSA: hda/ca0132 - Add Recon3Di quirk to handle integrated sound on EVGA X99 Classified motherboard - rxrpc: Fix sendmsg(MSG_WAITALL) handling - net: Fix Tx hash bound checking - padata: always acquire cpu_hotplug_lock before pinst->lock - mm: mempolicy: require at least one nodeid for MPOL_PREFERRED (CVE-2020-11565) - ipv6: don't auto-add link-local address to lag ports - [armhf] net: dsa: bcm_sf2: Do not register slave MDIO bus with OF - [armhf] net: dsa: bcm_sf2: Ensure correct sub-node is parsed - net: phy: micrel: kszphy_resume(): add delay after genphy_resume() before accessing PHY registers - [arm64,armhf] net: stmmac: dwmac1000: fix out-of-bounds mac address reg setting - slcan: Don't transmit uninitialized stack data in padding (CVE-2020-11494) - random: always use batched entropy for get_random_u{32,64} - [arm64,armhf] usb: dwc3: gadget: Wrap around when skip TRBs - [armhf] hwrng: imx-rngc - fix an error path - [amd64] IB/hfi1: Call kobject_put() when kobject_init_and_add() fails - [amd64] IB/hfi1: Fix memory leaks in sysfs registration and unregistration - ceph: remove the extra slashes in the server path - ceph: canonicalize server path in place - RDMA/ucma: Put a lock around every call to the rdma_cm layer - RDMA/cma: Teach lockdep about the order of rtnl and lock - Bluetooth: RFCOMM: fix ODEBUG bug in rfcomm_dev_ioctl - RDMA/cm: Update num_paths in cma_resolve_iboe_route error flow - fbcon: fix null-ptr-deref in fbcon_switch - [arm64] clk: qcom: rcg: Return failure for RCG update - [arm64] drm/msm: stop abusing dma_map/unmap for cache - [arm64] Fix size of __early_cpu_boot_status - [arm64] rpmsg: glink: Remove chunk size word align warning - [arm64,armhf] usb: dwc3: don't set gadget->is_otg flag - drm_dp_mst_topology: fix broken drm_dp_sideband_parse_remote_dpcd_read() - [arm64] drm/msm: Use the correct dma_sync calls in msm_gem https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.116 - [armhf] dts: sun8i-a83t-tbs-a711: HM5065 doesn't like such a high voltage - [arm64,armhf] bus: sunxi-rsb: Return correct data when mixing 16-bit and 8-bit reads - [x86,arm64] hinic: fix a bug of waitting for IO stopped - [x86,arm64] hinic: fix wrong para of wait_for_completion_timeout - cxgb4/ptp: pass the sign of offset delta in FW CMD - qlcnic: Fix bad kzalloc null test - [armhf] cpufreq: imx6q: Fixes unwanted cpu overclocking on i.MX6ULL - [arm64] media: venus: hfi_parser: Ignore HEVC encoding for V1 - null_blk: Fix the null_add_dev() error path - null_blk: Handle null_add_dev() failures properly - null_blk: fix spurious IO errors after failed past-wp access - xhci: bail out early if driver can't accress host in resume - [x86] Don't let pgprot_modify() change the page encryption bit - block: keep bdi->io_pages in sync with max_sectors_kb for stacked devices - sched: Avoid scale real weight down to zero - libata: Remove extra scsi_host_put() in ata_scsi_add_hosts() - [amd64,x86] pstore/platform: fix potential mem leak if pstore_init_fs failed - gfs2: Don't demote a glock until its revokes are written - [i386] efi/x86: Ignore the memory attributes table on i386 - genirq/irqdomain: Check pointer in irq_domain_alloc_irqs_hierarchy() - block: Fix use-after-free issue accessing struct io_cq - [arm64,armhf] usb: dwc3: core: add support for disabling SS instances in park mode - [arm64,armhf] irqchip/gic-v4: Provide irq_retrigger to avoid circular locking dependency - md: check arrays is suspended in mddev_detach before call quiesce operations - firmware: fix a double abort case with fw_load_sysfs_fallback - block, bfq: fix use-after-free in bfq_idle_slice_timer_body - btrfs: qgroup: ensure qgroup_rescan_running is only set when the worker is at least queued - btrfs: remove a BUG_ON() from merge_reloc_roots() - btrfs: track reloc roots based on their commit root bytenr - IB/mlx5: Replace tunnel mpls capability bits for tunnel_offloads - uapi: rename ext2_swab() to swab() and share globally in swab.h - slub: improve bit diffusion for freelist ptr obfuscation - ASoC: fix regwmask - ASoC: dapm: connect virtual mux with default value - ASoC: dpcm: allow start or stop during pause for backend - [x86] ASoC: topology: use name_prefix for new kcontrol - usb: gadget: f_fs: Fix use after free issue as part of queue failure - usb: gadget: composite: Inform controller driver of self-powered - ALSA: hda: Add driver blacklist - ALSA: hda: Fix potential access overflow in beep helper - ALSA: ice1724: Fix invalid access for enumerated ctl items - ALSA: pcm: oss: Fix regression by buffer overflow fix - ALSA: doc: Document PC Beep Hidden Register on Realtek ALC256 - ALSA: hda/realtek - Set principled PC Beep configuration for ALC256 - [x86] ALSA: hda/realtek - Remove now-unnecessary XPS 13 headphone noise fixups - [x86] ALSA: hda/realtek - Add quirk for MSI GL63 - [x86] acpi: ignore unspecified bit positions in the ACPI global lock field - nvme-fc: Revert "add module to ops template to allow module references" - nvme: Treat discovery subsystems as unique subsystems - PCI: pciehp: Fix indefinite wait on sysfs requests - PCI/ASPM: Clear the correct bits when enabling L1 substates - PCI: Add boot interrupt quirk mechanism for Xeon chipsets - tpm: Don't make log failures fatal - tpm: tpm1_bios_measurements_next should increase position index - tpm: tpm2_bios_measurements_next should increase position index - KEYS: reaching the keys quotas correctly - [amd64,x86] pstore: pstore_ftrace_seq_next should increase position index - [mips*el] tlbex: Fix LDDIR usage in setup_pw() for Loongson-3 - [mips*/octeon] irq: Fix potential NULL pointer dereference - ath9k: Handle txpower changes even when TPC is disabled - signal: Extend exec_id to 64bits - [i386] x86/entry/32: Add missing ASM_CLAC to general_protection entry - [x86] KVM: nVMX: Properly handle userspace interrupt window request - [s390x] KVM: vsie: Fix region 1 ASCE sanity shadow address checks - [s390x] KVM: vsie: Fix delivery of addressing exceptions - [x86] KVM: Allocate new rmap and large page tracking when moving memslot - [x86] KVM: VMX: Always VMCLEAR in-use VMCSes during crash with kexec support - [x86] KVM: Gracefully handle __vmalloc() failure during VM allocation - [x86] KVM: VMX: fix crash cleanup when KVM wasn't used - CIFS: Fix bug which the return value by asynchronous read is error - Btrfs: fix crash during unmount due to race with delayed inode workers - btrfs: set update the uuid generation as soon as possible - btrfs: drop block from cache on error in relocation - btrfs: fix missing file extent item for hole after ranged fsync - btrfs: fix missing semaphore unlock in btrfs_sync_file - [powerpc*] pseries: Drop pointless static qualifier in vpa_debugfs_init() - [x86] speculation: Remove redundant arch_smt_update() invocation - mm: Use fixed constant in page_frag_alloc instead of size + 1 - dm writecache: add cond_resched to avoid CPU hangs - [s390x] scsi: zfcp: fix missing erp_lock in port recovery trigger for point-to-point - [arm64] armv8_deprecated: Fix undef_hook mask for thumb setend - [armhf] drm/etnaviv: rework perfmon query infrastructure - [powerpc*] pseries: Avoid NULL pointer dereference when drmem is unavailable - NFS: Fix a page leak in nfs_destroy_unlinked_subrequests() - ext4: fix a data race at inode->i_blocks - fs/filesystems.c: downgrade user-reachable WARN_ONCE() to pr_warn_once() - ocfs2: no need try to truncate file beyond i_size - [s390x] diag: fix display of diagnose call statistics - [x86] Input: i8042 - add Acer Aspire 5738z to nomux list - kmod: make request_module() return an error when autoloading is disabled - [powerpc*] cpufreq: powernv: Fix use-after-free - hfsplus: fix crash and filesystem corruption when deleting files - libata: Return correct status in sata_pmp_eh_recover_pm() when ATA_DFLAG_DETACH is set - ipmi: fix hung processes in __get_guid() - xen/blkfront: fix memory allocation flags in blkfront_setup_indirect() - [powerpc*] powernv/idle: Restore AMR/UAMOR/AMOR after idle (CVE-2020-11669) - [powerpc*] 64/tm: Don't let userspace set regs->trap via sigreturn - [powerpc*] hash64/devmap: Use H_PAGE_THP_HUGE when setting up huge devmap PTE entries - [powerpc*] xive: Use XIVE_BAD_IRQ instead of zero to catch non configured IPIs - [powerpc*] kprobes: Ignore traps that happened in real mode - scsi: mpt3sas: Fix kernel panic observed on soft HBA unplug - [powerpc*] Add attributes for setjmp/longjmp - [powerpc*] Make setjmp/longjmp signature standard - btrfs: use nofs allocations for running delayed items - dm zoned: remove duplicate nr_rnd_zones increase in dmz_init_zone() - drm/dp_mst: Fix clearing payload state on topology disable - drm: Remove PageReserved manipulation from drm_pci_alloc - ftrace/kprobe: Show the maxactive number on kprobe_events - [armhf] etnaviv: perfmon: fix total and idle HI cyleces readout - [amd64] efi/x86: Fix the deletion of variables in mixed mode https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.117 - [amd64,arm64] amd-xgbe: Use __napi_schedule() in BH context - net: ipv6: do not consider routes via gateways for anycast address check - net: revert default NAPI poll timeout to 2 jiffies - [arm64,armhf] net: stmmac: dwmac-sunxi: Provide TX and RX fifo sizes - ovl: fix value of i_ino for lower hardlink corner case - scsi: ufs: Fix ufshcd_hold() caused scheduling while atomic - jbd2: improve comments about freeing data buffers whose page mapping is NULL - ext4: fix incorrect group count in ext4_fill_super error message - ext4: fix incorrect inodes per group in error message - [x86] ASoC: Intel: mrfld: fix incorrect check on p->sink - [x86] ASoC: Intel: mrfld: return error codes when an error occurs - ALSA: usb-audio: Filter error from connector kctl ops, too - ALSA: usb-audio: Don't override ignore_ctl_error value from the map - ALSA: usb-audio: Don't create jack controls for PCM terminals - ALSA: usb-audio: Check mapping at creating connector controls, too - keys: Fix proc_keys_next to increase position index - tracing: Fix the race between registering 'snapshot' event trigger and triggering 'snapshot' operation - btrfs: check commit root generation in should_ignore_root - mac80211_hwsim: Use kstrndup() in place of kasprintf() - [arm64,armhf] usb: dwc3: gadget: don't enable interrupt when disabling endpoint - [arm64,armhf] usb: dwc3: gadget: Don't clear flags before transfer ended - ext4: do not zeroout extents beyond i_disksize - [x86] kvm: Host feature SSBD doesn't imply guest feature SPEC_CTRL_SSBD - scsi: target: fix hang when multiple threads try to destroy the same iscsi session - [x86] microcode/AMD: Increase microcode PATCH_MAX_SIZE - wil6210: check rx_buff_mgmt before accessing it - wil6210: ignore HALP ICR if already handled - wil6210: add general initialization/size checks - wil6210: make sure Rx ring sizes are correlated - wil6210: remove reset file from debugfs - mm/vmalloc.c: move 'area->pages' after if statement https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.118 - [armel,armhf] bpf: Fix offset overflow for BPF_MEM BPF_DW - scsi: sg: add sg_remove_request in sg_common_write - ext4: use non-movable memory for superblock readahead - [arm64,armhf] watchdog: sp805: fix restart handler - [armel,armhf] arm, bpf: Fix bugs with ALU64 {RSH, ARSH} BPF_K shift by 0 - netfilter: nf_tables: report EOPNOTSUPP on unsupported flags/object type - [arm64] irqchip/mbigen: Free msi_desc on device teardown - ALSA: hda: Don't release card at firmware loading error - of: overlay: kmemleak in dup_and_fixup_symbol_prop() - [x86] Hyper-V: Report crash register data or kmsg before running crash kernel - rbd: avoid a deadlock on header_rwsem when flushing notifies - rbd: call rbd_dev_unprobe() after unwatching and flushing notifies - xsk: Add missing check on user supplied headroom size - [x86] Hyper-V: Unload vmbus channel in hv panic callback - [x86] Hyper-V: Free hv_panic_page when fail to register kmsg dump - [x86] Hyper-V: Trigger crash enlightenment only once during system crash. - [x86] Hyper-V: Report crash register data when sysctl_record_panic_msg is not set - [x86] Hyper-V: Report crash data in die() when panic_on_oops is set - power: supply: bq27xxx_battery: Silence deferred-probe error - [arm64,armhf] clk: tegra: Fix Tegra PMC clock out parents - [armhf] soc: imx: gpc: fix power up sequencing - NFSv4/pnfs: Return valid stateids in nfs_layout_find_inode_by_stateid() - NFS: direct.c: Fix memory leak of dreq when nfs_get_lock_context fails - [s390x] cpuinfo: fix wrong output when CPU0 is offline - [s390x] cpum_sf: Fix wrong page count in error message - ext4: do not commit super on read-only bdev - cifs: Allocate encryption header through kmalloc - include/linux/swapops.h: correct guards for non_swap_entry() - percpu_counter: fix a data race at vm_committed_as - [s390x] KVM: vsie: Fix possible race when shadowing region 3 tables - [x86] ACPI: fix CPU hotplug deadlock - [amd64] drm/amdkfd: kfree the wrong pointer - NFS: Fix memory leaks in nfs_pageio_stop_mirroring() - f2fs: fix NULL pointer dereference in f2fs_write_begin() - [arm*] drm/vc4: Fix HDMI mode validation - [amd64] iommu/vt-d: Fix mm reference leak - power: supply: axp288_fuel_gauge: Broaden vendor check for Intel Compute Sticks. - libnvdimm: Out of bounds read in __nd_ioctl() - f2fs: fix to wait all node page writeback - [armhf] net: dsa: bcm_sf2: Fix overflow checks - fbdev: potential information leak in do_fb_ioctl() - mtd: lpddr: Fix a double free in probe() - mtd: phram: fix a double free issue in error path - KEYS: Don't write out to userspace while holding key semaphore - bpf: fix buggy r0 retval refinement for tracing helpers . [ Salvatore Bonaccorso ] * Refresh "Revert "objtool: Fix CONFIG_STACK_VALIDATION=y warning for out-of-tree modules"" for context changes in 4.19.99 * Refresh "ARM: dts: bcm283x: Correct vchiq compatible string" for context changes in 4.19.99 * Drop "tools/lib/api/fs/fs.c: Fix misuse of strncpy()" * Refresh "net: ena: add MAX_QUEUES_EXT get feature admin command" for context changes in 4.19.108 * [rt] Update to 4.19.115-rt48: - Revert "genirq: Do not invoke the affinity callback via a workqueue on RT" * [rt] Refresh "pci/switchtec: Don't use completion's wait queue" for context changes in 4.19.116 * Refresh "firmware: Remove redundant log messages from drivers" for context changes in 4.19.118 * f2fs: fix to avoid memory leakage in f2fs_listxattr (CVE-2020-0067) * net: ipv6: add net argument to ip6_dst_lookup_flow * net: ipv6_stub: use ip6_dst_lookup_flow instead of ip6_dst_lookup (CVE-2020-1749) * blktrace: Protect q->blk_trace with RCU (CVE-2019-19768) * blktrace: fix dereference after null check . [ Ben Hutchings ] * [x86] Drop "Add a SysRq option to lift kernel lockdown" (Closes: #947021) - This patch allowed remotely disabling lockdown using usbip - Lockdown can be disabled by running "mokutil --disable-validation", rebooting, and confirming the change when prompted * debian/README.source: Refer to upload checklist in kernel-team.git * Bump ABI to 9 . [ YunQiang Su ] * [mips*] enable CONFIG_MIPS_O32_FP64_SUPPORT. * [mips*] enable CONFIG_CPU_HAS_MSA except octeon. . [ Steve McIntyre ] * [arm64] Include the Hisilicon Hibmc drm driver in fb-modules (Closes: #951274) . [ Noah Meyerhans ] * [cloud] Enable CONFIG_KSM (Closes: #955366) linux-signed-i386 (4.19.98+1+deb10u1) buster-security; urgency=high . * Sign kernel from linux 4.19.98-1+deb10u1 . * [x86] KVM: nVMX: Don't emulate instructions in guest mode (CVE-2020-2732) * do_last(): fetch directory ->i_mode and ->i_uid before it's too late (CVE-2020-8428) * vfs: fix do_last() regression * vhost: Check docket sk_family instead of call getname (CVE-2020-10942) * mm: mempolicy: require at least one nodeid for MPOL_PREFERRED (CVE-2020-11565) * [s390x] mm: fix page table upgrade vs 2ndary address mode accesses (CVE-2020-11884) lwip (2.0.3-3+deb10u1) buster; urgency=high . * Fix CVE-2020-8597 lxc-templates (3.0.4-0+deb10u1) buster; urgency=medium . * New upstream release 3.0.4 * d/lxc-templates.lintian-overrides: Disable warning for access to dpkg DB * d/p/0001: [lxc-debian] Handle languages that are only UTF-8 encoded (Closes: #950840) mailman (1:2.1.29-1+deb10u1) buster-security; urgency=high . * Upload to buster for security issue. * Fix stored cross site scripting in attachment extensions. manila (1:7.0.0-1+deb10u1) buster; urgency=medium . * CVE-2020-9543: Manila allows other project users to view, update, delete, or share resources that do not belong to them. Applied upstream patch: share_networks: enable project_only API only (Closes: #953581). mediawiki (1:1.31.7-1~deb10u1) buster-security; urgency=medium . * New upstream version 1.31.7, fixing CVE-2020-10960. CVE-2020-10960 does not affect this version of MediaWiki. * A hardening fix was included for the OATHAuth extension to limit access of user-controlled JavaScript. mediawiki (1:1.31.6-1) unstable; urgency=medium . * New upstream version 1.31.6, fixing CVE-2019-19709. * Drop Postgres patches merged upstream * Suppress a bunch of lintian warnings that are ignored on purpose * Sync d/upstream/signing-key.asc with upstream * autopkgtests: set allow-stderr for all tests that use sudo. Thanks to Mathieu Trudel-Lapierre for reporting and fixing in Ubuntu. (Closes: #946665) megatools (1.10.2-1+deb10u1) buster; urgency=medium . * debian/patches/support-new-links.patch: - Add support for the new format of mega.nz links. mew (1:6.8-4+deb10u1) buster; urgency=medium . * New patch 070_checkhost.patch to enable checkHost for stunnel (closes: #950411) mew-beta (7.0.50~6.8+0.20190228-1+deb10u1) buster; urgency=medium . * New patch 070_checkhost.patch to enable checkHost for stunnel (closes: #950412) ncbi-blast+ (2.8.1-1+deb10u1) buster; urgency=medium . * debian/rules: DEB_CONFIGURE_EXTRA_FLAGS += --without-sse42. (Closes: #951280.) network-manager-ssh (1.2.10-1+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Privilege escalation because extra options are mishandled (CVE-2020-9355) node-anymatch (2.0.0-1+deb10u1) buster; urgency=medium . * Team upload * Minimize required dependencies (Closes: #950850) node-dot (1.1.1-1+deb10u1) buster; urgency=medium . * Team upload * Add CVE-2020-8141 test * Prevent code execution after prototype pollution (Closes: CVE-2020-8141) node-dot-prop (4.1.1-1+deb10u1) buster; urgency=medium . * Team upload * Add fix for prototype pollution (Closes: CVE-2020-8116) node-knockout (3.4.2-2+deb10u1) buster; urgency=medium . * Team upload * Fix bad escaping for old MSIE (Closes: #943560, CVE-2019-14862) node-mongodb (3.1.13+~3.1.11-2+deb10u1) buster; urgency=medium . * Throw if invalid _bsontype is detected (Closes: CVE-2019-2391, CVE-2020-7610) node-yargs-parser (11.1.1-1+deb10u1) buster; urgency=medium . * Team upload * Fix prototype pollution and add test (Closes: CVE-2020-7608) nodejs (10.19.0~dfsg1-1) buster-security; urgency=medium . * New upstream version 10.19.0~dfsg1 * Delete applied ssl 1.1.1 compatibility patches * Revert upstream changes to stay compatible with stable libuv1: + uv_os_uname is not available + test-dgram-address uv returns EINVAL, not EBADF * Never run tests in parallel to avoid memory exhaustion * Use embedded nghttp2 as upstream rely that much on having an updated version of it. * Avoid two tests to cause a FTBFS (Closes #919588) * Patch for compatibility with libuv1 from stable * uv in stable expects EINVAL, not EBADF * Link to atomic using a patch, LDFLAGS is not enough * Exclude brotli from deps, use system-installed one + B-D brotli + use upstream patch nodejs (10.19.0~dfsg-3) unstable; urgency=medium . * Upstream fix (backward-compatible) for ssl 1.1.1e nodejs (10.19.0~dfsg-2) unstable; urgency=medium . * Install acorn, acorn-walk deps * Patch to support acorn 6 nodejs (10.19.0~dfsg-1) unstable; urgency=medium . * New upstream version 10.19.0~dfsg * Use shared libhttp-parser again * b-d acorn and acorn-walk and fix file install nodejs (10.17.0~dfsg-2) unstable; urgency=medium . * Link to atomic using a patch, LDFLAGS is not enough This is at least needed on mipsel. nodejs (10.17.0~dfsg-1) unstable; urgency=medium . * New upstream version 10.17.0~dfsg nodejs (10.16.3~dfsg-1) unstable; urgency=medium . * New upstream version 10.16.3~dfsg (Closes: #934885) * Avoid two tests to cause a FTBFS (Closes: #919588) * Delete applied ssl 1.1.1 compatibility patches * Never run tests in parallel to avoid memory exhaustion * README: match current modules search paths (Closes: #939001) * Fix make-doc patch, simplify make using NODE_PATH * B-D pkg-js-tools * Tighten dep on libuv1 version nodejs (10.15.3~dfsg-1) experimental; urgency=medium . * New upstream version 10.15.3~dfsg npm (5.8.0+ds6-4+deb10u1) buster; urgency=medium . * Add patches to fix arbitrary path access (Closes: CVE-2019-16775, CVE-2019-16776, CVE-2019-16777) nvidia-graphics-drivers (418.113-1) buster; urgency=medium . * New upstream long lived branch release 418.113 (2019-11-05). - Updated the Module.symvers sanity check, which is part of the NVIDIA kernel module build process, to accommodate the recent addition of a new field in the Module.symvers file format. This fixes the error "The Module.symvers file is missing [...]" seen during driver installation or DKMS rebuilds with Linux 5.4 RC kernels. - Fixed a bug that prevented NVIDIA GPUs from entering the low-power D3 state when entering suspend-to-idle (s2idle). Note that on some systems this may expose an existing timing issue in the Linux kernel; see the "Known Issues and Workarounds" section of the "Configuring Power Management Support" chapter of the README for more details. . [ Andreas Beckmann ] * Update nv-readme.ids. * Refresh patches. * debian/gen-control.pl: Support substitutions in the Architecture field and skip packages with empty or commented Architecture field (430.50-2). * Prepare infrastructure for packaging Tesla 418 driver releases (available for amd64 (including some i386 libs) and ppc64el) (430.50-2). * Create and commit tarball symlinks for legacy branches (430.64-1). * nvidia-detect: Add PCI ID list for 418.74 in buster (430.64-2). * nvidia-detect: Add support for Tesla 418 drivers (430.64-2). * nvidia-detect: The 340xx legacy driver will not be in bullseye (430.64-5). * Allow alternative libnvidia-{tesla,legacy-*}-ml1 packages to substitute libnvidia-ml1 (430.64-2). - Add Provides: libnvidia-ml.so.1 (= ${nvidia:Version}). - Generate alternative versioned dependency on libnvidia-ml.so.1 through the symbols file. * Allow alternative libnvidia-{tesla,legacy-*}-cuda1 packages to substitute libcuda1 in third-party packages (430.64-3). - Add Provides: libcuda.so.1 (= ${nvidia:Version}). - Generate alternative versioned dependency on libcuda.so.1 through the symbols file. * Use substitution to keep Standards-Version in sync (430.64-5). * Insert '-' between suffix ending with digit and SOVERSION (435.21-3). * Rename "legacy" variables to more generic "variant" (440.44-2). * bug-control: Report information about more (virtual) packages (440.64-2). * Prepare infrastructure for packaging Tesla 440 driver releases (available for amd64 (including some i386 libs) and ppc64el) (440.64-2). * Bump Standards-Version to 4.5.0. No changes needed. * Update lintian overrides. * Upload to buster. nvidia-graphics-drivers (418.88-1) unstable; urgency=medium . * New upstream long lived branch release 418.88 (2019-07-29). - Added support for the following GPUs: Quadro P520, Quadro RTX 3000, Quadro RTX 3000 with Max-Q Design, Quadro RTX 4000 with Max-Q Design, Quadro RTX 5000 with Max-Q Design, Quadro T1000, Quadro T2000. - Fixed a bug, introduced in 415.13, that caused audio over DisplayPort to not work in some configurations. * Improved compatibility with recent Linux kernels. (Closes: #934344) . [ Andreas Beckmann ] * Update nv-readme.ids. nvidia-graphics-drivers-legacy-390xx (390.132-3~deb10u1) buster; urgency=medium . * Rebuild for buster. nvidia-graphics-drivers-legacy-390xx (390.132-2) unstable; urgency=medium . * Create and commit tarball symlinks for legacy branches (430.64-1). * Allow alternative libnvidia-{tesla,legacy-*}-ml1 packages to substitute libnvidia-ml1 (430.64-2). - Add Provides: libnvidia-ml.so.1 (= ${nvidia:Version}). - Generate alternative versioned dependency on libnvidia-ml.so.1 through the symbols file. * Allow alternative libnvidia-{tesla,legacy-*}-cuda1 packages to substitute libcuda1 in third-party packages (430.64-3). - Add Provides: libcuda.so.1 (= ${nvidia:Version}). - Generate alternative versioned dependency on libcuda.so.1 through the symbols file. * Use substitution to keep Standards-Version in sync (430.64-5). * Insert '-' between suffix ending with digit and SOVERSION (435.21-3). * Rename "legacy" variables to more generic "variant" (440.44-2). * Bump Standards-Version to 4.5.0. No changes needed. nvidia-graphics-drivers-legacy-390xx (390.132-1) unstable; urgency=medium . * New upstream legacy branch release 390.132 (2019-11-08). - Fixed kernel module build problems with Linux kernel 5.4.0 release candidates. - Updated nvidia-bug-report.sh to collect information about X server crashes from coredumpctl, when available. * New upstream legacy branch release 340 series. - Updated the nvidia-drm kernel module for compatibility with the removal of the DRIVER_PRIME flag in recent Linux kernel versions. . [ Andreas Beckmann ] * Refresh patches. nvidia-graphics-drivers-legacy-390xx (390.129-2) unstable; urgency=medium . * Add mobile Kepler GPUs to supported EoL models. The are dropped from the mainline driver in the 430 series. https://nvidia.custhelp.com/app/answers/detail/a_id/4779 https://nvidia.custhelp.com/app/answers/detail/a_id/4788 * debian/gen-control.pl: Support substitutions in the Architecture field and skip packages with empty or commented Architecture field. * Bump Standards-Version to 4.4.1. No changes needed. nvidia-graphics-drivers-legacy-390xx (390.129-1) unstable; urgency=medium . * New upstream legacy branch release 390.129 (2019-07-29). - Improved nvidia-bug-report.sh to grab the output of the `vulkaninfo` command when it is available. * Improved compatibility with recent Linux kernels. * New upstream legacy branch release 340 series. - Updated nvidia-bug-report.sh to search the systemd journal for gdm-x-session logs. . [ Andreas Beckmann ] * Bump Standards-Version to 4.4.0. No changes needed. nvidia-graphics-drivers-legacy-390xx (390.116-2) unstable; urgency=medium . [ Kevin Locke ] * Backport changes from 418.74 and 430.14 to support building the module for Linux 5.1 and 5.2. (Closes: #928634) nvidia-settings-legacy-340xx (340.108-1~deb10u1) buster; urgency=medium . * Rebuild for buster. . nvidia-settings-legacy-340xx (340.108-1) unstable; urgency=medium . * New upstream release 340.108. - Fixed a bug that could prevent nvidia-xconfig from disabling the X Composite extension on version 1.20 of the X.org X server. (390.116-1) * Bump Standards-Version to 4.5.0. No changes needed. oar (2.5.8-1+deb10u1) buster; urgency=medium . * Revert to stretch behavior for Storable::dclone perl function (Closes: #942467) opam (2.0.3-1+deb10u1) buster; urgency=medium . * Team upload * Prefer mccs over aspcud (Closes: #908203) openldap (2.4.47+dfsg-3+deb10u2) buster-security; urgency=high . * Fix slapd to limit depth of nested expressions in search filters (ITS#9202) openldap (2.4.47+dfsg-3+deb10u2~bpo9+1) stretch-backports; urgency=medium . * Rebuild for stretch-backports. * Revert "Fix build with Heimdal 7.2.0" as stretch contains a lower version of heimdal. . openldap (2.4.47+dfsg-3+deb10u2) buster-security; urgency=high . * Fix slapd to limit depth of nested expressions in search filters (ITS#9202) opensmtpd (6.0.3p1-5+deb10u4) buster-security; urgency=high . * Fix LPE and RCE vulnerability (Closes: #952453) (CVE-2020-8794) An out of bounds read in smtpd allows an attacker to inject arbitrary commands into the envelope file which are then executed as root. Separately, missing privilege revocation in smtpctl allows arbitrary commands to be run with the _smtpq group. OpenBSD 6.6 errata 021: https://ftp.openbsd.org/pub/OpenBSD/patches/6.6/common/021_smtpd_envelope.patch.sig openssl (1.1.1d-0+deb10u3) buster-security; urgency=medium . * CVE-2020-1967 (Segmentation fault in SSL_check_chain). openvswitch (2.10.0+2018.08.28+git.8ca7c82b7d+ds1-12+deb10u2) buster; urgency=medium . * Fixed debian/ifupdown.sh typo: ovs_vsctl -> ovs-vsctl. * Add patch to fix ovs-vswitchd dying: - Fix_vswitchd_abort_when_a_port_is_added_and_the_controller_is_down.patch orocos-kdl (1.4.0-7+deb10u1) buster; urgency=medium . * Add patch for python3 std string conversion (Closes: #956254) owfs (3.2p3+dfsg1-2+deb10u1) buster; urgency=medium . * Non-maintainer upload. * Drop python3-ow, python3-ownet: Unused, contained python2 code. (Closes: #943612) pango1.0 (1.42.4-8~deb10u1) buster; urgency=medium . * Team upload * Merge changes from 1.42.4-8 into buster - d/gbp.conf, d/control: Set packaging branch to debian/buster . pango1.0 (1.42.4-8) unstable; urgency=medium . * Team upload * d/p/Fix-crash-in-pango_fc_font_key_get_variations-when-key-is.patch: Backport crash fix from 1.44.x (Closes: #898960) * d/tests/build: Use correct compiler for proposed autopkgtest cross-architecture testing support, based on a patch for clutter-1.0 by Steve Langasek * d/tests/build: Fix shellcheck warnings * d/tests/build: Remove trailing whitespace * d/tests/build: Fail if using an undefined variable ("unofficial strict mode") * d/tests/build: Mark as superficial * d/gbp.conf, d/control: Use debian/unstable, upstream/1.42.x branches pango1.0 (1.42.4-7) unstable; urgency=medium . * Team upload * d/p/bidi-Be-safer-against-bad-input.patch: Fix heap overflow when acting on malformed UTF-8. (Closes: #933860; CVE-2019-1010238) pgcli (1.9.1-3+deb10u1) buster; urgency=medium . * Non-maintainer upload. . [ Lennart Weller ] * pkg-resources hard dependency for minimal systems (Closes: #944455) php-horde-data (2.1.4-5+deb10u1) buster; urgency=high . * Fix CVE-2020-8518: The Horde Application Framework contained a remote code execution vulnerability. An authenticated remote attacker could use this flaw to cause execution of uploaded CSV data. (Closes: #951537) php-horde-form (2.0.18-3.1+deb10u1) buster; urgency=high . * Fix CVE-2020-8866: The Horde Application Framework contained a remote code execution vulnerability. An authenticated remote attacker could use this flaw to upload arbitrary content to an arbitrary writable location on the server and potentially execute code in the context of the web server user. (Closes: #955020) php-horde-trean (1.1.9-3+deb10u1) buster; urgency=high . * Fix CVE-2020-8865: The Horde Application Framework contained a directory traversal vulnerability resulting from insufficient input sanitization. An authenticated remote attacker could use this flaw to execute code in the context of the web server user. (Closes: #955019) pillow (5.4.1-2+deb10u1) buster-security; urgency=medium . * CVE-2019-16865 CVE-2019-19911 CVE-2020-5311 CVE-2020-5312 CVE-2020-5313 postfix (3.4.10-0+deb10u1) buster; urgency=medium . [Wietse Venema] . * 3.4.10 - Bugfix (introduced: Postfix 2.3): panic with Postfix multi-Milter configuration during MAIL FROM. Milter client state was not properly reset after one of the Milters failed. Reported by WeiYu Wu. postfix (3.4.9-1) unstable; urgency=medium . [Scott Kitterman] . * Correct Debian's smtp (8) man page name in d/p/debian-man-name.diff for lmtp. Closes: #920356 * Fix d/init.d running change so it works with multi-instance again - Thanks to jaroslav@thinline.cz for the fix. Closes: #944922 * Bump standards-version to 4.5.0 without further change * Switch from debian/compat to debhelper-compat and bump compat to 12 - Update debian/rules to use dh_installsystemd instead of dh_systemd_enable and dh_systemd_start - Update debian/rules for new example install path . [Wietse Venema] . * 3.4.9 postfix (3.4.9-0+10debu1) buster; urgency=medium . [Scott Kitterman] . * Correct Debian's smtp (8) man page name in d/p/debian-man-name.diff for lmtp. Closes: #920356 * Fix d/init.d running change so it works with multi-instance again - Thanks to jaroslav@thinline.cz for the fix. Closes: #944922 . [Wietse Venema] . * 3.4.9 - Bugfix (introduced: Postfix 3.1): support for smtp_dns_resolver_options was broken while adding support for negative DNS response caching in postscreen. Postfix was inadvertently changed to call res_query() instead of res_search(). Reported by Jaroslav Skarvada. File: dns/dns_lookup.c. . - Bugfix (introduced: Postfix 3.0): sanitize server responses before storing them in the verify database, to avoid Postfix warnings about malformed UTF8. File: verify/verify.c. . - Bugfix (introduced: Postfix 2.5): the Milter connect event macros were evaluated before the Milter connection itself had been negotiated. Problem reported by David Bürgin. Files: milter/milter.h, milter/milter.c, milter/milter8.c postfix (3.4.8-1) unstable; urgency=medium . [Scott Kitterman] . * Stop generating obsolete Upstream substvar * Bump standards-version to 4.4.1 without further change * Use -l instead of LD_LIBRARY_PATH for dh_shlibdeps * Check GPG signature when downloading new versions via uscan . [Wietse Venema] . * 3.4.8 postgresql-11 (11.7-0+deb10u1) buster-security; urgency=medium . * New upstream version. + Add missing permissions checks for ALTER ... DEPENDS ON EXTENSION. . Marking an object as dependent on an extension did not have any privilege check whatsoever. This oversight allowed any user to mark routines, triggers, materialized views, or indexes as droppable by anyone able to drop an extension. Require that the calling user own the specified object (and hence have privilege to drop it). (CVE-2020-1720) postgresql-11 (11.6-2~sid1) unstable; urgency=medium . * Move pg_config and pgxs to postgresql-client package to be able to test extension packages using only their native dependencies. (Closes: #944457) ppp (2.4.7-2+4.1+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * pppd: Fix bounds check in EAP code (CVE-2020-8597) (Closes: #950618) proftpd-dfsg (1.3.6-4+deb10u5) buster; urgency=medium . * Patch for upstream Issue #656 (Closes: #951412) * Patch for upstream Bug #4385 (Closes: #949622) proftpd-dfsg (1.3.6-4+deb10u4) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Ensure that we do not reuse already-destroyed memory pools during data transfers (CVE-2020-9273) (Closes: #951800) * Clear the data-transfer instigating command pool but keep a memory pool. Fixes regression in the %{transfer-status} LogFormat functionality. puma (3.12.0-2+deb10u1) buster; urgency=medium . * Team upload. * d/control (Vcs-Git): Add branch. * d/patches/CVE-2019-16770.patch: Add patch. - Backport fix for CVE-2019-16770 from upstream (closes: #946312). * d/patches/series: Add patch. purple-discord (0.9.2019.02.07.git.e5d9627-1+deb10u1) buster; urgency=medium . * Backport workaround for crashes in ssl_nss_read (Closes: #955635) python-bleach (3.1.2-0+deb10u1) buster-security; urgency=high . * New upstream security release (Closes: #954236) - Addresses CVE-2020-6816 python-bleach (3.1.1-1) unstable; urgency=high . * New upstream security release (Closes: #951907) * Temporarily disable tests due to #945522 in order to get this security update published python-bleach (3.1.1-0+deb10u1) buster-security; urgency=high . * New upstream security release (Closes: #951907) - Addresses CVE-2020-6802 python-bleach (3.1.0-2) unstable; urgency=medium . [ Ondřej Nový ] * Use debhelper-compat instead of debian/compat. * Bump Standards-Version to 4.4.1. . [ Sandro Tosi ] * Drop python2 support; Closes: #937614 python-django (1:1.11.28-1~deb10u1) buster-security; urgency=high . * New upstream security release. (Closes: #950581) . - CVE-2020-7471: Potential SQL injection via StringAgg(delimiter) . Django 1.11 before 1.11.28, 2.2 before 2.2.10, and 3.0 before 3.0.3 allows SQL Injection if untrusted data is used as a StringAgg delimiter (e.g., in Django applications that offer downloads of data as a series of rows with a user-specified column delimiter). By passing a suitably crafted delimiter to a contrib.postgres.aggregates.StringAgg instance, it was possible to break escaping and inject malicious SQL. python-oslo.utils (3.36.5-0+deb10u1) buster; urgency=medium . * CVE-2019-3866: Sensitive information leaked in mistral logs. Upgrade to the tip of the upstream stable/rocky branch (as the upstream patch would not otherwise apply). python-pysaml2 (4.5.0-4+deb10u1) buster-security; urgency=medium . * CVE-2020-5390: does not check that the signature in a SAML document is enveloped and thus signature wrapping is effective, i.e., it is affected by XML Signature Wrapping (XSW). Applied upstream patch: Fix XML Signature Wrapping (XSW) vulnerabilities (Closes: #949322). * Remove a test file that will fail past 2020-11-28 (Closes: #949227). * Add fix-importing-mock-in-py2.7.patch. * Add remove-test_switch_1.patch. python-reportlab (3.5.13-1+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Address remote code execution in colors.py (CVE-2019-17626) (Closes: #942763) qbittorrent (4.1.5-1+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Prevent command injection via "Run external program" function (CVE-2019-13640) (Closes: #932539) qemu (1:3.1+dfsg-8+deb10u5) buster-security; urgency=medium . * display-bochs-fix-pcie-support-CVE-2019-15034.patch Fix possible buffer overflow in BOCHS display PCI config space Closes: CVE-2019-15034 * vnc-fix-memory-leak-when-vnc-disconnect-CVE-2019-20382.patch Fix misuse of libz in VNC disconnect, leading to memory leak Closes: CVE-2019-20382 * scsi-lsi-exit-infinite-loop-while-executing-script-CVE-2019-12068.patch Fix possible infinite loop in lsi_execute_script (LSI SCSI adapter) Closes: CVE-2019-12068 * iscsi-fix-heap-buffer-overflow-in-iscsi_aio_ioctl_cb.patch Fix heap buffer overflow in iSCSI's iscsi_aio_ioctl_cb() * slirp-fix-use-afte-free-in-ip_reass-CVE-2020-1983.patch Fix another use-after-free in ip_reass() in SLIRP code Closes: CVE-2020-1983 qemu (1:3.1+dfsg-8+deb10u4) buster-security; urgency=medium . * acknowledge the last NMU by the Security Team * io-ensure-UNIX-client-doesn-t-unlink-server-socket.patch Closes: #946210 * slirp possible use-after-free in ip_reass(), slirp-ip_reass-fix-use-after-free-CVE-CVE-2019-15890.patch Closes: #939869, CVE-2019-15890 * slirp emulation fixes, Closes: CVE-2020-7039 tcp_emu-fix-OOB-access-CVE-2020-7039.patch slirp-use-correct-size-while-emulating-commands-CVE-2020-7039.patch slirp-use-correct-size-while-emulating-IRC-commands-CVE-2020-7039.patch * fix iscsi OOB heap access via an unexpected response of iSCSI Server, scsi-cap-block-count-from-GET-LBA-STATUS-CVE-2020-1711.patch Closes: #949731, CVE-2020-1711 qtbase-opensource-src (5.11.3+dfsg1-1+deb10u3) buster-security; urgency=high . [ Dmitry Shachnev ] * Backport fixes for two vulnerabilities: - CVE-2020-0569: Do not load plugin from the CWD. - CVE-2020-0570: Qt tries to load invalid library from CWD. rails (2:5.2.2.1+dfsg-1+deb10u1) buster; urgency=high . * Team upload. * Add patch to fix possible XSS vector in JS escape helper. (Fixes: CVE-2020-5267) (Closes: #954304) rake (12.3.1-3+deb10u1) buster; urgency=high . * Team upload * Add patch to use File.open explicitly. (Fixes: CVE-2020-8130) raspi3-firmware (1.20190215-1+deb10u3) buster; urgency=medium . * Fix dtb names mismatch in z50-raspi-firmware and add new option upstream_kernel=1 to the config.txt. These two changes allow for the correct boot on RPi families 1 and 0. Thanks to Valentin Vidic for the fix! (Closes: #939727) resource-agents (1:4.2.0-2+deb10u1) buster; urgency=medium . * debian/patches: drop xen-toolstack.patch * debian/patches: add ethmonitor-no-addr.patch (Closes: #927311) * debian/patches: add zfs-bashism.patch (Closes: #933398) rootskel (1.131+10u1) buster; urgency=medium . [ Steve McIntyre ] * Backport fix from unstable: Tweak how multiple consoles are used. If we detect that we're trying to run using preseeding, do *not* run on multiple consoles in parallel as that causes race conditions and weird behaviour. Instead, just run on the "preferred" console. Hopefully Closes: #940028, #932416 ruby-i18n (1.5.3-1+deb10u1) buster; urgency=medium . * Team upload. * Pick up patch from unstable to fix .gemspec created and shipped. . [ Antonio Terceiro ] * d/patches/strip_bundler.patch: Rename to d/patches/0001-disable-bundler-on-build-time-do-not-install-stuff-a.patch. * d/patches/0002-gemspec-prepend-local-directory-to-the-LOAD_PATH.patch: Add patch to avoid picking up the version number from an installed version of the package (Closes: #927339). * d/patches/series: Adjust. . [ Daniel Leidert ] * d/control (Homepage): Fix homepage-field-uses-insecure-uri. rubygems-integration (1.11+deb10u1) buster; urgency=medium . * Replace usage of Gem::ConfigMap with RbConfig::CONFIG This avoid deprecation warnings when users install a newer version of Rubygems via `gem update --system`. schleuder (3.4.0-2+deb10u3) buster; urgency=medium . * debian/control: - (Build)-Depend on ruby-charlock-holmes to aid in encoding detection. * debian/patches: - Improve patch to handle encoding errors introduced in the previous version, 3.4.0-2+deb10u2. The former approach had shortcomings if parsing unencrypted, but signed UTF-8 mails or mail parts without a charset. The parsing failed and lead to further errors. The new approach switches to UTF-8 as the default input, and tries to convert non-UTF-8 mails. In case this fails, the invalid characters are dropped and a note is added to the mail that this happened. To aid in encoding detection, a new dependency is added, ruby-charlock-holmes. (Closes: #948982) - Add patch to let x-add-key handle mails with attached, quoted-printable encoded keys. Such mails might be produced by Thunderbird. Before, such mails were not recognized. (Closes: #956827) - Add patch to fix x-attach-listkey with mails created by Thunderbird that include protected headers. Before, the output was garbled and unusable. (Closes: #956964) scilab (6.0.1-10+deb10u1) buster; urgency=medium . * Add patch from Gilles Filippini to fix library path loading with the recent openjdk 11.0.7 upload. (Closes: #955694, #959034) serverspec-runner (1.2.2-1+deb10u1) buster; urgency=medium . * d/patches/fix-yaml-load-document-missing: Add patch. - Support Ruby 2.5 and replace YAML.load_documents (closes: #939645). * d/patches/series: Add new patch. softflowd (0.9.9-5+deb10u1) buster; urgency=medium . * Fix roken flow aggregation which might result in flow table overflow and 100% CPU usage. speech-dispatcher (0.9.0-5+deb10u1) buster; urgency=medium . * patches/pulseaudio-latency: Fix default pulseaudio latency which triggers pulseaudio scratchy output. spl-linux (0.7.12-2+deb10u1) buster; urgency=medium . * Cherry-pick upstream commit cb4464f to fix deadlock. (#932251) sssd (1.16.3-3.2) buster; urgency=medium . * Non-maintainer upload with maintainer permission. * Fix sssd_be busy-looping when LDAP connection flickers. (Closes: #946847) systemd (241-7~deb10u4) buster; urgency=medium . * polkit: when authorizing via PolicyKit re-resolve callback/userdata instead of caching it. This fixes a heap use-after-free vulnerability in systemd, when asynchronous PolicyKit queries are performed while handling DBus messages. CVE-2020-1712 (Closes: #950732) * Install 60-block.rules in udev-udeb and initramfs-tools. The block device rules were split out from 60-persistent-storage.rules into its own rules file in v220. Those rules ensure that change events are emitted and the udev db is updated after metadata changes. Thanks to Pascal Hambourg (Closes: #958397) taglib (1.11.1+dfsg.1-0.3+deb10u1) buster; urgency=medium . * debian/patches/0005: Add patch to fix corruption on handling ogg files. (Closes: #915281, upstream issue 775) * debian/control: Update maintainer and Vcs information accordingly. tbsync (2.11-1~deb10u1) buster; urgency=medium . * Built for Buster tbsync (2.10-1) unstable; urgency=medium . [ Carsten Schoenert ] * [9ad5177] d/control: correct depending versions . [ Mechtilde Stehmann ] * [8c89b10] New upstream version 2.10 * [b66345f] d/upstream/metadata: added * [306b4f5] d/copyright: add recent year * [c719716] d/control: bump standard version to 4.5 - no changes needed tbsync (2.9-1) unstable; urgency=medium . * Prepared for unstable tbsync (2.9-1~exp1) experimental; urgency=medium . * [77907ef] New upstream version 2.9 tbsync (2.8-1~exp4) experimental; urgency=medium . [ Carsten Schoenert ] * [c98efe0] install more needed files * [4ad835a] webext-tbsync.links: correct linking tbsync (2.8-1~exp3) experimental; urgency=medium . * [6f127a7] use new line number * [0c46b28] Corrected *.docs file * [454ef69] Removed old xul stuff * [9193971] Removed xpi dependencies * [aa931a5] Added *.install and *.links for manuall installation tbsync (2.8-1~exp1) experimental; urgency=medium . * [3dfedf8] New upstream version 2.8 * [fed3c3d] Added me to debian/copyright for debian files * [2f0ba40] Changed version number of dependencies * [e1486d9] Deactivate verbosity in debian/rules tbsync (2.5-1~exp2) experimental; urgency=medium . [ Mechtilde ] * [315e718] correct rules tbsync (2.5-1~exp1) experimental; urgency=medium . [ Mechtilde ] * [0e55c0b] last changes in changelog for releasein experimental * [004d898] Use debhelper-compat for choosing compat level * [3015561] Bumped to standard version 4.4.1 -no changes needed * [e5136eb] Reduce the line length in last entry * [4f252a0] New upstream version 2.5 tbsync (2.3-1) experimental; urgency=medium . [ Mechtilde ] * New upstream version 2.3 * added debian/salsa-ci.yml for testing on Salsa * New upstream version 2.3 * changed debian/control bump standard version to 4.4.0, changed thunderbird version to >=68, changed webext-tbsync version to 2.3 * changed debian/watch to version 4 * simpified debian/rules for using webext * changed debian/source/lintian-overrides * adapt changes of licenses in debian/copyright thunderbird (1:68.7.0-1~deb10u1) stable-security; urgency=medium . * Rebuild for buster-security thunderbird (1:68.7.0-1~deb9u1) stretch-security; urgency=medium . * Rebuild for stretch-security thunderbird (1:68.6.0-1) unstable; urgency=medium . * [5709774] New upstream version 68.6.0 Fixed CVE issues in upstream version 68.6.0 (MFSA 2020-10): CVE-2019-20503: Out of bounds reads in sctp_load_addresses_from_init CVE-2020-6805: Use-after-free when removing data about origins CVE-2020-6806: BodyStream::OnInputStreamReady was missing protections against state confusion CVE-2020-6807: Use-after-free in cubeb during stream destruction CVE-2020-6811: Devtools' 'Copy as cURL' feature did not fully escape website-controlled data, potentially leading to command injection CVE-2020-6812: The names of AirPods with personally identifiable information were exposed to websites with camera or microphone permission CVE-2020-6814: Memory safety bugs fixed in Thunderbird 68.6 thunderbird (1:68.6.0-1~deb10u1) stable-security; urgency=medium . * Rebuild for buster-security thunderbird (1:68.6.0-1~deb9u1) stretch-security; urgency=medium . * Rebuild for stretch-security thunderbird (1:68.5.0-1) unstable; urgency=medium . * [d79bf82] New upstream version 68.5.0 Fixed CVE issues in upstream version 68.5.0 (MFSA 2020-07): CVE-2020-6793: Out-of-bounds read when processing certain email messages CVE-2020-6794: Setting a master password post-Thunderbird 52 does not delete unencrypted previously stored passwords CVE-2020-6795: Crash processing S/MIME messages with multiple signatures CVE-2020-6798: Incorrect parsing of template tag could result in JavaScript injection CVE-2020-6792: Message ID calculcation was based on uninitialized data CVE-2020-6800: Memory safety bugs fixed in Thunderbird 68.5 (Closes: #891848) * [0884df6] d/control: increase Standards-Version to 4.5.0 No further changes needed. thunderbird (1:68.5.0-1~deb10u1) stable-security; urgency=medium . * Rebuild for buster-security (Closes: #891848) thunderbird (1:68.5.0-1~deb9u1) stretch-security; urgency=medium . * Rebuild for stretch-security (Closes: #891848) thunderbird (1:68.4.2-1) unstable; urgency=medium . * [7ab7786] d/gbp.conf: add some more files we need to filter out * [9c02c34] New upstream version 68.4.2 thunderbird (1:68.4.1-1) unstable; urgency=medium . * [a00f3e9] New upstream version 68.4.1 Fixed CVE issues in upstream version 68.4.1 (MFSA 2020-04): CVE-2019-17026: IonMonkey type confusion with StoreElementHole and FallibleStoreElement CVE-2019-17015: Memory corruption in parent process during new content process initialization on Windows CVE-2019-17016: Bypass of @namespace CSS sanitization during pasting CVE-2019-17017: Type Confusion in XPCVariant.cpp CVE-2019-17022: CSS sanitization does not escape HTML tags CVE-2019-17024: Memory safety bugs fixed in Thunderbird 68.4.1 * [6b1fd82] rebuild patch queue from patch-queue branch removed patch (included upstream) fixes/Update-bindgen-in-ESR68.-r-glandium-a-RyanVM.patch timeshift (19.01+ds-2+deb10u1) buster; urgency=medium . * Team upload. * debian/control: Use new homepage. (Closes: #952685) * debian/patches/0006: Backport upstream fix on predictable location of temporary directory. (Closes: #953385, CVE-2020-10174) tinyproxy (1.10.0-2+deb10u1) buster; urgency=medium . * debian/tinyproxy.init: + Only set PIDDIR, if PIDFILE is a non-zero length string. (Closes: #948283). tor (0.3.5.10-1) buster-security; urgency=medium . * New upstream version. * Fixes, among other things a denial-of-service bug that could be used by anyone to consume a bunch of CPU on any Tor relay, making it potentially easier to introduce observable timing patterns (TROVE-2020-002, CVE-2020-10592). tor (0.3.5.10-1~bpo9+1) stretch-backports; urgency=medium . * Rebuild for stretch-backports. trafficserver (8.0.2+ds-1+deb10u2) buster-security; urgency=medium . * Add fix from upstream for CVE-2019-17559 * Add fix from upstream for CVE-2019-17565 * Add fix from upstream for CVE-2020-1944 * Add fix from upstream for CVE-2020-9481 tzdata (2020a-0+deb10u1) buster; urgency=medium . * New upstream version, affecting the following future timestamps: - Morocco springs forward on 2020-05-31, not 2020-05-24. - Canada's Yukon advanced to -07 year-round on 2020-03-08. tzdata (2020a-0+deb9u1) stretch; urgency=medium . * New upstream version, affecting the following future timestamps: - Morocco springs forward on 2020-05-31, not 2020-05-24. - Canada's Yukon advanced to -07 year-round on 2020-03-08. tzdata (2019c-3) unstable; urgency=medium . * Build the timezone data from tzdata.zi. * Install leapseconds file /usr/share/zoneinfo. * Bump Standards-Version to 4.4.1 (no changes). tzdata (2019c-2) unstable; urgency=medium . [ Paul Eggert ] * Install tzdata.zi file in /usr/share/zoneinfo. Closes: #940852. . [ Aurelien Jarno ] * Use tzdata.zi to change hardlinks into symlinks. * Bump debhelper compatibility to 12. * Bump Standards-Version to 4.4.0 (no changes). * Drop Replaces on libc6, it is not needed anymore since Lenny. * Depends on gawk and use it instead of mawk which crashes with a memory corruption. tzdata (2019c-1) unstable; urgency=medium . * New upstream version, affecting the following future timestamps: - Fiji's next DST transitions will be 2019-11-10 and 2020-01-12 instead of 2019-11-03 and 2020-01-19. - Norfolk Island will observe Australian-style DST starting in spring 2019. The first transition is on 2019-10-06. * Update French debconf translation, by Baptiste Jammet. Closes: #935153. * debian/rules: drop obsolete -y zic option. uim (1:1.8.8-4+deb10u3) buster; urgency=medium . * Non-maintainer upload. . [ NOKUBI Takatsugu ] * d/libuim-data.postint: add uim-mozc (See #939588) . [ HIGUCHI Daisuke (VDR dai) ] * d/libuim-data.postint: add uim-chewing . [ YOSHINO Yoshihito ] * d/libuim-data.postinst: unregister not-installed modules (Closes: #945344). The previous upload to fix #939588 caused regression, which has accidentally registered some not-installed modules. user-mode-linux (4.19-1um-1+deb10u1) buster; urgency=medium . * Non-maintainer upload. * [00f54af] Fix FTBFS in buster with linux-source-4.19 4.19.98-1. Remove fix-port-helper-path.patch (Closes: #951329). vite (1.2+svn1430-6+deb10u1) buster; urgency=medium . * patches/fieldnames: Cherry-pick upstream fix for unbound number of field names. vlc (3.0.10-0+deb10u1) buster-security; urgency=medium . * New upstream release * debian/: Disable microdns plugin due to microdns security issues (CVE-2020-6071, CVE-2020-6072, CVE-2020-6073, CVE-2020-6077, CVE-2020-6078, CVE-2020-6079, CVE-2020-6080) vlc (3.0.10-0+deb9u1) stretch-security; urgency=medium . * New upstream release * debian/: Disable microdns plugin due to microdns security issues (CVE-2020-6071, CVE-2020-6072, CVE-2020-6073, CVE-2020-6077, CVE-2020-6078, CVE-2020-6079, CVE-2020-6080) * debian/patches: Fix build with stretch's libdvdread vlc (3.0.9.2-1) unstable; urgency=medium . * New upstream release * debian/patches: Remove patches integrated upstream * debian/copyright: - Bump copyright years - Update files * debian/upstream/signing-key.asc: Re-export upstream's signing key vlc (3.0.8-4) unstable; urgency=medium . * debian/control: Bump Standards-Version * debian/upstream: Apply upstream patches for chromechast support in avahi * debian/: Disable microdns plugin vlc (3.0.8-3) unstable; urgency=medium . * debian/control: - Replace libfreetype6-dev with libfreetype-dev - Bump Standards-Version * debian/: Build srt access plugin vlc (3.0.8-2) unstable; urgency=medium . * debian/: Revert "Switch back to libmodplug-dev since vlc now requires 0.8.9.". Patch configure.ac instead. vlc (3.0.8-1) unstable; urgency=medium . * New upstream release. - Fix a read buffer overflow in the avcodec decoder (CVE-2019-13962) - Fix a read buffer overflow in the OGG demuxer (CVE-2019-14437, CVE-2019-14438) - Fix a read buffer overflow in the ASF demuxer (CVE-2019-14776) - Fix a use after free in the MKV demuxer (CVE-2019-14777, CVE-2019-14778) - Fix a use after free in the ASF demuxer (CVE-2019-14533) - Fix a null dereference in the ASF demuxer (CVE-2019-14534) - Fix a division by zero in the CAF demuxer (CVE-2019-14498) - Fix a division by zero in the ASF demuxer (CVE-2019-14535) * debian/: Remove crystalhd plugin. libcrystalhd-dev is scheduled for removal. * debian/patches: Remove patches included upstream. * debian/control: Switch back to libmodplug-dev since vlc now requires 0.8.9. waagent (2.2.45-4~deb10u1) buster; urgency=medium . * Upload to buster. waagent (2.2.45-3) unstable; urgency=medium . * Disable resource disk if cloud-init is enabled. * Open log before trying to log anything. * Make compatible with Python 3.8. waagent (2.2.45-2) unstable; urgency=medium . * Use new source format. * Fix resource disk setup. waagent (2.2.45-1) unstable; urgency=medium . * New upstream version. (closes: #911701) * Support co-installation with cloud-init. waagent (2.2.41-1) unstable; urgency=medium . * New upstream version. webkit2gtk (2.26.4-1~deb10u3) buster-security; urgency=medium . * debian/patches/cve-2020-11793-fix.patch: + Cherry-pick fix for CVE-2020-11793. webkit2gtk (2.26.4-1~deb10u2) buster-security; urgency=medium . * debian/patches/cve-2020-10018-fix.patch: + Cherry-pick fix for CVE-2020-10018. webkit2gtk (2.26.4-1~deb10u1) buster-security; urgency=medium . * Rebuild for buster-backports. * debian/patches/force-single-process.patch: + Force the single-process mode in Evolution and Geary * debian/control: + Remove Breaks for Evolution < 3.34.1. + Remove build dependency on libwpebackend-fdo-1.0-dev. + Switch build dependency from libenchant-2-dev to libenchant-dev. webkit2gtk (2.26.4-1~bpo9+3) stretch-backports-sloppy; urgency=medium . * debian/patches/cve-2020-11793-fix.patch: + Cherry-pick fix for CVE-2020-11793. webkit2gtk (2.26.4-1~bpo9+2) stretch-backports-sloppy; urgency=medium . * debian/patches/cve-2020-10018-fix.patch: + Cherry-pick fix for CVE-2020-10018. webkit2gtk (2.26.4-1~bpo9+1) stretch-backports-sloppy; urgency=medium . * Rebuild for stretch-backports-sloppy. * debian/patches/force-single-process.patch: + Force the single-process mode in Evolution and Geary * debian/control: + Versions of GStreamer < 1.13 had GStreamerGL in the "bad" set, so depend on libgstreamer-plugins-bad1.0-dev and don't require GStreamer 1.13. Don't install libgstreamer-plugins-bad1.0-dev in armel or armhf: the usage of two different GL implementations causes a build failure (see WebKit bug #175127). + Remove build dependencies on libwoff-dev and libopenjp2-7-dev. + Don't recommend gstreamer1.0-gl, that package is not available in this Debian release. + Build depend on clang-7. + Remove Breaks for Evolution < 3.34.1. + Remove build dependency on libwpebackend-fdo-1.0-dev. + Switch build dependency from libenchant-2-dev to libenchant-dev. * debian/rules: + Build with -DENABLE_MEDIA_SOURCE=OFF. This feature requires a more recent version of GStreamer. + Build with -DUSE_OPENJPEG=OFF. This feature requires a more recent version of libopenjp2-7-dev. + Pass CC and CXX to dh_auto_configure so it uses clang instead of gcc. + Don't use the gold linker in mips nor mipsel. * debian/patches/is-same-v.patch: + Define std::is_same_v and std::is_pod_v. * debian/patches/fix-gtkdoc-generation.patch: + Fix gtk-doc generation. * debian/patches/safe-multiply.patch: + Fix link errors in 32-bit CPUs with clang * debian/libwebkit2gtk-4.0-37.symbols: + Mark webkit_emoji_chooser_get_type as optional, this requires a more recent version of GTK. * debian/patches/fix-atomics-build.patch: + Use libatomic in libWTF. This fixes the armel build. webkit2gtk (2.26.3-1) unstable; urgency=high . * New upstream release. * The WebKitGTK security advisory WSA-2019-0006 lists the following security fixes in the latest versions of WebKitGTK: + CVE-2019-8765, CVE-2019-8821, CVE-2019-8822 (fixed in 2.24.4) + CVE-2019-8710, CVE-2019-8743, CVE-2019-8764, CVE-2019-8766, CVE-2019-8782, CVE-2019-8808, CVE-2019-8815 (fixed in 2.26.0) + CVE-2019-8783, CVE-2019-8811, CVE-2019-8813, CVE-2019-8816, CVE-2019-8819, CVE-2019-8820, CVE-2019-8823 (fixed in 2.26.1) + CVE-2019-8812, CVE-2019-8814 (fixed in 2.26.2) * Build without the bubblewrap sandbox if the required dependencies are not available (Closes: #944731): + debian/rules: - Pass -DENABLE_BUBBLEWRAP_SANDBOX depending on whether libseccomp is installed. - Add runtime dependencies on bubblewrap and xdg-dbus-proxy conditionally to the status of ENABLE_BUBBLEWRAP_SANDBOX. + debian/control: - Don't require bubblewrap, xdg-dbus-proxy or libseccomp-dev in alpha, ia64, m68k, riscv64, sh4 or sparc64. * Enable USE_WPE_RENDERER: + debian/control: - Add build dependency on libwpebackend-fdo-1.0-dev. + debian/rules: - Set USE_WPE_RENDERER depending on whether wpebackend-fdo is available or not (this allows disabling it by simply removing the build dependency). * debian/rules: + Use -g1 in all builds. The webkit2gtk debug packages are huge and I'm not convinced that they have been very useful for reporting bugs. Using -g1 is enough for a basic backtrace and it makes the packages easier to handle. + Install the NEWS file using debian/libwebkit2gtk-4.0-37.docs. * debian/control: + Switch build dependency from libenchant-dev to libenchant-2-dev (Closes: #948106). + Add build dependency on libx11-xcb-dev (Closes: #949430). + Add Rules-Requires-Root: no. * debian/patches/use-python3.patch: + The unversioned python interpreter (i.e. Python 2) is not installed by default anymore, so use Python 3 instead (Closes: #948839). * debian/patches/user-agent-branding.patch: + Refresh. * debian/libwebkit2gtk-4.0-37.symbols: + Add Build-Depends-Package field. * debian/copyright: + Update copyright years. websocket-api (1.1-1+deb10u1) buster; urgency=medium . * Team upload. * Change Breaks and Replaces for libservlet3.1-java to << 9 and fix dpkg error when upgrading tomcat 8 from Stretch to Buster. wpa (2:2.7+git20190128+0c1e29f-6+deb10u2) buster; urgency=medium . * Apply upstream patches: - Do not try to detect PSK mismatch during PTK rekeying. Fixes the 4-way WPA handshake in some situations. - Check for FT support when selecting FT suites. Closes: #942164. - Fix RTM NEW/DELLINK IFLA_IFNAME copy for maximum ifname length. Fixes the MAC randomisation issue with some cards. LP: #1867908. xdg-utils (1.1.3-1+deb10u1) buster; urgency=medium . [ Rex Dieter ] * xdg-open: Do better pcmanfm check, fix AND operator. Closes: #908760, Upstream: BR106636, BR106161. . [ Iain Lane ] * xdg-screensaver: Sanitise window name before sending it over D-Bus. Closes: #910070, LP: #1743216, Upstream: BR108121. . [ Andrea Tarocchi ] * xdg-open: correct handling directories with spaces in the name. LP: #1848335, Upstream: #166. . [ Nicholas Guriev ] * xdg-mime: Create config directory if it does not exist yet. Closes: #652038. xtrlock (2.8+deb10u1) buster; urgency=high . * CVE-2016-10894: Attempt to grab multitouch devices which are not intercepted via XGrabPointer. . xtrlock did not block multitouch events so an attacker could still input and thus control various programs such as Chromium, etc. via so-called "multitouch" events such as pan scrolling, "pinch and zoom", or even being able to provide regular mouse clicks by depressing the touchpad once and then clicking with a secondary finger. . This fix does not the situation where Eve plugs in a multitouch device *after* the screen has been locked. For more information on this angle, please see . (Closes: #830726) xtrlock (2.8+deb9u1) stretch; urgency=high . * CVE-2016-10894: Attempt to grab multitouch devices which are not intercepted via XGrabPointer. . xtrlock did not block multitouch events so an attacker could still input and thus control various programs such as Chromium, etc. via so-called "multitouch" events such as pan scrolling, "pinch and zoom", or even being able to provide regular mouse clicks by depressing the touchpad once and then clicking with a secondary finger. . This fix does not the situation where Eve plugs in a multitouch device *after* the screen has been locked. For more information on this angle, please see . (Closes: #830726) zfs-linux (0.7.12-2+deb10u2) buster; urgency=medium . * Cherry-pick two upstream patches to fix potential deadlock issues. + 01937958ce85b1cd8942dbaf9a3f9768c5b02a0a + 98bb45e27ae80145a6ce028df90fccdb23f8901d * Let zfs-dkms pre-depends on spl-dkms (>= 0.7.12-2+deb10u1). ====================================== Sat, 08 Feb 2020 - Debian 10.3 released ====================================== ========================================================================= [Date: Sat, 08 Feb 2020 09:57:11 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-6-all-amd64 | 4.19.67-2+deb10u2 | amd64 linux-headers-4.19.0-6-amd64 | 4.19.67-2+deb10u2 | amd64 linux-headers-4.19.0-6-cloud-amd64 | 4.19.67-2+deb10u2 | amd64 linux-headers-4.19.0-6-rt-amd64 | 4.19.67-2+deb10u2 | amd64 linux-headers-4.19.0-7-all-amd64 | 4.19.87-1 | amd64 linux-headers-4.19.0-7-amd64 | 4.19.87-1 | amd64 linux-headers-4.19.0-7-cloud-amd64 | 4.19.87-1 | amd64 linux-headers-4.19.0-7-rt-amd64 | 4.19.87-1 | amd64 linux-image-4.19.0-6-amd64-dbg | 4.19.67-2+deb10u2 | amd64 linux-image-4.19.0-6-amd64-unsigned | 4.19.67-2+deb10u2 | amd64 linux-image-4.19.0-6-cloud-amd64-dbg | 4.19.67-2+deb10u2 | amd64 linux-image-4.19.0-6-cloud-amd64-unsigned | 4.19.67-2+deb10u2 | amd64 linux-image-4.19.0-6-rt-amd64-dbg | 4.19.67-2+deb10u2 | amd64 linux-image-4.19.0-6-rt-amd64-unsigned | 4.19.67-2+deb10u2 | amd64 linux-image-4.19.0-7-amd64-dbg | 4.19.87-1 | amd64 linux-image-4.19.0-7-amd64-unsigned | 4.19.87-1 | amd64 linux-image-4.19.0-7-cloud-amd64-dbg | 4.19.87-1 | amd64 linux-image-4.19.0-7-cloud-amd64-unsigned | 4.19.87-1 | amd64 linux-image-4.19.0-7-rt-amd64-dbg | 4.19.87-1 | amd64 linux-image-4.19.0-7-rt-amd64-unsigned | 4.19.87-1 | amd64 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 09:57:58 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-6-all-mipsel | 4.19.67-2+deb10u2 | mipsel linux-headers-4.19.0-7-all-mipsel | 4.19.87-1 | mipsel ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:02:44 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: ata-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el ata-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el btrfs-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el btrfs-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el cdrom-core-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el cdrom-core-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el compress-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el compress-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el crc-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el crc-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el crypto-dm-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el crypto-dm-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el crypto-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el crypto-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el event-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el event-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el ext4-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el ext4-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el fancontrol-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el fancontrol-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el fat-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el fat-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el fb-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el fb-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el firewire-core-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el firewire-core-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el fuse-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el fuse-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el hypervisor-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el hypervisor-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el i2c-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el i2c-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el input-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el input-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el isofs-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el isofs-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el jfs-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el jfs-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el kernel-image-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el kernel-image-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el linux-headers-4.19.0-6-all-ppc64el | 4.19.67-2+deb10u2 | ppc64el linux-headers-4.19.0-6-powerpc64le | 4.19.67-2+deb10u2 | ppc64el linux-headers-4.19.0-7-all-ppc64el | 4.19.87-1 | ppc64el linux-headers-4.19.0-7-powerpc64le | 4.19.87-1 | ppc64el linux-image-4.19.0-6-powerpc64le | 4.19.67-2+deb10u2 | ppc64el linux-image-4.19.0-6-powerpc64le-dbg | 4.19.67-2+deb10u2 | ppc64el linux-image-4.19.0-7-powerpc64le | 4.19.87-1 | ppc64el linux-image-4.19.0-7-powerpc64le-dbg | 4.19.87-1 | ppc64el loop-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el loop-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el md-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el md-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el mouse-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el mouse-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el mtd-core-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el mtd-core-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el multipath-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el multipath-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el nbd-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el nbd-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el nic-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el nic-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el nic-shared-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el nic-shared-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el nic-usb-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el nic-usb-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el nic-wireless-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el nic-wireless-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el ppp-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el ppp-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el sata-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el sata-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el scsi-core-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el scsi-core-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el scsi-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el scsi-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el scsi-nic-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el scsi-nic-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el serial-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el serial-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el squashfs-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el udf-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el uinput-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el uinput-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el usb-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el usb-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el usb-serial-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el usb-serial-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el usb-storage-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el usb-storage-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el xfs-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el xfs-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:03:04 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: btrfs-modules-4.19.0-6-s390x-di | 4.19.67-2+deb10u2 | s390x btrfs-modules-4.19.0-7-s390x-di | 4.19.87-1 | s390x cdrom-core-modules-4.19.0-7-s390x-di | 4.19.87-1 | s390x compress-modules-4.19.0-6-s390x-di | 4.19.67-2+deb10u2 | s390x compress-modules-4.19.0-7-s390x-di | 4.19.87-1 | s390x crc-modules-4.19.0-7-s390x-di | 4.19.87-1 | s390x crypto-dm-modules-4.19.0-6-s390x-di | 4.19.67-2+deb10u2 | s390x crypto-dm-modules-4.19.0-7-s390x-di | 4.19.87-1 | s390x crypto-modules-4.19.0-6-s390x-di | 4.19.67-2+deb10u2 | s390x dasd-extra-modules-4.19.0-6-s390x-di | 4.19.67-2+deb10u2 | s390x dasd-extra-modules-4.19.0-7-s390x-di | 4.19.87-1 | s390x dasd-modules-4.19.0-6-s390x-di | 4.19.67-2+deb10u2 | s390x ext4-modules-4.19.0-6-s390x-di | 4.19.67-2+deb10u2 | s390x ext4-modules-4.19.0-7-s390x-di | 4.19.87-1 | s390x fat-modules-4.19.0-6-s390x-di | 4.19.67-2+deb10u2 | s390x fat-modules-4.19.0-7-s390x-di | 4.19.87-1 | s390x fuse-modules-4.19.0-7-s390x-di | 4.19.87-1 | s390x isofs-modules-4.19.0-6-s390x-di | 4.19.67-2+deb10u2 | s390x isofs-modules-4.19.0-7-s390x-di | 4.19.87-1 | s390x kernel-image-4.19.0-6-s390x-di | 4.19.67-2+deb10u2 | s390x linux-headers-4.19.0-6-all-s390x | 4.19.67-2+deb10u2 | s390x linux-headers-4.19.0-6-s390x | 4.19.67-2+deb10u2 | s390x linux-headers-4.19.0-7-all-s390x | 4.19.87-1 | s390x linux-headers-4.19.0-7-s390x | 4.19.87-1 | s390x linux-image-4.19.0-6-s390x | 4.19.67-2+deb10u2 | s390x linux-image-4.19.0-7-s390x | 4.19.87-1 | s390x linux-image-4.19.0-7-s390x-dbg | 4.19.87-1 | s390x loop-modules-4.19.0-6-s390x-di | 4.19.67-2+deb10u2 | s390x loop-modules-4.19.0-7-s390x-di | 4.19.87-1 | s390x md-modules-4.19.0-7-s390x-di | 4.19.87-1 | s390x mtd-core-modules-4.19.0-6-s390x-di | 4.19.67-2+deb10u2 | s390x mtd-core-modules-4.19.0-7-s390x-di | 4.19.87-1 | s390x multipath-modules-4.19.0-6-s390x-di | 4.19.67-2+deb10u2 | s390x nbd-modules-4.19.0-6-s390x-di | 4.19.67-2+deb10u2 | s390x nbd-modules-4.19.0-7-s390x-di | 4.19.87-1 | s390x nic-modules-4.19.0-6-s390x-di | 4.19.67-2+deb10u2 | s390x nic-modules-4.19.0-7-s390x-di | 4.19.87-1 | s390x scsi-core-modules-4.19.0-7-s390x-di | 4.19.87-1 | s390x scsi-modules-4.19.0-6-s390x-di | 4.19.67-2+deb10u2 | s390x scsi-modules-4.19.0-7-s390x-di | 4.19.87-1 | s390x udf-modules-4.19.0-7-s390x-di | 4.19.87-1 | s390x xfs-modules-4.19.0-6-s390x-di | 4.19.67-2+deb10u2 | s390x xfs-modules-4.19.0-7-s390x-di | 4.19.87-1 | s390x zlib-modules-4.19.0-6-s390x-di | 4.19.67-2+deb10u2 | s390x zlib-modules-4.19.0-7-s390x-di | 4.19.87-1 | s390x ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:04:06 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-6-all | 4.19.67-2+deb10u2 | amd64, arm64, armel, armhf, i386, mips, mips64el, mipsel, ppc64el, s390x linux-headers-4.19.0-7-all | 4.19.87-1 | amd64, arm64, armel, armhf, i386, mips, mips64el, mipsel, ppc64el, s390x ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:04:18 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-6-all-arm64 | 4.19.67-2+deb10u2 | arm64 linux-headers-4.19.0-6-arm64 | 4.19.67-2+deb10u2 | arm64 linux-headers-4.19.0-6-rt-arm64 | 4.19.67-2+deb10u2 | arm64 linux-headers-4.19.0-7-all-arm64 | 4.19.87-1 | arm64 linux-headers-4.19.0-7-arm64 | 4.19.87-1 | arm64 linux-headers-4.19.0-7-rt-arm64 | 4.19.87-1 | arm64 linux-image-4.19.0-6-arm64-dbg | 4.19.67-2+deb10u2 | arm64 linux-image-4.19.0-6-arm64-unsigned | 4.19.67-2+deb10u2 | arm64 linux-image-4.19.0-6-rt-arm64-dbg | 4.19.67-2+deb10u2 | arm64 linux-image-4.19.0-6-rt-arm64-unsigned | 4.19.67-2+deb10u2 | arm64 linux-image-4.19.0-7-arm64-dbg | 4.19.87-1 | arm64 linux-image-4.19.0-7-arm64-unsigned | 4.19.87-1 | arm64 linux-image-4.19.0-7-rt-arm64-dbg | 4.19.87-1 | arm64 linux-image-4.19.0-7-rt-arm64-unsigned | 4.19.87-1 | arm64 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:05:47 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: btrfs-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel cdrom-core-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel cdrom-core-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel compress-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel compress-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel crc-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel crypto-dm-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel crypto-dm-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel crypto-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel event-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel event-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel ext4-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel fat-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel fat-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel fb-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel fb-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel fuse-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel input-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel input-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel ipv6-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel isofs-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel isofs-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel jffs2-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel jfs-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel jfs-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel kernel-image-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel kernel-image-4.19.0-7-marvell-di | 4.19.87-1 | armel leds-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel linux-headers-4.19.0-6-all-armel | 4.19.67-2+deb10u2 | armel linux-headers-4.19.0-6-marvell | 4.19.67-2+deb10u2 | armel linux-headers-4.19.0-6-rpi | 4.19.67-2+deb10u2 | armel linux-headers-4.19.0-7-marvell | 4.19.87-1 | armel linux-headers-4.19.0-7-rpi | 4.19.87-1 | armel linux-image-4.19.0-6-marvell | 4.19.67-2+deb10u2 | armel linux-image-4.19.0-6-marvell-dbg | 4.19.67-2+deb10u2 | armel linux-image-4.19.0-6-rpi-dbg | 4.19.67-2+deb10u2 | armel linux-image-4.19.0-7-marvell | 4.19.87-1 | armel linux-image-4.19.0-7-marvell-dbg | 4.19.87-1 | armel linux-image-4.19.0-7-rpi | 4.19.87-1 | armel linux-image-4.19.0-7-rpi-dbg | 4.19.87-1 | armel loop-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel loop-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel md-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel md-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel minix-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel mmc-core-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel mmc-core-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel mmc-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel mouse-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel mouse-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel mtd-core-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel mtd-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel mtd-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel multipath-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel multipath-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel nbd-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel nic-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel nic-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel nic-shared-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel nic-usb-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel nic-usb-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel ppp-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel sata-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel sata-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel scsi-core-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel squashfs-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel squashfs-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel udf-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel udf-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel uinput-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel uinput-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel usb-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel usb-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel usb-serial-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel usb-serial-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel usb-storage-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel usb-storage-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel zlib-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel zlib-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:06:44 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: ata-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf ata-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf btrfs-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf btrfs-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf cdrom-core-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf cdrom-core-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf compress-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf compress-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf crc-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf crc-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf crypto-dm-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf crypto-dm-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf crypto-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf crypto-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf efi-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf efi-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf event-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf event-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf ext4-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf ext4-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf fat-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf fat-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf fb-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf fb-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf fuse-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf fuse-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf i2c-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf i2c-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf input-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf input-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf isofs-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf isofs-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf jfs-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf jfs-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf kernel-image-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf kernel-image-4.19.0-7-armmp-di | 4.19.87-1 | armhf leds-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf leds-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf linux-headers-4.19.0-6-all-armhf | 4.19.67-2+deb10u2 | armhf linux-headers-4.19.0-6-armmp | 4.19.67-2+deb10u2 | armhf linux-headers-4.19.0-6-armmp-lpae | 4.19.67-2+deb10u2 | armhf linux-headers-4.19.0-6-rt-armmp | 4.19.67-2+deb10u2 | armhf linux-headers-4.19.0-7-all-armhf | 4.19.87-1 | armhf linux-headers-4.19.0-7-armmp | 4.19.87-1 | armhf linux-headers-4.19.0-7-armmp-lpae | 4.19.87-1 | armhf linux-headers-4.19.0-7-rt-armmp | 4.19.87-1 | armhf linux-image-4.19.0-6-armmp | 4.19.67-2+deb10u2 | armhf linux-image-4.19.0-6-armmp-dbg | 4.19.67-2+deb10u2 | armhf linux-image-4.19.0-6-armmp-lpae | 4.19.67-2+deb10u2 | armhf linux-image-4.19.0-6-armmp-lpae-dbg | 4.19.67-2+deb10u2 | armhf linux-image-4.19.0-6-rt-armmp | 4.19.67-2+deb10u2 | armhf linux-image-4.19.0-6-rt-armmp-dbg | 4.19.67-2+deb10u2 | armhf linux-image-4.19.0-7-armmp | 4.19.87-1 | armhf linux-image-4.19.0-7-armmp-dbg | 4.19.87-1 | armhf linux-image-4.19.0-7-armmp-lpae | 4.19.87-1 | armhf linux-image-4.19.0-7-armmp-lpae-dbg | 4.19.87-1 | armhf linux-image-4.19.0-7-rt-armmp | 4.19.87-1 | armhf linux-image-4.19.0-7-rt-armmp-dbg | 4.19.87-1 | armhf loop-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf loop-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf md-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf md-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf mmc-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf mmc-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf mtd-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf mtd-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf multipath-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf multipath-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf nbd-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf nbd-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf nic-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf nic-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf nic-shared-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf nic-shared-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf nic-usb-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf nic-usb-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf nic-wireless-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf nic-wireless-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf pata-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf pata-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf ppp-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf ppp-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf sata-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf sata-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf scsi-core-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf scsi-core-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf scsi-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf scsi-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf scsi-nic-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf scsi-nic-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf squashfs-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf squashfs-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf udf-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf udf-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf uinput-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf uinput-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf usb-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf usb-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf usb-serial-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf usb-serial-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf usb-storage-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf usb-storage-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf zlib-modules-4.19.0-6-armmp-di | 4.19.67-2+deb10u2 | armhf zlib-modules-4.19.0-7-armmp-di | 4.19.87-1 | armhf ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:07:13 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-6-686 | 4.19.67-2+deb10u2 | i386 linux-headers-4.19.0-6-686-pae | 4.19.67-2+deb10u2 | i386 linux-headers-4.19.0-6-all-i386 | 4.19.67-2+deb10u2 | i386 linux-headers-4.19.0-6-rt-686-pae | 4.19.67-2+deb10u2 | i386 linux-headers-4.19.0-7-686 | 4.19.87-1 | i386 linux-headers-4.19.0-7-686-pae | 4.19.87-1 | i386 linux-headers-4.19.0-7-all-i386 | 4.19.87-1 | i386 linux-headers-4.19.0-7-rt-686-pae | 4.19.87-1 | i386 linux-image-4.19.0-6-686-dbg | 4.19.67-2+deb10u2 | i386 linux-image-4.19.0-6-686-pae-dbg | 4.19.67-2+deb10u2 | i386 linux-image-4.19.0-6-686-pae-unsigned | 4.19.67-2+deb10u2 | i386 linux-image-4.19.0-6-686-unsigned | 4.19.67-2+deb10u2 | i386 linux-image-4.19.0-6-rt-686-pae-dbg | 4.19.67-2+deb10u2 | i386 linux-image-4.19.0-6-rt-686-pae-unsigned | 4.19.67-2+deb10u2 | i386 linux-image-4.19.0-7-686-dbg | 4.19.87-1 | i386 linux-image-4.19.0-7-686-pae-dbg | 4.19.87-1 | i386 linux-image-4.19.0-7-686-pae-unsigned | 4.19.87-1 | i386 linux-image-4.19.0-7-686-unsigned | 4.19.87-1 | i386 linux-image-4.19.0-7-rt-686-pae-dbg | 4.19.87-1 | i386 linux-image-4.19.0-7-rt-686-pae-unsigned | 4.19.87-1 | i386 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:07:41 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: affs-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel affs-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel btrfs-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel btrfs-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel cdrom-core-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel cdrom-core-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel compress-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel compress-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel crc-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel crc-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel crypto-dm-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel crypto-dm-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel crypto-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel crypto-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel event-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel event-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel ext4-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel ext4-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel fat-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel fat-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel fuse-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel fuse-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel hfs-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel hfs-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel input-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel input-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel isofs-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel isofs-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel jfs-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel jfs-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel kernel-image-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel kernel-image-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel linux-headers-4.19.0-6-5kc-malta | 4.19.67-2+deb10u2 | mips, mips64el, mipsel linux-headers-4.19.0-6-octeon | 4.19.67-2+deb10u2 | mips, mips64el, mipsel linux-image-4.19.0-6-5kc-malta | 4.19.67-2+deb10u2 | mips, mips64el, mipsel linux-image-4.19.0-6-5kc-malta-dbg | 4.19.67-2+deb10u2 | mips, mips64el, mipsel linux-image-4.19.0-6-octeon | 4.19.67-2+deb10u2 | mips, mips64el, mipsel linux-image-4.19.0-6-octeon-dbg | 4.19.67-2+deb10u2 | mips, mips64el, mipsel linux-image-4.19.0-7-5kc-malta | 4.19.87-1 | mips, mips64el, mipsel linux-image-4.19.0-7-5kc-malta-dbg | 4.19.87-1 | mips, mips64el, mipsel linux-image-4.19.0-7-octeon | 4.19.87-1 | mips, mips64el, mipsel linux-image-4.19.0-7-octeon-dbg | 4.19.87-1 | mips, mips64el, mipsel loop-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel loop-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel md-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel md-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel minix-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel minix-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel multipath-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel multipath-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel nbd-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel nbd-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel nic-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel nic-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel nic-shared-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel nic-shared-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel nic-usb-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel nic-usb-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel nic-wireless-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel nic-wireless-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel pata-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel pata-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel ppp-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel ppp-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel rtc-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel rtc-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel sata-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel sata-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel scsi-core-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel scsi-core-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel scsi-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel scsi-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel scsi-nic-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel scsi-nic-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel sound-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel sound-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel squashfs-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel squashfs-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel udf-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel udf-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel usb-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel usb-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel usb-serial-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel usb-serial-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel usb-storage-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel usb-storage-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel xfs-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel xfs-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel zlib-modules-4.19.0-6-octeon-di | 4.19.67-2+deb10u2 | mips, mips64el, mipsel zlib-modules-4.19.0-7-octeon-di | 4.19.87-1 | mips, mips64el, mipsel ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:07:59 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: affs-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel affs-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel ata-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel ata-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel btrfs-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel btrfs-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel cdrom-core-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel cdrom-core-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel compress-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel compress-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel crc-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel crc-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel crypto-dm-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel crypto-dm-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel crypto-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel crypto-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel event-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel event-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel ext4-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel ext4-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel fat-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel fat-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel fb-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel fb-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel fuse-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel fuse-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel hfs-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel hfs-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel i2c-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel i2c-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel input-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel input-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel isofs-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel isofs-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel jfs-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel jfs-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel kernel-image-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel kernel-image-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel linux-headers-4.19.0-6-4kc-malta | 4.19.67-2+deb10u2 | mips, mipsel linux-headers-4.19.0-7-4kc-malta | 4.19.87-1 | mips, mipsel linux-image-4.19.0-6-4kc-malta | 4.19.67-2+deb10u2 | mips, mipsel linux-image-4.19.0-6-4kc-malta-dbg | 4.19.67-2+deb10u2 | mips, mipsel linux-image-4.19.0-7-4kc-malta | 4.19.87-1 | mips, mipsel linux-image-4.19.0-7-4kc-malta-dbg | 4.19.87-1 | mips, mipsel loop-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel loop-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel md-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel md-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel minix-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel minix-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel mmc-core-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel mmc-core-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel mmc-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel mmc-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel mtd-core-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel mtd-core-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel multipath-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel multipath-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel nbd-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel nbd-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel nic-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel nic-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel nic-shared-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel nic-shared-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel nic-usb-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel nic-usb-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel nic-wireless-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel nic-wireless-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel pata-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel pata-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel ppp-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel ppp-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel sata-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel sata-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel scsi-core-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel scsi-core-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel scsi-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel scsi-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel scsi-nic-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel scsi-nic-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel sound-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel sound-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel squashfs-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel squashfs-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel udf-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel udf-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel usb-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel usb-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel usb-serial-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel usb-serial-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel usb-storage-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel usb-storage-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel xfs-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel xfs-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel zlib-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips, mipsel zlib-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips, mipsel ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:09:11 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: affs-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el affs-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el ata-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el ata-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el btrfs-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el btrfs-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el cdrom-core-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el cdrom-core-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el compress-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el compress-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el crc-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el crc-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el crypto-dm-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el crypto-dm-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el crypto-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el crypto-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el event-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el event-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el ext4-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el ext4-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el fat-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el fat-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el fb-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el fb-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el fuse-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el fuse-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el hfs-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el hfs-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el i2c-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el i2c-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el input-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el input-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el isofs-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el isofs-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el jfs-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el jfs-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el kernel-image-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el kernel-image-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el linux-headers-4.19.0-6-all-mips64el | 4.19.67-2+deb10u2 | mips64el linux-headers-4.19.0-7-all-mips64el | 4.19.87-1 | mips64el loop-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el loop-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el md-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el md-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el minix-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el minix-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el mmc-core-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el mmc-core-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el mmc-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el mmc-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el mouse-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el mouse-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el mtd-core-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el mtd-core-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el multipath-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el multipath-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el nbd-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el nbd-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el nic-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el nic-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el nic-shared-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el nic-shared-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el nic-usb-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el nic-usb-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el nic-wireless-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el nic-wireless-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el pata-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el pata-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el ppp-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el ppp-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el sata-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el sata-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el scsi-core-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el scsi-core-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el scsi-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el scsi-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el scsi-nic-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el scsi-nic-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el sound-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el sound-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el squashfs-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el squashfs-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el udf-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el usb-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el usb-serial-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el usb-serial-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el usb-storage-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el usb-storage-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el xfs-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el xfs-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el zlib-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el zlib-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:10:10 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: affs-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel affs-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel ata-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel ata-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel btrfs-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel btrfs-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel cdrom-core-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel cdrom-core-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel compress-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel compress-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel crc-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel crc-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel crypto-dm-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel crypto-dm-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel crypto-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel crypto-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel event-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel event-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel ext4-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel ext4-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel fat-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel fat-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel fb-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel fb-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel firewire-core-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel firewire-core-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel fuse-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel hfs-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel input-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel input-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel isofs-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel isofs-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel jfs-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel jfs-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel kernel-image-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel kernel-image-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel linux-headers-4.19.0-6-loongson-3 | 4.19.67-2+deb10u2 | mips64el, mipsel linux-headers-4.19.0-7-loongson-3 | 4.19.87-1 | mips64el, mipsel linux-image-4.19.0-6-loongson-3 | 4.19.67-2+deb10u2 | mips64el, mipsel linux-image-4.19.0-6-loongson-3-dbg | 4.19.67-2+deb10u2 | mips64el, mipsel linux-image-4.19.0-7-loongson-3 | 4.19.87-1 | mips64el, mipsel linux-image-4.19.0-7-loongson-3-dbg | 4.19.87-1 | mips64el, mipsel loop-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel loop-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel md-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel md-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel minix-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel minix-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel mtd-core-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel mtd-core-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel multipath-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel multipath-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel nbd-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel nbd-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel nfs-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel nfs-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel nic-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel nic-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel nic-shared-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel nic-shared-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel nic-usb-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel nic-usb-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel nic-wireless-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel nic-wireless-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel pata-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel pata-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel ppp-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel ppp-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel sata-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel sata-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel scsi-core-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel scsi-core-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel scsi-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel scsi-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel scsi-nic-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel scsi-nic-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel sound-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel sound-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel speakup-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel speakup-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel squashfs-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel squashfs-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel udf-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel udf-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel usb-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel usb-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel usb-serial-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel usb-serial-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel usb-storage-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel usb-storage-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel xfs-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel xfs-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel zlib-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el, mipsel zlib-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el, mipsel ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:10:21 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: acpi-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 acpi-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 ata-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 ata-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 btrfs-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 btrfs-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 cdrom-core-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 cdrom-core-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 compress-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 compress-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 crc-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 crc-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 crypto-dm-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 crypto-dm-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 crypto-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 crypto-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 efi-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 efi-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 event-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 event-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 ext4-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 ext4-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 fat-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 fat-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 fb-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 fb-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 firewire-core-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 firewire-core-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 fuse-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 fuse-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 i2c-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 i2c-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 input-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 input-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 isofs-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 isofs-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 jfs-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 jfs-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 kernel-image-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 kernel-image-4.19.0-7-amd64-di | 4.19.87-1 | amd64 linux-image-4.19.0-6-amd64 | 4.19.67-2+deb10u2 | amd64 linux-image-4.19.0-6-cloud-amd64 | 4.19.67-2+deb10u2 | amd64 linux-image-4.19.0-6-rt-amd64 | 4.19.67-2+deb10u2 | amd64 linux-image-4.19.0-7-amd64 | 4.19.87-1 | amd64 linux-image-4.19.0-7-cloud-amd64 | 4.19.87-1 | amd64 linux-image-4.19.0-7-rt-amd64 | 4.19.87-1 | amd64 loop-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 loop-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 md-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 md-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 mmc-core-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 mmc-core-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 mmc-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 mmc-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 mouse-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 mouse-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 mtd-core-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 mtd-core-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 multipath-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 multipath-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 nbd-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 nbd-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 nic-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 nic-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 nic-pcmcia-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 nic-pcmcia-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 nic-shared-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 nic-shared-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 nic-usb-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 nic-usb-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 nic-wireless-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 nic-wireless-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 pata-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 pata-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 pcmcia-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 pcmcia-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 pcmcia-storage-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 pcmcia-storage-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 ppp-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 ppp-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 sata-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 sata-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 scsi-core-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 scsi-core-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 scsi-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 scsi-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 scsi-nic-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 scsi-nic-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 serial-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 serial-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 sound-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 sound-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 speakup-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 speakup-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 squashfs-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 squashfs-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 udf-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 udf-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 uinput-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 uinput-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 usb-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 usb-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 usb-storage-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 usb-storage-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 xfs-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 xfs-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux-signed-amd64) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:11:08 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: ata-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 ata-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 btrfs-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 btrfs-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 cdrom-core-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 cdrom-core-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 compress-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 compress-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 crc-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 crc-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 crypto-dm-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 crypto-dm-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 crypto-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 crypto-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 efi-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 event-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 ext4-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 ext4-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 fb-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 fb-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 fuse-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 fuse-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 i2c-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 i2c-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 input-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 input-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 isofs-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 isofs-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 jfs-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 jfs-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 kernel-image-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 kernel-image-4.19.0-7-arm64-di | 4.19.87-1 | arm64 leds-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 leds-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 linux-image-4.19.0-6-arm64 | 4.19.67-2+deb10u2 | arm64 linux-image-4.19.0-7-rt-arm64 | 4.19.87-1 | arm64 loop-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 loop-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 md-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 md-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 mtd-core-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 mtd-core-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 multipath-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 multipath-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 nbd-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 nbd-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 nic-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 nic-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 nic-shared-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 nic-shared-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 nic-usb-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 nic-usb-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 nic-wireless-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 nic-wireless-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 ppp-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 ppp-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 sata-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 sata-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 scsi-core-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 scsi-core-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 scsi-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 scsi-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 scsi-nic-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 scsi-nic-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 squashfs-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 squashfs-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 udf-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 udf-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 uinput-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 uinput-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 usb-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 usb-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 usb-serial-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 usb-serial-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 usb-storage-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 usb-storage-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 xfs-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 xfs-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux-signed-arm64) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:11:56 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: acpi-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 acpi-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 acpi-modules-4.19.0-7-686-di | 4.19.87-1 | i386 acpi-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 ata-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 ata-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 btrfs-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 btrfs-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 btrfs-modules-4.19.0-7-686-di | 4.19.87-1 | i386 btrfs-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 cdrom-core-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 cdrom-core-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 cdrom-core-modules-4.19.0-7-686-di | 4.19.87-1 | i386 cdrom-core-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 compress-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 compress-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 compress-modules-4.19.0-7-686-di | 4.19.87-1 | i386 compress-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 crc-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 crc-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 crc-modules-4.19.0-7-686-di | 4.19.87-1 | i386 crc-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 crypto-dm-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 crypto-dm-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 crypto-dm-modules-4.19.0-7-686-di | 4.19.87-1 | i386 crypto-dm-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 crypto-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 crypto-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 crypto-modules-4.19.0-7-686-di | 4.19.87-1 | i386 crypto-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 efi-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 efi-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 efi-modules-4.19.0-7-686-di | 4.19.87-1 | i386 efi-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 event-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 event-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 event-modules-4.19.0-7-686-di | 4.19.87-1 | i386 event-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 ext4-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 ext4-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 ext4-modules-4.19.0-7-686-di | 4.19.87-1 | i386 ext4-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 fat-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 fat-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 fat-modules-4.19.0-7-686-di | 4.19.87-1 | i386 fat-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 fb-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 fb-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 fb-modules-4.19.0-7-686-di | 4.19.87-1 | i386 fb-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 firewire-core-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 firewire-core-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 fuse-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 fuse-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 fuse-modules-4.19.0-7-686-di | 4.19.87-1 | i386 fuse-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 i2c-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 i2c-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 i2c-modules-4.19.0-7-686-di | 4.19.87-1 | i386 i2c-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 input-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 input-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 input-modules-4.19.0-7-686-di | 4.19.87-1 | i386 input-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 isofs-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 isofs-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 isofs-modules-4.19.0-7-686-di | 4.19.87-1 | i386 isofs-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 jfs-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 jfs-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 jfs-modules-4.19.0-7-686-di | 4.19.87-1 | i386 jfs-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 kernel-image-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 kernel-image-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 kernel-image-4.19.0-7-686-di | 4.19.87-1 | i386 kernel-image-4.19.0-7-686-pae-di | 4.19.87-1 | i386 linux-image-4.19.0-6-686 | 4.19.67-2+deb10u2 | i386 linux-image-4.19.0-6-686-pae | 4.19.67-2+deb10u2 | i386 linux-image-4.19.0-6-rt-686-pae | 4.19.67-2+deb10u2 | i386 linux-image-4.19.0-7-686 | 4.19.87-1 | i386 linux-image-4.19.0-7-686-pae | 4.19.87-1 | i386 linux-image-4.19.0-7-rt-686-pae | 4.19.87-1 | i386 loop-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 loop-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 loop-modules-4.19.0-7-686-di | 4.19.87-1 | i386 loop-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 md-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 md-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 md-modules-4.19.0-7-686-di | 4.19.87-1 | i386 md-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 mmc-core-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 mmc-core-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 mmc-core-modules-4.19.0-7-686-di | 4.19.87-1 | i386 mmc-core-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 mmc-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 mmc-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 mmc-modules-4.19.0-7-686-di | 4.19.87-1 | i386 mmc-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 mouse-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 mouse-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 mouse-modules-4.19.0-7-686-di | 4.19.87-1 | i386 mouse-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 mtd-core-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 mtd-core-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 mtd-core-modules-4.19.0-7-686-di | 4.19.87-1 | i386 mtd-core-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 multipath-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 multipath-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 multipath-modules-4.19.0-7-686-di | 4.19.87-1 | i386 multipath-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 nbd-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 nbd-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 nbd-modules-4.19.0-7-686-di | 4.19.87-1 | i386 nbd-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 nic-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 nic-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 nic-modules-4.19.0-7-686-di | 4.19.87-1 | i386 nic-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 nic-pcmcia-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 nic-pcmcia-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 nic-pcmcia-modules-4.19.0-7-686-di | 4.19.87-1 | i386 nic-pcmcia-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 nic-shared-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 nic-shared-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 nic-shared-modules-4.19.0-7-686-di | 4.19.87-1 | i386 nic-shared-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 nic-usb-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 nic-usb-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 nic-usb-modules-4.19.0-7-686-di | 4.19.87-1 | i386 nic-usb-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 nic-wireless-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 nic-wireless-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 nic-wireless-modules-4.19.0-7-686-di | 4.19.87-1 | i386 nic-wireless-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 pata-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 pata-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 pata-modules-4.19.0-7-686-di | 4.19.87-1 | i386 pata-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 pcmcia-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 pcmcia-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 pcmcia-modules-4.19.0-7-686-di | 4.19.87-1 | i386 pcmcia-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 pcmcia-storage-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 pcmcia-storage-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 pcmcia-storage-modules-4.19.0-7-686-di | 4.19.87-1 | i386 pcmcia-storage-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 ppp-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 ppp-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 ppp-modules-4.19.0-7-686-di | 4.19.87-1 | i386 ppp-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 sata-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 sata-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 sata-modules-4.19.0-7-686-di | 4.19.87-1 | i386 sata-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 scsi-core-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 scsi-core-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 scsi-core-modules-4.19.0-7-686-di | 4.19.87-1 | i386 scsi-core-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 scsi-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 scsi-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 scsi-modules-4.19.0-7-686-di | 4.19.87-1 | i386 scsi-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 scsi-nic-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 scsi-nic-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 scsi-nic-modules-4.19.0-7-686-di | 4.19.87-1 | i386 scsi-nic-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 serial-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 serial-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 serial-modules-4.19.0-7-686-di | 4.19.87-1 | i386 serial-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 sound-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 sound-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 speakup-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 speakup-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 speakup-modules-4.19.0-7-686-di | 4.19.87-1 | i386 speakup-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 squashfs-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 squashfs-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 squashfs-modules-4.19.0-7-686-di | 4.19.87-1 | i386 squashfs-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 udf-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 udf-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 udf-modules-4.19.0-7-686-di | 4.19.87-1 | i386 udf-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 uinput-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 uinput-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 uinput-modules-4.19.0-7-686-di | 4.19.87-1 | i386 uinput-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 usb-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 usb-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 usb-modules-4.19.0-7-686-di | 4.19.87-1 | i386 usb-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 usb-serial-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 usb-serial-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 usb-serial-modules-4.19.0-7-686-di | 4.19.87-1 | i386 usb-serial-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 usb-storage-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 usb-storage-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 usb-storage-modules-4.19.0-7-686-di | 4.19.87-1 | i386 usb-storage-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 xfs-modules-4.19.0-6-686-di | 4.19.67-2+deb10u2 | i386 xfs-modules-4.19.0-6-686-pae-di | 4.19.67-2+deb10u2 | i386 xfs-modules-4.19.0-7-686-di | 4.19.87-1 | i386 xfs-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux-signed-i386) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:13:01 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-6-common | 4.19.67-2+deb10u2 | all linux-headers-4.19.0-6-common-rt | 4.19.67-2+deb10u2 | all linux-headers-4.19.0-7-common | 4.19.87-1 | all linux-headers-4.19.0-7-common-rt | 4.19.87-1 | all linux-support-4.19.0-6 | 4.19.67-2+deb10u2 | all linux-support-4.19.0-7 | 4.19.87-1 | all ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux - based on source metadata) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:13:38 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: linux-headers-4.19.0-6-all-mips | 4.19.67-2+deb10u2 | mips linux-headers-4.19.0-7-5kc-malta | 4.19.87-1 | mips linux-headers-4.19.0-7-all-mips | 4.19.87-1 | mips linux-headers-4.19.0-7-octeon | 4.19.87-1 | mips mouse-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mips ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux - based on source metadata) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:14:28 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: fuse-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mipsel hfs-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mipsel linux-headers-4.19.0-7-5kc-malta | 4.19.87-1 | mipsel linux-headers-4.19.0-7-octeon | 4.19.87-1 | mipsel mouse-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mipsel mouse-modules-4.19.0-7-4kc-malta-di | 4.19.87-1 | mipsel ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux - based on source metadata) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:15:26 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: btrfs-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel crc-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel crypto-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel ext4-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel fuse-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel jffs2-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel leds-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel linux-headers-4.19.0-7-all-armel | 4.19.87-1 | armel linux-image-4.19.0-6-rpi | 4.19.67-2+deb10u2 | armel minix-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel mmc-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel mtd-core-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel nbd-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel nic-shared-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel ppp-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel scsi-core-modules-4.19.0-7-marvell-di | 4.19.87-1 | armel ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux - based on source metadata) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:18:52 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: cdrom-core-modules-4.19.0-6-s390x-di | 4.19.67-2+deb10u2 | s390x crc-modules-4.19.0-6-s390x-di | 4.19.67-2+deb10u2 | s390x crypto-modules-4.19.0-7-s390x-di | 4.19.87-1 | s390x dasd-modules-4.19.0-7-s390x-di | 4.19.87-1 | s390x fuse-modules-4.19.0-6-s390x-di | 4.19.67-2+deb10u2 | s390x kernel-image-4.19.0-7-s390x-di | 4.19.87-1 | s390x linux-image-4.19.0-6-s390x-dbg | 4.19.67-2+deb10u2 | s390x md-modules-4.19.0-6-s390x-di | 4.19.67-2+deb10u2 | s390x multipath-modules-4.19.0-7-s390x-di | 4.19.87-1 | s390x scsi-core-modules-4.19.0-6-s390x-di | 4.19.67-2+deb10u2 | s390x udf-modules-4.19.0-6-s390x-di | 4.19.67-2+deb10u2 | s390x ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:19:04 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: mouse-modules-4.19.0-6-4kc-malta-di | 4.19.67-2+deb10u2 | mips ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:19:11 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: fuse-modules-4.19.0-7-loongson-3-di | 4.19.87-1 | mips64el hfs-modules-4.19.0-6-loongson-3-di | 4.19.67-2+deb10u2 | mips64el linux-headers-4.19.0-7-5kc-malta | 4.19.87-1 | mips64el linux-headers-4.19.0-7-octeon | 4.19.87-1 | mips64el udf-modules-4.19.0-7-5kc-malta-di | 4.19.87-1 | mips64el ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:19:54 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: squashfs-modules-4.19.0-7-powerpc64le-di | 4.19.87-1 | ppc64el ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:20:19 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: udf-modules-4.19.0-6-powerpc64le-di | 4.19.67-2+deb10u2 | ppc64el ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:20:29 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: ipv6-modules-4.19.0-6-marvell-di | 4.19.67-2+deb10u2 | armel ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:20:40 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: usb-serial-modules-4.19.0-6-amd64-di | 4.19.67-2+deb10u2 | amd64 usb-serial-modules-4.19.0-7-amd64-di | 4.19.87-1 | amd64 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux-signed-amd64) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:20:58 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: efi-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 event-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 fat-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 fat-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 linux-image-4.19.0-6-rt-arm64 | 4.19.67-2+deb10u2 | arm64 linux-image-4.19.0-7-arm64 | 4.19.87-1 | arm64 mmc-modules-4.19.0-6-arm64-di | 4.19.67-2+deb10u2 | arm64 mmc-modules-4.19.0-7-arm64-di | 4.19.87-1 | arm64 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux-signed-arm64) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:21:09 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: ata-modules-4.19.0-7-686-di | 4.19.87-1 | i386 ata-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 firewire-core-modules-4.19.0-7-686-di | 4.19.87-1 | i386 firewire-core-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 sound-modules-4.19.0-7-686-di | 4.19.87-1 | i386 sound-modules-4.19.0-7-686-pae-di | 4.19.87-1 | i386 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux-signed-i386) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:21:56 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: usb-modules-4.19.0-6-5kc-malta-di | 4.19.67-2+deb10u2 | mips64el ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux - based on source metadata) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 10:24:40 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: calendar-google-provider | 1:60.9.0-1~deb10u1 | all ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by thunderbird - based on source metadata) ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 09:41:16 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: firetray | 0.6.1+dfsg-1.2 | source xul-ext-firetray | 0.6.1+dfsg-1.2 | all Closed bugs: 946124 ------------------- Reason ------------------- ROM; Orphaned and dead upstream, not needed any more ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 09:42:01 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: python-lamson | 1.0pre11-1.3 | source, all Closed bugs: 948446 ------------------- Reason ------------------- RoQA; broken since python-daemon 2.0.5-1 ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 09:42:33 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: caml-crush-clients | 1.0.8-1+b1 | armel caml-crush-server | 1.0.8-1+b1 | armel Closed bugs: 948795 ------------------- Reason ------------------- RoQA; B-D ocaml-native-compilers n/a on armel ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 09:42:54 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: koji | 1.16.2-1 | source koji-client | 1.16.2-1 | all koji-common | 1.16.2-1 | all koji-servers | 1.16.2-1 | all Closed bugs: 950084 ------------------- Reason ------------------- RoM / RoST; security issues ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 09:43:40 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: libradare2-3.2 | 3.2.1+dfsg-5 | amd64, arm64, armel, armhf, i386, mips, mips64el, mipsel, ppc64el, s390x libradare2-common | 3.2.1+dfsg-5 | all libradare2-dev | 3.2.1+dfsg-5 | amd64, arm64, armel, armhf, i386, mips, mips64el, mipsel, ppc64el, s390x radare2 | 3.2.1+dfsg-5 | source, amd64, arm64, armel, armhf, i386, mips, mips64el, mipsel, ppc64el, s390x Closed bugs: 950691 ------------------- Reason ------------------- RoST; security issues; upstream do not offer stable support ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 08 Feb 2020 09:44:02 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: radare2-cutter | 1.7.4-2 | source, amd64, arm64, armhf, i386, mipsel Closed bugs: 950692 ------------------- Reason ------------------- RoST; depends on to-be-removed radare2 ---------------------------------------------- ========================================================================= alot (0.8.1-1+deb10u1) buster; urgency=medium . * Non-maintainer upload. . [ Jordan Justen ] * d/patches: Cherry pick upstream 3446dc44f87d. Closes: #930057 atril (1.20.3-1+deb10u1) buster; urgency=medium . [ Martin Wimpress ] * debian/patches: + Add 0001_prevent_no_doc_segfault.patch. Prevent segfaults when no document is loaded. + Add 0002_CVE-2019-1010006.patch. Fix buffer overflow. (CVE-2019-1010006) . [ Mike Gabriel ] * debian/patches: + Add CVE-2019-11459.patch. tiff: Handle failure from TIFFReadRGBAImageOriented. (Closes: #927821). + Rebase 0001_prevent_no_doc_segfault.patch. base-files (10.3+deb10u3) buster; urgency=medium . * Change /etc/debian_version to 10.3, for Debian 10.3 point release. beagle (5.0-180928+dfsg-1+deb10u1) buster; urgency=medium . * Non-maintainer upload. . [ Daniel Baumann ] * Provide wrapper script instead of symlinks to JARs Closes: #940611 bgpdump (1.6.0-1+deb10u1) buster; urgency=medium . * Don't pass the full LDFLAGS set to bgpdump creation. Closes: #945881 boost1.67 (1.67.0-13+deb10u1) buster; urgency=medium . * Non-maintainer upload. * Patch undefined behaviour leading to crashing libboost-numpy (closes: #945987). brightd (0.4.1-2+deb10u1) buster; urgency=medium . * Non-maintainer upload. . [ Andrej Shadura ] * Actually compare the value read out of /sys/class/power_supply/AC/online with '0' (Closes: #934140) cacti (1.2.2+ds1-2+deb10u2) buster-security; urgency=medium . * Non-maintainer upload by the Security Team. * Acknowledgements to Paul Gevers! * CVE-2019-17358: insufficient validation of form input leading to unsafe unserialization operations and memory corruption (Closes: #947375). * CVE-2019-17357: SQL injection vulnerability in graphs.php (Closes: #947374). * CVE-2019-16723: Authentication bypass allows unprivileged users to view all graphs (Closes: #941036). casacore-data-jplde (2007.07.05+ds.1-0+deb10u1) buster; urgency=medium . * Non-maintainer upload. * Include tables up to 2040 in the upstream tarball. Closes: #949219 chromium (79.0.3945.130-1~deb10u1) buster-security; urgency=medium . * New upstream security release. - CVE-2020-6377: Use after free in audio. Reported by Zhe Jin - CVE-2020-6378: Use-after-free in speech recognizer. Reported by Antti Levomäki and Christian Jalio - CVE-2020-6379: Use-after-free in speech recognizer. Reported by Guang Gong - CVE-2020-6380: Extension message verification error. Reported by Sergei Glazunov - CVE-2019-13725: Use after free in Bluetooth. Reported by Gengming Liu and Jianyu Chen - CVE-2019-13726: Heap buffer overflow in password manager. Reported by Sergei Glazunov - CVE-2019-13727: Insufficient policy enforcement in WebSockets. Reported by @piochu - CVE-2019-13728: Out of bounds write in V8. Reported by Rong Jian and Guang Gong - CVE-2019-13729: Use after free in WebSockets. Reported by Zhe Jin - CVE-2019-13730: Type Confusion in V8. Reported by Soyeon Park and Wen Xu - CVE-2019-13732: Use after free in WebAudio. Reported by Sergei Glazunov - CVE-2019-13734: Out of bounds write in SQLite. Reported by Wenxiang Qian - CVE-2019-13735: Out of bounds write in V8. Reported by Gengming Liu and Zhen Feng - CVE-2019-13764: Type Confusion in V8. Reported by Soyeon Park and Wen Xu - CVE-2019-13736: Integer overflow in PDFium. Reported by Anonymous - CVE-2019-13737: Insufficient policy enforcement in autocomplete. Reported by Mark Amery - CVE-2019-13738: Insufficient policy enforcement in navigation. Reported by Johnathan Norman and Daniel Clark - CVE-2019-13739: Incorrect security UI in Omnibox. Reported by xisigr - CVE-2019-13740: Incorrect security UI. Reported by Khalil Zhani - CVE-2019-13741: Insufficient validation of untrusted input in Blink. Reported by Michał Bentkowski - CVE-2019-13742: Incorrect security UI in Omnibox. Reported by Khalil Zhani - CVE-2019-13743: Incorrect security UI in external protocol handling. Reported by Zhiyang Zeng - CVE-2019-13744: Insufficient policy enforcement in cookies. Reported by Prakash - CVE-2019-13745: Insufficient policy enforcement in audio. Reported by Luan Herrera - CVE-2019-13746: Insufficient policy enforcement in Omnibox. Reported by David Erceg - CVE-2019-13747: Uninitialized Use in rendering. Reported by Ivan Popelyshev and André Bonatti - CVE-2019-13748: Insufficient policy enforcement in developer tools. Reported by David Erceg - CVE-2019-13749: Incorrect security UI in Omnibox. Reported by Khalil Zhani - CVE-2019-13750: Insufficient data validation in SQLite. Reported by Wenxiang Qian - CVE-2019-13751: Uninitialized Use in SQLite. Reported by Wenxiang Qian - CVE-2019-13752: Out of bounds read in SQLite. Reported by Wenxiang Qian - CVE-2019-13753: Out of bounds read in SQLite. Reported by Wenxiang Qian - CVE-2019-13754: Insufficient policy enforcement in extensions. Reported by Cody Crews - CVE-2019-13755: Insufficient policy enforcement in extensions. Reported by Masato Kinugawa - CVE-2019-13756: Incorrect security UI in printing. Reported by Khalil Zhani - CVE-2019-13757: Incorrect security UI in Omnibox. Reported by Khalil Zhani - CVE-2019-13758: Insufficient policy enforcement in navigation. Reported by Khalil Zhani - CVE-2019-13759: Incorrect security UI. Reported by Wenxu Wu - CVE-2019-13761: Incorrect security UI in Omnibox. Reported by Khalil Zhani - CVE-2019-13762: Insufficient policy enforcement in downloads. Reported by csanuragjain - CVE-2019-13763: Insufficient policy enforcement in payments. Reported by weiwangpp93 - CVE-2019-13767: Use after free in media picker. Reported by Sergei Glazunov chromium (79.0.3945.79-1) unstable; urgency=medium . * New upstream stable release. chromium (79.0.3945.56-1) experimental; urgency=medium . * New upstream beta release. * Update standards version to 4.4.1. * Ignore the gpu blacklist by default again. chromium (78.0.3904.108-1) unstable; urgency=medium . * New upstream security release. - CVE-2019-13723: Use-after-free in Bluetooth. Reported by Yuxiang Li - CVE-2019-13724: Out-of-bounds in Bluetooth. Reported by Yuxiang Li * Disable vaapi on armhf (closes: #944627). chromium (78.0.3904.108-1~deb10u1) buster-security; urgency=medium . * New upstream security release. - CVE-2019-13723: Use-after-free in Bluetooth. Reported by Yuxiang Li - CVE-2019-13724: Out-of-bounds in Bluetooth. Reported by Yuxiang Li chromium (78.0.3904.97-1) unstable; urgency=medium . * New upstream security release. * Enable vaapi (closes: #940074). * Fix crash during profile manager shutdown. * Drop libglewmx-dev build dependency (closes: #941050). clamav (0.102.1+dfsg-0+deb10u2) buster; urgency=medium . * clamav-daemon: Correct error from ScanOnAccess option removal so that setting LogFile options via DebConf works again (Closes: #950296) . clamav (0.102.1+dfsg-0+deb10u1) buster; urgency=medium . * Import 0.102.1 (Closes: #945265) - CVE-2019-15961 (A Denial-of-Service as a result of excessively long scan times). - Let freshclam show progress during download (Closes: #690789). * Update symbol file. * Add libfreshclam to the libclamav9 package. * Add the clamonacc binary to the clamav-daemon package. * Drop ScanOnAccess option. The clamonacc provides this functionality. clamav (0.102.1+dfsg-0+deb10u1) buster; urgency=medium . * Import 0.102.1 (Closes: #945265) - CVE-2019-15961 (A Denial-of-Service as a result of excessively long scan times). - Let freshclam show progress during download (Closes: #690789). * Update symbol file. * Add libfreshclam to the libclamav9 package. * Add the clamonacc binary to the clamav-daemon package. * Drop ScanOnAccess option. The clamonacc provides this functionality. clamav (0.102.1+dfsg-0+deb9u2) stretch; urgency=medium . * clamav-daemon: Correct error from ScanOnAccess option removal so that setting LogFile options via DebConf works again (Closes: #950296) . clamav (0.102.1+dfsg-0+deb9u1) stretch; urgency=medium . * Import 0.102.1 (Closes: #945265) - CVE-2019-15961 (A Denial-of-Service as a result of excessively long scan times). - Let freshclam show progress during download (Closes: #690789). * Update symbol file. * Add libfreshclam to the libclamav9 package. * Add the clamonacc binary to the clamav-daemon package. * Drop ScanOnAccess option. The clamonacc provides this functionality. clamav (0.102.1+dfsg-0+deb9u1) stretch; urgency=medium . * Import 0.102.1 (Closes: #945265) - CVE-2019-15961 (A Denial-of-Service as a result of excessively long scan times). - Let freshclam show progress during download (Closes: #690789). * Update symbol file. * Add libfreshclam to the libclamav9 package. * Add the clamonacc binary to the clamav-daemon package. * Drop ScanOnAccess option. The clamonacc provides this functionality. clamav (0.101.4+dfsg-1) unstable; urgency=medium . * Import 0.101.4 - CVE-2019-12625 (Add scan time limit to limit the processing zip-bombs) (Closes:934359) - CVE-2019-12900 (An out of bounds write was possible within ClamAV's NSIS bzip) - update symbols file (bump to 101.4 and drop unused cli_strnstr). compactheader (3.0.0~beta5-2~deb10u1) buster; urgency=medium . * Rebuild for Buster * [cdab1c4] d/gbp.conf: adjsut to debian/buster compactheader (3.0.0~beta5-1) unstable; urgency=medium . * [89f1683] d/control: adding versioned B-D on mozilla-devscripts Using mozilla-devscripts need to be based on some recent version. * [3503e4b] debhelper: use debhelper-compat in B-D Moving over to debhelper-compat version 12, reducing the maintenance of used files. * [e3ef1f4] d/control: bump Standards-Version to 4.4.1 No further changes needed. * [e1787a9] d/control: move Homepage info over to GitHub The upstream project lives basically more on GitHub than on the old mozdev website. * [8944c9d] d/gbp.conf: exclude some more VCS files The upstream source can include some old Mercurial VCS controlling files which are useless fur us, exclude them while importing the source. * [8b0d586] New upstream version 3.0.0~beta5 The AddOn is now full web-extension based. (Closes: #944021) * [ca0fad3] Remove patch queue The one patch we have used within the patch queue isn't needed any more. * [f6a6dca] d/control: remove B-D on mozilla-devscripts For now drop the usage of any helper from mozilla-devscripts as it brings no gain or advantage. The dh sequencers are enough to build the package. * [c578353] d/control: add new package webext-compactheader The source of the package is now web-extension based only, no old transitional xul stuff is included. So make this visible by moving the main binary package over to webext-* syntax. * [d12d2a1] d/rules: adjust package install Clean up all non needed xul-* helpers, makes the mostly needed target reduced to the quite the minimum. * [37b1cd3] d/copyright: update file content Update to data reflecting the year 2019. * [4ed4c79] webext-compactheader: adding install sequencer file * [77cf260] webext-compactheader: adding linking sequencer file * [aebb2f8] d/control: no root rights needed for package build * [7c1da48] d/control: adding dependency on TB >= 68.0 * [b9a01cf] Remove install of outdated file upstream-changelog The previously installed upstream changelog file isn't really helpful and outdated. We can drop it simply. console-common (0.7.90+deb10u1) buster; urgency=medium . * Non-maintainer upload. . [ Alastair McKinstry ] * Patch from Patrick Cernko for regression that dropped files. Closes: #935096 csh (20110502-4+deb10u1) buster; urgency=medium . * Non-maintainer upload. . [ Alastair McKinstry ] * Fix for segfault on eval. Patch thanks to Keith Thompson, Graham Inggs. Closes: #933057 cups (2.2.10-6+deb10u2) buster; urgency=medium . * Backport upstream security fixes: - Fix memory leak in ppdOpen (Closes: #946941) - CVE-2019-2228: The `ippSetValuetag` function did not validate the default language value (Closes: #946782) cyrus-imapd (3.0.8-6+deb10u4) buster; urgency=medium . * Add BACKUP type to cyrus-upgrade-db (Closes: #930764) cyrus-imapd (3.0.8-6+deb10u3) buster-security; urgency=medium . * Add patch to avoid mailbox creation as administrator (Closes: #CVE-2019-19783) cyrus-sasl2 (2.1.27+dfsg-1+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Off-by-one in _sasl_add_string function (CVE-2019-19906) (Closes: #947043) davical (1.1.8-1+deb10u1) buster-security; urgency=high . * Fix three cross-site scripting and cross-site request forgery vulnerabilities in the web administration front-end: CVE-2019-18345 CVE-2019-18346 CVE-2019-18347 (closes: #946343) debian-edu-config (2.10.65+deb10u4) buster; urgency=medium . [ Dominik George ] * Keep proxy settings on client if wpad is unreachable (Closes: #941001). debian-edu-config (2.10.65+deb10u3) buster-security; urgency=high . * Security fix for CVE-2019-3467 . [ Wolfgang Schweer ] * share/debian-edu-config/tools/kerberos-kdc-init: - Set proper rights for users in kadm5.acl file. (Closes: #946797) * Adjust debian/debian-edu-config.postinst to fix kadm5.acl upon upgrades. . [ Holger Levsen ] * Improve debian/debian-edu-config.postinst fix to only run once on upgrades. . [ Dominik George ] * Add NEWS to warn administrators with possible local changes. debian-installer (20190702+deb10u3) buster; urgency=medium . [ Steve McIntyre ] * Tweak mini.iso generation on arm so EFI netboot will work. . [ Cyril Brulebois ] * Update USE_UDEBS_FROM default from unstable to buster; debian/rules uses heuristics to set the right value anyway, but that should help users perform local builds without having to know about those heuristics. Thanks to Carsten Schoenert for the report. * Bump Linux ABI to 4.19.0-8. debian-installer-netboot-images (20190702+deb10u3) buster; urgency=medium . * Update to 20190702+deb10u3, from buster-proposed-updates. debian-lan-config (0.25+deb10u1) buster-security; urgency=high . * Fix kadmin access rules. * Add NEWS file. debian-security-support (2019.12.12~deb10u1) buster; urgency=medium . * Re-uploaded for buster. debian-security-support (2019.12.12~deb9u2) stretch-security; urgency=medium . * Rebuild for stretch-security. * Use debian/compat and depends on debhelper to support building on stretch. debian-security-support (2019.11.16) unstable; urgency=medium . * Add chromium to security-support-ended.deb9. * d/rules: update to NEXT_VERSION_ID=11. debian-security-support (2019.11.15) unstable; urgency=medium . * Team upload. * Add libqb to security-support-ended.deb8. debian-security-support (2019.11.01) unstable; urgency=medium . * Remove nodejs from security-support-limited as it is supported since the Buster release. Closes: #931376. * Add empty security-support-ended.deb11 file. * check-support-status.in: set DEB_NEXT_VER_ID=11. debian-security-support (2019.10.31) unstable; urgency=medium . * Mark nodejs only suitable for trusted content. Closes: #931376. * Add nasm-mozilla and nodejs-mozilla to security-support-ended.deb8 and security-support-ended.deb9 as they are only provided as build dependency for Firefox/Thunderbird >= 68. Closes: #943365. * Bump standards version to 4.4.1, no changes needed. dispmua (1.8.4.6-1~deb10u1) buster; urgency=medium . * Team upload. * Backport to Buster in order to make dispmua compatible with Thunderbird 68.x again. (Closes: #943584) dispmua (1.8.4.6-1~deb9u1) stretch; urgency=medium . * Team upload * Backport to Stretch in order to make dispmua compatible with Thunderbird 68.x again. (Closes: #943584) * Revert to compat level 10. dkimpy (0.9.6-0+deb10u1) buster; urgency=medium . * Update debian/watch to only see 0.9 versions for stable updates * Update debian/gbp.conf to use buster branches * New upstream bugfix releases: * 0.9.6 - Follow CNAMES when looking up key records when using DNS (pydns) (LP: #1856421) - Provide specialized error message when signing or verifying ed25519 signatures and pynacl is not installed (LP: #1854475) - Catch binascii related key format errors (LP: #1854477) * 0.9.5 - Ignore unknown service types in key records (LP: #1847020) - This is required by RFC 6376 and predecessors. It becomes important now that RFC 8460, which defines a new DKIM service type exists. This change is required to avoid processing tlsrpt keys like regular email keys, which is incorrect, they have different requirements. * 0.9.4 - Add LICENSE to MANIFEST.in so it is included in the tarball (LP: #1845318) * 0.9.3 - Fix linesep setting in arcsign script (LP: #1838262) (Thanks to Gowtham Gopalakrishnan for the report and the patch) - Fix default canonicalization for DKIM signature verification to be simple/simple per RFC 6376 (LP: #1839299) (Thanks to Cyril Nicodème for the report and a suggested fix) * 0.9.2 - Fix the arcsign script so it works with the current API (Note: the new srv_id option is the authserv_id to use in the ARC signatures - Only AR fields with an authserv-id that matches srv_id will be considered for ARC signing) - Fix cv=none processing for initial signature in chain - Add additional text documenting use of srv_id for ARC signing to docstrings and man 1 arcsign (LP: #1808301) - Use same line seperator for output as input in dkimsign/arcsign (LP: #1808686) - Refactor canonicalization.py strip_trailing_lines to avoid using re for more consistent processing across python versions (Thanks to Jonathan Bastien-Filiatrault for the change) - Refactor header folding for more consistent results, including reduced stray whitespace (Also Jonathan Bastien-Filiatrault) - Don't log message headers and body unless explicitely requested. This should also reduce memory usage on large messages. (Jonathan Bastien-Filiatrault) - Clarify the crlf does not count towards line length in fold - Adjust fold maxlen to one shorter for lines after the first, since they already have a leading space (LP: #1823008) dkimpy (0.9.5-1) unstable; urgency=medium . * New upstream release * Bump standards-version to 4.4.1 without further change dkimpy (0.9.4-1) unstable; urgency=medium . * New upstream release * Update public upstream key to be minimal dkimpy (0.9.3-1) unstable; urgency=medium . [ Ondřej Nový ] * Use debhelper-compat instead of debian/compat. . [ Scott Kitterman ] * New upstream release * Update debian/copyright dkimpy (0.9.2-1) unstable; urgency=medium . * New upstream release * Drop Python 2 support (no rdepends) * Bump standards-version to 4.4.0 without further change dkimpy-milter (1.0.3-1) buster; urgency=medium . * New upstream release: * Fix priviledge managment at startup so Unix sockets work: Milter: Move drop_privileges before Milter.runmilter and delete own_socketfile so that the milter interface runs as the correct user without race conditions about changing ownership of the socket file when it hasn't been created yet (When the milter is started, it will create the socket based on uMask, so we don't need to manually change it) * Improve error log messages to aid troublshooting dpdk (18.11.5-1~deb10u1) buster; urgency=medium . * Merge tag 'debian/18.11.5-1' into buster. * Drop CVE-2019-14818 patches, merged upstream. . dpdk (18.11.5-1) unstable; urgency=medium . * New upstream version 18.11.5; For a list of changes see http://doc.dpdk.org/guides-18.11/rel_notes/release_18_11.html * Refresh 0004-build-bump-minimum-Meson-version-to-0.47.1.patch to remove fuzz from 18.11.5 . dpdk (18.11.4-1) unstable; urgency=high . * Merge stable update to 18.11.4; For a list of changes see http://doc.dpdk.org/guides-18.11/rel_notes/release_18_11.html * Fixes CVE-2019-14818 * Refresh 0004-build-bump-minimum-Meson-version-to-0.47.1.patch to remove fuzz from 18.11.4 . dpdk (18.11.3-1) unstable; urgency=medium . * Merge stable update to 18.11.3; For a list of changes see http://doc.dpdk.org/guides-18.11/rel_notes/release_18_11.html#id2 - refresh d/p/0004-build-bump-minimum-Meson-version-to-0.47.1.patch - refresh d/p/avoid-as-needed-as-it-causes-overlinking.patch - d/dpdk-dev.install: dpdk-test is now properly in usr/bin - d/librte-security18.11.symbols: mark some symbols that now properly are experimental as such (none is gone) - among other things it fixes a dkms build issue with kernel 5.4 (LP: #1848585) . dpdk (18.11.2-4) unstable; urgency=medium . * d/p/avoid-as-needed-as-it-causes-overlinking.patch: fix overlinking in software using the dpdk pkg-config (LP: #1841759) . dpdk (18.11.2-3) unstable; urgency=medium . * Note branch in Vcs-Git. * Bump Standards-Version to 4.4.0. * Fix distribution in dpdk-dev.NEWS. Fixes LW: debian-news-entry-has-strange-distribution dpdk (18.11.4-1) unstable; urgency=high . * Merge stable update to 18.11.4; For a list of changes see http://doc.dpdk.org/guides-18.11/rel_notes/release_18_11.html * Fixes CVE-2019-14818 * Refresh 0004-build-bump-minimum-Meson-version-to-0.47.1.patch to remove fuzz from 18.11.4 dpdk (18.11.3-1) unstable; urgency=medium . * Merge stable update to 18.11.3; For a list of changes see http://doc.dpdk.org/guides-18.11/rel_notes/release_18_11.html#id2 - refresh d/p/0004-build-bump-minimum-Meson-version-to-0.47.1.patch - refresh d/p/avoid-as-needed-as-it-causes-overlinking.patch - d/dpdk-dev.install: dpdk-test is now properly in usr/bin - d/librte-security18.11.symbols: mark some symbols that now properly are experimental as such (none is gone) - among other things it fixes a dkms build issue with kernel 5.4 (LP: #1848585) dpdk (18.11.2-4) unstable; urgency=medium . * d/p/avoid-as-needed-as-it-causes-overlinking.patch: fix overlinking in software using the dpdk pkg-config (LP: #1841759) dpdk (18.11.2-3) unstable; urgency=medium . * Note branch in Vcs-Git. * Bump Standards-Version to 4.4.0. * Fix distribution in dpdk-dev.NEWS. Fixes LW: debian-news-entry-has-strange-distribution dpdk (18.11.2-2+deb10u2) buster-security; urgency=high . * Backport patches to fix CVE-2019-14818. A denial of service security issue has been found in the Vhost PMD. e2fsprogs (1.44.5-1+deb10u3) buster; urgency=medium . * Fix CVE-2019-5188: potential stack underflow in e2fsck (Closes: #948508) * Fix use after free in e2fsck (Closes: #948517) enigmail (2:2.1.3+ds1-4~deb10u2) buster-security; urgency=medium . * Upload to buster-security after discussing with the security team (closes: #945014) . enigmail (2:2.1.3+ds1-4~deb10u1) buster; urgency=medium . * Upload to debian stable to keep it installable now that Thunderbird 68 is in stable (Closes: #945014) . enigmail (2:2.1.3+ds1-4) unstable; urgency=medium . * convert to python3 * convert unit tests to python3 as well * wrap-and-sort -ast . enigmail (2:2.1.3+ds1-3) unstable; urgency=medium . * d/tests: permit stderr on tbird-sqlite . enigmail (2:2.1.3+ds1-2) unstable; urgency=medium . * Address autopkgtest failures (Closes: #944216) . enigmail (2:2.1.3+ds1-1) unstable; urgency=medium . * new upstream version (closes: #933832) * prepare to exclude more pieces of OpenPGP.js from upstream * upstream renamed the openpgp.worker javascript file * standards-version: bump to 4.4.1 (no changes needed) * drop mozilla-devscripts due to lack of install.rdf * strip out config.guess and config.sub when importing orig tarballs * refresh patches * strip even more OpenPGP.js when building * build in build-tb/ instead of build/ * d/copyright: drop unnecessary stanzas * enigmail 2.1.3 needs thunderbird 68 * d/run-tests: adapt to enigmail 2.1 test practices * use thunderbird --headless and rely on main.js to identify jsunit test * Avoid testing dependency on X11 for sqlite * ensure that we see some output when testing. * JSUnit is provided globally if jsunit 0.2.2 is installed * make unit test run without xvfb * always use system config.{guess,sub} * whittle down errors in the test suite . enigmail (2:2.0.12+ds1-1) unstable; urgency=medium . * new upstream release * refresh patches, dropping those already upstream * Standards-Version: bump to 4.4.0 (no changes needed) * move to debhelper 12 . enigmail (2:2.0.11+ds1-2) unstable; urgency=medium . * minimize legacy-display protected headers for encrypted mails . enigmail (2:2.0.11+ds1-1) unstable; urgency=medium . * new upstream release * refresh patches * use the older import-show with --dry-run instead of show-only enigmail (2:2.1.3+ds1-3+exp2) experimental; urgency=medium . * convert unit tests to python3 as well * try adding unit tests back to debian build process * wrap-and-sort -ast enigmail (2:2.1.3+ds1-3+exp1) experimental; urgency=medium . * move to debian/experimental * convert packaging to python3 (Closes: #936482) enigmail (2:2.1.3+ds1-3) unstable; urgency=medium . * d/tests: permit stderr on tbird-sqlite enigmail (2:2.1.3+ds1-2) unstable; urgency=medium . * Address autopkgtest failures (Closes: #944216) enigmail (2:2.1.3+ds1-1) unstable; urgency=medium . * new upstream version (closes: #933832) * prepare to exclude more pieces of OpenPGP.js from upstream * upstream renamed the openpgp.worker javascript file * standards-version: bump to 4.4.1 (no changes needed) * drop mozilla-devscripts due to lack of install.rdf * strip out config.guess and config.sub when importing orig tarballs * refresh patches * strip even more OpenPGP.js when building * build in build-tb/ instead of build/ * d/copyright: drop unnecessary stanzas * enigmail 2.1.3 needs thunderbird 68 * d/run-tests: adapt to enigmail 2.1 test practices * use thunderbird --headless and rely on main.js to identify jsunit test * Avoid testing dependency on X11 for sqlite * ensure that we see some output when testing. * JSUnit is provided globally if jsunit 0.2.2 is installed * make unit test run without xvfb * always use system config.{guess,sub} * whittle down errors in the test suite enigmail (2:2.0.12+ds1-1) unstable; urgency=medium . * new upstream release * refresh patches, dropping those already upstream * Standards-Version: bump to 4.4.0 (no changes needed) * move to debhelper 12 fig2dev (1:3.2.7a-5+deb10u3) buster; urgency=medium . * 42_CVE-2019-19746: Reject huge arrow types causing integer overflow. This fixes CVE-2019-19746 (Closes: #946628). * 43_fgets2getline: Replace most calls to fgets() by getline() in read.c. This fixes CVE-2019-19797 and several other segfaults (Closes: #946866). fig2dev (1:3.2.7a-5+deb10u2) buster; urgency=medium . * 41_CVE-2019-19555: Allow Fig v2 text strings ending with multiple ^A. This fixes CVE-2019-19555 (Closes: #946176). firefox-esr (68.4.1esr-1~deb10u1) buster-security; urgency=medium . * New upstream release. * Fix for mfsa2020-03, also known as CVE-2019-17026. firefox-esr (68.4.1esr-1~deb9u1) stretch-security; urgency=medium . * New upstream release. * Fix for mfsa2020-03, also known as CVE-2019-17026. firefox-esr (68.4.0esr-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2020-02, also known as: CVE-2019-17015, CVE-2019-17016, CVE-2019-17017, CVE-2019-17021, CVE-2019-17022, CVE-2019-17024. . * debian/rules: Don't build with --compress-debug-sections on jessie. * debian/rules: Use sourcestamp.txt for MOZ_BUILD_DATE. Closes: #946193. . * sourcestamp.txt: Fill with the missing info. * intl/icu_sources_data.py: Don't build ICU in parallel. * gfx/skia/skia/third_party/skcms/src/Transform_inl.h: Work around older GCC ICEs on arm. (Thanks Emilio Pozuelo Monfort) firefox-esr (68.4.0esr-1~deb10u1) buster-security; urgency=medium . * New upstream release. * Fixes for mfsa2020-02, also known as: CVE-2019-17015, CVE-2019-17016, CVE-2019-17017, CVE-2019-17021, CVE-2019-17022, CVE-2019-17024. . * debian/rules: Don't build with --compress-debug-sections on jessie. * debian/rules: Use sourcestamp.txt for MOZ_BUILD_DATE. Closes: #946193. . * sourcestamp.txt: Fill with the missing info. * intl/icu_sources_data.py: Don't build ICU in parallel. * gfx/skia/skia/third_party/skcms/src/Transform_inl.h: Work around older GCC ICEs on arm. (Thanks Emilio Pozuelo Monfort) firefox-esr (68.4.0esr-1~deb9u1) stretch-security; urgency=medium . * New upstream release. * Fixes for mfsa2020-02, also known as: CVE-2019-17015, CVE-2019-17016, CVE-2019-17017, CVE-2019-17021, CVE-2019-17022, CVE-2019-17024. . * debian/rules: Don't build with --compress-debug-sections on jessie. * debian/rules: Use sourcestamp.txt for MOZ_BUILD_DATE. Closes: #946193. . * sourcestamp.txt: Fill with the missing info. firefox-esr (68.3.0esr-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2019-37, also known as: CVE-2019-17008, CVE-2019-11745, CVE-2019-17010, CVE-2019-17005, CVE-2019-17011, CVE-2019-17012. . * debian/control*: Bump nss build dependencies. * debian/rules, debian/control.in: - Build with nodejs-mozilla on jessie and stretch. - Build with nasm-mozilla on jessie and stretch. - Don't build with system libvpx on stretch. (Thanks Emilio Pozuelo Monfort) firefox-esr (68.3.0esr-1~deb10u1) buster-security; urgency=medium . * New upstream release. * Fixes for mfsa2019-37, also known as: CVE-2019-17008, CVE-2019-11745, CVE-2019-17010, CVE-2019-17005, CVE-2019-17011, CVE-2019-17012. . * debian/control*: Bump nss build dependencies. * debian/rules, debian/control.in: - Build with nodejs-mozilla on jessie and stretch. - Build with nasm-mozilla on jessie and stretch. - Don't build with system libvpx on stretch. (Thanks Emilio Pozuelo Monfort) firefox-esr (68.3.0esr-1~deb9u1) stretch-security; urgency=medium . * New upstream release. * Fixes for mfsa2019-37, also known as: CVE-2019-17008, CVE-2019-11745, CVE-2019-17010, CVE-2019-17005, CVE-2019-17011, CVE-2019-17012. . * debian/control.in: Bump nss build dependencies. * intl/icu_sources_data.py: - Revert change from 68.2.0esr-1~deb9u2. - Don't build ICU in parallel. * gfx/skia/skia/third_party/skcms/src/Transform_inl.h: Work around GCC ICEs on arm. (Thanks Emilio Pozuelo Monfort) firefox-esr (68.2.0esr-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2019-33, also known as: CVE-2019-15903, CVE-2019-11757, CVE-2019-11758, CVE-2019-11759, CVE-2019-11760, CVE-2019-11761, CVE-2019-11762, CVE-2019-11763, CVE-2019-11764. freeimage (3.18.0+ds2-1+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * CVE-2019-12213: stack exhaustion caused by unwanted recursion in ReadThumbnail (Closes: #929597). * CVE-2019-12211: heap buffer overflow caused by invalid memcpy in PluginTIFF. freerdp2 (2.0.0~git20190204.1.2693389a+dfsg1-1+deb10u1) buster; urgency=medium . * debian/patches: + Add 0001_CVE-2019-17177.patch. Fix realloc return handling. (CVE-2019-17177). freetds (1.00.104-1+deb10u1) buster; urgency=medium . * Non-maintainer upload. * tds: Make sure UDT has varint set to 8 (CVE-2019-13508) (Closes: #944012) ghostscript (9.27~dfsg-2+deb10u3) buster-security; urgency=high . * remove .forceput from /.charkeys (CVE-2019-14869) git (1:2.20.1-2+deb10u1) buster-security; urgency=high . * new upstream point release (see RelNotes/2.20.2.txt). * Addresses the security issues CVE-2019-1348, CVE-2019-1349, CVE-2019-1350, CVE-2019-1351, CVE-2019-1352, CVE-2019-1353, CVE-2019-1354, and CVE-2019-1387. . Credit for finding these vulnerabilities goes to Microsoft Security Response Center, in particular to Nicolas Joly. Fixes were provided by Jeff King and Johannes Schindelin with help from Garima Singh. . * Addresses CVE-2019-19604, arbitrary code execution via the "update" field in .gitmodules. . Credit for finding this vulnerability goes to Joern Schneeweisz from GitLab. git-lfs (2.7.1-1+deb10u1) buster; urgency=medium . * Non-maintainer upload. . [ Stephen Gelman ] * Backport a fix from upstream that fixes FTBFS under Go 1.12.8, 1.11.13 (aka 1.11.6-1+deb10u1) (Closes: #940485) gnubg (1.06.002-1+deb10u1) buster; urgency=medium . [ Russ Allbery ] * Increase the size of static buffers used to build messages during program start so that the Spanish translation doesn't overflow a buffer. (Closes: #932351) gnutls28 (3.6.7-4+deb10u2) buster; urgency=medium . * Fix parsing of certificates using RegisteredID Closes: #949293 gnutls28 (3.6.7-4+deb10u1) buster; urgency=medium . * 42_rel3.6.10_01-gnutls_epoch_set_keys-do-not-forbid-random-padding.patch from 3.6.10: Fix interop problems with gnutls 2.x. Closes: #933538 (Thanks, Hanno Stock!) gtk2-engines-murrine (0.98.2-2+deb10u1) buster; urgency=medium . * debian/control: + Downgrade from R to S (gtk2-engine-themes): murrine-themes. (Closes: #838994). guile-2.2 (2.2.4+1-2+deb10u1) buster; urgency=medium . * Switch to dh_missing and ignore guile-X.Y for binary-indep. Thanks to Santiago Vila for reporting the problem. (Closes: 930774) haproxy (1.8.19-1+deb10u1) buster-security; urgency=high . * Apply two patches around HTTP/2 header validation allowing an attacker to use a CRLF inside an HTTP header. Fix CVE-2019-19330. intel-microcode (3.20191115.2~deb10u1) buster-security; urgency=high . * Rebuild for buster-security (no changes) * Refer to DSA-4565-2 for details. . intel-microcode (3.20191115.2) unstable; urgency=medium . * Microcode rollbacks (closes: #946515, LP#1854764): sig 0x00050654, pf_mask 0xb7, 2019-07-31, rev 0x2000064, size 33792 * Avoids hangs on warm reboots (cold boots work fine) on HEDT and Xeon processors with signature 0x50654. https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/issues/21 . intel-microcode (3.20191115.1) unstable; urgency=high . * New upstream microcode datafile 20191115 + Updated Microcodes: sig 0x000406e3, pf_mask 0xc0, 2019-10-03, rev 0x00d6, size 101376 sig 0x000506e3, pf_mask 0x36, 2019-10-03, rev 0x00d6, size 101376 sig 0x000806e9, pf_mask 0x10, 2019-10-15, rev 0x00ca, size 100352 sig 0x000806e9, pf_mask 0xc0, 2019-09-26, rev 0x00ca, size 100352 sig 0x000806ea, pf_mask 0xc0, 2019-10-03, rev 0x00ca, size 100352 sig 0x000806eb, pf_mask 0xd0, 2019-10-03, rev 0x00ca, size 100352 sig 0x000806ec, pf_mask 0x94, 2019-10-03, rev 0x00ca, size 100352 sig 0x000906e9, pf_mask 0x2a, 2019-10-03, rev 0x00ca, size 100352 sig 0x000906ea, pf_mask 0x22, 2019-10-03, rev 0x00ca, size 99328 sig 0x000906eb, pf_mask 0x02, 2019-10-03, rev 0x00ca, size 100352 sig 0x000906ec, pf_mask 0x22, 2019-10-03, rev 0x00ca, size 99328 sig 0x000906ed, pf_mask 0x22, 2019-10-03, rev 0x00ca, size 100352 sig 0x000a0660, pf_mask 0x80, 2019-10-03, rev 0x00ca, size 91136 . intel-microcode (3.20191113.1~deb10u1) buster-security; urgency=high . * Rebuild for buster-security (no changes) * Refer to DSA-4565-2 for details. . intel-microcode (3.20191113.1) unstable; urgency=high . * New upstream microcode datafile 20191113 + SECURITY UPDATE, refer to the 3.20191112.1 changelog entry for details Adds microcode update for CFL-S (Coffe Lake Desktop) INTEL-SA-00270, CVE-2019-11135, CVE-2019-0117 + Updated Microcodes (previously removed): sig 0x000906ec, pf_mask 0x22, 2019-08-14, rev 0x00c6, size 99328 intel-microcode (3.20191115.2~deb9u1) stretch-security; urgency=high . * Rebuild for stretch-security (no changes) * Refer to DSA-4565-2 for details. . intel-microcode (3.20191115.2) unstable; urgency=medium . * Microcode rollbacks (closes: #946515, LP#1854764): sig 0x00050654, pf_mask 0xb7, 2019-07-31, rev 0x2000064, size 33792 * Avoids hangs on warm reboots (cold boots work fine) on HEDT and Xeon processors with signature 0x50654. https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/issues/21 . intel-microcode (3.20191115.1) unstable; urgency=high . * New upstream microcode datafile 20191115 + Updated Microcodes: sig 0x000406e3, pf_mask 0xc0, 2019-10-03, rev 0x00d6, size 101376 sig 0x000506e3, pf_mask 0x36, 2019-10-03, rev 0x00d6, size 101376 sig 0x000806e9, pf_mask 0x10, 2019-10-15, rev 0x00ca, size 100352 sig 0x000806e9, pf_mask 0xc0, 2019-09-26, rev 0x00ca, size 100352 sig 0x000806ea, pf_mask 0xc0, 2019-10-03, rev 0x00ca, size 100352 sig 0x000806eb, pf_mask 0xd0, 2019-10-03, rev 0x00ca, size 100352 sig 0x000806ec, pf_mask 0x94, 2019-10-03, rev 0x00ca, size 100352 sig 0x000906e9, pf_mask 0x2a, 2019-10-03, rev 0x00ca, size 100352 sig 0x000906ea, pf_mask 0x22, 2019-10-03, rev 0x00ca, size 99328 sig 0x000906eb, pf_mask 0x02, 2019-10-03, rev 0x00ca, size 100352 sig 0x000906ec, pf_mask 0x22, 2019-10-03, rev 0x00ca, size 99328 sig 0x000906ed, pf_mask 0x22, 2019-10-03, rev 0x00ca, size 100352 sig 0x000a0660, pf_mask 0x80, 2019-10-03, rev 0x00ca, size 91136 . intel-microcode (3.20191113.1~deb9u1) stretch-security; urgency=high . * Rebuild for stretch-security (no changes) * Refer to DSA-4565-2 for details. . intel-microcode (3.20191113.1) unstable; urgency=high . * New upstream microcode datafile 20191113 + SECURITY UPDATE, refer to the 3.20191112.1 changelog entry for details Adds microcode update for CFL-S (Coffe Lake Desktop) INTEL-SA-00270, CVE-2019-11135, CVE-2019-0117 + Updated Microcodes (previously removed): sig 0x000906ec, pf_mask 0x22, 2019-08-14, rev 0x00c6, size 99328 intel-microcode (3.20191115.1) unstable; urgency=high . * New upstream microcode datafile 20191115 + Updated Microcodes: sig 0x000406e3, pf_mask 0xc0, 2019-10-03, rev 0x00d6, size 101376 sig 0x000506e3, pf_mask 0x36, 2019-10-03, rev 0x00d6, size 101376 sig 0x000806e9, pf_mask 0x10, 2019-10-15, rev 0x00ca, size 100352 sig 0x000806e9, pf_mask 0xc0, 2019-09-26, rev 0x00ca, size 100352 sig 0x000806ea, pf_mask 0xc0, 2019-10-03, rev 0x00ca, size 100352 sig 0x000806eb, pf_mask 0xd0, 2019-10-03, rev 0x00ca, size 100352 sig 0x000806ec, pf_mask 0x94, 2019-10-03, rev 0x00ca, size 100352 sig 0x000906e9, pf_mask 0x2a, 2019-10-03, rev 0x00ca, size 100352 sig 0x000906ea, pf_mask 0x22, 2019-10-03, rev 0x00ca, size 99328 sig 0x000906eb, pf_mask 0x02, 2019-10-03, rev 0x00ca, size 100352 sig 0x000906ec, pf_mask 0x22, 2019-10-03, rev 0x00ca, size 99328 sig 0x000906ed, pf_mask 0x22, 2019-10-03, rev 0x00ca, size 100352 sig 0x000a0660, pf_mask 0x80, 2019-10-03, rev 0x00ca, size 91136 intel-microcode (3.20191115.1~deb10u1) buster-security; urgency=high . * Rebuild for buster-security (no changes) * Refer to DSA-4565-2 for details. . intel-microcode (3.20191115.1) unstable; urgency=high . * New upstream microcode datafile 20191115 + Updated Microcodes: sig 0x000406e3, pf_mask 0xc0, 2019-10-03, rev 0x00d6, size 101376 sig 0x000506e3, pf_mask 0x36, 2019-10-03, rev 0x00d6, size 101376 sig 0x000806e9, pf_mask 0x10, 2019-10-15, rev 0x00ca, size 100352 sig 0x000806e9, pf_mask 0xc0, 2019-09-26, rev 0x00ca, size 100352 sig 0x000806ea, pf_mask 0xc0, 2019-10-03, rev 0x00ca, size 100352 sig 0x000806eb, pf_mask 0xd0, 2019-10-03, rev 0x00ca, size 100352 sig 0x000806ec, pf_mask 0x94, 2019-10-03, rev 0x00ca, size 100352 sig 0x000906e9, pf_mask 0x2a, 2019-10-03, rev 0x00ca, size 100352 sig 0x000906ea, pf_mask 0x22, 2019-10-03, rev 0x00ca, size 99328 sig 0x000906eb, pf_mask 0x02, 2019-10-03, rev 0x00ca, size 100352 sig 0x000906ec, pf_mask 0x22, 2019-10-03, rev 0x00ca, size 99328 sig 0x000906ed, pf_mask 0x22, 2019-10-03, rev 0x00ca, size 100352 sig 0x000a0660, pf_mask 0x80, 2019-10-03, rev 0x00ca, size 91136 . intel-microcode (3.20191113.1~deb10u1) buster-security; urgency=high . * Rebuild for buster-security (no changes) * Refer to DSA-4565-2 for details. . intel-microcode (3.20191113.1) unstable; urgency=high . * New upstream microcode datafile 20191113 + SECURITY UPDATE, refer to the 3.20191112.1 changelog entry for details Adds microcode update for CFL-S (Coffe Lake Desktop) INTEL-SA-00270, CVE-2019-11135, CVE-2019-0117 + Updated Microcodes (previously removed): sig 0x000906ec, pf_mask 0x22, 2019-08-14, rev 0x00c6, size 99328 intel-microcode (3.20191115.1~deb9u1) stretch-security; urgency=high . * Rebuild for stretch-security (no changes) * Refer to DSA-4565-2 for details. . intel-microcode (3.20191115.1) unstable; urgency=high . * New upstream microcode datafile 20191115 + Updated Microcodes: sig 0x000406e3, pf_mask 0xc0, 2019-10-03, rev 0x00d6, size 101376 sig 0x000506e3, pf_mask 0x36, 2019-10-03, rev 0x00d6, size 101376 sig 0x000806e9, pf_mask 0x10, 2019-10-15, rev 0x00ca, size 100352 sig 0x000806e9, pf_mask 0xc0, 2019-09-26, rev 0x00ca, size 100352 sig 0x000806ea, pf_mask 0xc0, 2019-10-03, rev 0x00ca, size 100352 sig 0x000806eb, pf_mask 0xd0, 2019-10-03, rev 0x00ca, size 100352 sig 0x000806ec, pf_mask 0x94, 2019-10-03, rev 0x00ca, size 100352 sig 0x000906e9, pf_mask 0x2a, 2019-10-03, rev 0x00ca, size 100352 sig 0x000906ea, pf_mask 0x22, 2019-10-03, rev 0x00ca, size 99328 sig 0x000906eb, pf_mask 0x02, 2019-10-03, rev 0x00ca, size 100352 sig 0x000906ec, pf_mask 0x22, 2019-10-03, rev 0x00ca, size 99328 sig 0x000906ed, pf_mask 0x22, 2019-10-03, rev 0x00ca, size 100352 sig 0x000a0660, pf_mask 0x80, 2019-10-03, rev 0x00ca, size 91136 . intel-microcode (3.20191113.1~deb9u1) stretch-security; urgency=high . * Rebuild for stretch-security (no changes) * Refer to DSA-4565-2 for details. . intel-microcode (3.20191113.1) unstable; urgency=high . * New upstream microcode datafile 20191113 + SECURITY UPDATE, refer to the 3.20191112.1 changelog entry for details Adds microcode update for CFL-S (Coffe Lake Desktop) INTEL-SA-00270, CVE-2019-11135, CVE-2019-0117 + Updated Microcodes (previously removed): sig 0x000906ec, pf_mask 0x22, 2019-08-14, rev 0x00c6, size 99328 intel-microcode (3.20191113.1) unstable; urgency=high . * New upstream microcode datafile 20191113 + SECURITY UPDATE, refer to the 3.20191112.1 changelog entry for details Adds microcode update for CFL-S (Coffe Lake Desktop) INTEL-SA-00270, CVE-2019-11135, CVE-2019-0117 + Updated Microcodes (previously removed): sig 0x000906ec, pf_mask 0x22, 2019-08-14, rev 0x00c6, size 99328 intel-microcode (3.20191112.1) unstable; urgency=medium . * New upstream microcode datafile 20191112 + SECURITY UPDATE - Implements MDS mitigation (TSX TAA), INTEL-SA-00270, CVE-2019-11135 - Implements TA Indirect Sharing mitigation, and improves the MDS mitigation (VERW) - Fixes FIVR (Xeon Voltage Modulation) vulnerability, INTEL-SA-00271, CVE-2019-11139 - Fixes SGX vulnerabilities and errata (including CVE-2019-0117) + CRITICAL ERRATA FIXES - Fixes Jcc conditional jump macro-fusion erratum (Skylake+, except Ice Lake), causes a 0-3% typical perforance hit (can be as bad as 10%). But ensures the processor will actually jump where it should, so don't even *dream* of not applying this fix. - Fixes AVX SHUF* instruction implementation flaw erratum + Removed Microcodes: sig 0x000906ec, pf_mask 0x22, 2019-02-14, rev 0x00ae, size 98304 + New Microcodes: sig 0x000406d8, pf_mask 0x01, 2019-09-16, rev 0x012d, size 84992 sig 0x00050656, pf_mask 0xbf, 2019-09-05, rev 0x400002c, size 51200 sig 0x00060663, pf_mask 0x80, 2018-04-17, rev 0x002a, size 87040 sig 0x000706a8, pf_mask 0x01, 2019-08-29, rev 0x0016, size 74752 sig 0x000706e5, pf_mask 0x80, 2019-09-05, rev 0x0046, size 102400 sig 0x000a0660, pf_mask 0x80, 2019-08-27, rev 0x00c6, size 91136 + Updated Microcodes: sig 0x000406e3, pf_mask 0xc0, 2019-08-14, rev 0x00d4, size 101376 sig 0x00050654, pf_mask 0xb7, 2019-09-05, rev 0x2000065, size 34816 sig 0x00050657, pf_mask 0xbf, 2019-09-05, rev 0x500002c, size 51200 sig 0x000506e3, pf_mask 0x36, 2019-08-14, rev 0x00d4, size 101376 sig 0x000706a1, pf_mask 0x01, 2019-08-28, rev 0x0032, size 73728 sig 0x000806e9, pf_mask 0x10, 2019-08-14, rev 0x00c6, size 99328 sig 0x000806e9, pf_mask 0xc0, 2019-08-14, rev 0x00c6, size 100352 sig 0x000806ea, pf_mask 0xc0, 2019-08-14, rev 0x00c6, size 99328 sig 0x000806eb, pf_mask 0xd0, 2019-08-14, rev 0x00c6, size 100352 sig 0x000806ec, pf_mask 0x94, 2019-08-14, rev 0x00c6, size 100352 sig 0x000906e9, pf_mask 0x2a, 2019-08-14, rev 0x00c6, size 100352 sig 0x000906ea, pf_mask 0x22, 2019-08-14, rev 0x00c6, size 99328 sig 0x000906eb, pf_mask 0x02, 2019-08-14, rev 0x00c6, size 100352 sig 0x000906ed, pf_mask 0x22, 2019-08-14, rev 0x00c6, size 99328 + Updated Microcodes (previously removed): sig 0x00050653, pf_mask 0x97, 2019-09-09, rev 0x1000151, size 32768 intel-microcode (3.20191112.1~deb10u1) buster-security; urgency=high . * Rebuild for buster-security (no changes) * Refer to DSA-4565-1 for details. . intel-microcode (3.20191112.1) unstable; urgency=medium . * New upstream microcode datafile 20191112 + SECURITY UPDATE - Implements MDS mitigation (TSX TAA), INTEL-SA-00270, CVE-2019-11135 - Implements TA Indirect Sharing mitigation, and improves the MDS mitigation (VERW) - Fixes FIVR (Xeon Voltage Modulation) vulnerability, INTEL-SA-00271, CVE-2019-11139 - Fixes SGX vulnerabilities and errata (including CVE-2019-0117) + CRITICAL ERRATA FIXES - Fixes Jcc conditional jump macro-fusion erratum (Skylake+, except Ice Lake), causes a 0-3% typical perforance hit (can be as bad as 10%). But ensures the processor will actually jump where it should, so don't even *dream* of not applying this fix. - Fixes AVX SHUF* instruction implementation flaw erratum + Removed Microcodes: sig 0x000906ec, pf_mask 0x22, 2019-02-14, rev 0x00ae, size 98304 + New Microcodes: sig 0x000406d8, pf_mask 0x01, 2019-09-16, rev 0x012d, size 84992 sig 0x00050656, pf_mask 0xbf, 2019-09-05, rev 0x400002c, size 51200 sig 0x00060663, pf_mask 0x80, 2018-04-17, rev 0x002a, size 87040 sig 0x000706a8, pf_mask 0x01, 2019-08-29, rev 0x0016, size 74752 sig 0x000706e5, pf_mask 0x80, 2019-09-05, rev 0x0046, size 102400 sig 0x000a0660, pf_mask 0x80, 2019-08-27, rev 0x00c6, size 91136 + Updated Microcodes: sig 0x000406e3, pf_mask 0xc0, 2019-08-14, rev 0x00d4, size 101376 sig 0x00050654, pf_mask 0xb7, 2019-09-05, rev 0x2000065, size 34816 sig 0x00050657, pf_mask 0xbf, 2019-09-05, rev 0x500002c, size 51200 sig 0x000506e3, pf_mask 0x36, 2019-08-14, rev 0x00d4, size 101376 sig 0x000706a1, pf_mask 0x01, 2019-08-28, rev 0x0032, size 73728 sig 0x000806e9, pf_mask 0x10, 2019-08-14, rev 0x00c6, size 99328 sig 0x000806e9, pf_mask 0xc0, 2019-08-14, rev 0x00c6, size 100352 sig 0x000806ea, pf_mask 0xc0, 2019-08-14, rev 0x00c6, size 99328 sig 0x000806eb, pf_mask 0xd0, 2019-08-14, rev 0x00c6, size 100352 sig 0x000806ec, pf_mask 0x94, 2019-08-14, rev 0x00c6, size 100352 sig 0x000906e9, pf_mask 0x2a, 2019-08-14, rev 0x00c6, size 100352 sig 0x000906ea, pf_mask 0x22, 2019-08-14, rev 0x00c6, size 99328 sig 0x000906eb, pf_mask 0x02, 2019-08-14, rev 0x00c6, size 100352 sig 0x000906ed, pf_mask 0x22, 2019-08-14, rev 0x00c6, size 99328 + Updated Microcodes (previously removed): sig 0x00050653, pf_mask 0x97, 2019-09-09, rev 0x1000151, size 32768 . intel-microcode (3.20190918.1) unstable; urgency=medium . * New upstream microcode datafile 20190918 + SECURITY UPDATE *Might* contain mitigations for INTEL-SA-00247 (RAMBleed), given the set of processors being updated. + Updated Microcodes: sig 0x000306d4, pf_mask 0xc0, 2019-06-13, rev 0x002e, size 19456 sig 0x000306f4, pf_mask 0x80, 2019-06-17, rev 0x0016, size 18432 sig 0x00040671, pf_mask 0x22, 2019-06-13, rev 0x0021, size 14336 sig 0x000406f1, pf_mask 0xef, 2019-06-18, rev 0xb000038, size 30720 sig 0x00050654, pf_mask 0xb7, 2019-07-31, rev 0x2000064, size 33792 sig 0x00050657, pf_mask 0xbf, 2019-08-12, rev 0x500002b, size 51200 sig 0x00050662, pf_mask 0x10, 2019-06-17, rev 0x001c, size 32768 sig 0x00050663, pf_mask 0x10, 2019-06-17, rev 0x7000019, size 24576 sig 0x00050664, pf_mask 0x10, 2019-06-17, rev 0xf000017, size 24576 sig 0x00050665, pf_mask 0x10, 2019-06-17, rev 0xe00000f, size 19456 intel-microcode (3.20191112.1~deb9u1) stretch-security; urgency=high . * Rebuild for stretch-security (no changes) * Refer to DSA-4565-1 for details. . intel-microcode (3.20191112.1) unstable; urgency=medium . * New upstream microcode datafile 20191112 + SECURITY UPDATE - Implements MDS mitigation (TSX TAA), INTEL-SA-00270, CVE-2019-11135 - Implements TA Indirect Sharing mitigation, and improves the MDS mitigation (VERW) - Fixes FIVR (Xeon Voltage Modulation) vulnerability, INTEL-SA-00271, CVE-2019-11139 - Fixes SGX vulnerabilities and errata (including CVE-2019-0117) + CRITICAL ERRATA FIXES - Fixes Jcc conditional jump macro-fusion erratum (Skylake+, except Ice Lake), causes a 0-3% typical perforance hit (can be as bad as 10%). But ensures the processor will actually jump where it should, so don't even *dream* of not applying this fix. - Fixes AVX SHUF* instruction implementation flaw erratum + Removed Microcodes: sig 0x000906ec, pf_mask 0x22, 2019-02-14, rev 0x00ae, size 98304 + New Microcodes: sig 0x000406d8, pf_mask 0x01, 2019-09-16, rev 0x012d, size 84992 sig 0x00050656, pf_mask 0xbf, 2019-09-05, rev 0x400002c, size 51200 sig 0x00060663, pf_mask 0x80, 2018-04-17, rev 0x002a, size 87040 sig 0x000706a8, pf_mask 0x01, 2019-08-29, rev 0x0016, size 74752 sig 0x000706e5, pf_mask 0x80, 2019-09-05, rev 0x0046, size 102400 sig 0x000a0660, pf_mask 0x80, 2019-08-27, rev 0x00c6, size 91136 + Updated Microcodes: sig 0x000406e3, pf_mask 0xc0, 2019-08-14, rev 0x00d4, size 101376 sig 0x00050654, pf_mask 0xb7, 2019-09-05, rev 0x2000065, size 34816 sig 0x00050657, pf_mask 0xbf, 2019-09-05, rev 0x500002c, size 51200 sig 0x000506e3, pf_mask 0x36, 2019-08-14, rev 0x00d4, size 101376 sig 0x000706a1, pf_mask 0x01, 2019-08-28, rev 0x0032, size 73728 sig 0x000806e9, pf_mask 0x10, 2019-08-14, rev 0x00c6, size 99328 sig 0x000806e9, pf_mask 0xc0, 2019-08-14, rev 0x00c6, size 100352 sig 0x000806ea, pf_mask 0xc0, 2019-08-14, rev 0x00c6, size 99328 sig 0x000806eb, pf_mask 0xd0, 2019-08-14, rev 0x00c6, size 100352 sig 0x000806ec, pf_mask 0x94, 2019-08-14, rev 0x00c6, size 100352 sig 0x000906e9, pf_mask 0x2a, 2019-08-14, rev 0x00c6, size 100352 sig 0x000906ea, pf_mask 0x22, 2019-08-14, rev 0x00c6, size 99328 sig 0x000906eb, pf_mask 0x02, 2019-08-14, rev 0x00c6, size 100352 sig 0x000906ed, pf_mask 0x22, 2019-08-14, rev 0x00c6, size 99328 + Updated Microcodes (previously removed): sig 0x00050653, pf_mask 0x97, 2019-09-09, rev 0x1000151, size 32768 . intel-microcode (3.20190918.1) unstable; urgency=medium . * New upstream microcode datafile 20190918 + SECURITY UPDATE *Might* contain mitigations for INTEL-SA-00247 (RAMBleed), given the set of processors being updated. + Updated Microcodes: sig 0x000306d4, pf_mask 0xc0, 2019-06-13, rev 0x002e, size 19456 sig 0x000306f4, pf_mask 0x80, 2019-06-17, rev 0x0016, size 18432 sig 0x00040671, pf_mask 0x22, 2019-06-13, rev 0x0021, size 14336 sig 0x000406f1, pf_mask 0xef, 2019-06-18, rev 0xb000038, size 30720 sig 0x00050654, pf_mask 0xb7, 2019-07-31, rev 0x2000064, size 33792 sig 0x00050657, pf_mask 0xbf, 2019-08-12, rev 0x500002b, size 51200 sig 0x00050662, pf_mask 0x10, 2019-06-17, rev 0x001c, size 32768 sig 0x00050663, pf_mask 0x10, 2019-06-17, rev 0x7000019, size 24576 sig 0x00050664, pf_mask 0x10, 2019-06-17, rev 0xf000017, size 24576 sig 0x00050665, pf_mask 0x10, 2019-06-17, rev 0xe00000f, size 19456 intel-microcode (3.20190918.1) unstable; urgency=medium . * New upstream microcode datafile 20190918 + SECURITY UPDATE *Might* contain mitigations for INTEL-SA-00247 (RAMBleed), given the set of processors being updated. + Updated Microcodes: sig 0x000306d4, pf_mask 0xc0, 2019-06-13, rev 0x002e, size 19456 sig 0x000306f4, pf_mask 0x80, 2019-06-17, rev 0x0016, size 18432 sig 0x00040671, pf_mask 0x22, 2019-06-13, rev 0x0021, size 14336 sig 0x000406f1, pf_mask 0xef, 2019-06-18, rev 0xb000038, size 30720 sig 0x00050654, pf_mask 0xb7, 2019-07-31, rev 0x2000064, size 33792 sig 0x00050657, pf_mask 0xbf, 2019-08-12, rev 0x500002b, size 51200 sig 0x00050662, pf_mask 0x10, 2019-06-17, rev 0x001c, size 32768 sig 0x00050663, pf_mask 0x10, 2019-06-17, rev 0x7000019, size 24576 sig 0x00050664, pf_mask 0x10, 2019-06-17, rev 0xf000017, size 24576 sig 0x00050665, pf_mask 0x10, 2019-06-17, rev 0xe00000f, size 19456 ldm (2:2.18.06-1+deb10u1) buster-security; urgency=medium . * Add patch fixing root access when LDM_USERNAME is unset. libburn (1.5.0-1+deb10u1) buster; urgency=low . * Patch taken from upstream development + cdrskin multi-track burning was slow and stalled after track 1. Regression introduced in version 1.5.0 by commit 84fad99, 2018.02.05, which should fix a bug with O_DIRECT track reading. Debian never enabled O_DIRECT, so 84fad99 was never desirable. The patch reverts the upstream commit to bring the fifo code of cdrskin back to the state in Debian 9 and Debian 8. Closes: #946679 libcgns (3.3.0-7~deb10u1) buster; urgency=medium . * Rebuild for buster. . libcgns (3.3.0-7) unstable; urgency=medium . * Backport fix from experimental * New patch gcc-pr92361.patch to fix FTBFS on ppcel64 (closes: #944127) libidn2 (2.0.5-1+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Fix free of random (stack) value in idn2_to_ascii_4i() * idn2_to_ascii_4i(): Restrict output length to 63 (CVE-2019-18224) (Closes: #942895) * Fail make if 'ronn' doesn't exist when building docs * Fix generation of idn2.1 man page file * Move texinfo from Build-Depends-Indep to Build-Depends (Closes: #949705) libimobiledevice (1.2.1~git20181030.92c5462-2) stable; urgency=medium . * d/patches: properly handle partial SSL writes * d/gbp.conf: follow buster branch libmatroska (1.4.9-1+deb10u1) buster; urgency=medium . * debian/shlibs: Bump version to 1.4.7 since that version introduced new symbols (Closes: #946669) libmysofa (0.6~dfsg0-3+deb10u1) buster; urgency=high . * Backport security fixes (Closes: #939735) * CVE-2019-16091 * CVE-2019-16092 * CVE-2019-16093 * CVE-2019-16094 * CVE-2019-16095 * misc security fixes that have no CVE assigned libole-storage-lite-perl (0.19-2+deb10u1) buster; urgency=medium . * Non-maintainer upload. * Backport upstream fix for years >= 2020 being misinterpreted. (Closes: #948668) libparse-win32registry-perl (1.0-2+deb10u1) buster; urgency=medium . * Non-maintainer upload. * Add patch to fix Y2K20 problem. (Closes: #948682) libparse-win32registry-perl (1.0-2+deb9u1) stretch; urgency=medium . * Non-maintainer upload. * Add patch to fix Y2K20 problem. (Closes: #948682) libperl4-corelibs-perl (0.004-1+deb10u1) buster; urgency=medium . * Non-maintainer upload. * Add t/timelocal.t fix for Y2K20 problem in t/timelocal.t. (Closes: #948666) libsolv (0.6.35-2+deb10u1) buster; urgency=medium . * debian/patches: + CVE-2019-20387: Add 0001_CVE-2019-20387.patch. Resolves heap-based buffer over-read in repodata.c (Closes: #949611). + 1006_various-types.patch: Trivial rebase. libspreadsheet-wright-perl (0.105-1+deb10u1) buster; urgency=medium . * Fixing previously unusable OpenDocument Spreadsheets (https://rt.cpan.org/Ticket/Display.html?id=128919). * Fixing previously unusable multisheet OpenDocument Spreadsheets (https://rt.cpan.org/Ticket/Display.html?id=131334). * Fixing passing JSON formatting options (https://github.com/tobyink/p5-spreadsheet-wright/issues/5). libtimedate-perl (2.3000-2+deb10u1) buster; urgency=medium . * Non-maintainer upload. * Add patch from upstream pull request to fix Y2K20 test failure. (Closes: #948680) libtimedate-perl (2.3000-2+deb9u1) stretch; urgency=medium . * Non-maintainer upload. * Add patch from upstream pull request to fix Y2K20 test failure. (Closes: #948680) libvirt (5.0.0-4+deb10u1) buster; urgency=medium . [ Tobias Wolter ] * [711f612] apparmor: Allow one to run pygrub . [ Guido Günther ] * [3bcbf56] Don't render osxsave, ospke into QEMU comman line. This helps newer QEMU with some configs generated by virt-install. Thanks to Michal Arbet for digging out the patches (Closes: #944248) libvncserver (0.9.11+dfsg-1.3+deb10u2) buster; urgency=medium . * Regression update. . * debian/patches: Add use-after-free/{4,5,6}.patch. All cherry-picked from upstream. Resolves crashing of x11vnc when vncviewer connects. (Closes: #905786). libvncserver (0.9.11+dfsg-1.3+deb10u1) buster; urgency=medium . * CVE-2019-15681: rfbserver: don't leak stack memory to the remote. (Closes: #943793). * debian/patches: + Trivial patch rebasing. + Add 3 use-after-free patches. Resolve a freeze during connection closure and a segmentation fault on multi-threaded VNC servers. (Closes: #905786). + Add 0002-set-true-color-flag-to-1.patch. Fix connecting to VMware servers. (Closes: #880531). libvpx (1.7.0-3+deb10u1) buster-security; urgency=medium . * CVE-2019-9232 CVE-2019-9325 CVE-2019-9371 CVE-2019-9433 limnoria (2019.02.23-1+deb10u1) buster; urgency=medium . * Add patch from upstream to fix remote information disclosure and possibly remote code execution in the Math plugin. CVE-2019-19010 linux (4.19.98-1) buster; urgency=medium . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.88 - [arm64] clk: meson: gxbb: let sar_adc_clk_div set the parent clock rate - ASoC: compress: fix unsigned integer overflow check - reset: Fix memory leak in reset_control_array_put() - [armhf] clk: samsung: exynos5433: Fix error paths - [armel/marvell,armhf] ASoC: kirkwood: fix external clock probe defer - [armel/marvell,armhf] ASoC: kirkwood: fix device remove ordering - [armhf] clk: samsung: exynos5420: Preserve PLL configuration during suspend/resume - [x86] pinctrl: cherryview: Allocate IRQ chip dynamic - [armhf] dts: imx6qdl-sabreauto: Fix storm of accelerometer interrupts - reset: fix reset_control_ops kerneldoc comment - [armhf,arm64] clk: sunxi: Fix operator precedence in sunxi_divs_clk_setup - [armhf] clk: sunxi-ng: a80: fix the zero'ing of bits 16 and 18 - [armhf] dts: sun8i-a83t-tbs-a711: Fix WiFi resume from suspend - [ppc64el] bpf: Fix tail call implementation - idr: Fix integer overflow in idr_for_each_entry - idr: Fix idr_alloc_u32 on 32-bit systems - [x86] resctrl: Prevent NULL pointer dereference when reading mondata - [armhf] clk: ti: dra7-atl-clock: Remove ti_clk_add_alias call - [armhf] clk: ti: clkctrl: Fix failed to enable error with double udelay timeout - bridge: ebtables: don't crash when using dnat target in output chains - can: peak_usb: report bus recovery as well - can: rx-offload: can_rx_offload_queue_tail(): fix error handling, avoid skb mem leak - can: rx-offload: can_rx_offload_offload_one(): do not increase the skb_queue beyond skb_queue_len_max - can: rx-offload: can_rx_offload_offload_one(): increment rx_fifo_errors on queue overflow or OOM - can: rx-offload: can_rx_offload_offload_one(): use ERR_PTR() to propagate error value in case of errors - can: rx-offload: can_rx_offload_irq_offload_timestamp(): continue on error - can: rx-offload: can_rx_offload_irq_offload_fifo(): continue on error - [armhf] can: flexcan: increase error counters if skb enqueueing via can_rx_offload_queue_sorted() fails - [arm64] watchdog: meson: Fix the wrong value of left time - ceph: return -EINVAL if given fsc mount option on kernel w/o support - net/fq_impl: Switch to kvmalloc() for memory allocation - mac80211: fix station inactive_time shortly after boot - block: drbd: remove a stray unlock in __drbd_send_protocol() - scsi: target/tcmu: Fix queue_cmd_ring() declaration - scsi: lpfc: Fix kernel Oops due to null pring pointers - scsi: lpfc: Fix dif and first burst use in write commands - tracing: Lock event_mutex before synth_event_mutex - [armhf] dts: imx*: Fix memory node duplication - [armhf] dts: Fix hsi gdd range for omap4 - [arm64] mm: Prevent mismatched 52-bit VA support - [arm64] smp: Handle errors reported by the firmware - [armhf] bus: ti-sysc: Check for no-reset and no-idle flags at the child level - [arm64] RDMA/hns: Fix the bug while use multi-hop of pbl - [x86] RDMA/vmw_pvrdma: Use atomic memory allocation in create AH - [armhf] PM / AVS: SmartReflex: NULL check before some freeing functions is not needed - xfs: zero length symlinks are not valid - ACPI / LPSS: Ignore acpi_device_fix_up_power() return value - scsi: lpfc: Enable Management features for IF_TYPE=6 - scsi: qla2xxx: Fix NPIV handling for FC-NVMe - scsi: qla2xxx: Fix for FC-NVMe discovery for NPIV port - nvme: provide fallback for discard alloc failure - [s390x] zcrypt: make sysfs reset attribute trigger queue reset - crypto: user - support incremental algorithm dumps - mwifiex: fix potential NULL dereference and use after free - mwifiex: debugfs: correct histogram spacing, formatting - brcmfmac: set F2 watermark to 256 for 4373 - brcmfmac: set SDIO F1 MesBusyCtrl for CYW4373 - rtl818x: fix potential use after free - bcache: do not check if debug dentry is ERR or NULL explicitly on remove - bcache: do not mark writeback_running too early - xfs: require both realtime inodes to mount - nvme: fix kernel paging oops - ubifs: Fix default compression selection in ubifs - ubi: Put MTD device after it is not used - ubi: Do not drop UBI device reference before using - iwlwifi: move iwl_nvm_check_version() into dvm - iwlwifi: mvm: force TCM re-evaluation on TCM resume - iwlwifi: pcie: fix erroneous print - iwlwifi: pcie: set cmd_len in the correct place - [armhf,arm64] gpio: pca953x: Fix AI overflow on PCAL6524 - gpiolib: Fix return value of gpio_to_desc() stub if !GPIOLIB - [x86] kvm: vmx: Set IA32_TSC_AUX for legacy mode guests - [x86] Revert "KVM: nVMX: reset cache/shadows when switching loaded VMCS" - [x86] Revert "KVM: nVMX: move check_vmentry_postreqs() call to nested_vmx_enter_non_root_mode()" - VSOCK: bind to random port for VMADDR_PORT_ANY - [amd64] mmc: meson-gx: make sure the descriptor is stopped on errors - [armhf] mtd: rawnand: sunxi: Write pageprog related opcodes to WCMD_SET - [armhf] usb: ehci-omap: Fix deferred probe for phy handling - btrfs: Check for missing device before bio submission in btrfs_map_bio - btrfs: fix ncopies raid_attr for RAID56 - btrfs: dev-replace: set result code of cancel by status of scrub - Btrfs: allow clear_extent_dirty() to receive a cached extent state record - btrfs: only track ref_heads in delayed_ref_updates - [x86] HID: intel-ish-hid: fixes incorrect error handling - serial: 8250: Rate limit serial port rx interrupts during input overruns - [x86] kprobes/xen: blacklist non-attachable xen interrupt functions - xen/pciback: Check dev_data before using it - kprobes: Blacklist symbols in arch-defined prohibited area - [amd64] kprobes: Show x86-64 specific blacklisted symbols correctly - [armhf] memory: omap-gpmc: Get the header of the enum - net/mlx5: Continue driver initialization despite debugfs failure - netfilter: nf_nat_sip: fix RTP/RTCP source port translations - exofs_mount(): fix leaks on failure exits - bnxt_en: Return linux standard errors in bnxt_ethtool.c - bnxt_en: Save ring statistics before reset. - bnxt_en: query force speeds before disabling autoneg mode. - [s390x] KVM: unregister debug feature on failing arch init - dm flakey: Properly corrupt multi-page bios. - gfs2: take jdata unstuff into account in do_grow - dm raid: fix false -EBUSY when handling check/repair message - xfs: Align compat attrlist_by_handle with native implementation. - xfs: Fix bulkstat compat ioctls on x32 userspace. - IB/qib: Fix an error code in qib_sdma_verbs_send() - vxlan: Fix error path in __vxlan_dev_create() - [ppc64el] xmon: fix dump_segments() - drivers/regulator: fix a missing check of return value - Bluetooth: hci_bcm: Handle specific unknown packets after firmware loading - RDMA/srp: Propagate ib_post_send() failures to the SCSI mid-layer - scsi: qla2xxx: deadlock by configfs_depend_item - scsi: csiostor: fix incorrect dma device in case of vport - brcmfmac: Fix access point mode - ath6kl: Only use match sets when firmware supports it - ath6kl: Fix off by one error in scan completion - [ppc64el] perf: Fix unit_sel/cache_sel checks - [ppc64el] prom: fix early DEBUG messages - [ppc64el] mm: Make NULL pointer deferences explicit on bad page faults. - [ppc64el] vfio/spapr_tce: Get rid of possible infinite loop - [ppc64el] powernv/eeh/npu: Fix uninitialized variables in opal_pci_eeh_freeze_status - drbd: ignore "all zero" peer volume sizes in handshake - drbd: reject attach of unsuitable uuids even if connected - drbd: do not block when adjusting "disk-options" while IO is frozen - drbd: fix print_st_err()'s prototype to match the definition - IB/rxe: Make counters thread safe - bpf/cpumap: make sure frame_size for build_skb is aligned if headroom isn't - [armhf] regulator: tps65910: fix a missing check of return value - [ppc64el] powerpc/pseries: Fix node leak in update_lmb_associativity_index() - net/netlink_compat: Fix a missing check of nla_parse_nested - net/net_namespace: Check the return value of register_pernet_subsys() - f2fs: fix block address for __check_sit_bitmap - f2fs: fix to dirty inode synchronously - [armhf] net: dsa: bcm_sf2: Propagate error value from mdio_write - atl1e: checking the status of atl1e_write_phy_reg - tipc: fix a missing check of genlmsg_put - net: marvell: fix a missing check of acpi_match_device - ocfs2: clear journal dirty flag after shutdown journal - vmscan: return NODE_RECLAIM_NOSCAN in node_reclaim() when CONFIG_NUMA is n - mm/page_alloc.c: free order-0 pages through PCP in page_frag_free() - mm/page_alloc.c: use a single function to free page - mm/page_alloc.c: deduplicate __memblock_free_early() and memblock_free() - netfilter: nf_tables: fix a missing check of nla_put_failure - xprtrdma: Prevent leak of rpcrdma_rep objects - infiniband/qedr: Potential null ptr dereference of qp - lib/genalloc.c: fix allocation of aligned buffer from non-aligned chunk - lib/genalloc.c: use vzalloc_node() to allocate the bitmap - drivers/base/platform.c: kmemleak ignore a known leak - lib/genalloc.c: include vmalloc.h - mtd: Check add_mtd_device() ret code - tipc: fix memory leak in tipc_nl_compat_publ_dump - net/core/neighbour: tell kmemleak about hash tables - [armhf,arm64] ata: ahci: mvebu: do Armada 38x configuration only on relevant SoCs - PCI/MSI: Return -ENOSPC from pci_alloc_irq_vectors_affinity() - net/core/neighbour: fix kmemleak minimal reference count for hash tables - serial: 8250: Fix serial8250 initialization crash - [armhf] gpu: ipu-v3: pre: don't trigger update if buffer address doesn't change - sfc: suppress duplicate nvmem partition types in efx_ef10_mtd_probe - ip_tunnel: Make none-tunnel-dst tunnel port work with lwtunnel - decnet: fix DN_IFREQ_SIZE - net/smc: prevent races between smc_lgr_terminate() and smc_conn_free() - net/smc: don't wait for send buffer space when data was already sent - mm/hotplug: invalid PFNs from pfn_to_online_page() - xfs: end sync buffer I/O properly on shutdown error - net/smc: fix sender_free computation - blktrace: Show requests without sector - net/smc: fix byte_order for rx_curs_confirmed - tipc: fix skb may be leaky in tipc_link_input - sfc: initialise found bitmap in efx_ef10_mtd_probe - geneve: change NET_UDP_TUNNEL dependency to select - net: fix possible overflow in __sk_mem_raise_allocated() - net: ip_gre: do not report erspan_ver for gre or gretap - net: ip6_gre: do not report erspan_ver for ip6gre or ip6gretap - sctp: don't compare hb_timer expire date before starting it - bpf: decrease usercnt if bpf_map_new_fd() fails in bpf_map_get_fd_by_id() - mmc: core: align max segment size with logical block size - net: dev: Use unsigned integer as an argument to left-shift - kvm: properly check debugfs dentry before using it - bpf: drop refcount if bpf_map_new_fd() fails in map_create() - [arm64] net: hns3: Change fw error code NOT_EXEC to NOT_SUPPORTED - [arm64] net: hns3: fix PFC not setting problem for DCB module - [arm64] net: hns3: fix an issue for hclgevf_ae_get_hdev - [arm64] net: hns3: fix an issue for hns3_update_new_int_gl - [x86] iommu/amd: Fix NULL dereference bug in match_hid_uid - apparmor: delete the dentry in aafs_remove() to avoid a leak - scsi: libsas: Support SATA PHY connection rate unmatch fixing during discovery - ACPI / APEI: Don't wait to serialise with oops messages when panic()ing - ACPI / APEI: Switch estatus pool to use vmalloc memory - [arm64] scsi: hisi_sas: shutdown axi bus to avoid exception CQ returned - scsi: libsas: Check SMP PHY control function result - [arm64] RDMA/hns: Fix the bug with updating rq head pointer when flush cqe - [arm64] RDMA/hns: Bugfix for the scene without receiver queue - [arm64] RDMA/hns: Fix the state of rereg mr - [arm64] RDMA/hns: Use GFP_ATOMIC in hns_roce_v2_modify_qp - ASoC: rt5645: Headphone Jack sense inverts on the LattePanda board - [ppc64el] pseries/dlpar: Fix a missing check in dlpar_parse_cc_property() (CVE-2019-12614) - xdp: fix cpumap redirect SKB creation bug - mtd: Remove a debug trace in mtdpart.c - [s390x] mm, gup: add missing refcount overflow checks on s390 - [armhf,arm64] usb: dwc2: use a longer core rest timeout in dwc2_core_reset() - staging: rtl8192e: fix potential use after free - staging: rtl8723bs: Drop ACPI device ids - staging: rtl8723bs: Add 024c:0525 to the list of SDIO device-ids - USB: serial: ftdi_sio: add device IDs for U-Blox C099-F9P - [x86] mei: bus: prefix device names on bus with the bus name - [x86] mei: me: add comet point V device id - thunderbolt: Power cycle the router if NVM authentication fails - xfrm: Fix memleak on xfrm state destroy - media: v4l2-ctrl: fix flags for DO_WHITE_BALANCE - [arm64] net: macb: fix error format in dev_err() - pwm: Clear chip_data in pwm_put() - macvlan: schedule bc_work even if error - net: psample: fix skb_over_panic - openvswitch: fix flow command message size - sctp: Fix memory leak in sctp_sf_do_5_2_4_dupcook - slip: Fix use-after-free Read in slip_open - openvswitch: drop unneeded BUG_ON() in ovs_flow_cmd_build_info() - openvswitch: remove another BUG_ON() - tipc: fix link name length check - sctp: cache netns in sctp_ep_common - net: sched: fix `tc -s class show` no bstats on class with nolock subqueues - [arm64] net: macb: add missed tasklet_kill - ext4: add more paranoia checking in ext4_expand_extra_isize handling (CVE-2019-19767) - [arm64] net: macb: Fix SUBNS increment and increase resolution - [arm64] net: macb driver, check for SKBTX_HW_TSTAMP - mtd: spi-nor: cast to u64 to avoid uint overflows - tcp: exit if nothing to retransmit on RTO timeout - HID: core: check whether Usage Page item is after Usage ID items - [x86] platform: hp-wmi: Fix ACPI errors caused by too small buffer - [x86] platform: hp-wmi: Fix ACPI errors caused by passing 0 as input size https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.89 - rsi: release skb if rsi_prepare_beacon fails (CVE-2019-19071) - [arm64] tegra: Fix 'active-low' warning for Jetson TX1 regulator - usb: gadget: u_serial: add missing port entry locking - [arm64] tty: serial: msm_serial: Fix flow control - [armhf,arm64] serial: pl011: Fix DMA ->flush_buffer() - serial: serial_core: Perform NULL checks for break_ctl ops - autofs: fix a leak in autofs_expire_indirect() - [arm64] RDMA/hns: Correct the value of HNS_ROCE_HEM_CHUNK_LEN - iwlwifi: pcie: don't consider IV len in A-MSDU - exportfs_decode_fh(): negative pinned may become positive without the parent locked - audit_get_nd(): don't unlock parent too early - xfrm: release device reference for invalid state - sched/core: Avoid spurious lock dependencies - perf/core: Consistently fail fork on allocation failures - ALSA: pcm: Fix stream lock usage in snd_pcm_period_elapsed() - [armhf,arm64] drm/sun4i: tcon: Set min division of TCON0_DCLK to 1. - rsxx: add missed destroy_workqueue calls in remove - i2c: core: fix use after free in of_i2c_notify - serial: core: Allow processing sysrq at port unlock time - cxgb4vf: fix memleak in mac_hlist initialization - iwlwifi: mvm: synchronize TID queue removal - iwlwifi: trans: Clear persistence bit when starting the FW - iwlwifi: mvm: Send non offchannel traffic via AP sta - [armhf] 8813/1: Make aligned 2-byte getuser()/putuser() atomic on ARMv6+ - audit: Embed key into chunk - netfilter: nf_tables: don't use position attribute on rule replacement - net/mlx5: Release resource on error flow - [arm64] clk: sunxi-ng: a64: Fix gate bit of DSI DPHY - ice: Fix NVM mask defines - dlm: fix possible call to kfree() for non-initialized pointer - [armhf] dts: exynos: Fix LDO13 min values on Odroid XU3/XU4/HC1 - [armhf,arm64] rtc: max77686: Fix the returned value in case of error in 'max77686_rtc_read_time()' - i40e: don't restart nway if autoneg not supported - virtchnl: Fix off by one error - [armhf] clk: rockchip: fix rk3188 sclk_smc gate data - [armhf] clk: rockchip: fix rk3188 sclk_mac_lbtest parameter ordering - [armhf] dts: rockchip: Fix rk3288-rock2 vcc_flash name - dlm: fix missing idr_destroy for recover_idr - [armhf,arm64] net: dsa: mv88e6xxx: Work around mv886e6161 SERDES missing MII_PHYSID2 - [s390x] scsi: zfcp: update kernel message for invalid FCP_CMND length, it's not the CDB - [s390x] scsi: zfcp: drop default switch case which might paper over missing case - [armhf] bus: ti-sysc: Fix getting optional clocks in clock_roles - [armhf] dts: imx6: RDU2: fix eGalax touchscreen node - crypto: ecc - check for invalid values in the key verification test - crypto: bcm - fix normal/non key hash algorithm failure - [arm64] dts: zynqmp: Fix node names which contain "_" - [arm64] pinctrl: qcom: ssbi-gpio: fix gpio-hog related boot issues - [arm*] firmware: raspberrypi: Fix firmware calls with large buffers - mm/vmstat.c: fix NUMA statistics updates - [arm64] clk: rockchip: fix I2S1 clock gate register for rk3328 - [arm64] clk: rockchip: fix ID of 8ch clock of I2S1 for rk3328 - sctp: count sk_wmem_alloc by skb truesize in sctp_packet_transmit - regulator: Fix return value of _set_load() stub - USB: serial: f81534: fix reading old/new IC config - xfs: extent shifting doesn't fully invalidate page cache - net-next/hinic:fix a bug in set mac address - net-next/hinic: fix a bug in rx data flow - ice: Fix return value from NAPI poll - ice: Fix possible NULL pointer de-reference - iomap: FUA is wrong for DIO O_DSYNC writes into unwritten extents - iomap: sub-block dio needs to zeroout beyond EOF - iomap: dio data corruption and spurious errors when pipes fill - iomap: readpages doesn't zero page tail beyond EOF - iw_cxgb4: only reconnect with MPAv1 if the peer aborts - [mips*/octeon] octeon-platform: fix typing - net/smc: use after free fix in smc_wr_tx_put_slot() - [armhf] dts: exynos: Use Samsung SoC specific compatible for DWC2 module - media: pulse8-cec: return 0 when invalidating the logical address - media: cec: report Vendor ID after initialization - iwlwifi: fix cfg structs for 22000 with different RF modules - net/ipv6: re-do dad when interface has IFF_NOARP flag change - [x86] dmaengine: dw-dmac: implement dma protection control setting - [armhf,arm64] usb: dwc3: debugfs: Properly print/set link state for HS - [armhf,arm64] usb: dwc3: don't log probe deferrals; but do log other error codes - ACPI: fix acpi_find_child_device() invocation in acpi_preset_companion() - f2fs: fix to account preflush command for noflush_merge mode - f2fs: fix count of seg_freed to make sec_freed correct - f2fs: change segment to section in f2fs_ioc_gc_range - [armhf] dts: rockchip: Fix the PMU interrupt number for rv1108 - [armhf] dts: rockchip: Assign the proper GPIO clocks for rv1108 - f2fs: fix to allow node segment for GC by ioctl path - nvme: Free ctrl device name on init failure - dma-mapping: fix return type of dma_set_max_seg_size() - [armhf] serial: imx: fix error handling in console_setup - [armhf] i2c: imx: don't print error message on probe defer - [arm64] clk: meson: Fix GXL HDMI PLL fractional bits width - [armhf,arm64] gpu: host1x: Fix syncpoint ID field size on Tegra186 - lockd: fix decoding of TEST results - sctp: increase sk_wmem_alloc when head->truesize is increased - [x86] iommu/amd: Fix line-break in error log reporting - [armhf] dts: sun8i: a23/a33: Fix OPP DTC warnings - [armhf] dts: sun8i: v3s: Change pinctrl nodes to avoid warning - nfsd: fix a warning in __cld_pipe_upcall() - bpf: btf: implement btf_name_valid_identifier() - bpf: btf: check name validity for various types - [armhf] OMAP1/2: fix SoC name printing - [arm64] dts: meson-gxl-libretech-cc: fix GPIO lines names - [arm64] dts: meson-gxbb-nanopi-k2: fix GPIO lines names - [arm64] dts: meson-gxbb-odroidc2: fix GPIO lines names - [arm64] dts: meson-gxl-khadas-vim: fix GPIO lines names - net/x25: fix called/calling length calculation in x25_parse_address_block - net/x25: fix null_x25_address handling - tcp: make tcp_space() aware of socket backlog - tcp: fix off-by-one bug on aborting window-probing socket - tcp: fix SNMP under-estimation on failed retransmission - tcp: fix SNMP TCP timeout under-estimation - kbuild: fix single target build for external module - mtd: fix mtd_oobavail() incoherent returned value - [arm64] clk: meson: meson8b: fix the offset of vid_pll_dco's N value - [armhf,arm64] clk: sunxi-ng: h3/h5: Fix CSI_MCLK parent - [arm64] clk: qcom: Fix MSM8998 resets - dlm: fix invalid cluster name warning - net/mlx4_core: Fix return codes of unsupported operations - pstore/ram: Avoid NULL deref in ftrace merging failure path - [mips*/octeon] cvmx_pko_mem_debug8: use oldest forward compatible definition - nfsd: Return EPERM, not EACCES, in some SETATTR cases - media: uvcvideo: Abstract streaming object lifetime - [armhf] dts: sun8i: h3: Fix the system-control register range - tty: Don't block on IO when ldisc change is pending - media: stkwebcam: Bugfix for wrong return values - sctp: frag_point sanity check - IB/hfi1: Ignore LNI errors before DC8051 transitions to Polling state - IB/hfi1: Close VNIC sdma_progress sleep window - mlx4: Use snprintf instead of complicated strcpy - [armhf] dts: sunxi: Fix PMU compatible strings - [armhf] dts: am335x-pdu001: Fix polarity of card detection input - net: aquantia: fix RSS table and key sizes - sched/fair: Scale bandwidth quota and period without losing quota/period ratio precision - fuse: verify nlink - fuse: verify attributes - [x86] ALSA: hda/realtek - Enable internal speaker of ASUS UX431FLC - [x86] ALSA: hda/realtek - Enable the headset-mic on a Xiaomi's laptop - [x86] ALSA: hda/realtek - Dell headphone has noise on unmute for ALC236 - ALSA: pcm: oss: Avoid potential buffer overflows - [x86] ALSA: hda - Add mute led support for HP ProBook 645 G4 - [x86] Input: synaptics - switch another X1 Carbon 6 to RMI/SMbus - [x86] Input: synaptics-rmi4 - re-enable IRQs in f34v7_do_reflash - [x86] Input: synaptics-rmi4 - don't increment rmiaddr for SMBus transfers - [x86] Input: goodix - add upside-down quirk for Teclast X89 tablet - Input: Fix memory leak in psxpad_spi_probe - [i386] mm: Sync only to VMALLOC_END in vmalloc_sync_all() - [x86] PCI: Avoid AMD FCH XHCI USB PME# from D0 defect - xfrm interface: fix memory leak on creation - xfrm interface: avoid corruption on changelink - xfrm interface: fix list corruption for x-netns - xfrm interface: fix management of phydev - CIFS: Fix NULL-pointer dereference in smb2_push_mandatory_locks - CIFS: Fix SMB2 oplock break processing - tty: vt: keyboard: reject invalid keycodes - can: slcan: Fix use-after-free Read in slcan_open - kernfs: fix ino wrap-around detection - jbd2: Fix possible overflow in jbd2_log_space_left() - [arm64] drm/msm: fix memleak on release - [i386] drm/i810: Prevent underflow in ioctl - [armhf,arm64] KVM: vgic: Don't rely on the wrong pending table - [x86] KVM: do not modify masked bits of shared MSRs - [x86] KVM: fix presentation of TSX feature in ARCH_CAPABILITIES - [x86] KVM: Grab KVM's srcu lock when setting nested state - crypto: af_alg - cast ki_complete ternary op to int - [x86] crypto: ccp - fix uninitialized list head - crypto: ecdh - fix big endian bug in ECC library - crypto: user - fix memory leak in crypto_report (CVE-2019-19062) - mwifiex: update set_mac_address logic - can: ucan: fix non-atomic allocation in completion handler - RDMA/qib: Validate ->show()/store() callbacks before calling them - iomap: Fix pipe page leakage during splicing - thermal: Fix deadlock in thermal thermal_zone_device_check - vcs: prevent write access to vcsu devices (CVE-2019-19252) - binder: Fix race between mmap() and binder_alloc_print_pages() - binder: Handle start==NULL in binder_update_page_range() - ALSA: hda - Fix pending unsol events at shutdown - perf script: Fix invalid LBR/binary mismatch error - splice: don't read more than available pipe space - iomap: partially revert 4721a601099 (simulated directio short read on EFAULT) - xfs: add missing error check in xfs_prepare_shift() - ASoC: rsnd: fixup MIX kctrl registration - [x86] KVM: fix out-of-bounds write in KVM_GET_EMULATED_CPUID (CVE-2019-19332) - net: qrtr: fix memort leak in qrtr_tun_write_iter (CVE-2019-19079) - appletalk: Fix potential NULL pointer dereference in unregister_snap_client (CVE-2019-19227) - appletalk: Set error code if register_snap_client failed https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.90 - usb: gadget: configfs: Fix missing spin_lock_init() - [x86] usb: gadget: pch_udc: fix use after free - scsi: qla2xxx: Fix driver unload hang - [arm64] media: venus: remove invalid compat_ioctl32 handler - USB: uas: honor flag to avoid CAPACITY16 - USB: uas: heed CAPACITY_HEURISTICS - usb: Allow USB device to be warm reset in suspended state - staging: rtl8188eu: fix interface sanity check - staging: rtl8712: fix interface sanity check - staging: gigaset: fix general protection fault on probe - staging: gigaset: fix illegal free on probe errors - staging: gigaset: add endpoint-type sanity check - usb: xhci: only set D3hot for pci device - xhci: Fix memory leak in xhci_add_in_port() - xhci: Increase STS_HALT timeout in xhci_suspend() - xhci: handle some XHCI_TRUST_TX_LENGTH quirks cases as default behaviour. - [armhf] dts: pandora-common: define wl1251 as child node of mmc3 - [x86] iio: imu: inv_mpu6050: fix temperature reporting using bad unit - USB: atm: ueagle-atm: add missing endpoint check - USB: idmouse: fix interface sanity checks - USB: serial: io_edgeport: fix epic endpoint lookup - usb: roles: fix a potential use after free - USB: adutux: fix interface sanity check - usb: core: urb: fix URB structure initialization function - usb: mon: Fix a deadlock in usbmon between mmap and read - tpm: add check after commands attribs tab allocation - virtio-balloon: fix managed page counts when migrating pages between zones - [armhf,arm64] usb: dwc3: gadget: Fix logical condition - [armhf,arm64] usb: dwc3: ep0: Clear started flag on completion - btrfs: check page->mapping when loading free space cache - btrfs: use refcount_inc_not_zero in kill_all_nodes - Btrfs: fix metadata space leak on fixup worker failure to set range as delalloc - Btrfs: fix negative subv_writers counter and data space leak after buffered write - btrfs: Avoid getting stuck during cyclic writebacks - btrfs: Remove btrfs_bio::flags member - Btrfs: send, skip backreference walking for extents with many references - btrfs: record all roots for rename exchange on a subvol - rtlwifi: rtl8192de: Fix missing code to retrieve RX buffer address - rtlwifi: rtl8192de: Fix missing callback that tests for hw release of buffer - rtlwifi: rtl8192de: Fix missing enable interrupt flag - ovl: fix corner case of non-unique st_dev;st_ino - ovl: relax WARN_ON() on rename to self - [armhf] hwrng: omap - Fix RNG wait loop timeout - dm writecache: handle REQ_FUA - dm zoned: reduce overhead of backing device checks - workqueue: Fix spurious sanity check failures in destroy_workqueue() - workqueue: Fix pwq ref leak in rescuer_thread() - ASoC: rt5645: Fixed buddy jack support. - ASoC: rt5645: Fixed typo for buddy jack support. - ASoC: Jack: Fix NULL pointer dereference in snd_soc_jack_report - md: improve handling of bio with REQ_PREFLUSH in md_flush_request() - blk-mq: avoid sysfs buffer overflow with too many CPU cores - cgroup: pids: use atomic64_t for pids->limit - ar5523: check NULL before memcpy() in ar5523_cmd() - [s390x] mm: properly clear _PAGE_NOEXEC bit when it is not supported - media: cec.h: CEC_OP_REC_FLAG_ values were swapped - cpuidle: Do not unset the driver if it is there already - erofs: zero out when listxattr is called with no xattr - [x86] intel_th: Fix a double put_device() in error path - [x86] intel_th: pci: Add Ice Lake CPU support - [x86] intel_th: pci: Add Tiger Lake CPU support - PM / devfreq: Lock devfreq in trans_stat_show - [ppc64el] cpufreq: powernv: fix stack bloat and hard limit on number of CPUs - ACPI / hotplug / PCI: Allocate resources directly under the non-hotplug bridge - ACPI: OSL: only free map once in osl.c - ACPI: bus: Fix NULL pointer check in acpi_bus_get_private_data() - ACPI: PM: Avoid attaching ACPI PM domain to certain devices - [arm64] pinctrl: armada-37xx: Fix irq mask access in armada_37xx_irq_set_type() - [armhf] pinctrl: samsung: Add of_node_put() before return in error path - [armhf] pinctrl: samsung: Fix device node refcount leaks in Exynos wakeup controller init - [armhf] pinctrl: samsung: Fix device node refcount leaks in init code - [armhf] mmc: host: omap_hsmmc: add code for special init of wl1251 to get rid of pandora_wl1251_init_card - [armhf] dts: omap3-tao3530: Fix incorrect MMC card detection GPIO polarity - ppdev: fix PPGETTIME/PPSETTIME ioctls - [ppc64el] Allow 64bit VDSO __kernel_sync_dicache to work across ranges >4GB - [ppc64el] xive: Prevent page fault issues in the machine crash handler - [ppc64el] Allow flush_icache_range to work across ranges >4GB - [ppc64el] xive: Skip ioremap() of ESB pages for LSI interrupts - video/hdmi: Fix AVI bar unpack - quota: Check that quota is not dirty before release - ext2: check err when partial != NULL - quota: fix livelock in dquot_writeback_dquots - ext4: Fix credit estimate for final inode freeing - reiserfs: fix extended attributes on the root directory - block: fix single range discard merge - [s390x] scsi: zfcp: trace channel log even for FCP command responses - scsi: qla2xxx: Fix DMA unmap leak - scsi: qla2xxx: Fix hang in fcport delete path - scsi: qla2xxx: Fix session lookup in qlt_abort_work() - scsi: qla2xxx: Fix qla24xx_process_bidir_cmd() - scsi: qla2xxx: Always check the qla2x00_wait_for_hba_online() return value - scsi: qla2xxx: Fix message indicating vectors used by driver - scsi: qla2xxx: Fix SRB leak on switch command timeout - xhci: make sure interrupts are restored to correct state - usb: typec: fix use after free in typec_register_port() - [armhf] omap: pdata-quirks: remove openpandora quirks for mmc3 and wl1251 - scsi: lpfc: Cap NPIV vports to 256 - scsi: lpfc: Correct code setting non existent bits in sli4 ABORT WQE - scsi: lpfc: Correct topology type reporting on G7 adapters - sch_cake: Correctly update parent qlen when splitting GSO packets - net/smc: do not wait under send_lock - [arm64] net: hns3: clear pci private data when unload hns3 driver - [arm64] net: hns3: change hnae3_register_ae_dev() to int - [arm64] net: hns3: Check variable is valid before assigning it to another - [arm64] scsi: hisi_sas: send primitive NOTIFY to SSP situation only - [arm64] scsi: hisi_sas: Reject setting programmed minimum linkrate > 1.5G - [x86] MCE/AMD: Turn off MC4_MISC thresholding on all family 0x15 models - [x86] MCE/AMD: Carve out the MC4_MISC thresholding quirk - ath10k: fix fw crash by moving chip reset after napi disabled - [ppc64el] Fix vDSO clock_getres() - ext4: work around deleting a file with i_nlink == 0 safely (CVE-2019-19447) - mm/shmem.c: cast the type of unmap_start to u64 - rtc: disable uie before setting time and enable after - splice: only read in as much information as there is pipe buffer space - ext4: fix a bug in ext4_wait_for_tail_page_commit - [armhf,arm64] mfd: rk808: Fix RK818 ID template - mm, thp, proc: report THP eligibility for each vma - [s390x] smp,vdso: fix ASCE handling - blk-mq: make sure that line break can be printed - workqueue: Fix missing kfree(rescuer) in destroy_workqueue() - perf callchain: Fix segfault in thread__resolve_callchain_sample() - gre: refetch erspan header from skb->data after pskb_may_pull() - sunrpc: fix crash when cache_head become valid before update - net/mlx5e: Fix SFF 8472 eeprom length - leds: trigger: netdev: fix handling on interface rename - gfs2: fix glock reference problem in gfs2_trans_remove_revoke - of: overlay: add_changeset_property() memory leak - kernel/module.c: wakeup processes in module_wq on module unload - cifs: Fix potential softlockups while refreshing DFS cache - [x86] gpiolib: acpi: Add Terra Pad 1061 to the run_edge_events_on_boot_blacklist - raid5: need to set STRIPE_HANDLE for batch head - scsi: qla2xxx: Change discovery state before PLOGI - [x86] iio: imu: mpu6050: add missing available scan masks - idr: Fix idr_get_next_ul race with idr_remove - of: unittest: fix memory leak in attach_node_and_children https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.91 - inet: protect against too small mtu values. - mqprio: Fix out-of-bounds access in mqprio_dump - net: bridge: deny dev_set_mac_address() when unregistering - net: dsa: fix flow dissection on Tx path - net: ethernet: ti: cpsw: fix extra rx interrupt - net: sched: fix dump qlen for sch_mq/sch_mqprio with NOLOCK subqueues - [arm64] net: thunderx: start phy before starting autonegotiation - openvswitch: support asymmetric conntrack - tcp: md5: fix potential overestimation of TCP option space - tipc: fix ordering of tipc module init and exit routine - net/mlx5e: Query global pause state before setting prio2buffer - tcp: fix rejected syncookies due to stale timestamps - tcp: tighten acceptance of ACKs not matching a child socket - tcp: Protect accesses to .ts_recent_stamp with {READ,WRITE}_ONCE() - [arm64] Revert "arm64: preempt: Fix big-endian when checking preempt count in assembly" - mmc: block: Make card_busy_detect() a bit more generic - mmc: block: Add CMD13 polling for MMC IOCTLS with R1B response - PCI/PM: Always return devices to D0 when thawing - PCI: pciehp: Avoid returning prematurely from sysfs requests - [x86] PCI: Fix Intel ACS quirk UPDCR register address - PCI/MSI: Fix incorrect MSI-X masking on resume - [arm64] PCI: Apply Cavium ACS quirk to ThunderX2 and ThunderX3 - [arm64] rpmsg: glink: Set tail pointer to 0 at end of FIFO - [arm64] rpmsg: glink: Fix reuse intents memory leak issue - [arm64] rpmsg: glink: Fix use after free in open_ack TIMEOUT case - [arm64] rpmsg: glink: Put an extra reference during cleanup - [arm64] rpmsg: glink: Fix rpmsg_register_device err handling - [arm64] rpmsg: glink: Don't send pending rx_done during remove - [arm64] rpmsg: glink: Free pending deferred work on remove - cifs: smbd: Return -EAGAIN when transport is reconnecting - cifs: smbd: Add messages on RDMA session destroy and reconnection - cifs: smbd: Return -EINVAL when the number of iovs exceeds SMBDIRECT_MAX_SGE - cifs: Don't display RDMA transport on reconnect - CIFS: Respect O_SYNC and O_DIRECT flags during reconnect - CIFS: Close open handle after interrupted close - [armhf] tegra: Fix FLOW_CTLR_HALT register clobbering by tegra_resume() - vfio/pci: call irq_bypass_unregister_producer() before freeing irq - dma-buf: Fix memory leak in sync_file_merge() - [arm64] drm: meson: venc: cvbs: fix CVBS mode matching - dm mpath: remove harmful bio-based optimization - dm btree: increase rebalance threshold in __rebalance2() - scsi: iscsi: Fix a potential deadlock in the timeout handler - scsi: qla2xxx: Change discovery state before PLOGI - drm/radeon: fix r1xx/r2xx register checker for POT textures - xhci: fix USB3 device initiated resume race with roothub autosuspend https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.92 - af_packet: set defaule value for tmo - [amd64] fjes: fix missed check in fjes_acpi_add - [arm64] net: hisilicon: Fix a BUG trigered by wrong bytes_compl - net: qlogic: Fix error paths in ql_alloc_large_buffers() - net: usb: lan78xx: Fix suspend/resume PHY register access error - qede: Disable hardware gro when xdp prog is installed - qede: Fix multicast mac configuration - sctp: fully initialize v4 addr in some functions - btrfs: don't double lock the subvol_sem for rename exchange - btrfs: do not call synchronize_srcu() in inode_tree_del - Btrfs: fix missing data checksums after replaying a log tree - btrfs: send: remove WARN_ON for readonly mount - btrfs: abort transaction after failed inode updates in create_subvol - btrfs: skip log replay on orphaned roots - btrfs: do not leak reloc root if we fail to read the fs root - btrfs: handle ENOENT in btrfs_uuid_tree_iterate - Btrfs: fix removal logic of the tree mod log that leads to use-after-free issues - ALSA: pcm: Avoid possible info leaks from PCM stream buffers - ALSA: hda/ca0132 - Keep power on during processing DSP response - ALSA: hda/ca0132 - Avoid endless loop - ALSA: hda/ca0132 - Fix work handling in delayed HP detection - [arm64,armhf] drm/panel: Add missing drm_panel_init() in panel drivers - drm/amdgpu: grab the id mgr lock while accessing passid_mapping - spi: Add call to spi_slave_abort() function when spidev driver is released - [x86] staging: rtl8192u: fix multiple memory leaks on error path - staging: rtl8188eu: fix possible null dereference - rtlwifi: prevent memory leak in rtl_usb_probe (CVE-2019-19063) - libertas: fix a potential NULL pointer dereference - ath10k: fix backtrace on coredump - IB/iser: bound protection_sg size by data_sg size - [arm64] media: venus: core: Fix msm8996 frequency table - ath10k: fix offchannel tx failure when no ath10k_mac_tx_frm_has_freq - pinctrl: devicetree: Avoid taking direct reference to device name string - [amd64] drm/amdkfd: fix a potential NULL pointer dereference - [arm64] media: venus: Fix occasionally failures to suspend - [armhf] hwrng: omap3-rom - Call clk_disable_unprepare() on exit only if not idled - media: flexcop-usb: fix NULL-ptr deref in flexcop_usb_transfer_init() - [arm64,armhf] drm/bridge: dw-hdmi: Refuse DDC/CI transfers on the internal I2C controller - block: Fix writeback throttling W=1 compiler warnings - mwifiex: pcie: Fix memory leak in mwifiex_pcie_init_evt_ring (CVE-2019-19057) - drm/drm_vblank: Change EINVAL by the correct errno - media: cx88: Fix some error handling path in 'cx8800_initdev()' - [armhf] media: ti-vpe: vpe: Fix Motion Vector vpdma stride - [armhf] media: ti-vpe: vpe: fix a v4l2-compliance warning about invalid pixel format - [armhf] media: ti-vpe: vpe: fix a v4l2-compliance failure about frame sequence number - [armhf] media: ti-vpe: vpe: Make sure YUYV is set as default format - [armhf] media: ti-vpe: vpe: fix a v4l2-compliance failure causing a kernel panic - [armhf] media: ti-vpe: vpe: ensure buffers are cleaned up properly in abort cases - [armhf] media: ti-vpe: vpe: fix a v4l2-compliance failure about invalid sizeimage - [x86] syscalls/x86: Use the correct function type in SYSCALL_DEFINE0 - [x86] mm: Use the correct function type for native_set_fixmap() - ath10k: Correct error handling of dma_map_single() - [arm64,armhf] drm/bridge: dw-hdmi: Restore audio when setting a mode - perf report: Add warning when libunwind not compiled in - usb: usbfs: Suppress problematic bind and unbind uevents. - Bluetooth: missed cpu_to_le16 conversion in hci_init4_req - Bluetooth: Workaround directed advertising bug in Broadcom controllers - Bluetooth: hci_core: fix init for HCI_USER_CHANNEL - [x86] mce: Lower throttling MCE messages' priority to warning - [x86] drm/gma500: fix memory disclosures due to uninitialized bytes - rtl8xxxu: fix RTL8723BU connection failure issue after warm reboot - ipmi: Don't allow device module unload when in use - [x86] ioapic: Prevent inconsistent state when moving an interrupt - md/bitmap: avoid race window between md_bitmap_resize and bitmap_file_clear_bit - [arm64] psci: Reduce the waiting time for cpu_psci_cpu_kill() - i40e: initialize ITRN registers with correct values - net: phy: dp83867: enable robust auto-mdix - [arm64,armhf] drm/tegra: sor: Use correct SOR index on Tegra210 - ACPI: button: Add DMI quirk for Medion Akoya E2215T - RDMA/qedr: Fix memory leak in user qp and mr - [arm64,armhf] gpu: host1x: Allocate gather copy for host1x - [arm64,armhf] net: dsa: LAN9303: select REGMAP when LAN9303 enable - [arm64] phy: qcom-usb-hs: Fix extcon double register after power cycle - [s390x] time: ensure get_clock_monotonic() returns monotonic values - [s390x] mm: add mm_pxd_folded() checks to pxd_free() - [arm64] net: hns3: add struct netdev_queue debug info for TX timeout - libata: Ensure ata_port probe has completed before detach - loop: fix no-unmap write-zeroes request behavior - Bluetooth: Fix advertising duplicated flags - pinctrl: amd: fix __iomem annotation in amd_gpio_irq_handler() - ixgbe: protect TX timestamping from API misuse - media: rcar_drif: fix a memory disclosure (CVE-2019-18786) - media: v4l2-core: fix touch support in v4l_g_fmt - rfkill: allocate static minor - bnx2x: Fix PF-VF communication over multi-cos queues. - ALSA: timer: Limit max amount of slave instances - rtlwifi: fix memory leak in rtl92c_set_fw_rsvdpagepkt() - perf probe: Fix to find range-only function instance - perf probe: Fix to list probe event with correct line number - perf jevents: Fix resource leak in process_mapfile() and main() - perf probe: Walk function lines in lexical blocks - perf probe: Fix to probe an inline function which has no entry pc - perf probe: Fix to show ranges of variables in functions without entry_pc - perf probe: Fix to show inlined function callsite without entry_pc - perf probe: Fix to probe a function which has no entry pc - perf tools: Splice events onto evlist even on error - perf parse: If pmu configuration fails free terms - perf probe: Skip overlapped location on searching variables - perf probe: Return a better scope DIE if there is no best scope - perf probe: Fix to show calling lines of inlined functions - perf probe: Skip end-of-sequence and non statement lines - perf probe: Filter out instances except for inlined subroutine and subprogram - ath10k: fix get invalid tx rate for Mesh metric - media: pvrusb2: Fix oops on tear-down when radio support is not present - ice: delay less - [amd64] spi: pxa2xx: Add missed security checks - ASoC: rt5677: Mark reg RT5677_PWR_ANLG2 as volatile - iio: dac: ad5446: Add support for new AD5600 DAC - [x86] ASoC: Intel: kbl_rt5663_rt5514_max98927: Add dmic format constraint - [s390x] disassembler: don't hide instruction addresses - nvme: Discard workaround for non-conformant devices - parport: load lowlevel driver if ports not found - bcache: fix static checker warning in bcache_device_free() - cpufreq: Register drivers only after CPU devices have been registered - tracing: use kvcalloc for tgid_map array allocation - tracing/kprobe: Check whether the non-suffixed symbol is notrace - bcache: fix deadlock in bcache_allocator - iwlwifi: mvm: fix unaligned read of rx_pkt_status - [arm64] spi: tegra20-slink: add missed clk_unprepare - tun: fix data-race in gro_normal_list() - crypto: virtio - deal with unsupported input sizes - btrfs: don't prematurely free work in end_workqueue_fn() - btrfs: don't prematurely free work in run_ordered_work() - [x86] ASoC: Intel: bytcr_rt5640: Update quirk for Acer Switch 10 SW5-012 2-in-1 - [x86] insn: Add some Intel instructions to the opcode map - brcmfmac: remove monitor interface when detaching - iwlwifi: check kasprintf() return value - [armhf] net: ethernet: ti: ale: clean ale tbl on init and intf restart - [armhf] crypto: sun4i-ss - Fix 64-bit size_t warnings - [armhf] crypto: sun4i-ss - Fix 64-bit size_t warnings on sun4i-ss-hash.c - mac80211: consider QoS Null frames for STA_NULLFUNC_ACKED - net: phy: initialise phydev speed and duplex sanely - btrfs: don't prematurely free work in reada_start_machine_worker() - btrfs: don't prematurely free work in scrub_missing_raid56_worker() - Revert "mmc: sdhci: Fix incorrect switch to HS mode" - can: kvaser_usb: kvaser_usb_leaf: Fix some info-leaks to USB devices (CVE-2019-19947) - usb: xhci: Fix build warning seen with CONFIG_PM=n - [s390x] ftrace: fix endless recursion in function_graph tracer - btrfs: return error pointer from alloc_test_extent_buffer - usbip: Fix receive error in vhci-hcd when using scatter-gather - usbip: Fix error path of vhci_recv_ret_submit() - cpufreq: Avoid leaving stale IRQ work items during CPU offline - [x86] intel_th: pci: Add Comet Lake PCH-V support - [x86] intel_th: pci: Add Elkhart Lake SOC support - [x86] platform/x86: hp-wmi: Make buffer for HPWMI_FEATURE2_QUERY 128 bytes - [x86] staging: comedi: gsc_hpdi: check dma_alloc_coherent() return value - ext4: fix ext4_empty_dir() for directories with holes (CVE-2019-19037) - ext4: check for directory entries too close to block end - ext4: unlock on error in ext4_expand_extra_isize() - [arm64] KVM: Ensure 'params' is initialised when looking up sys register - [x86] MCE/AMD: Do not use rdmsr_safe_on_cpu() in smca_configure() - [x86] MCE/AMD: Allow Reserved types to be overwritten in smca_banks[] - [powerpc*] irq: fix stack overflow verification - [arm64] mmc: sdhci-msm: Correct the offset and value for DDR_CONFIG register - mmc: sdhci: Update the tuning failed messages to pr_debug level - mmc: sdhci: Workaround broken command queuing on Intel GLK - mmc: sdhci: Add a quirk for broken command queuing - nbd: fix shutdown and recv work deadlock - perf probe: Fix to show function entry line as probe-able https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.93 - scsi: lpfc: Fix discovery failures when target device connectivity bounces - scsi: mpt3sas: Fix clear pending bit in ioctl status - scsi: lpfc: Fix locking on mailbox command completion - Input: atmel_mxt_ts - disable IRQ across suspend - f2fs: fix to update time in lazytime mode - [arm64,armhf] iommu: rockchip: Free domain on .domain_free - [arm64,armhf] iommu/tegra-smmu: Fix page tables in > 4 GiB memory - scsi: target: compare full CHAP_A Algorithm strings - scsi: lpfc: Fix SLI3 hba in loop mode not discovering devices - scsi: csiostor: Don't enable IRQs too early - [arm64] scsi: hisi_sas: Replace in_softirq() check in hisi_sas_task_exec() - [ppc64el] pseries: Mark accumulate_stolen_time() as notrace - [ppc64el] pseries: Don't fail hash page table insert for bolted mapping - clocksource/drivers/timer-of: Use unique device name instead of timer - [ppc64el] security/book3s64: Report L1TF status in sysfs - [ppc64el] book3s64/hash: Add cond_resched to avoid soft lockup warning - ext4: update direct I/O read lock pattern for IOCB_NOWAIT - ext4: iomap that extends beyond EOF should be marked dirty - jbd2: Fix statistics for the number of logged blocks - scsi: tracing: Fix handling of TRANSFER LENGTH == 0 for READ(6) and WRITE(6) - scsi: lpfc: Fix duplicate unreg_rpi error in port offline flow - f2fs: fix to update dir's i_pino during cross_rename - [arm64] clk: qcom: Allow constant ratio freq tables for rcg - clk: clk-gpio: propagate rate change to parent - fs/quota: handle overflows of sysctl fs.quota.* and report as unsigned long - scsi: lpfc: fix: Coverity: lpfc_cmpl_els_rsp(): Null pointer dereferences - [ppc64el] PCI: rpaphp: Fix up pointer to first drc-info entry - scsi: ufs: fix potential bug which ends in system hang - [ppc64el] PCI: rpaphp: Don't rely on firmware feature to imply drc-info support - [ppc64el] PCI: rpaphp: Annotate and correctly byte swap DRC properties - [ppc64el] PCI: rpaphp: Correctly match ibm, my-drc-index to drc-name when using drc-info - [ppc64el] powerpc/security: Fix wrong message when RFI Flush is disable - bcache: at least try to shrink 1 node in bch_mca_scan() - HID: quirks: Add quirk for HP MSU1465 PIXART OEM mouse - HID: logitech-hidpp: Silence intermittent get_battery_capacity errors - [armhf] 8937/1: spectre-v2: remove Brahma-B53 from hardening - libnvdimm/btt: fix variable 'rc' set but not used - HID: Improve Windows Precision Touchpad detection. - HID: rmi: Check that the RMI_STARTED bit is set before unregistering the RMI transport device - watchdog: Fix the race between the release of watchdog_core_data and cdev - scsi: pm80xx: Fix for SATA device discovery - scsi: ufs: Fix error handing during hibern8 enter - scsi: scsi_debug: num_tgts must be >= 0 - scsi: iscsi: Don't send data to unbound connection - scsi: target: iscsi: Wait for all commands to finish before freeing a session - apparmor: fix unsigned len comparison with less than zero - scripts/kallsyms: fix definitely-lost memory leak - cdrom: respect device capabilities during opening action - perf script: Fix brstackinsn for AUXTRACE - perf regs: Make perf_reg_name() return "unknown" instead of NULL - [s390x] zcrypt: handle new reply code FILTERED_BY_HYPERVISOR - [s390x] cpum_sf: Check for SDBT and SDB consistency - ocfs2: fix passing zero to 'PTR_ERR' warning - kernel: sysctl: make drop_caches write-only - userfaultfd: require CAP_SYS_PTRACE for UFFD_FEATURE_EVENT_FORK - [x86] mce: Fix possibly incorrect severity calculation on AMD - net, sysctl: Fix compiler warning when only cBPF is present - netfilter: nf_queue: enqueue skbs with NULL dst - ALSA: hda - Downgrade error message for single-cmd fallback - bonding: fix active-backup transition after link failure - perf strbuf: Remove redundant va_end() in strbuf_addv() - Make filldir[64]() verify the directory entry filename is valid (CVE-2019-10220) - filldir[64]: remove WARN_ON_ONCE() for bad directory entries (CVE-2019-10220) - netfilter: ebtables: compat: reject all padding in matches/watchers - 6pack,mkiss: fix possible deadlock - netfilter: bridge: make sure to pull arp header in br_nf_forward_arp() - inetpeer: fix data-race in inet_putpeer / inet_putpeer - net: add a READ_ONCE() in skb_peek_tail() - net: icmp: fix data-race in cmp_global_allow() - hrtimer: Annotate lockless access to timer->state - net: ena: fix napi handler misbehavior when the napi budget is zero - net/mlxfw: Fix out-of-memory error in mfa2 flash burning - [arm64,armhf] net: stmmac: dwmac-meson8b: Fix the RGMII TX delay on Meson8b/8m2 SoCs - ptp: fix the race between the release of ptp_clock and cdev - tcp: Fix highest_sack and highest_sack_seq - udp: fix integer overflow while computing available space in sk_rcvbuf - vhost/vsock: accept only packets with the right dst_cid - net: add bool confirm_neigh parameter for dst_ops.update_pmtu - ip6_gre: do not confirm neighbor when do pmtu update - gtp: do not confirm neighbor when do pmtu update - net/dst: add new function skb_dst_update_pmtu_no_confirm - tunnel: do not confirm neighbor when do pmtu update - vti: do not confirm neighbor when do pmtu update - sit: do not confirm neighbor when do pmtu update - net/dst: do not confirm neighbor for vxlan and geneve pmtu update - gtp: do not allow adding duplicate tid and ms_addr pdp context - [arm64,armhf] net: marvell: mvpp2: phylink requires the link interrupt - tcp/dccp: fix possible race __inet_lookup_established() - tcp: do not send empty skb from tcp_write_xmit() - gtp: fix wrong condition in gtp_genl_dump_pdp() - gtp: fix an use-after-free in ipv4_pdp_find() - gtp: avoid zero size hashtable - [arm64,armhf] pinctrl: baytrail: Really serialize all register accesses https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.94 - nvme_fc: add module to ops template to allow module references - nvme-fc: fix double-free scenarios on hw queues - drm/amdgpu: add check before enabling/disabling broadcast mode - drm/amdgpu: add cache flush workaround to gfx8 emit_fence - PM / devfreq: Fix devfreq_notifier_call returning errno - PM / devfreq: Set scaling_max_freq to max on OPP notifier error - PM / devfreq: Don't fail devfreq_dev_release if not in list - afs: Fix afs_find_server lookups for ipv4 peers - afs: Fix SELinux setting security label on /afs - RDMA/cma: add missed unregister_pernet_subsys in init failure - rxe: correctly calculate iCRC for unaligned payloads - scsi: lpfc: Fix memory leak on lpfc_bsg_write_ebuf_set func - scsi: qla2xxx: Drop superfluous INIT_WORK of del_work - scsi: qla2xxx: Don't call qlt_async_event twice - scsi: qla2xxx: Fix PLOGI payload and ELS IOCB dump length - scsi: qla2xxx: Configure local loop for N2N target - scsi: qla2xxx: Send Notify ACK after N2N PLOGI - scsi: qla2xxx: Ignore PORT UPDATE after N2N PLOGI - scsi: iscsi: qla4xxx: fix double free in probe - scsi: libsas: stop discovering if oob mode is disconnected (CVE-2019-19965) - drm/nouveau: Move the declaration of struct nouveau_conn_atom up a bit - usb: gadget: fix wrong endpoint desc - net: make socket read/write_iter() honor IOCB_NOWAIT - afs: Fix creation calls in the dynamic root to fail with EOPNOTSUPP - md: raid1: check rdev before reference in raid1_sync_request func - [s390x] cpum_sf: Adjust sampling interval to avoid hitting sample limits - [s390x] cpum_sf: Avoid SBD overflow condition in irq handler - IB/mlx4: Follow mirror sequence of device add during device removal - IB/mlx5: Fix steering rule of drop and count - xen-blkback: prevent premature module unload - xen/balloon: fix ballooned page accounting without hotplug enabled - PM / hibernate: memory_bm_find_bit(): Tighten node optimisation - ALSA: hda/realtek - Add Bass Speaker and fixed dac for bass speaker - ALSA: hda/realtek - Enable the bass speaker of ASUS UX431FLC - ALSA: hda - fixup for the bass speaker on Lenovo Carbon X1 7th gen - xfs: fix mount failure crash on invalid iclog memory access - taskstats: fix data-race - drm: limit to INT_MAX in create_blob ioctl - netfilter: nft_tproxy: Fix port selector on Big Endian - ALSA: ice1724: Fix sleep-in-atomic in Infrasonic Quartet support code - ALSA: usb-audio: fix set_format altsetting sanity check - ALSA: usb-audio: set the interface format after resume on Dell WD19 - ALSA: hda/realtek - Add headset Mic no shutup for ALC283 - [arm64,armhf] drm/sun4i: hdmi: Remove duplicate cleanup calls - [mips*] Avoid VDSO ABI breakage due to global register variable - media: pulse8-cec: fix lost cec_transmit_attempt_done() call - media: cec: CEC 2.0-only bcast messages were ignored - media: cec: avoid decrementing transmit_queue_sz if it is 0 - media: cec: check 'transmit_in_progress', not 'transmitting' - mm/zsmalloc.c: fix the migrated zspage statistics. - memcg: account security cred as well to kmemcg - mm: move_pages: return valid node id in status if the page is already on the target node - [x86,arm64] pstore/ram: Write new dumps to start of recycled zones - locks: print unsigned ino in /proc/locks - compat_ioctl: block: handle Persistent Reservations - compat_ioctl: block: handle BLKREPORTZONE/BLKRESETZONE - ata: libahci_platform: Export again ahci_platform_able_phys() - libata: Fix retrieving of active qcs - gpiolib: fix up emulated open drain outputs - tracing: Fix lock inversion in trace_event_enable_tgid_record() - tracing: Avoid memory leak in process_system_preds() - tracing: Have the histogram compare functions convert to u64 first - tracing: Fix endianness bug in histogram trigger - apparmor: fix aa_xattrs_match() may sleep while holding a RCU lock - [i386] ALSA: cs4236: fix error return comparison of an unsigned integer - ALSA: firewire-motu: Correct a typo in the clock proc string - exit: panic before exit_mm() on global init exit - [arm64] Revert support for execute-only user mappings - ftrace: Avoid potential division by zero in function profiler - [arm64] drm/msm: include linux/sched/task.h - PM / devfreq: Check NULL governor in available_governors_show - nfsd4: fix up replay_matches_cache() - [x86,arm64] HID: i2c-hid: Reset ALPS touchpads on resume - ACPI: sysfs: Change ACPI_MASKABLE_GPE_MAX to 0x100 - xfs: don't check for AG deadlock for realtime files in bunmapi - [x86] platform/x86: pmc_atom: Add Siemens CONNECT X300 to critclk_systems DMI table - Bluetooth: btusb: fix PM leak in error case of setup - Bluetooth: delete a stray unlock - Bluetooth: Fix memory leak in hci_connect_le_scan - media: flexcop-usb: ensure -EIO is returned on error condition - media: usb: fix memory leak in af9005_identify_state (CVE-2019-18809) - [arm64] dts: meson: odroid-c2: Disable usb_otg bus to avoid power failed warning - [arm64] tty: serial: msm_serial: Fix lockup for sysrq and oops - fix compat handling of FICLONERANGE, FIDEDUPERANGE and FS_IOC_FIEMAP - bdev: Factor out bdev revalidation into a common helper - bdev: Refresh bdev size for disks without partitioning - scsi: qedf: Do not retry ELS request if qedf_alloc_cmd fails - drm/mst: Fix MST sideband up-reply failure handling - [ppc64el] pseries/hvconsole: Fix stack overread via udbg - [ppc64el] KVM: PPC: Book3S HV: use smp_mb() when setting/clearing host_ipi flag - rxrpc: Fix possible NULL pointer access in ICMP handling - tcp: annotate tp->rcv_nxt lockless reads - net: core: limit nested device depth - ath9k_htc: Modify byte order for an error message - ath9k_htc: Discard undersized packets - xfs: periodically yield scrub threads to the scheduler - net: add annotations on hh->hh_len lockless accesses - ubifs: ubifs_tnc_start_commit: Fix OOB in layout_in_gaps - [s390x] smp: fix physical to logical CPU map for SMT - xen/blkback: Avoid unmapping unmapped grant pages - [x86] perf/x86/intel/bts: Fix the use of page_private() https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.95 - bpf: Fix passing modified ctx to ld/abs/ind instruction - regulator: fix use after free issue - ASoC: max98090: fix possible race conditions - netfilter: ctnetlink: netns exit must wait for callbacks - mwifiex: Fix heap overflow in mmwifiex_process_tdls_action_frame() (CVE-2019-14901) - [x86] efi: Update e820 with reserved EFI boot services data to fix kexec breakage - [x86] ASoC: Intel: bytcr_rt5640: Update quirk for Teclast X89 - efi/gop: Return EFI_NOT_FOUND if there are no usable GOPs - efi/gop: Return EFI_SUCCESS if a usable GOP was found - efi/gop: Fix memory leak in __gop_query32/64() - netfilter: uapi: Avoid undefined left-shift in xt_sctp.h - netfilter: nft_set_rbtree: bogus lookup/get on consecutive elements in named sets - netfilter: nf_tables: validate NFT_SET_ELEM_INTERVAL_END - netfilter: nf_tables: validate NFT_DATA_VALUE after nft_data_init() - [arm64] spi: spi-cavium-thunderx: Add missing pci_release_regions() - ASoC: topology: Check return value for soc_tplg_pcm_create() - bnxt_en: Return error if FW returns more data than dump length - [mips*] bpf, mips: Limit to 33 tail calls - [armhf] spi: spi-ti-qspi: Fix a bug when accessing non default CS - [powerpc*] Ensure that swiotlb buffer is allocated from low memory - btrfs: Fix error messages in qgroup_rescan_init - bpf: Clear skb->tstamp in bpf_redirect when necessary - bnx2x: Do not handle requests from VFs after parity - bnx2x: Fix logic to get total no. of PFs per engine - cxgb4: Fix kernel panic while accessing sge_info - net: usb: lan78xx: Fix error message format specifier - rfkill: Fix incorrect check to avoid NULL pointer dereference - iommu/iova: Init the struct iova to fix the possible memleak - [x86] perf/x86/intel: Fix PT PMI handling - fs: avoid softlockups in s_inodes iterators - [arm64,armhf] net: stmmac: Do not accept invalid MTU values - [arm64,armhf] net: stmmac: xgmac: Clear previous RX buffer size - [arm64,armhf] net: stmmac: RX buffer size must be 16 byte aligned - [arm64,armhf] net: stmmac: Always arm TX Timer at end of transmission start - [s390x] dasd/cio: Interpret ccw_device_get_mdc return value correctly - [s390x] dasd: fix memleak in path handling error case - block: fix memleak when __blk_rq_map_user_iov() is failed - llc2: Fix return statement of llc_stat_ev_rx_null_dsap_xid_c (and _test_c) - [x86] hv_netvsc: Fix unwanted rx_table reset - [powerpc*] vcpu: Assume dedicated processors as non-preempt - [powerpc*] spinlocks: Include correct header for static key - [armhf] cpufreq: imx6q: read OCOTP through nvmem for imx6ul/imx6ull - gtp: fix bad unlock balance in gtp_encap_enable_socket - macvlan: do not assume mac_header is set in macvlan_broadcast() - [arm64,armhf] net: dsa: mv88e6xxx: Preserve priority when setting CPU port. - [arm64,armhf] net: stmmac: dwmac-sun8i: Allow all RGMII modes - [arm64,armhf] net: stmmac: dwmac-sunxi: Allow all RGMII modes - net: usb: lan78xx: fix possible skb leak - pkt_sched: fq: do not accept silly TCA_FQ_QUANTUM - sch_cake: avoid possible divide by zero in cake_enqueue() - sctp: free cmd->obj.chunk for the unprocessed SCTP_CMD_REPLY - tcp: fix "old stuff" D-SACK causing SACK to be treated as D-SACK - vxlan: fix tos value before xmit - vlan: fix memory leak in vlan_dev_set_egress_priority - vlan: vlan_changelink() should propagate errors - net: sch_prio: When ungrafting, replace with FIFO - [arm64,armhf] usb: dwc3: gadget: Fix request complete check - USB: core: fix check for duplicate endpoints - USB: serial: option: add Telit ME910G1 0x110a composition - usb: missing parentheses in USE_NEW_SCHEME https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.96 - chardev: Avoid potential use-after-free in 'chrdev_open()' - i2c: fix bus recovery stop mode timing - [arm64,armhf] usb: chipidea: host: Disable port power only if previously enabled - ALSA: usb-audio: Apply the sample rate quirk for Bose Companion 5 - ALSA: hda/realtek - Add new codec supported for ALCS1200A - ALSA: hda/realtek - Set EAPD control to default for ALC222 - [x86] ALSA: hda/realtek - Add quirk for the bass speaker on Lenovo Yoga X1 7th gen - kernel/trace: Fix do not unregister tracepoints when register sched_migrate_task fail - tracing: Have stack tracer compile when MCOUNT_INSN_SIZE is not defined - tracing: Change offset type to s32 in preempt/irq tracepoints - HID: Fix slab-out-of-bounds read in hid_field_extract - HID: uhid: Fix returning EPOLLOUT from uhid_char_poll - HID: hid-input: clear unmapped usages - Input: add safety guards to input_set_keycode() - [arm64,armhf] drm/sun4i: tcon: Set RGB DCLK min. divider based on hardware model - drm/fb-helper: Round up bits_per_pixel if possible - drm/dp_mst: correct the shifting in DP_REMOTE_I2C_READ - can: kvaser_usb: fix interface sanity check - can: gs_usb: gs_usb_probe(): use descriptors of current altsetting - can: can_dropped_invalid_skb(): ensure an initialized headroom in outgoing CAN sk_buffs - gpiolib: acpi: Turn dmi_system_id table into a generic quirk table - gpiolib: acpi: Add honor_wakeup module-option + quirk mechanism - [x86] staging: vt6656: set usb_set_intfdata on driver fail. - USB: serial: option: add ZLP support for 0x1bc7/0x9010 - [arm64,armhf] usb: musb: fix idling for suspend after disconnect interrupt - [arm64,armhf] usb: musb: Disable pullup at init - [arm64,armhf] usb: musb: dma: Correct parameter passed to IRQ handler - [x86] staging: comedi: adv_pci1710: fix AI channels 16-31 for PCI-1713 - staging: rtl8188eu: Add device code for TP-Link TL-WN727N v5.21 - serdev: Don't claim unsupported ACPI serial devices - tty: link tty and port before configuring it as console - tty: always relink the port - mwifiex: fix possible heap overflow in mwifiex_process_country_ie() (CVE-2019-14895) - mwifiex: pcie: Fix memory leak in mwifiex_pcie_alloc_cmdrsp_buf (CVE-2019-19056) - scsi: bfa: release allocated memory in case of error (CVE-2019-19066) - rtl8xxxu: prevent leaking urb (CVE-2019-19068) - ath10k: fix memory leak (CVE-2019-19078) - HID: hiddev: fix mess in hiddev_open() - USB: Fix: Don't skip endpoint descriptors with maxpacket=0 - netfilter: arp_tables: init netns pointer in xt_tgchk_param struct - netfilter: conntrack: dccp, sctp: handle null timeout argument - netfilter: ipset: avoid null deref when IPSET_ATTR_LINENO is present - [x86] drm/i915/gen9: Clear residual context state on context switch (CVE-2019-14615) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.97 - hidraw: Return EPOLLOUT from hidraw_poll - HID: hidraw: Fix returning EPOLLOUT from hidraw_poll - HID: hidraw, uhid: Always report EPOLLOUT - cfg80211/mac80211: make ieee80211_send_layer2_update a public function - mac80211: Do not send Layer 2 Update frame before authorization (CVE-2019-5108) - f2fs: Move err variable to function scope in f2fs_fill_dentries() - f2fs: check memory boundary by insane namelen - f2fs: check if file namelen exceeds max value (CVE-2019-9445) - media: usb:zr364xx:Fix KASAN:null-ptr-deref Read in zr364xx_vidioc_querycap (CVE-2019-15217) - iwlwifi: dbg_ini: fix memory leak in alloc_sgtable (CVE-2019-19058) - iwlwifi: pcie: fix memory leaks in iwl_pcie_ctxt_info_gen3_init (CVE-2019-19059) - RDMA: Fix goto target to release the allocated memory (CVE-2019-19077) - dccp: Fix memleak in __feat_register_sp (CVE-2019-20096) - [x86] drm/i915: Fix use-after-free when destroying GEM context - ASoC: soc-core: Set dpcm_playback / dpcm_capture - [armhf] mtd: onenand: omap2: Pass correct flags for prep_dma_memcpy - [arm64] gpio: zynq: Fix for bug in zynq_gpio_restore_context API - iommu: Remove device link to group on failure - gpio: Fix error message on out-of-range GPIO in lookup table - [s390x] qeth: fix false reporting of VNIC CHAR config failure - [s390x] qeth: Fix vnicc_is_in_use if rx_bcast not set - cifs: Adjust indentation in smb2_open_file - afs: Fix missing cell comparison in afs_test_super() - drm/ttm: fix start page for huge page check in ttm_put_pages() (CVE-2019-19927) - drm/ttm: fix incrementing the page pointer for huge pages (CVE-2019-19927) - btrfs: simplify inode locking for RWF_NOWAIT - RDMA/mlx5: Return proper error value - RDMA/srpt: Report the SCSI residual to the initiator - scsi: enclosure: Fix stale device oops with hot replug - scsi: sd: Clear sdkp->protection_type if disk is reformatted without PI - [x86] platform/x86: asus-wmi: Fix keyboard brightness cannot be set to 0 - [x86] platform/x86: GPD pocket fan: Use default values when wrong modparams are given - xprtrdma: Fix completion wait during device removal - crypto: virtio - implement missing support for output IVs - NFSv2: Fix a typo in encode_sattr() - NFSv4.x: Drop the slot if nfs4_delegreturn_prepare waits for layoutreturn - mei: fix modalias documentation - [armhf] clk: samsung: exynos5420: Preserve CPU clocks configuration during suspend/resume - [armhf] pinctl: ti: iodelay: fix error checking on pinctrl_count_index_with_args call - [x86] pinctrl: lewisburg: Update pin list according to v1.1v6 - scsi: sd: enable compat ioctls for sed-opal - af_unix: add compat_ioctl support - compat_ioctl: handle SIOCOUTQNSD - [arm64,armhf] PCI: dwc: Fix find_next_bit() usage - PCI/PTM: Remove spurious "d" from granularity message - [powerpc*] powernv: Disable native PCIe port management - [armhf] tty: serial: imx: use the sg count from dma_map_sg - [i386] tty: serial: pch_uart: correct usage of dma_unmap_sg - mtd: spi-nor: fix silent truncation in spi_nor_read() - mtd: spi-nor: fix silent truncation in spi_nor_read_raw() - rtlwifi: Remove unnecessary NULL check in rtl_regd_init - f2fs: fix potential overflow - scsi: libcxgbi: fix NULL pointer dereference in cxgbi_device_destroy() - [mips*] cacheinfo: report shared CPU map - [arm64] drm/arm/mali: make malidp_mw_connector_helper_funcs static - [arm64] dmaengine: k3dma: Avoid null pointer traversal - [amd64] ioat: ioat_alloc_ring() failure handling. - ocfs2: call journal flush to mark journal as empty after journal recovery when mount https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.98 - clk: Don't try to enable critical clocks if prepare failed - iio: buffer: align the size of scan bytes to size of the largest element - USB: serial: simple: Add Motorola Solutions TETRA MTP3xxx and MTP85xx - USB: serial: option: Add support for Quectel RM500Q - USB: serial: opticon: fix control-message timeouts - USB: serial: option: add support for Quectel RM500Q in QDL mode - USB: serial: suppress driver bind attributes - USB: serial: ch341: handle unbound port at reset_resume - USB: serial: io_edgeport: handle unbound ports on URB completion - USB: serial: io_edgeport: add missing active-port sanity check - USB: serial: keyspan: handle unbound ports - USB: serial: quatech2: handle unbound ports - [x86] scsi: fnic: fix invalid stack access - scsi: mptfusion: Fix double fetch bug in ioctl - [armhf] dts: imx6q-dhcom: Fix SGTL5000 VDDIO regulator connection - ALSA: dice: fix fallback from protocol extension into limited functionality - ALSA: seq: Fix racy access for queue timer in proc read - ALSA: usb-audio: fix sync-ep altsetting sanity check - [arm64] dts: allwinner: a64: olinuxino: Fix SDIO supply regulator - block: fix an integer overflow in logical block size - [armhf] dts: am571x-idk: Fix gpios property to have the correct gpio number - LSM: generalize flag passing to security_capable - ptrace: reintroduce usage of subjective credentials in ptrace_has_cap() - usb: core: hub: Improved device recognition on remote wakeup - [x86] resctrl: Fix an imbalance in domain_remove_cpu() - [x86] CPU/AMD: Ensure clearing of SME/SEV features is maintained - [amd64] x86/efistub: Disable paging at mixed mode entry - [x86] resctrl: Fix potential memory leak - perf hists: Fix variable name's inconsistency in hists__for_each() macro - perf report: Fix incorrectly added dimensions as switch perf data file - mm/shmem.c: thp, shmem: fix conflict of above-47bit hint address and PMD alignment - mm: memcg/slab: call flush_memcg_workqueue() only if memcg workqueue is valid - btrfs: rework arguments of btrfs_unlink_subvol - btrfs: fix invalid removal of root ref - btrfs: do not delete mismatched root refs - btrfs: fix memory leak in qgroup accounting - mm/page-writeback.c: avoid potential division by zero in wb_min_max_ratio() - [armhf] dts: imx6qdl: Add Engicam i.Core 1.5 MX6 - [armhf] dts: imx6q-icore-mipi: Use 1.5 version of i.Core MX6DL - [arm64,armhf] net: stmmac: 16KB buffer must be 16 byte aligned - [arm64,armhf] net: stmmac: Enable 16KB buffer size - mm/huge_memory.c: make __thp_get_unmapped_area static - mm/huge_memory.c: thp: fix conflict of above-47bit hint address and PMD alignment - bpf: Fix incorrect verifier simulation of ARSH under ALU32 - cfg80211: fix deadlocks in autodisconnect work - cfg80211: fix memory leak in cfg80211_cqm_rssi_update - cfg80211: fix page refcount issue in A-MSDU decap - netfilter: fix a use-after-free in mtype_destroy() - netfilter: arp_tables: init netns pointer in xt_tgdtor_param struct - netfilter: nft_tunnel: fix null-attribute check - netfilter: nf_tables: remove WARN and add NLA_STRING upper limits - netfilter: nf_tables: store transaction list locally while requesting module - netfilter: nf_tables: fix flowtable list del corruption - NFC: pn533: fix bulk-message timeout - batman-adv: Fix DAT candidate selection on little endian systems - macvlan: use skb_reset_mac_header() in macvlan_queue_xmit() - [x86] hv_netvsc: Fix memory leak when removing rndis device - [arm64] net: hns: fix soft lockup when there is not enough memory - net: usb: lan78xx: limit size of local TSO packets - ptp: free ptp device pin descriptors properly - r8152: add missing endpoint sanity check - tcp: fix marked lost packets not being retransmitted - xen/blkfront: Adjust indentation in xlvbd_alloc_gendisk - tcp: refine rule to allow EPOLLOUT generation under mem pressure - [arm64] dts: meson-gxl-s905x-khadas-vim: fix gpio-keys-polled node - cfg80211: check for set_wiphy_params - tick/sched: Annotate lockless access to last_jiffies_update - drm/nouveau/bar/nv50: check bar1 vmm return value - drm/nouveau/bar/gf100: ensure BAR is mapped - drm/nouveau/mmu: qualify vmm during dtor - reiserfs: fix handling of -EOPNOTSUPP in reiserfs_for_each_xattr - scsi: esas2r: unlock on error in esas2r_nvram_read_direct() - scsi: qla4xxx: fix double free bug - scsi: bnx2i: fix potential use after free - scsi: target: core: Fix a pr_debug() argument - scsi: qla2xxx: Fix qla2x00_request_irqs() for MSI - scsi: qla2xxx: fix rports not being mark as lost in sync fabric scan - scsi: core: scsi_trace: Use get_unaligned_be*() - perf probe: Fix wrong address verification . [ Joe Richey ] * [cloud-amd64] tpm: Enable TPM drivers for Cloud (Closes: #946237) . [ Salvatore Bonaccorso ] * Refresh powerpc-fix-mcpu-options-for-spe-only-compiler.patch (Context changes in 4.19.88) * Drop 0027-RDMA-hns-Fix-the-bug-with-updating-rq-head-pointer-w.patch * Drop 0028-RDMA-hns-Bugfix-for-the-scene-without-receiver-queue.patch * [rt] Refresh 0199-net-move-xmit_recursion-to-per-task-variable-on-RT.patch (Context changes in 4.19.88) * [rt] Update to 4.19.90-rt35: - Update "workqueue: rework" for workqueue changes in 4.19.90 * [rt] Drop 0245-Revert-arm64-preempt-Fix-big-endian-when-checking-pr.patch * Refresh 0013-scsi-hisi_sas-Relocate-some-codes-to-avoid-an-unused.patch for context changes in 4.19.93. * [rt] Refresh 0253-watchdog-prevent-deferral-of-watchdogd-wakeup-on-RT.patch (Context changes in 4.19.93) * [rt] Refresh 0199-net-move-xmit_recursion-to-per-task-variable-on-RT.patch (Context changes in 4.19.97) . [ Ben Hutchings ] * [rt] Update to 4.19.94-rt38: - Refresh "x86/ioapic: Don't let setaffinity unmask threaded EOI interrupt too early" which was partly included in 4.19.92 * aufs: Update support patchset to aufs4.19.63+ 20200113; no functional changes * Bump ABI to 8 * libertas: Fix two buffer overflows at parsing bss descriptor (CVE-2019-14896, CVE-2019-14897) * wimax: i2400: fix memory leak (CVE-2019-19051) * wimax: i2400: Fix memory leak in i2400m_op_rfkill_sw_toggle (CVE-2019-19051) * [amd64/cloud-amd64] hwrandom: Enable HW_RANDOM_VIRTIO (Closes: #914511) . [ Noah Meyerhans ] * random: try to actively add entropy rather than passively wait for it (Closes: #948519) . [ Aurelien Jarno ] * [mips*/malta] Enable POWER_RESET_PIIX4_POWEROFF. linux (4.19.87-1) buster; urgency=medium . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.68 - seq_file: fix problem when seeking mid-record - mm/hmm: fix bad subpage pointer in try_to_unmap_one - mm: mempolicy: make the behavior consistent when MPOL_MF_MOVE* and MPOL_MF_STRICT were specified - mm: mempolicy: handle vma with unmovable pages mapped correctly in mbind - mm/memcontrol.c: fix use after free in mem_cgroup_iter() - mm/usercopy: use memory range to be accessed for wraparound check - Revert "pwm: Set class for exported channels in sysfs" - cpufreq: schedutil: Don't skip freq update when limits change - [x86] ALSA: hda/realtek - Add quirk for HP Envy x360 - ALSA: hda - Apply workaround for another AMD chip 1022:1487 - ALSA: hda - Fix a memory leak bug - ALSA: hda - Add a generic reboot_notify - ALSA: hda - Let all conexant codec enter D3 when rebooting - HID: holtek: test for sanity of intfdata - HID: hiddev: avoid opening a disconnected device - HID: hiddev: do cleanup in failure of opening a device - Input: kbtab - sanity check for endpoint type - Input: iforce - add sanity checks - net: usb: pegasus: fix improper read if get_registers() fail - netfilter: ebtables: also count base chain policies - xen/pciback: remove set but not used variable 'old_state' - [armhf,arm64] irqchip/gic-v3-its: Free unused vpt_page when alloc vpe table fail - perf header: Fix divide by zero error if f_header.attr_size==0 - perf header: Fix use of unitialized value warning - libata: zpodd: Fix small read overflow in zpodd_get_mech_type() - Btrfs: fix deadlock between fiemap and transaction commits - scsi: hpsa: correct scsi command status issue after reset - scsi: qla2xxx: Fix possible fcport null-pointer dereferences - drm/amdgpu: fix a potential information leaking bug - ata: libahci: do not complain in case of deferred probe - kbuild: modpost: handle KBUILD_EXTRA_SYMBOLS only for external modules - [arm64] efi: fix variable 'si' set but not used - [arm64] unwind: Prohibit probing on return_address() - [arm64] mm: fix variable 'pud' set but not used - IB/core: Add mitigation for Spectre V1 - IB/mlx5: Fix MR registration flow to use UMR properly - IB/mad: Fix use-after-free in ib mad completion handling - [arm64] drm: msm: Fix add_gpu_components - [armhf] drm/exynos: fix missing decrement of retry counter - ocfs2: remove set but not used variable 'last_hash' - asm-generic: fix -Wtype-limits compiler warnings - [arm64] KVM: regmap: Fix unexpected switch fall-through - [armhf,arm64] KVM: Sync ICH_VMCR_EL2 back when about to block - [x86] staging: comedi: dt3000: Fix signed integer overflow 'divider * base' - [x86] staging: comedi: dt3000: Fix rounding up of timer divisor - USB: core: Fix races in character device registration and deregistraion - usb: cdc-acm: make sure a refcount is taken early enough - USB: CDC: fix sanity checks in CDC union parser - USB: serial: option: add D-Link DWM-222 device ID - USB: serial: option: Add support for ZTE MF871A - USB: serial: option: add the BroadMobi BM818 card - USB: serial: option: Add Motorola modem UARTs - [x86] drm/i915/cfl: Add a new CFL PCI ID. - [arm64] ftrace: Ensure module ftrace trampoline is coherent with I-side - Input: psmouse - fix build error of multiple definition - bnx2x: Fix VF's VLAN reconfiguration in reload. - bonding: Add vlan tx offload to hw_enc_features - net: dsa: Check existence of .port_mdb_add callback before calling it - net/mlx4_en: fix a memory leak bug - net/packet: fix race in tpacket_snd() - sctp: fix memleak in sctp_send_reset_streams - sctp: fix the transport error_count check - team: Add vlan tx offload to hw_enc_features - tipc: initialise addr_trail_end when setting node addresses - xen/netback: Reset nr_frags before freeing skb - net/mlx5e: Only support tx/rx pause setting for port owner - net/mlx5e: Use flow keys dissector to parse packets for ARFS - [arm64] mmc: sdhci-of-arasan: Do now show error message in case of deffered probe https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.69 - HID: Add 044f:b320 ThrustMaster, Inc. 2 in 1 DT - [mips*] kernel: only use i8253 clocksource with periodic clockevent - [mips*] fix cacheinfo - netfilter: ebtables: fix a memory leak bug in compat - ASoC: dapm: Fix handling of custom_stop_condition on DAPM graph walks - bonding: Force slave speed check after link state recovery for 802.3ad - [armhf,arm64] net: mvpp2: Don't check for 3 consecutive Idle frames for 10G links - can: dev: call netif_carrier_off() in register_candev() - can: gw: Fix error path of cgw_module_init - [armhf,arm64] ASoC: rockchip: Fix mono capture - [armhf] ASoC: ti: davinci-mcasp: Correct slot_width posed constraint - net: usb: qmi_wwan: Add the BroadMobi BM818 card - qed: RDMA - Fix the hw_ver returned in device attributes - isdn: mISDN: hfcsusb: Fix possible null-pointer dereferences in start_isoc_chain() - mac80211_hwsim: Fix possible null-pointer dereferences in hwsim_dump_radio_nl() - netfilter: ipset: Actually allow destination MAC address for hash:ip,mac sets too - netfilter: ipset: Copy the right MAC address in bitmap:ip,mac and hash:ip,mac sets - netfilter: ipset: Fix rename concurrency with listing - rxrpc: Fix potential deadlock - rxrpc: Fix the lack of notification when sendmsg() fails on a DATA packet - isdn: hfcsusb: Fix mISDN driver crash caused by transfer buffer on the stack - net: phy: phy_led_triggers: Fix a possible null-pointer dereference in phy_led_trigger_change_speed() - can: sja1000: force the string buffer NULL-terminated - can: peak_usb: force the string buffer NULL-terminated - net/ethernet/qlogic/qed: force the string buffer NULL-terminated - NFSv4: Fix a potential sleep while atomic in nfs4_do_reclaim() - NFS: Fix regression whereby fscache errors are appearing on 'nofsc' mounts - HID: quirks: Set the INCREMENT_USAGE_ON_DUPLICATE quirk on Saitek X52 - HID: input: fix a4tech horizontal wheel custom usage - [armhf,arm64] drm/rockchip: Suspend DP late - SMB3: Fix potential memory leak when processing compound chain - SMB3: Kernel oops mounting a encryptData share with CONFIG_DEBUG_VIRTUAL - [s390x] put _stext and _etext into .text section - net: cxgb3_main: Fix a resource leak in a error path in 'init_one()' - [armhf,arm64] net: stmmac: Fix issues when number of Queues >= 4 - [armhf,arm64] net: stmmac: tc: Do not return a fragment entry - [arm64] net: hisilicon: make hip04_tx_reclaim non-reentrant - [arm64] net: hisilicon: fix hip04-xmit never return TX_BUSY - [arm64] net: hisilicon: Fix dma_map_single failed on arm64 - libata: have ata_scsi_rw_xlat() fail invalid passthrough requests - libata: add SG safety checks in SFF pio transfers - [x86] lib/cpu: Address missing prototypes warning - [x86] drm/vmwgfx: fix memory leak when too many retries have occurred - block, bfq: handle NULL return value by bfq_init_rq() - perf ftrace: Fix failure to set cpumask when only one cpu is present - perf cpumap: Fix writing to illegal memory in handling cpumap mask - perf pmu-events: Fix missing "cpu_clk_unhalted.core" event - [arm64] KVM: Don't write junk to sysregs on reset - [armhf] KVM: Don't write junk to CP15 registers on reset - HID: wacom: correct misreported EKR ring values - HID: wacom: Correct distance scale for 2nd-gen Intuos devices - Revert "dm bufio: fix deadlock with loop device" (regression in 4.19.61) - ceph: clear page dirty before invalidate page - ceph: don't try fill file_lock on unsuccessful GETFILELOCK reply - libceph: fix PG split vs OSD (re)connect race - drm/nouveau: Don't retry infinitely when receiving no data on i2c over AUX - gpiolib: never report open-drain/source lines as 'input' to user-space - [x86] Drivers: hv: vmbus: Fix virt_to_hvpfn() for X86_PAE - userfaultfd_release: always remove uffd flags and clear vm_userfaultfd_ctx - [i386] retpoline: Don't clobber RFLAGS during CALL_NOSPEC on i386 - [x86] apic: Handle missing global clockevent gracefully - [x86] CPU/AMD: Clear RDRAND CPUID bit on AMD family 15h/16h - [x86] boot: Save fields explicitly, zero out everything else - [x86] boot: Fix boot regression caused by bootparam sanitizing - dm kcopyd: always complete failed jobs - dm btree: fix order of block initialization in btree_split_beneath - dm integrity: fix a crash due to BUG_ON in __journal_read_write() - dm raid: add missing cleanup in raid_ctr() - dm space map metadata: fix missing store of apply_bops() return value - dm table: fix invalid memory accesses with too high sector number - dm zoned: improve error handling in reclaim - dm zoned: improve error handling in i/o map code - dm zoned: properly handle backing device failure - genirq: Properly pair kobject_del() with kobject_add() - mm, page_owner: handle THP splits correctly - mm/zsmalloc.c: migration can leave pages in ZS_EMPTY indefinitely - mm/zsmalloc.c: fix race condition in zs_destroy_pool - xfs: don't trip over uninitialized buffer on extent read of corrupted inode - xfs: Move fs/xfs/xfs_attr.h to fs/xfs/libxfs/xfs_attr.h - xfs: Add helper function xfs_attr_try_sf_addname - xfs: Add attibute set and helper functions - xfs: Add attibute remove and helper functions - xfs: always rejoin held resources during defer roll - dm zoned: fix potential NULL dereference in dmz_do_reclaim() - [ppc64el] Allow flush_(inval_)dcache_range to work across ranges >4GB - rxrpc: Fix local endpoint refcounting - rxrpc: Fix read-after-free in rxrpc_queue_local() - rxrpc: Fix local endpoint replacement - rxrpc: Fix local refcounting https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.70 - nvme-multipath: revalidate nvme_ns_head gendisk in nvme_validate_ns - afs: Fix the CB.ProbeUuid service handler to reply correctly - afs: Fix loop index mixup in afs_deliver_vl_get_entry_by_name_u() - fs: afs: Fix a possible null-pointer dereference in afs_put_read() - afs: Only update d_fsdata if different in afs_d_revalidate() - nvmet-loop: Flush nvme_delete_wq when removing the port - nvme: fix a possible deadlock when passthru commands sent to a multipath device - nvme-pci: Fix async probe remove race - [armhf] omap-dma/omap_vout_vrfb: fix off-by-one fi value - iommu/dma: Handle SG length overflow better - usb: gadget: composite: Clear "suspended" on reset/disconnect - usb: gadget: mass_storage: Fix races between fsg_disable and fsg_set_alt - xen/blkback: fix memory leaks - [arm64] cpufeature: Don't treat granule sizes as strict - drm/ast: Fixed reboot test may cause system hanged - [x86] tools: hv: fix KVP and VSS daemons exit code - [x86] drm/i915: fix broadwell EU computation - [arm*] watchdog: bcm2835_wdt: Fix module autoload - scsi: ufs: Fix RX_TERMINATION_FORCE_ENABLE define value - [armhf] drm/tilcdc: Register cpufreq notifier after we have initialized crtc - ipv6/addrconf: allow adding multicast addr if IFA_F_MCAUTOJOIN is set - ipv6: Default fib6_type to RTN_UNICAST when not set - net/smc: make sure EPOLLOUT is raised - tcp: make sure EPOLLOUT wont be missed - ipv4/icmp: fix rt dst dev null pointer dereference - mm/zsmalloc.c: fix build when CONFIG_COMPACTION=n - ALSA: usb-audio: Check mixer unit bitmap yet more strictly - ALSA: line6: Fix memory leak at line6_init_pcm() error path - ALSA: hda - Fixes inverted Conexant GPIO mic mute led - ALSA: seq: Fix potential concurrent access to the deleted pool - ALSA: usb-audio: Fix invalid NULL check in snd_emuusb_set_samplerate() - ALSA: usb-audio: Add implicit fb quirk for Behringer UFX1604 - [x86] kvm: skip populating logical dest map if apic is not sw enabled - [x86] KVM: Don't update RIP or do single-step on faulting emulation - [amd64] uprobes: Fix detection of 32-bit user mode - [x86] apic: Do not initialize LDR and DFR for bigsmp - ftrace: Fix NULL pointer dereference in t_probe_next() - ftrace: Check for successful allocation of hash - ftrace: Check for empty hash and comment the race with registering probes - usb-storage: Add new JMS567 revision to unusual_devs - USB: cdc-wdm: fix race between write and disconnect due to flag abuse - usb: hcd: use managed device resources - [armhf,arm64] usb: chipidea: udc: don't do hardware access if gadget has stopped - usb: host: ohci: fix a race condition between shutdown and irq - usb: host: xhci: rcar: Fix typo in compatible string matching - USB: storage: ums-realtek: Update module parameter description for auto_delink_en - USB: storage: ums-realtek: Whitelist auto-delink support - [x86] mei: me: add Tiger Lake point LP device ID - mmc: core: Fix init of SD cards reporting an invalid VDD range - stm class: Fix a double free of stm_source_device - [x86] intel_th: pci: Add support for another Lewisburg PCH - [x86] intel_th: pci: Add Tiger Lake support - [x86] typec: tcpm: fix a typo in the comparison of pdo_max_voltage - lib: logic_pio: Fix RCU usage - lib: logic_pio: Avoid possible overlap for unregistering regions - lib: logic_pio: Add logic_pio_unregister_range() - [x86] drm/amdgpu: Add APTX quirk for Dell Latitude 5495 - [x86] drm/i915: Don't deballoon unused ggtt drm_mm_node in linux guest - [x86] drm/i915: Call dma_set_max_seg_size() in i915_driver_hw_probe() - [arm64] bus: hisi_lpc: Unregister logical PIO range to avoid potential use-after-free - [arm64] bus: hisi_lpc: Add .remove method to avoid driver unbind crash - [x86] VMCI: Release resource if the work is already queued - [x86] crypto: ccp - Ignore unconfigured CCP device on suspend/resume - Revert "cfg80211: fix processing world regdomain when non modular" - mac80211: fix possible sta leak - mac80211: Don't memset RXCB prior to PAE intercept - mac80211: Correctly set noencrypt for PAE frames - [ppc64el] KVM: Book3S: Fix incorrect guest-to-user-translation error handling - [armhf,arm64] KVM: vgic: Fix potential deadlock when ap_list is long - [armhf,arm64] KVM: vgic-v2: Handle SGI bits in GICD_I{S,C}PENDR0 as WI - NFS: Clean up list moves of struct nfs_page - NFSv4/pnfs: Fix a page lock leak in nfs_pageio_resend() - NFS: Pass error information to the pgio error cleanup routine - NFS: Ensure O_DIRECT reports an error if the bytes read/written is 0 - [x86] i2c: piix4: Fix port selection for AMD Family 16h Model 30h - mt76: mt76x0u: do not reset radio on resume https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.71 - Revert "Input: elantech - enable SMBus on new (2018+) systems" (regression in 4.19.67) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.72 - mld: fix memory leak in mld_del_delrec() - net: fix skb use after free in netpoll - net: sched: act_sample: fix psample group handling on overwrite - net_sched: fix a NULL pointer deref in ipt action - [armhf,arm64] net: stmmac: dwmac-rk: Don't fail if phy regulator is absent - tcp: inherit timestamp on mtu probe - tcp: remove empty skb from write queue in error cases - net/rds: Fix info leak in rds6_inc_info_copy() (CVE-2019-16714) - [x86] boot: Preserve boot_params.secure_boot from sanitizing - [arm*] spi: bcm2835aux: unifying code between polling and interrupt driven code - [arm*] spi: bcm2835aux: remove dangerous uncontrolled read of fifo - [arm*] spi: bcm2835aux: fix corruptions for longer spi transfers - netfilter: nf_tables: use-after-free in failing rule with bound set - [x86] hv_netvsc: Fix a warning of suspicious RCU usage - Bluetooth: btqca: Add a short delay before downloading the NVM - [ppc64el] ibmveth: Convert multicast list size for little-endian system - gpio: Fix build error of function redefinition - netfilter: nft_flow_offload: skip tcp rst and fin packets - scsi: qla2xxx: Fix gnl.l memory leak on adapter init failure - scsi: target: tcmu: avoid use-after-free after command timeout - cxgb4: fix a memory leak bug - liquidio: add cleanup in octeon_setup_iq() - net: myri10ge: fix memory leaks - lan78xx: Fix memory leaks - vfs: fix page locking deadlocks when deduping files - cx82310_eth: fix a memory leak bug - net: kalmia: fix memory leaks - net: cavium: fix driver name - wimax/i2400m: fix a memory leak bug - kprobes: Fix potential deadlock in kprobe_optimizer() - HID: cp2112: prevent sleeping function called from invalid context - [amd64] boot/compressed: Fix boot on machines with broken E820 table - [x86] Input: hyperv-keyboard: Use in-place iterator API in the channel callback - [x86] Tools: hv: kvp: eliminate 'may be used uninitialized' warning - nvme-multipath: fix possible I/O hang when paths are updated - IB/mlx4: Fix memory leaks - infiniband: hfi1: fix a memory leak bug - infiniband: hfi1: fix memory leaks - ceph: fix buffer free while holding i_ceph_lock in __ceph_setxattr() - ceph: fix buffer free while holding i_ceph_lock in __ceph_build_xattrs_blob() - ceph: fix buffer free while holding i_ceph_lock in fill_inode() - [armhf,arm64] KVM: Only skip MMIO insn once - afs: Fix leak in afs_lookup_cell_rcu() - [armhf,arm64] KVM: VGIC: Properly initialise private IRQ affinity - [amd64] boot/compressed: Fix missing initialization in find_trampoline_placement() - libceph: allow ceph_buffer_put() to receive a NULL ceph_buffer https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.73 - ALSA: hda - Fix potential endless loop at applying quirks - ALSA: hda/realtek - Fix overridden device-specific initialization - [x86] ALSA: hda/realtek - Add quirk for HP Pavilion 15 - [x86] ALSA: hda/realtek - Enable internal speaker & headset mic of ASUS UX431FL - [x86] ALSA: hda/realtek - Fix the problem of two front mics on a ThinkCentre - sched/fair: Don't assign runtime for throttled cfs_rq - [x86] drm/vmwgfx: Fix double free in vmw_recv_msg() - [ppc64el] tm: Fix FP/VMX unavailable exceptions inside a transaction (CVE-2019-15030) - batman-adv: fix uninit-value in batadv_netlink_get_ifindex() - batman-adv: Only read OGM tvlv_len after buffer len check - [x86] hv_sock: Fix hang when a connection is closed - Blk-iolatency: warn on negative inflight IO counter - blk-iolatency: fix STS_AGAIN handling - {nl,mac}80211: fix interface combinations on crypto controlled devices - timekeeping: Use proper ktime_add when adding nsecs in coarse offset - selftests: fib_rule_tests: use pre-defined DEV_ADDR - [x86] ftrace: Fix warning and considate ftrace_jmp_replace() and ftrace_call_replace() - [ppc64el] mark start_here_multiplatform as __ref - [arm64] dts: rockchip: enable usb-host regulators at boot on rk3328-rock64 - nvme-fc: use separate work queue to avoid warning - [armhf] clk: s2mps11: Add used attribute to s2mps11_dt_match - [arm64] remoteproc: qcom: q6v5: shore up resource probe handling - modules: always page-align module section allocations - kernel/module: Fix mem leak in module_add_modinfo_attrs - [x86] drm/i915: Re-apply "Perform link quality check, unconditionally during long pulse" - scsi: qla2xxx: Move log messages before issuing command to firmware - keys: Fix the use of the C++ keyword "private" in uapi/linux/keyctl.h - [x86] Drivers: hv: kvp: Fix two "this statement may fall through" warnings - [x86] hibernate: Fix nosave_regions setup for hibernation - [arm64] remoteproc: qcom: q6v5-mss: add SCM probe dependency - drm/amdgpu/gfx9: Update gfx9 golden settings. - drm/amdgpu: Update gc_9_0 golden settings. - [x86] KVM: hyperv: enforce vp_index < KVM_MAX_VCPUS - [x86] KVM: hyperv: consistently use 'hv_vcpu' for 'struct kvm_vcpu_hv' variables - [x86] KVM: hyperv: keep track of mismatched VP indexes - [x86] KVM: hyperv: define VP assist page helpers - [x86] kvm/lapic: preserve gfn_to_hva_cache len on cache reinit - [x86] drm/i915: Fix intel_dp_mst_best_encoder() - [x86] drm/i915: Rename PLANE_CTL_DECOMPRESSION_ENABLE - [x86] drm/i915/gen9+: Fix initial readout for Y tiled framebuffers - drm/atomic_helper: Disallow new modesets on unregistered connectors - [x86] Drivers: hv: kvp: Fix the recent regression caused by incorrect clean-up - powerplay: Respect units on max dcfclk watermark - drm/amd/pp: Fix truncated clock value when set watermark - drm/amd/dm: Understand why attaching path/tile properties are needed - [s390x] zcrypt: reinit ap queue state machine during device probe - [x86] drm/i915: Restore sane defaults for KMS on GEM error load - [x86] drm/i915: Cleanup gt powerstate from gem - [ppc64el] KVM: Book3S HV: Fix race between kvm_unmap_hva_range and MMU mode switch - Btrfs: clean up scrub is_dev_replace parameter - Btrfs: fix deadlock with memory reclaim during scrub - btrfs: Remove extent_io_ops::fill_delalloc - btrfs: Fix error handling in btrfs_cleanup_ordered_extents - scsi: megaraid_sas: Fix combined reply queue mode detection - scsi: megaraid_sas: Add check for reset adapter bit - scsi: megaraid_sas: Use 63-bit DMA addressing - [ppc64el] pkeys: Fix handling of pkey state across fork() - btrfs: volumes: Make sure no dev extent is beyond device boundary - btrfs: Use real device structure to verify dev extent - IB/uverbs: Fix OOPs upon device disassociation - drm/vblank: Allow dynamic per-crtc max_vblank_count - [x86] drm/i915/ilk: Fix warning when reading emon_status with no output - tpm: Fix some name collisions with drivers/char/tpm.h - bcache: replace hard coded number with BUCKET_GC_GEN_MAX - bcache: treat stale && dirty keys as bad keys - [x86] KVM: VMX: Compare only a single byte for VMCS' "launched" in vCPU-run - [armhf] iio: adc: exynos-adc: Add S5PV210 variant - [armhf] iio: adc: exynos-adc: Use proper number of channels for Exynos4x12 - mt76: fix corrupted software generated tx CCMP PN - drm/nouveau: Don't WARN_ON VCPI allocation failures - iwlwifi: fix devices with PCI Device ID 0x34F0 and 11ac RF modules - iwlwifi: add new card for 9260 series - spi: spi-gpio: fix SPI_CS_HIGH capability - [ppc64el] kvm: Save and restore host AMR/IAMR/UAMOR - btrfs: scrub: pass fs_info to scrub_setup_ctx - btrfs: scrub: move scrub_setup_ctx allocation out of device_list_mutex - btrfs: scrub: fix circular locking dependency warning - btrfs: init csum_list before possible free - [arm64] PCI: qcom: Fix error handling in runtime PM support - [arm64] PCI: qcom: Don't deassert reset GPIO during probe - CIFS: Fix error paths in writeback code - CIFS: Fix leaking locked VFS cache pages in writeback retry - [x86] drm/i915: Handle vm_mmap error during I915_GEM_MMAP ioctl with WC set - [x86] drm/i915: Sanity check mmap length against object size - [x86] usb: typec: tcpm: Try PD-2.0 if sink does not respond to 3.0 source-caps - IB/mlx5: Reset access mask when looping inside page fault handler - kvm: mmu: Fix overflow on kvm mmu page limit calculation - [x86] kvm: move kvm_load/put_guest_xcr0 into atomic context - [x86] KVM: Always use 32-bit SMRAM save state for 32-bit kernels - cifs: Fix lease buffer length error (CVE-2019-15918) - ext4: protect journal inode's blocks using block_validity - [x86] PCI: Reset Lenovo ThinkPad P50 nvgpu at boot if necessary - dm mpath: fix missing call of path selector type->end_io - blk-mq: free hw queue's resource in hctx's release handler - mmc: sdhci-pci: Add support for Intel CML - PCI: dwc: Use devm_pci_alloc_host_bridge() to simplify code - cifs: smbd: take an array of reqeusts when sending upper layer data - dm crypt: move detailed message into debug level - [x86] drm/amdkfd: Add missing Polaris10 ID - kvm: Check irqchip mode before assign irqfd - drm/amdgpu: fix ring test failure issue during s3 in vce 3.0 (V2) - drm/amdgpu/{uvd,vcn}: fetch ring's read_ptr after alloc - Btrfs: fix race between block group removal and block group allocation - cifs: add spinlock for the openFileList to cifsInodeInfo - [arm64] clk: tegra: Fix maximum audio sync clock for Tegra124/210 - [arm64] clk: tegra210: Fix default rates for HDA clocks - IB/hfi1: Avoid hardlockup with flushlist_lock - apparmor: reset pos on failure to unpack for various functions - scsi: target/core: Use the SECTOR_SHIFT constant - scsi: target/iblock: Fix overrun in WRITE SAME emulation - [s390x] scsi: zfcp: fix request object use-after-free in send path causing wrong traces - cifs: Properly handle auto disabling of serverino option - [x86] ALSA: hda - Don't resume forcibly i915 HDMI/DP codec - [x86] KVM: optimize check for valid PAT value - [x86] KVM: VMX: Always signal #GP on WRMSR to MSR_IA32_CR_PAT with bad value - [x86] KVM: VMX: Fix handling of #MC that occurs during VM-Entry - [x86] KVM: VMX: check CPUID before allowing read/write of IA32_XSS - [ppc64el] KVM: Use ccr field in pt_regs struct embedded in vcpu struct - [ppc64el] KVM: Book3S HV: Fix CR0 setting in TM emulation - RDMA/srp: Document srp_parse_in() arguments - RDMA/srp: Accept again source addresses that do not have a port number - btrfs: correctly validate compression type - resource: Include resource end in walk_*() interfaces - resource: Fix find_next_iomem_res() iteration issue - resource: fix locking in find_next_iomem_res() - pstore: Fix double-free in pstore_mkfile() failure path - dm thin metadata: check if in fail_io mode when setting needs_check - [armhf,arm64] drm/panel: Add support for Armadeus ST0700 Adapt - [x86] ALSA: hda - Fix intermittent CORB/RIRB stall on Intel chips - [ppc64el] mm: Limit rma_size to 1TB when running without HV mode - iommu/iova: Remove stale cached32_node - gpio: don't WARN() on NULL descs if gpiolib is disabled - mm/migrate.c: initialize pud_entry in migrate_vma() - NFSv4: Fix delegation state recovery - bcache: only clear BTREE_NODE_dirty bit when it is set - bcache: add comments for mutex_lock(&b->write_lock) - bcache: fix race in btree_flush_write() - [x86] drm/i915: Make sure cdclk is high enough for DP audio on VLV/CHV - [s390x] virtio: fix race on airq_areas[] - drm/atomic_helper: Allow DPMS On<->Off changes for unregistered connectors - ext4: don't perform block validity checks on the journal inode - ext4: fix block validity checks for journal inodes using indirect blocks - ext4: unsigned int compared against zero - [x86] PCI: Reset both NVIDIA GPU and HDA in ThinkPad P50 workaround - [ppc64el] tm: Remove msr_tm_active() - [ppc64el] tm: Fix restoring FP/VMX facility incorrectly on interrupts (CVE-2019-15031) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.74 - bridge/mdb: remove wrong use of NLM_F_MULTI - cdc_ether: fix rndis support for Mediatek based smartphones - ipv6: Fix the link time qualifier of 'ping_v6_proc_exit_net()' - isdn/capi: check message length in capi_write() - net: Fix null de-reference of device refcount - net: gso: Fix skb_segment splat when splitting gso_size mangled skb having linear-headed frag_list - net: phylink: Fix flow control resolution - net: sched: fix reordering issues - sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero - sctp: Fix the link time qualifier of 'sctp_ctrlsock_exit()' - sctp: use transport pf_retrans in sctp_do_8_2_transport_strike - tcp: fix tcp_ecn_withdraw_cwr() to clear TCP_ECN_QUEUE_CWR - tipc: add NULL pointer check before calling kfree_rcu - tun: fix use-after-free when register netdev failed - gpiolib: acpi: Add gpiolib_acpi_run_edge_events_on_boot option and blacklist - gpio: fix line flag validation in linehandle_create - Btrfs: fix assertion failure during fsync and use of stale transaction - ixgbe: Prevent u8 wrapping of ITR value to something less than 10us - genirq: Prevent NULL pointer dereference in resend_irqs() - [s390x] KVM: kvm_s390_vm_start_migration: check dirty_bitmap before using it as target for memset() - [s390x] KVM: Do not leak kernel stack data in the KVM_S390_INTERRUPT ioctl - [x86] KVM: work around leak of uninitialized stack contents - [x86] KVM: nVMX: handle page fault in vmread - [x86] purgatory: Change compiler flags from -mcmodel=kernel to -mcmodel=large to fix kexec relocation errors - [ppc64el] Add barrier_nospec to raw_copy_in_user() - [arm64] drm/meson: Add support for XBGR8888 & ABGR8888 formats - [armhf,arm64] clk: rockchip: Don't yell about bad mmc phases when getting - PCI: Always allow probing with driver_override - gpio: fix line flag validation in lineevent_create - ubifs: Correctly use tnc_next() in search_dh_cookie() - driver core: Fix use-after-free and double free on glue directory - firmware: ti_sci: Always request response from firmware - [x86] drm: panel-orientation-quirks: Add extra quirk table entry for GPD MicroPC - Revert "Bluetooth: btusb: driver to enable the usb-wakeup feature" - modules: fix BUG when load module with rodata=n - rsi: fix a double free bug in rsi_91x_deinit() (CVE-2019-15504) - nvmem: Use the same permissions for eeprom as for nvmem https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.75 - netfilter: nf_flow_table: set default timeout after successful insertion - HID: wacom: generic: read HID_DG_CONTACTMAX from any feature report - RDMA/restrack: Release task struct which was hold by CM_ID object - [x86] Input: elan_i2c - remove Lenovo Legion Y7000 PnpID - [ppc64el] mm/radix: Use the right page size for vmemmap mapping - USB: usbcore: Fix slab-out-of-bounds bug during device reset - media: tm6000: double free if usb disconnect while streaming - ip6_gre: fix a dst leak in ip6erspan_tunnel_xmit - udp: correct reuseport selection with connected sockets - xen-netfront: do not assume sk_buff_head list is empty in error handling - net_sched: let qdisc_put() accept NULL pointer - mwifiex: Fix three heap overflow at parsing element in cfg80211_ap_settings (CVE-2019-14814, CVE-2019-14815, CVE-2019-14816) - nl80211: Fix possible Spectre-v1 for CQM RSSI thresholds - ieee802154: hwsim: Fix error handle path in hwsim_init_module - ieee802154: hwsim: unregister hw while hwsim_subscribe_all_others fails - [armhf] dts: am57xx: Disable voltage switching for SD card - [armhf] OMAP2+: Fix missing SYSC_HAS_RESET_STATUS for dra7 epwmss - [armhf] bus: ti-sysc: Fix using configured sysc mask value - [s390x] bpf: fix lcgr instruction encoding - [armhf] OMAP2+: Fix omap4 errata warning on other SoCs - [armhf] dts: dra74x: Fix iodelay configuration for mmc3 - [armhf] bus: ti-sysc: Simplify cleanup upon failures in sysc_probe() - [s390x] bpf: use 32-bit index for tail calls - netfilter: ebtables: Fix argument order to ADD_COUNTER - netfilter: nft_flow_offload: missing netlink attribute policy - netfilter: xt_nfacct: Fix alignment mismatch in xt_nfacct_match_info - NFSv4: Fix return values for nfs4_file_open() - NFSv4: Fix return value in nfs_finish_open() - NFS: Fix initialisation of I/O result struct in nfs_pgio_rpcsetup - xdp: unpin xdp umem pages in error path - qed: Add cleanup in qed_slowpath_start() - [armel,armhf] 8874/1: mm: only adjust sections of valid mm structures - batman-adv: Only read OGM2 tvlv_len after buffer len check - bpf: allow narrow loads of some sk_reuseport_md fields with offset > 0 - r8152: Set memory to all 0xFFs on failed reg reads - [x86] apic: Fix arch_dynirq_lower_bound() bug for DT enabled machines - netfilter: xt_physdev: Fix spurious error message in physdev_mt_check - netfilter: nf_conntrack_ftp: Fix debug output - NFSv2: Fix eof handling - NFSv2: Fix write regression - kallsyms: Don't let kallsyms_lookup_size_offset() fail on retrieving the first symbol - cifs: set domainName when a domain-key is used in multiuser - cifs: Use kzfree() to zero out the password - [armhf,arm64] usb: host: xhci-tegra: Set DMA mask correctly - [armel,armhf] 8901/1: add a criteria for pfn_valid of arm - sky2: Disable MSI on yet another ASUS boards (P6Xxxx) - i2c: designware: Synchronize IRQs when unregistering slave client - [x86] perf/intel: Restrict period on Nehalem - [x86] perf/amd/ibs: Fix sample bias for dispatched micro-ops - amd-xgbe: Fix error path in xgbe_mod_init() - [x86] tools/power x86_energy_perf_policy: Fix argument parsing - [x86] tools/power turbostat: fix buffer overrun - net: aquantia: fix out of memory condition on rx side - [armhf] dmaengine: ti: omap-dma: Add cleanup in omap_dma_probe() - [x86] uaccess: Don't leak the AC flags into __get_user() argument evaluation - [x86] hyper-v: Fix overflow bug in fill_gva_list() - keys: Fix missing null pointer check in request_key_auth_describe() - [x86] iommu/amd: Flush old domains in kdump kernel - [x86] iommu/amd: Fix race in increase_address_space() - [arm64] PCI: kirin: Fix section mismatch warning - ovl: fix regression caused by overlapping layers detection - floppy: fix usercopy direction - binfmt_elf: move brk out of mmap when doing direct loader exec - [arm64] kpti: Whitelist Cortex-A CPUs that don't implement the CSV3 field - media: technisat-usb2: break out of loop at end of buffer (CVE-2019-15505) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.76 - Revert "Bluetooth: validate BLE connection interval updates" - RDMA/restrack: Protect from reentry to resource return path - [ppc64el] xive: Fix bogus error code returned by OPAL - IB/core: Add an unbound WQ type to the new CQ API - HID: prodikeys: Fix general protection fault during probe - HID: sony: Fix memory corruption issue on cleanup. - HID: logitech: Fix general protection fault caused by Logitech driver - HID: hidraw: Fix invalid read in hidraw_ioctl - HID: Add quirk for HP X500 PIXART OEM mouse - mtd: cfi_cmdset_0002: Use chip_good() to retry in do_write_oneword() - CIFS: fix deadlock in cached root handling - net/mlx5e: Set ECN for received packets using CQE indication - net/mlx5e: don't set CHECKSUM_COMPLETE on SCTP packets - mlx5: fix get_ip_proto() - net/mlx5e: Allow reporting of checksum unnecessary - net/mlx5e: XDP, Avoid checksum complete when XDP prog is loaded - net/mlx5e: Rx, Fixup skb checksum for packets with tail padding - net/mlx5e: Rx, Check ip headers sanity - iwlwifi: mvm: send BCAST management frames to the right station - iwlwifi: mvm: always init rs_fw with 20MHz bandwidth rates - media: tvp5150: fix switch exit in set control handler - [x86] ASoC: Intel: cht_bsw_max98090_ti: Enable codec clock once and keep it enabled - ALSA: usb-audio: Add Hiby device family to quirks for native DSD support - ALSA: usb-audio: Add DSD support for EVGA NU Audio - ALSA: dice: fix wrong packet parameter for Alesis iO26 - [x86] ALSA: hda - Add laptop imic fixup for ASUS M9V laptop - [x86] ALSA: hda - Apply AMD controller workaround for Raven platform - objtool: Clobber user CFLAGS variable - power: supply: sysfs: ratelimit property read error message - scsi: qla2xxx: Turn off IOCB timeout timer on IOCB completion - scsi: qla2xxx: Remove all rports if fabric scan retry fails - scsi: qla2xxx: Return switch command on a timeout - Revert "drm/amd/powerplay: Enable/Disable NBPSTATE on On/OFF of UVD" - bpf: libbpf: retry loading program on EAGAIN - [armhf,arm64] irqchip/gic-v3-its: Fix LPI release for Multi-MSI devices - f2fs: check all the data segments against all node ones - [x86] PCI: hv: Avoid use of hv_pci_dev->pci_slot after freeing it - bcache: remove redundant LIST_HEAD(journal) from run_cache_set() - initramfs: don't free a non-existent initrd - blk-mq: change gfp flags to GFP_NOIO in blk_mq_realloc_hw_ctxs - blk-mq: move cancel of requeue_work to the front of blk_exit_queue - Revert "f2fs: avoid out-of-range memory access" - dm zoned: fix invalid memory access - f2fs: fix to do sanity check on segment bitmap of LFS curseg - drm: Flush output polling on shutdown - net: don't warn in inet diag when IPV6 is disabled - Bluetooth: btrtl: HCI reset on close for Realtek BT chip - [x86] ACPI: video: Add new hw_changes_brightness quirk, set it on PB Easynote MZ35 - drm/nouveau/disp/nv50-: fix center/aspect-corrected scaling - xfs: don't crash on null attr fork xfs_bmapi_read - netfilter: nft_socket: fix erroneous socket assignment - Bluetooth: btrtl: Additional Realtek 8822CE Bluetooth devices - net_sched: check cops->tcf_block in tc_bind_tclass() - net/rds: An rds_sock is added too early to the hash table - net/rds: Check laddr_check before calling it - f2fs: use generic EFSBADCRC/EFSCORRUPTED https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.77 - arcnet: provide a buffer big enough to actually receive packets - cdc_ncm: fix divide-by-zero caused by invalid wMaxPacketSize - macsec: drop skb sk before calling gro_cells_receive - net/phy: fix DP83865 10 Mbps HDX loopback disable function - net/sched: act_sample: don't push mac header on ip6gre ingress - net_sched: add max len check for TCA_KIND - nfp: flower: fix memory leak in nfp_flower_spawn_vnic_reprs (CVE-2019-19081) - openvswitch: change type of UPCALL_PID attribute to NLA_UNSPEC - ppp: Fix memory leak in ppp_write - sch_netem: fix a divide by zero in tabledist() - skge: fix checksum byte order - usbnet: ignore endpoints with invalid wMaxPacketSize - usbnet: sanity checking of packet sizes and device mtu - net: sched: fix possible crash in tcf_action_destroy() - tcp: better handle TCP_USER_TIMEOUT in SYN_SENT state - net/mlx5: Add device ID of upcoming BlueField-2 - mISDN: enforce CAP_NET_RAW for raw sockets (CVE-2019-17055) - appletalk: enforce CAP_NET_RAW for raw sockets (CVE-2019-17054) - ax25: enforce CAP_NET_RAW for raw sockets (CVE-2019-17052) - ieee802154: enforce CAP_NET_RAW for raw sockets (CVE-2019-17053) - nfc: enforce CAP_NET_RAW for raw sockets (CVE-2019-17056) - nfp: flower: prevent memory leak in nfp_flower_spawn_phy_reprs (CVE-2019-19080) - ALSA: hda: Flush interrupts on disabling - [armhf] ASoC: sgtl5000: Fix of unmute outputs on probe - [armhf] ASoC: sgtl5000: Fix charge pump source assignment - [arm*] dmaengine: bcm2835: Print error in case setting DMA mask fails - media: dib0700: fix link error for dibx000_i2c_set_speed - media: hdpvr: Add device num check and handling - time/tick-broadcast: Fix tick_broadcast_offline() lockdep complaint - sched/fair: Fix imbalance due to CPU affinity - sched/core: Fix CPU controller for !RT_GROUP_SCHED - [x86] apic: Make apic_pending_intr_clear() more robust - sched/deadline: Fix bandwidth accounting at all levels after offline migration - [x86] reboot: Always use NMI fallback when shutdown via reboot vector IPI fails - [x86] apic: Soft disable APIC before initializing it - ALSA: hda - Show the fatal CORB/RIRB error more clearly - ALSA: i2c: ak4xxx-adda: Fix a possible null pointer dereference in build_adc_controls() - EDAC/mc: Fix grain_bits calculation - media: iguanair: add sanity checks - base: soc: Export soc_device_register/unregister APIs - ALSA: usb-audio: Skip bSynchAddress endpoint check if it is invalid - [arm64] prefetch: fix a -Wtype-limits warning - md/raid1: end bio when the device faulty - md: don't call spare_active in md_reap_sync_thread if all member devices can't work - md: don't set In_sync if array is frozen - ACPI / processor: don't print errors for processorIDs == 0xff - loop: Add LOOP_SET_DIRECT_IO to compat ioctl - [x86] EDAC, pnd2: Fix ioremap() size in dnv_rd_reg() - efi: cper: print AER info of PCIe fatal error - sched/fair: Use rq_lock/unlock in online_fair_sched_group - idle: Prevent late-arriving interrupts from disrupting offline - media: gspca: zero usb_buf on error - perf config: Honour $PERF_CONFIG env var to specify alternate .perfconfig - perf test vfs_getname: Disable ~/.perfconfig to get default output - media: em28xx: modules workqueue not inited for 2nd device - media: rc: imon: Allow iMON RC protocol for ffdc 7e device - [arm64] perf record: Support aarch64 random socket_id assignment - [armhf] media: omap3isp: Don't set streaming state on random subdevs - media: radio/si470x: kill urb on error - media: hdpvr: add terminating 0 at end of string - led: triggers: Fix a memory leak bug - nbd: add missing config put - media: mceusb: fix (eliminate) TX IR signal length limit - media: dvb-frontends: use ida for pll number - posix-cpu-timers: Sanitize bogus WARNONS - media: dvb-core: fix a memory leak bug - libperf: Fix alignment trap with xyarray contents in 'perf stat' - [amd64] EDAC/amd64: Recognize DRAM device type ECC capability - [amd64] EDAC/amd64: Decode syndrome before translating address - PM / devfreq: passive: Use non-devm notifiers - PM / devfreq: exynos-bus: Correct clock enable sequence - media: cec-notifier: clear cec_adap in cec_notifier_unregister - media: saa7146: add cleanup in hexium_attach() - media: cpia2_usb: fix memory leaks - media: saa7134: fix terminology around saa7134_i2c_eeprom_md7134_gate() - perf trace beauty ioctl: Fix off-by-one error in cmd->string table - [x86] ASoC: es8316: fix headphone mixer volume table - ACPI / CPPC: do not require the _PSD method - sched/cpufreq: Align trace event behavior of fast switching - [x86] apic/vector: Warn when vector space exhaustion breaks affinity - [arm64] kpti: ensure patched kernel text is fetched from PoU - [x86] mm/pti: Do not invoke PTI functions when PTI is disabled - [x86] mm/pti: Handle unaligned address gracefully in pti_clone_pagetable() - nvmet: fix data units read and written counters in SMART log - nvme-multipath: fix ana log nsid lookup when nsid is not found - ALSA: firewire-motu: add support for MOTU 4pre - iommu/amd: Silence warnings under memory pressure - libata/ahci: Drop PCS quirk for Denverton and beyond - iommu/iova: Avoid false sharing on fq_timer_on - libtraceevent: Change users plugin directory - [armhf] dts: exynos: Mark LDO10 as always-on on Peach Pit/Pi Chromebooks - ACPI: custom_method: fix memory leaks - ACPI / PCI: fix acpi_pci_irq_enable() memory leak - closures: fix a race on wakeup from closure_sync - hwmon: (acpi_power_meter) Change log level for 'unsafe software power cap' - md/raid1: fail run raid1 array when active disk less than one - dmaengine: ti: edma: Do not reset reserved paRAM slots - kprobes: Prohibit probing on BUG() and WARN() address - [s390x] crypto: xts-aes-s390 fix extra run-time crypto self tests finding - [x86] cpu: Add Tiger Lake to Intel family - [x86] platform: intel_pmc_core: Do not ioremap RAM - ASoC: dmaengine: Make the pcm->name equal to pcm->id if the name is not set - raid5: don't set STRIPE_HANDLE to stripe which is in batch list - mmc: core: Clarify sdio_irq_pending flag for MMC_CAP2_SDIO_IRQ_NOTHREAD - mmc: sdhci: Fix incorrect switch to HS mode - mmc: core: Add helper function to indicate if SDIO IRQs is enabled - [armhf,arm64] mmc: dw_mmc: Re-store SDIO IRQs mask at system resume - raid5: don't increment read_errors on EILSEQ return - libertas: Add missing sentinel at end of if_usb.c fw_table - e1000e: add workaround for possible stalled packet - ALSA: hda - Drop unsol event handler for Intel HDMI codecs - drm/amd/powerplay/smu7: enforce minimal VBITimeout (v2) - media: ttusb-dec: Fix info-leak in ttusb_dec_send_command() - [x86] ALSA: hda/realtek - Blacklist PC beep for Lenovo ThinkCentre M73/93 - [x86] iommu/amd: Override wrong IVRS IOAPIC on Raven Ridge systems - btrfs: extent-tree: Make sure we only allocate extents from block groups with the same type - [armhf] media: omap3isp: Set device on omap3isp subdevs - PM / devfreq: passive: fix compiler warning - iwlwifi: fw: don't send GEO_TX_POWER_LIMIT command to FW version 36 - ALSA: firewire-tascam: handle error code when getting current source of clock - ALSA: firewire-tascam: check intermediate state of clock status and retry - scsi: scsi_dh_rdac: zero cdb in send_mode_select() - scsi: qla2xxx: Fix Relogin to prevent modifying scan_state flag - printk: Do not lose last line in kmsg buffer dump - IB/mlx5: Free mpi in mp_slave mode - IB/hfi1: Define variables as unsigned long to fix KASAN warning - randstruct: Check member structs in is_pure_ops_struct() - ceph: use ceph_evict_inode to cleanup inode's resource - [x86] ALSA: hda/realtek - PCI quirk for Medion E4254 - blk-mq: add callback of .cleanup_rq - scsi: implement .cleanup_rq callback - [ppc64el] imc: Dont create debugfs files for cpu-less nodes - fuse: fix missing unlock_page in fuse_writepage() - [x86] KVM: always stop emulation on page fault - [x86] KVM: set ctxt->have_exception in x86_decode_insn() - [x86] KVM: Manually calculate reserved bits when loading PDPTRS - [x86] media: sn9c20x: Add MSI MS-1039 laptop to flip_dmi_table - media: don't drop front-end reference count for ->detach - binfmt_elf: Do not move brk for INTERP-less ET_EXEC - [x86] ASoC: Intel: NHLT: Fix debug print format - [x86] ASoC: Intel: Skylake: Use correct function to access iomem space - [x86] ASoC: Intel: Fix use of potentially uninitialized variable - [arm64] Revert "arm64: Remove unnecessary ISBs from set_{pte,pmd,pud}" - [arm64] tlb: Ensure we execute an ISB following walk cache invalidation - [arm64] dts: rockchip: limit clock rate of MMC controllers for RK3328 - alarmtimer: Use EOPNOTSUPP instead of ENOTSUPP - regulator: Defer init completion for a while after late_initcall - efifb: BGRT: Improve efifb_bgrt_sanity_check - gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps - memcg, oom: don't require __GFP_FS when invoking memcg OOM killer - memcg, kmem: do not fail __GFP_NOFAIL charges - i40e: check __I40E_VF_DISABLE bit in i40e_sync_filters_subtask - block: fix null pointer dereference in blk_mq_rq_timed_out() - smb3: allow disabling requesting leases - ovl: Fix dereferencing possible ERR_PTR() - ovl: filter of trusted xattr results in audit - btrfs: fix allocation of free space cache v1 bitmap pages - Btrfs: fix use-after-free when using the tree modification log - btrfs: Relinquish CPUs in btrfs_compare_trees - btrfs: qgroup: Fix the wrong target io_tree when freeing reserved data space - btrfs: qgroup: Fix reserved data space leak if we have multiple reserve calls - Btrfs: fix race setting up and completing qgroup rescan workers - md/raid6: Set R5_ReadError when there is read failure on parity disk - md: don't report active array_state until after revalidate_disk() completes. - md: only call set_in_sync() when it is expected to succeed. - cfg80211: Purge frame registrations on iftype change - /dev/mem: Bail out upon SIGKILL. - ext4: fix warning inside ext4_convert_unwritten_extents_endio - ext4: fix punch hole for inline_data file systems - quota: fix wrong condition in is_quota_modification() - hwrng: core - don't wait on add_early_randomness() - CIFS: fix max ea value size - CIFS: Fix oplock handling for SMB 2.1+ protocols - md/raid0: avoid RAID0 data corruption due to layout confusion. - fuse: fix deadlock with aio poll and fuse_iqueue::waitq.lock - mm/compaction.c: clear total_{migrate,free}_scanned before scanning a new zone - drm/amd/display: Restore backlight brightness after system resume https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.78 - tpm: use tpm_try_get_ops() in tpm-sysfs.c. - tpm: Fix TPM 1.2 Shutdown sequence to prevent future TPM operations - [armhf,arm64] drm/panel: simple: fix AUO g185han01 horizontal blanking - [armhf,arm64] drm/panel: check failure cases in the probe func - [armhf,arm64] drm/rockchip: Check for fast link training before enabling psr - gpu: drm: radeon: Fix a possible null-pointer dereference in radeon_connector_set_property() - [ppc64el] PCI: rpaphp: Avoid a sometimes-uninitialized warning - ipmi_si: Only schedule continuously in the thread in maintenance mode - [armhf,arm64] clk: sunxi-ng: v3s: add missing clock slices for MMC2 module clocks - drm/amd/display: fix issue where 252-255 values are clipped - drm/amd/display: reprogram VM config when system resume - [ppc64el] powernv/ioda2: Allocate TCE table levels on demand for default DMA window - [ppc64el] xmon: Check for HV mode when dumping XIVE info from OPAL - [ppc64el] rtas: use device model APIs and serialization during LPM - [ppc64el] futex: Fix warning: 'oldval' may be used uninitialized in this function - [ppc64el] pseries/mobility: use cond_resched when updating device tree - [armhf,arm64] pinctrl: tegra: Fix write barrier placement in pmx_writel - [ppc64el] eeh: Clear stale EEH_DEV_NO_HANDLER flag - vfio_pci: Restore original state on release - drm/nouveau/volt: Fix for some cards having 0 maximum voltage - [x86] pinctrl: amd: disable spurious-firing GPIO IRQs - drm/amd/display: support spdif - drm/amdgpu/si: fix ASIC tests - [ppc64el] exception: machine check use correct cfar for late handler - pstore: fs superblock limits - [ppc64el] pseries: correctly track irq state in default idle - [arm64] pinctrl: meson-gxbb: Fix wrong pinning definition for uart_c - [ppc64el] dump kernel log before carrying out fadump or kdump - [arm64] mbox: qcom: add APCS child device for QCS404 - scsi: core: Reduce memory required for SCSI logging - dma-buf/sw_sync: Synchronize signal vs syncpt free - ext4: fix potential use after free after remounting with noblock_validity - [mips*] tlbex: Explicitly cast _PAGE_NO_EXEC to a boolean - [x86] i2c-cht-wc: Fix lockdep warning - [x86] mfd: intel-lpss: Remove D3cold delay - HID: wacom: Fix several minor compiler warnings - [armel,armhf] 8898/1: mm: Don't treat faults reported from cache maintenance as writes - [armhf] rtc: snvs: fix possible race condition - HID: apple: Fix stuck function keys when using FN - [arm64] PCI: rockchip: Propagate errors for optional regulators - [armhf] PCI: imx6: Propagate errors for optional regulators - [armel,armhf] 8903/1: ensure that usable memory in bank 0 starts from a PMD-aligned address - fat: work around race with userspace's read via blockdev while mounting - pktcdvd: remove warning on attempting to register non-passthrough dev - [s390x] hypfs: Fix error number left in struct pointer member - ocfs2: wait for recovering done after direct unlock request - [arm64] consider stack randomization for mmap base only when necessary - [mips*] properly account for stack randomization and stack guard gap - [armel,armhf] properly account for stack randomization and stack guard gap - [armel,armhf] use STACK_TOP when computing mmap base address - block: mq-deadline: Fix queue restart handling - bpf: fix use after free in prog symbol exposure - cxgb4:Fix out-of-bounds MSI-X info array access - erspan: remove the incorrect mtu limit for erspan - hso: fix NULL-deref on tty open - ipv6: drop incoming packets having a v4mapped source address - ipv6: Handle missing host route in __ipv6_ifa_notify - net: ipv4: avoid mixed n_redirects and rate_tokens usage - net: qlogic: Fix memory leak in ql_alloc_large_buffers - net: Unpublish sk from sk_reuseport_cb before call_rcu - nfc: fix memory leak in llcp_sock_bind() - qmi_wwan: add support for Cinterion CLS8 devices - rxrpc: Fix rxrpc_recvmsg tracepoint - sch_dsmark: fix potential NULL deref in dsmark_init() - udp: fix gso_segs calculations - vsock: Fix a lockdep warning in __vsock_release() - udp: only do GSO if # of segs > 1 - net/rds: Fix error handling in rds_ib_add_one() - xen-netfront: do not use ~0U as error return value for xennet_fill_frags() - tipc: fix unlimited bundling of small messages - sch_cbq: validate TCA_CBQ_WRROPT to avoid crash - NFC: fix attrs checks in netlink interface - kexec: bail out upon SIGKILL when allocating memory. - 9p/cache.c: Fix memory leak in v9fs_cache_session_get_cookie https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.79 - [s390x] process: avoid potential reading of freed stack - [s390x] KVM: Test for bad access register and size at the start of S390_MEM_OP - [s390x] topology: avoid firing events before kobjs are created - [s390x] cio: exclude subchannels with no parent from pseudo check - [ppc64el] KVM: Book3S HV: Fix race in re-enabling XIVE escalation interrupts - [ppc64el] KVM: Book3S HV: Check for MMU ready on piggybacked virtual cores - [ppc64el] KVM: Book3S HV: Don't lose pending doorbell request on migration on P9 - [x86] KVM: Fix userspace set invalid CR4 - [x86] KVM: nVMX: handle page fault in vmread fix - nbd: fix max number of supported devs - PM / devfreq: tegra: Fix kHz to Hz conversion - ASoC: Define a set of DAPM pre/post-up events - [armhf] ASoC: sgtl5000: Improve VAG power and mute control - [ppc64el] mce: Fix MCE handling for huge pages - [ppc64el] mce: Schedule work from irq_work - [ppc64el] powernv: Restrict OPAL symbol map to only be readable by root - [ppc64el] powernv/ioda: Fix race in TCE level allocation - [ppc64el] book3s64/mm: Don't do tlbie fixup for some hardware revisions - tools lib traceevent: Fix "robust" test of do_generate_dynamic_list_file - [x86] crypto: qat - Silence smp_processor_id() warning - crypto: skcipher - Unmap pages after an external error - [mips*el/loongson-3] Treat Loongson Extensions as ASEs - power: supply: sbs-battery: use correct flags field - power: supply: sbs-battery: only return health when battery present - tracing: Make sure variable reference alias has correct var_ref_idx - usercopy: Avoid HIGHMEM pfn warning - timer: Read jiffies once when forwarding base clk - [x86] PCI: vmd: Fix shadow offsets to reflect spec changes - PCI: Restore Resizable BAR size bits correctly for 1MB BARs - [armhf] watchdog: imx2_wdt: fix min() calculation in imx2_wdt_set_timeout - perf stat: Fix a segmentation fault when using repeat forever - [armhf] drm/omap: fix max fclk divider for omap36xx - [arm64] drm/msm/dsi: Fix return value check for clk_get_parent - drm/nouveau/kms/nv50-: Don't create MSTMs for eDP connectors - [x86] drm/i915/gvt: update vgpu workload head pointer correctly - mmc: sdhci: improve ADMA error reporting - Revert "locking/pvqspinlock: Don't wait if vCPU is preempted" - xen/xenbus: fix self-deadlock after killing user process - ieee802154: atusb: fix use-after-free at disconnect - [s390x] cio: avoid calling strlen on null pointer - cfg80211: initialize on-stack chandefs - [arm64] cpufeature: Detect SSBS and advertise to userspace - ima: always return negative code for error - ima: fix freeing ongoing ahash_request - fs: nfs: Fix possible null-pointer dereferences in encode_attrs() - 9p: Transport error uninitialized - 9p: avoid attaching writeback_fid on mmap with type PRIVATE - xen/pci: reserve MCFG areas earlier - ceph: fix directories inode i_blkbits initialization - ceph: reconnect connection if session hang in opening state - watchdog: aspeed: Add support for AST2600 - netfilter: nf_tables: allow lookups in dynamic sets - drm/amdgpu: Fix KFD-related kernel oops on Hawaii - drm/amdgpu: Check for valid number of registers to read - pNFS: Ensure we do clear the return-on-close layout stateid on fatal errors - [x86] purgatory: Disable the stackleak GCC plugin for the purgatory - ntb: point to right memory window index - thermal: Fix use-after-free when unregistering thermal zone device - thermal_hwmon: Sanitize thermal_zone type - libnvdimm/region: Initialize bad block for volatile namespaces - fuse: fix memleak in cuse_channel_open - libnvdimm/nfit_test: Fix acpi_handle redefinition - sched/membarrier: Call sync_core only before usermode for same mm - sched/membarrier: Fix private expedited registration check - sched/core: Fix migration to invalid CPU in __set_cpus_allowed_ptr() - kernel/elfcore.c: include proper prototypes - nfp: flower: fix memory leak in nfp_flower_spawn_vnic_reprs - drm/radeon: Bail earlier when radeon.cik_/si_support=0 is passed - [ppc64el] KVM: HV: XIVE: Free escalation interrupts before disabling the VP - [x86] KVM: nVMX: Fix consistency check on injected exception error code - nbd: fix crash when the blksize is zero - [ppc64el] pseries: Fix cpu_hotplug_lock acquisition in resize_hpt() - [ppc64el] radix: Rename CPU_FTR_P9_TLBIE_BUG feature flag - tools lib traceevent: Do not free tep->cmdlines in add_new_comm() on failure - tick: broadcast-hrtimer: Fix a race in bc_set_next - perf tools: Fix segfault in cpu_cache_level__read() - perf stat: Reset previous counts on repeat with interval - [arm64] ssbd: Add support for PSTATE.SSBS rather than trapping to EL3 - [arm64] KVM: Set SCTLR_EL2.DSSBS if SSBD is forcefully disabled and !vhe - [arm64] docs: Document SSBS HWCAP - [arm64] fix SSBS sanitization - [arm64] Add sysfs vulnerability show for spectre-v1 - [arm64] add sysfs vulnerability show for meltdown - [arm64] enable generic CPU vulnerabilites support - [arm64] Always enable ssb vulnerability detection - [arm64] Provide a command line to disable spectre_v2 mitigation - [arm64] Advertise mitigation of Spectre-v2, or lack thereof - [arm64] Always enable spectre-v2 vulnerability detection - [arm64] add sysfs vulnerability show for spectre-v2 - [arm64] add sysfs vulnerability show for speculative store bypass - [arm64] ssbs: Don't treat CPUs with SSBS as unaffected by SSB - [arm64] Force SSBS on context switch - [arm64] Use firmware to detect CPUs that are not affected by Spectre-v2 - [arm64] speculation: Support 'mitigations=' cmdline option - vfs: Fix EOVERFLOW testing in put_compat_statfs64 - cfg80211: add and use strongly typed element iteration macros - cfg80211: Use const more consistently in for_each_element macros - nl80211: validate beacon head (CVE-2019-16746) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.80 - panic: ensure preemption is disabled during panic() - f2fs: use EINVAL for superblock with invalid magic - USB: rio500: Remove Rio 500 kernel driver - USB: yurex: Don't retry on unexpected errors - USB: yurex: fix NULL-derefs on disconnect - USB: usb-skeleton: fix runtime PM after driver unbind - USB: usb-skeleton: fix NULL-deref on disconnect - xhci: Fix false warning message about wrong bounce buffer write length - xhci: Prevent device initiated U1/U2 link pm if exit latency is too long - xhci: Check all endpoints for LPM timeout - xhci: Fix USB 3.1 capability detection on early xHCI 1.1 spec based hosts - usb: xhci: wait for CNR controller not ready bit in xhci resume - xhci: Prevent deadlock when xhci adapter breaks during init - xhci: Increase STS_SAVE timeout in xhci_suspend() - USB: adutux: fix use-after-free on disconnect - USB: adutux: fix NULL-derefs on disconnect - USB: adutux: fix use-after-free on release - USB: iowarrior: fix use-after-free on disconnect - USB: iowarrior: fix use-after-free on release - USB: iowarrior: fix use-after-free after driver unbind - USB: usblp: fix runtime PM after driver unbind - USB: chaoskey: fix use-after-free on release - USB: ldusb: fix NULL-derefs on driver unbind - serial: uartlite: fix exit path null pointer - USB: serial: keyspan: fix NULL-derefs on open() and write() - USB: serial: ftdi_sio: add device IDs for Sienna and Echelon PL-20 - USB: serial: option: add Telit FN980 compositions - USB: serial: option: add support for Cinterion CLS8 devices - USB: serial: fix runtime PM after driver unbind - USB: usblcd: fix I/O after disconnect - USB: microtek: fix info-leak at probe - USB: dummy-hcd: fix power budget for SuperSpeed mode - USB: legousbtower: fix slab info leak at probe - USB: legousbtower: fix deadlock on disconnect - USB: legousbtower: fix potential NULL-deref on disconnect - USB: legousbtower: fix open after failed reset request - USB: legousbtower: fix use-after-free on release - [x86] mei: me: add comet point (lake) LP device ids - [x86] mei: avoid FW version request on Ibex Peak and earlier - [armhf,arm64] iio: adc: axp288: Override TS pin bias current for some models - efivar/ssdt: Don't iterate over EFI vars if no SSDT override was specified - perf llvm: Don't access out-of-scope array - perf inject jit: Fix JIT_CODE_MOVE filename - blk-wbt: fix performance regression in wbt scale_up/scale_down - CIFS: Gracefully handle QueryInfo errors during open - CIFS: Force revalidate inode when dentry is stale - CIFS: Force reval dentry if LOOKUP_REVAL flag is set - kernel/sysctl.c: do not override max_threads provided by userspace - mm/vmpressure.c: fix a signedness bug in vmpressure_register_event() - gpiolib: don't clear FLAG_IS_OUT when emulating open-drain/open-source - cifs: use cifsInodeInfo->open_file_lock while iterating to avoid a panic - btrfs: fix incorrect updating of log root tree - btrfs: fix uninitialized ret in ref-verify - NFS: Fix O_DIRECT accounting of number of bytes read/written - [mips*] elf_hwcap: Export userspace ASEs - ACPICA: ACPI 6.3: PPTT add additional fields in Processor Structure Flags - ACPI/PPTT: Add support for ACPI 6.3 thread flag - [arm64] topology: Use PPTT to determine if PE is a thread - vfs: Fix the locking in dcache_readdir() and friends - media: stkwebcam: fix runtime PM after driver unbind - [arm64] sve: Fix wrong free for task->thread.sve_state - [rt] tracing/hwlat: Report total time spent in all NMIs during the sample - [rt] tracing/hwlat: Don't ignore outer-loop duration when calculating max_latency - ftrace: Get a reference counter for the trace_array on filter files - tracing: Get trace_array reference for available_tracers files - hwmon: Fix HWMON_P_MIN_ALARM mask - [x86] asm: Fix MWAITX C-state hint value - [x86] PCI: vmd: Fix config addressing when using bus offsets - perf/hw_breakpoint: Fix arch_hw_breakpoint use-before-initialization https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.81 - nvme-pci: Fix a race in controller removal - scsi: ufs: skip shutdown if hba is not powered - scsi: megaraid: disable device when probe failed after enabled device - scsi: qla2xxx: Fix unbound sleep in fcport delete path. - [armhf] OMAP2+: Fix missing reset done flag for am3 and am43 - [armhf] OMAP2+: Fix warnings with broken omap2_set_init_voltage() - xen/efi: Set nonblocking callbacks - nl80211: fix null pointer dereference - mac80211: fix txq null pointer dereference - netfilter: nft_connlimit: disable bh on garbage collection - [mips*el/loongson-3] Fix the link time qualifier of 'serial_exit()' - [arm64] net: hisilicon: Fix usage of uninitialized variable in function mdio_sc_cfg_reg_write() - lib: textsearch: fix escapes in example code - r8152: Set macpassthru in reset_resume callback - libata/ahci: Fix PCS quirk application - md/raid0: fix warning message for parameter default_layout - ocfs2: fix panic due to ocfs2_wq is null - ipv4: fix race condition between route lookup and invalidation - net: avoid potential infinite loop in tc_ctl_action() - net: ipv6: fix listify ip6_rcv_finish in case of forwarding - [armhf,arm64] net: stmmac: disable/enable ptp_ref_clk in suspend/resume flow - sctp: change sctp_prot .no_autobind with true - memfd: Fix locking when tagging pins - USB: legousbtower: fix memleak on disconnect - ALSA: hda/realtek - Add support for ALC711 - [x86] ALSA: hda/realtek - Enable headset mic on Asus MJ401TA - ALSA: usb-audio: Disable quirks for BOSS Katana amplifiers - ALSA: hda - Force runtime PM on Nvidia HDMI codecs - USB: serial: ti_usb_3410_5052: fix port-close races - USB: ldusb: fix memleak on disconnect - USB: usblp: fix use-after-free on disconnect - USB: ldusb: fix read info leaks - [mips*] tlbex: Fix build_restore_pagemask KScratch restore - staging: wlan-ng: fix exit return when sme->key_idx >= NUM_WEPKEYS - [s390x] scsi: zfcp: fix reaction on bit error threshold notification - scsi: sd: Ignore a failure to sync cache due to lack of authorization - scsi: core: save/restore command resid for error handling - scsi: core: try to get module before removing device - scsi: ch: Make it possible to open a ch device multiple times again - Input: synaptics-rmi4 - avoid processing unknown IRQs - ACPI: CPPC: Set pcc_data[pcc_ss_id] to NULL in acpi_cppc_processor_exit() - cfg80211: wext: avoid copying malformed SSIDs (CVE-2019-17133) - mac80211: Reject malformed SSID elements - [x86] drm/edid: Add 6 bpc quirk for SDC panel in Lenovo G50 - drm/ttm: Restore ttm prefaulting - drm/amdgpu: Bail earlier when amdgpu.cik_/si_support is not set to 1 - drivers/base/memory.c: don't access uninitialized memmaps in soft_offline_page_store() - fs/proc/page.c: don't access uninitialized memmaps in fs/proc/page.c - mm/memory-failure.c: don't access uninitialized memmaps in memory_failure() - mm/slub: fix a deadlock in show_slab_objects() - mm/page_owner: don't access uninitialized memmaps when reading /proc/pagetypeinfo - hugetlbfs: don't access uninitialized memmaps in pfn_range_valid_gigantic() - mm/memory-failure: poison read receives SIGKILL instead of SIGBUS if mmaped more than once - EDAC/ghes: Fix Use after free in ghes_edac remove path - [arm64] Enable workaround for Cavium TX2 erratum 219 when running SMT - CIFS: avoid using MID 0xFFFF - CIFS: Fix use after free of file info structures - perf/aux: Fix AUX output stopping - tracing: Fix race in perf_trace_buf initialization - dm cache: fix bugs when a GFP_NOWAIT allocation fails - [amd64] boot: Make level2_kernel_pgt pages invalid outside kernel area - [x86] apic/x2apic: Fix a NULL pointer deref when handling a dying cpu - [x86] pinctrl: cherryview: restore Strago DMI workaround for all versions - [arm64] pinctrl: armada-37xx: fix control of pins 32 and up - [arm64] pinctrl: armada-37xx: swap polarity on LED group - btrfs: block-group: Fix a memory leak due to missing btrfs_put_block_group() - Btrfs: add missing extents release on file extent cluster relocation error - Btrfs: check for the full sync flag while holding the inode lock during fsync - btrfs: tracepoints: Fix bad entry members of qgroup events - memstick: jmb38x_ms: Fix an error handling path in 'jmb38x_ms_probe()' - cpufreq: Avoid cpufreq_suspend() deadlock on system shutdown - xen/netback: fix error path of xenvif_connect_data() - PCI: PM: Fix pci_power_up() - blk-rq-qos: fix first node deletion of rq_qos_del() - RDMA/cxgb4: Do not dma memory off of the stack (CVE-2019-17075) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.82 - zram: fix race between backing_dev_show and backing_dev_store - dm snapshot: introduce account_start_copy() and account_end_copy() - dm snapshot: rework COW throttling to fix deadlock - Btrfs: fix inode cache block reserve leak on failure to allocate data space - Btrfs: fix memory leak due to concurrent append writes with fiemap - btrfs: qgroup: Always free PREALLOC META reserve in btrfs_delalloc_release_extents() - btrfs: tracepoints: Fix wrong parameter order for qgroup events - wil6210: fix freeing of rx buffers in EDMA mode - f2fs: flush quota blocks after turnning it off - scsi: lpfc: Fix a duplicate 0711 log message number. - f2fs: fix to recover inode's i_gc_failures during POR - f2fs: fix to recover inode->i_flags of inode block during POR - [x86] HID: i2c-hid: add Direkt-Tek DTLAPY133-1 to descriptor override - [arm64,armel,armhf] usb: dwc2: fix unbalanced use of external vbus-supply - [x86] tools/power turbostat: fix goldmont C-state limit decoding - [x86] cpu: Add Atom Tremont (Jacobsville) - [arm64] drm/msm/dpu: handle failures while initializing displays - bcache: fix input overflow to writeback_rate_minimum - PCI: Fix Switchtec DMA aliasing quirk dmesg noise - Btrfs: fix deadlock on tree root leaf when finding free extent - netfilter: ipset: Make invalid MAC address checks consistent - HID: i2c-hid: Disable runtime PM for LG touchscreen - HID: i2c-hid: Ignore input report if there's no data present on Elan touchpanels - HID: i2c-hid: Add Odys Winbook 13 to descriptor override - [x86] platform/x86: Add the VLV ISP PCI ID to atomisp2_pm - [x86] platform/x86: Fix config space access for intel_atomisp2_pm - ath10k: assign 'n_cipher_suites = 11' for WCN3990 to enable WPA3 - HID: Add ASUS T100CHI keyboard dock battery quirks - NFSv4: Ensure that the state manager exits the loop on SIGKILL - HID: steam: fix boot loop with bluetooth firmware - HID: steam: fix deadlock with input devices. - [arm64,armhf] usb: dwc3: gadget: early giveback if End Transfer already completed - [arm64,armhf] usb: dwc3: gadget: clear DWC3_EP_TRANSFER_STARTED on cmd complete - ALSA: usb-audio: Cleanup DSD whitelist - usb: handle warm-reset port requests on hub resume - [armhf] rtc: pcf8523: set xtal load capacitance from DT - [arm64] Add MIDR encoding for HiSilicon Taishan CPUs - [arm64] kpti: Whitelist HiSilicon Taishan v110 CPUs - scsi: lpfc: Correct localport timeout duration error - CIFS: Respect SMB2 hdr preamble size in read responses - cifs: add credits from unmatched responses/messages - ALSA: hda/realtek - Apply ALC294 hp init also for S4 resume - ext4: disallow files with EXT4_JOURNAL_DATA_FL from EXT4_IOC_SWAP_BOOT - exec: load_script: Do not exec truncated interpreter path - [arm64,armhf] net: dsa: mv88e6xxx: Release lock while requesting IRQ - PCI/PME: Fix possible use-after-free on remove - [arm64,armhf] iio: adc: meson_saradc: Fix memory allocation order - [x86] iio: fix center temperature of bmc150-accel-core - perf map: Fix overlapped map handling - perf script brstackinsn: Fix recovery from LBR/binary mismatch - perf jevents: Fix period for Intel fixed counters - perf tools: Propagate get_cpuid() error - perf annotate: Propagate perf_env__arch() error - perf annotate: Fix the signedness of failure returns - perf annotate: Propagate the symbol__annotate() error return - perf annotate: Return appropriate error code for allocation failures - staging: rtl8188eu: fix null dereference when kzalloc fails - RDMA/hfi1: Prevent memory leak in sdma_init (CVE-2019-19065) - RDMA/iwcm: Fix a lock inversion issue - [x86] HID: hyperv: Use in-place iterator API in the channel callback - nfs: Fix nfsi->nrequests count error on nfs_inode_remove_request - [arm64] ftrace: Ensure synchronisation in PLT setup for Neoverse-N1 - [arm64] gpio: max77620: Use correct unit for debounce times - fs: cifs: mute -Wunused-const-variable message - [armhf] serial: mctrl_gpio: Check for NULL pointer - efi/cper: Fix endianness of PCIe class code - [x86] efi/x86: Do not clean dummy variable in kexec path - [x86] xen: Return from panic notifier - ocfs2: clear zero in unaligned direct IO - fs: ocfs2: fix possible null-pointer dereferences in ocfs2_xa_prepare_entry() - fs: ocfs2: fix a possible null-pointer dereference in ocfs2_write_end_nolock() - fs: ocfs2: fix a possible null-pointer dereference in ocfs2_info_scan_inode_alloc() - [arm64] armv8_deprecated: Checking return value for memory allocation - [x86] cpu: Add Comet Lake to the Intel CPU models header - sched/vtime: Fix guest/system mis-accounting on task switch - [x86] perf/x86/amd: Change/fix NMI latency mitigation to use a timestamp - drm/amdgpu: fix memory leak - iio: imu: adis16400: release allocated memory on failure (CVE-2019-19060) - [x86] virt: vbox: fix memory leak in hgcm_call_preprocess_linaddr (CVE-2019-19048) - NFSv4: Fix leak of clp->cl_acceptor string - tracing: Initialize iter->seq after zeroing in tracing_read_pipe() - ALSA: hda/realtek: Reduce the Headphone static noise on XPS 9350/9360 - iwlwifi: exclude GEO SAR support for 3168 - nbd: verify socket is supported during setup - USB: legousbtower: fix a signedness bug in tower_probe() - [x86] thunderbolt: Use 32-bit writes when writing ring producer/consumer - ath6kl: fix a NULL-ptr-deref bug in ath6kl_usb_alloc_urb_from_pipe() (CVE-2019-15098) - fuse: flush dirty data/metadata before non-truncate setattr - fuse: truncate pending writes on O_TRUNC - ALSA: bebob: Fix prototype of helper function to return negative value - ALSA: hda/realtek - Fix 2 front mics of codec 0x623 - ALSA: hda/realtek - Add support for ALC623 - UAS: Revert commit 3ae62a42090f ("UAS: fix alignment of scatter/gather segments") - USB: gadget: Reject endpoints with 0 maxpacket value - usb-storage: Revert commit 747668dbc061 ("usb-storage: Set virt_boundary_mask to avoid SG overflows") - USB: ldusb: fix ring-buffer locking - USB: ldusb: fix control-message timeout - usb: xhci: fix __le32/__le64 accessors in debugfs code - USB: serial: whiteheat: fix potential slab corruption - USB: serial: whiteheat: fix line-speed endianness - scsi: target: cxgbit: Fix cxgbit_fw4_ack() - HID: i2c-hid: add Trekstor Primebook C11B to descriptor override - HID: Fix assumption that devices have inputs - HID: fix error message in hid_open_report() - nl80211: fix validation of mesh path nexthop - [s390x] cmm: fix information leak in cmm_timeout_handler() - [s390x] idle: fix cpu idle time calculation - [arm64] Ensure VM_WRITE|VM_SHARED ptes are clean by default - rtlwifi: Fix potential overflow on P2P code (CVE-2019-17666) - [arm64] dmaengine: qcom: bam_dma: Fix resource leak - [armhf] dmaengine: cppi41: Fix cppi41_dma_prep_slave_sg() when idle - NFS: Fix an RCU lock leak in nfs4_refresh_delegation_stateid() - batman-adv: Avoid free/alloc race when handling OGM buffer - llc: fix sk_buff leak in llc_sap_state_process() - llc: fix sk_buff leak in llc_conn_service() - rxrpc: Fix call ref leak - rxrpc: rxrpc_peer needs to hold a ref on the rxrpc_local record - rxrpc: Fix trace-after-put looking at the put peer record - NFC: pn533: fix use-after-free and memleaks - bonding: fix potential NULL deref in bond_update_slave_arr - net: usb: sr9800: fix uninitialized local variable - sch_netem: fix rcu splat in netem_enqueue() - ALSA: timer: Simplify error path in snd_timer_open() - ALSA: timer: Fix mutex deadlock at releasing card - ALSA: usb-audio: DSD auto-detection for Playback Designs - ALSA: usb-audio: Update DSD support quirks for Oppo and Rotel - ALSA: usb-audio: Add DSD support for Gustard U16/X26 USB Interface - [ppc64el] powerpc/powernv: Fix CPU idle to be called with IRQs disabled - Revert "ALSA: hda: Flush interrupts on disabling" https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.83 - regulator: of: fix suspend-min/max-voltage parsing - [arm64] dts: allwinner: a64: pine64-plus: Add PHY regulator delay - [arm64] arm64: dts: allwinner: a64: sopine-baseboard: Add PHY regulator delay - [armhf] regulator: ti-abb: Fix timeout in ti_abb_wait_txdone/ti_abb_clear_all_txdone - [x86] ASoC: rt5682: add NULL handler to set_jack function - [armhf] regulator: pfuze100-regulator: Variable "val" in pfuze100_regulator_probe() could be uninitialized - [arm64,armhf] ASoc: rockchip: i2s: Fix RPM imbalance - [armel,armhf] mm: fix alignment handler faults under memory pressure - scsi: qla2xxx: fix a potential NULL pointer dereference - scsi: scsi_dh_alua: handle RTPG sense code correctly during state transitions - drm/amdgpu: fix potential VM faults - scsi: target: core: Do not overwrite CDB byte 1 - tracing: Fix "gfp_t" format for synthetic events - of: unittest: fix memory leak in unittest_data_add (CVE-2019-19049) - [arm64,armhf] irqchip/gic-v3-its: Use the exact ITSList for VMOVP - cifs: Fix cifsInodeInfo lock_sem deadlock when reconnect occurs - nbd: protect cmd->status with cmd->lock - nbd: handle racing with error'ed out commands - cxgb4: fix panic when attaching to ULD fail - dccp: do not leak jiffies on the wire - erspan: fix the tun_info options_len check for erspan - inet: stop leaking jiffies on the wire - net: annotate accesses to sk->sk_incoming_cpu - net: annotate lockless accesses to sk->sk_napi_id - [armhf] net: dsa: bcm_sf2: Fix IMP setup for port different than 8 - net: fix sk_page_frag() recursion from memory reclaim - [arm64] net: hisilicon: Fix ping latency when deal with high throughput - net/mlx4_core: Dynamically set guaranteed amount of counters per VF - netns: fix GFP flags in rtnl_net_notifyid() - net: usb: lan78xx: Disable interrupts before calling generic_handle_irq() - net: Zeroing the structure ethtool_wolinfo in ethtool_get_wol() - udp: fix data-race in udp_set_dev_scratch() - vxlan: check tun_info options_len properly - net: add skb_queue_empty_lockless() - udp: use skb_queue_empty_lockless() - net: use skb_queue_empty_lockless() in poll() handlers - net: use skb_queue_empty_lockless() in busy poll contexts - net: add READ_ONCE() annotation in __skb_wait_for_more_packets() - ipv4: fix route update on metric change. - net/mlx5e: Fix handling of compressed CQEs in case of low NAPI budget - r8169: fix wrong PHY ID issue with RTL8168dp - net/mlx5e: Fix ethtool self test: link speed - [armhf] net: dsa: b53: Do not clear existing mirrored port mask - [armhf] net: phy: bcm7xxx: define soft_reset for 40nm EPHY - net: usb: lan78xx: Connect PHY before registering MAC - [arm64,armhf] net: dsa: fix switch tree list - r8152: add device id for Lenovo ThinkPad USB-C Dock Gen 2 - net/flow_dissector: switch to siphash - wireless: Skip directory when generating certificates - [x86] platform/x86: pmc_atom: Add Siemens SIMATIC IPC227E to critclk_systems DMI table - [ppc64el] powerpc/mm: Fixup tlbie vs mtpidr/mtlpidr ordering issue on POWER9 - usb: gadget: udc: core: Fix segfault if udc_bind_to_driver() for pending driver fails https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.84 - bonding: fix state transition issue in link monitoring - CDC-NCM: handle incomplete transfer of MTU - ipv4: Fix table id reference in fib_sync_down_addr - [mips*] net: ethernet: octeon_mgmt: Account for second possible VLAN header - net: fix data-race in neigh_event_send() - net: usb: qmi_wwan: add support for DW5821e with eSIM support - nfc: netlink: fix double device reference drop - qede: fix NULL pointer deref in __qede_remove() - ipv6: fixes rt6_probe() and fib6_nh->last_probe init - [arm64] net: hns: Fix the stray netpoll locks causing deadlock in NAPI path - ALSA: timer: Fix incorrectly assigned timer instance - ALSA: bebob: fix to detect configured source of sampling clock for Focusrite Saffire Pro i/o series - ALSA: hda/ca0132 - Fix possible workqueue stall - mm: memcontrol: fix network errors from failing __GFP_ATOMIC charges - mm, meminit: recalculate pcpu batch and high limits after init completes - mm: thp: handle page cache THP correctly in PageTransCompoundMap - mm, vmstat: hide /proc/pagetypeinfo from normal users - dump_stack: avoid the livelock of the dump_lock - perf tools: Fix time sorting - drm/radeon: fix si_enable_smc_cac() failed issue - HID: wacom: generic: Treat serial number and related fields as unsigned - [arm64] Do not mask out PTE_RDONLY in pte_same() - ceph: fix use-after-free in __ceph_remove_cap() - ceph: add missing check in d_revalidate snapdir handling - [armhf] sunxi: Fix CPU powerdown on A83T - netfilter: nf_tables: Align nft_expr private data to 64-bit - netfilter: ipset: Fix an error code in ip_set_sockfn_get() - [x86] intel_th: pci: Add Comet Lake PCH support - [x86] intel_th: pci: Add Jasper Lake PCH support - [x86] apic/32: Avoid bogus LDR warnings - SMB3: Fix persistent handles reconnect - can: usb_8dev: fix use-after-free on disconnect - [armhf] can: flexcan: disable completely the ECC mechanism - can: peak_usb: fix a potential out-of-sync while decoding packets - can: rx-offload: can_rx_offload_queue_sorted(): fix error handling, avoid skb mem leak - can: gs_usb: gs_can_open(): prevent memory leak (CVE-2019-19052) - can: dev: add missing of_node_put() after calling of_get_child_by_name() - can: mcba_usb: fix use-after-free on disconnect - can: peak_usb: fix slab info leak - configfs: stash the data we need into configfs_buffer at open time - configfs_register_group() shouldn't be (and isn't) called in rmdirable parts - configfs: new object reprsenting tree fragments - configfs: provide exclusion between IO and removals - configfs: fix a deadlock in configfs_symlink() - ALSA: usb-audio: More validations of descriptor units - ALSA: usb-audio: Simplify parse_audio_unit() - ALSA: usb-audio: Unify the release of usb_mixer_elem_info objects - ALSA: usb-audio: Remove superfluous bLength checks - ALSA: usb-audio: Clean up check_input_term() - ALSA: usb-audio: Fix possible NULL dereference at create_yamaha_midi_quirk() - ALSA: usb-audio: remove some dead code - ALSA: usb-audio: Fix copy&paste error in the validator - sched/fair: Fix low cpu usage with high throttling by removing expiration of cpu-local slices - sched/fair: Fix -Wunused-but-set-variable warnings - usbip: Fix vhci_urb_enqueue() URB null transfer buffer error path - usbip: Implement SG support to vhci-hcd and stub driver - [arm64,armhf] PCI: tegra: Enable Relaxed Ordering only for Tegra20 & Tegra30 - [amd64] HID: intel-ish-hid: fix wrong error handling in ishtp_cl_alloc_tx_ring() - RDMA/mlx5: Clear old rate limit when closing QP - iw_cxgb4: fix ECN check on the passive accept - RDMA/qedr: Fix reported firmware version - net/mlx5e: TX, Fix consumer index of error cqe dump - net/mlx5: prevent memory leak in mlx5_fpga_conn_create_cq (CVE-2019-19045) - scsi: qla2xxx: fixup incorrect usage of host_byte - RDMA/uverbs: Prevent potential underflow - net: openvswitch: free vport unless register_netdevice() succeeds - scsi: lpfc: Honor module parameter lpfc_use_adisc - scsi: qla2xxx: Initialized mailbox to prevent driver load failure - netfilter: nf_flow_table: set timeout before insertion into hashes - ipvs: don't ignore errors in case refcounting ip_vs module fails - ipvs: move old_secure_tcp into struct netns_ipvs - bonding: fix unexpected IFF_BONDING bit unset - macsec: fix refcnt leak in module exit routine - usb: gadget: composite: Fix possible double free memory bug - [arm64] usb: dwc3: pci: prevent memory leak in dwc3_pci_probe (CVE-2019-18813) - usb: gadget: configfs: fix concurrent issue between composite APIs - [arm64,armhf] usb: dwc3: remove the call trace of USBx_GFLADJ - [x86] perf/x86/amd/ibs: Fix reading of the IBS OpData register and thus precise RIP validity - [x86] perf/x86/amd/ibs: Handle erratum #420 only on the affected CPU family (10h) - [x86] perf/x86/uncore: Fix event group support - USB: Skip endpoints with 0 maxpacket length - USB: ldusb: use unsigned size format specifiers - usbip: tools: Fix read_usb_vudc_device() error path handling - RDMA/iw_cxgb4: Avoid freeing skb twice in arp failure case - [arm64] RDMA/hns: Prevent memory leaks of eq->buf_list - scsi: qla2xxx: stop timer in shutdown path - nvme-multipath: fix possible io hang after ctrl reconnect - [amd64] fjes: Handle workqueue allocation failure - [arm64] net: hisilicon: Fix "Trying to free already-free IRQ" - drm/amdgpu: If amdgpu_ib_schedule fails return back the error. - [x86] hv_netvsc: Fix error handling in netvsc_attach() - [arm64,armhf] usb: dwc3: gadget: fix race when disabling ep with cancelled xfers - NFSv4: Don't allow a cached open with a revoked delegation - igb: Fix constant media auto sense switching when no cable is connected - e1000: fix memory leaks - [x86] pinctrl: intel: Avoid potential glitches if pin is in GPIO mode - ocfs2: protect extent tree in ocfs2_prepare_inode_for_write() - [x86] pinctrl: cherryview: Fix irq_valid_mask calculation - blkcg: make blkcg_print_stat() print stats only for online blkgs - [x86] iio: imu: mpu6050: Add support for the ICM 20602 IMU - [x86] iio: imu: inv_mpu6050: fix no data on MPU6050 - mm/filemap.c: don't initiate writeback if mapping has no dirty pages - cgroup,writeback: don't switch wbs immediately on dead wbs if the memcg is dead - usbip: Fix free of unallocated memory in vhci tx - netfilter: ipset: Copy the right MAC address in hash:ip,mac IPv6 sets - net: prevent load/store tearing on sk->sk_stamp - [x86] iio: imu: mpu6050: Fix FIFO layout for ICM20602 - vsock/virtio: fix sock refcnt holding during the shutdown - x86/cpu: Add Tremont to the cpu vulnerability whitelist https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.85 - scsi: core: Handle drivers which set sg_tablesize to zero - ax88172a: fix information leak on short answers - ipmr: Fix skb headroom in ipmr_get_route(). - net: gemini: add missed free_netdev - net: usb: qmi_wwan: add support for Foxconn T77W968 LTE modules - slip: Fix memory leak in slip_open error path - ALSA: usb-audio: Fix missing error check at mixer resolution test - ALSA: usb-audio: not submit urb for stopped endpoint - ALSA: usb-audio: Fix incorrect NULL check in create_yamaha_midi_quirk() - ALSA: usb-audio: Fix incorrect size check for processing/extension units - Btrfs: fix log context list corruption after rename exchange operation - Input: ff-memless - kill timer in destroy() - Input: synaptics-rmi4 - fix video buffer size - Input: synaptics-rmi4 - disable the relative position IRQ in the F12 driver - Input: synaptics-rmi4 - do not consume more data than we have (F11, F12) - Input: synaptics-rmi4 - clear IRQ enables for F54 - Input: synaptics-rmi4 - destroy F54 poller workqueue when removing - IB/hfi1: Ensure full Gen3 speed in a Gen4 system - IB/hfi1: Use a common pad buffer for 9B and 16B packets - i2c: acpi: Force bus speed to 400KHz if a Silead touchscreen is present - ecryptfs_lookup_interpose(): lower_dentry->d_inode is not stable - ecryptfs_lookup_interpose(): lower_dentry->d_parent is not stable either - [armhf] net: ethernet: dwmac-sun8i: Use the correct function in exit path - [x86] iommu/vt-d: Fix QI_DEV_IOTLB_PFSID and QI_DEV_EIOTLB_PFSID macros - mm: mempolicy: fix the wrong return value and potential pages leak of mbind - mm: memcg: switch to css_tryget() in get_mem_cgroup_from_mm() - mm: hugetlb: switch to css_tryget() in hugetlb_cgroup_charge_cgroup() - iio: adc: max9611: explicitly cast gain_selectors - tee: optee: take DT status property into account - ath10k: fix kernel panic by moving pci flush after napi_disable - clk: sunxi-ng: h6: fix PWM gate/reset offset - soundwire: Initialize completion for defer messages - [x86] soundwire: intel: Fix uninitialized adev deref - [arm64] dts: allwinner: a64: Orange Pi Win: Fix SD card node - [arm64] dts: allwinner: a64: Olinuxino: fix DRAM voltage - [arm64] dts: allwinner: a64: NanoPi-A64: Fix DCDC1 voltage - ALSA: pcm: signedness bug in snd_pcm_plug_alloc() - [arm64] soc/tegra: pmc: Fix pad voltage configuration for Tegra186 - [arm64] dts: tegra210-p2180: Correct sdmmc4 vqmmc-supply - y2038: make do_gettimeofday() and get_seconds() inline - rtc: sysfs: fix NULL check in rtc_add_groups() - remoteproc/davinci: Use %zx for formating size_t - extcon: cht-wc: Return from default case to avoid warnings - cfg80211: Avoid regulatory restore when COUNTRY_IE_IGNORE is set - ALSA: seq: Do error checks at creating system ports - ath10k: skip resetting rx filter for WCN3990 - ath9k: fix tx99 with monitor mode interface - wil6210: drop Rx multicast packets that are looped-back to STA - wil6210: set edma variables only for Talyn-MB devices - wil6210: prevent usage of tx ring 0 for eDMA - wil6210: fix invalid memory access for rx_buff_mgmt debugfs - ath10k: limit available channels via DT ieee80211-freq-limit - ice: Update request resource command to latest specification - ice: Prevent control queue operations during reset - gfs2: Don't set GFS2_RDF_UPTODATE when the lvb is updated - ice: Fix and update driver version string - ASoC: dapm: Don't fail creating new DAPM control on NULL pinctrl - ASoC: dpcm: Properly initialise hw->rate_max - ASoC: meson: axg-fifo: report interrupt request failure - ASoC: AMD: Change MCLK to 48Mhz - pinctrl: ingenic: Probe driver at subsys_initcall - [armhf] dts: exynos: Use i2c-gpio for HDMI-DDC on Arndale - [armhf] dts: exynos: Fix HDMI-HPD line handling on Arndale - [armhf] dts: exynos: Fix sound in Snow-rev5 Chromebook - liquidio: fix race condition in instruction completion processing - [arm64] dts: stratix10: i2c clock running out of spec - [armhf] dts: exynos: Fix regulators configuration on Peach Pi/Pit Chromebooks - i40evf: Validate the number of queues a PF sends - i40e: use correct length for strncpy - i40evf: set IFF_UNICAST_FLT flag for the VF - i40e: Check and correct speed values for link on open - i40evf: Don't enable vlan stripping when rx offload is turned on - i40e: hold the rtnl lock on clearing interrupt scheme - i40evf: cancel workqueue sync for adminq when a VF is removed - i40e: Prevent deleting MAC address from VF when set by PF - IB/rxe: avoid back-to-back retries - IB/rxe: fixes for rdma read retry - iwlwifi: drop packets with bad status in CD - iwlwifi: don't WARN on trying to dump dead firmware - iwlwifi: mvm: avoid sending too many BARs - media: vicodec: fix out-of-range values when decoding - media: i2c: Fix pm_runtime_get_if_in_use() usage in sensor drivers - media: ov772x: Disable clk on error path - rtl8187: Fix warning generated when strncpy() destination length matches the sixe argument - mwifiex: do no submit URB in suspended state - mwifex: free rx_cmd skb in suspended state - brcmfmac: fix wrong strnchr usage - mt76: Fix comparisons with invalid hardware key index - soc: imx: gpc: fix PDN delay - ASoC: rsnd: ssi: Fix issue in dma data address assignment - net: hns3: Fix for multicast failure - net: hns3: Fix error of checking used vlan id - net: hns3: Fix for loopback selftest failed problem - net: hns3: Change the dst mac addr of loopback packet - net/mlx5: Fix atomic_mode enum values - net: phy: mscc: read 'vsc8531,vddmac' as an u32 - net: phy: mscc: read 'vsc8531, edge-slowdown' as an u32 - [armhf] dts: meson8: fix the clock controller register size - [armhf] dts: meson8b: fix the clock controller register size - mtd: rawnand: marvell: use regmap_update_bits() for syscon access - mtd: rawnand: fsl_ifc: check result of SRAM initialization - mtd: rawnand: fsl_ifc: fixup SRAM init for newer ctrl versions - mtd: rawnand: qcom: don't include dma-direct.h - IB/mlx5: Change TX affinity assignment in RoCE LAG mode - qxl: fix null-pointer crash during suspend - mac80211: fix saving a few HE values - cfg80211: validate wmm rule when setting - f2fs: avoid wrong decrypted data from disk - net: lan78xx: Bail out if lan78xx_get_endpoints fails - rtnetlink: move type calculation out of loop - ASoC: sgtl5000: avoid division by zero if lo_vag is zero - ath10k: avoid possible memory access violation - [armhf] dts: exynos: Disable pull control for S5M8767 PMIC - ath10k: wmi: disable softirq's while calling ieee80211_rx - i2c: mediatek: Use DMA safe buffers for i2c transactions - IB/mlx5: Don't hold spin lock while checking device state - IB/ipoib: Ensure that MTU isn't less than minimum permitted - RDMA/core: Rate limit MAD error messages - RDMA/core: Follow correct unregister order between sysfs and cgroup - udf: Fix crash during mount - ASoC: dapm: Avoid uninitialised variable warning - [x86] ASoC: Intel: hdac_hdmi: Limit sampling rates at dai creation - ata: Disable AHCI ALPM feature for Ampere Computing eMAG SATA - [powerpc] make PowerMac cache node search conditional on CONFIG_PPC_PMAC - [armhf] dts: omap3-gta04: give spi_lcd node a label so that we can overwrite in other DTS files - [armhf] dts: omap3-gta04: fixes for tvout / venc - [armhf] dts: omap3-gta04: tvout: enable as display1 alias - [armhf] dts: omap3-gta04: fix touchscreen tsc2007 - [armhf] dts: omap3-gta04: make NAND partitions compatible with recent U-Boot - [armhf] dts: omap3-gta04: keep vpll2 always on - f2fs: submit bio after shutdown - failover: Fix error return code in net_failover_create - sched/debug: Explicitly cast sched_feat() to bool - sched/debug: Use symbolic names for task state constants - firmware: arm_scmi: use strlcpy to ensure NULL-terminated strings - [arm64] dts: rockchip: Fix VCC5V0_HOST_EN on rk3399-sapphire - [armhf] dts: exynos: Disable pull control for PMIC IRQ line on Artik5 board - usb: mtu3: disable vbus rise/fall interrupts of ltssm - EDAC, sb_edac: Return early on ADDRV bit and address type test - [armhf] rtc: pl030: fix possible race condition - ath9k: add back support for using active monitor interfaces for tx99 - dmaengine: at_xdmac: remove a stray bottom half unlock - RDMA/hns: Fix an error code in hns_roce_v2_init_eq_table() - IB/hfi1: Missing return value in error path for user sdma - signal: Always ignore SIGKILL and SIGSTOP sent to the global init - signal: Properly deliver SIGILL from uprobes - signal: Properly deliver SIGSEGV from x86 uprobes - f2fs: fix memory leak of write_io in fill_super() - f2fs: fix memory leak of percpu counter in fill_super() - f2fs: fix setattr project check upon fssetxattr ioctl - scsi: qla2xxx: Use correct qpair for ABTS/CMD - scsi: qla2xxx: Fix iIDMA error - scsi: qla2xxx: Defer chip reset until target mode is enabled - scsi: qla2xxx: Terminate Plogi/PRLI if WWN is 0 - scsi: qla2xxx: Fix deadlock between ATIO and HW lock - scsi: qla2xxx: Increase abort timeout value - scsi: qla2xxx: Check for Register disconnect - scsi: qla2xxx: Fix port speed display on chip reset - scsi: qla2xxx: Fix dropped srb resource. - scsi: qla2xxx: Fix duplicate switch's Nport ID entries - scsi: lpfc: Fix GFT_ID and PRLI logic for RSCN - scsi: lpfc: Correct invalid EQ doorbell write on if_type=6 - scsi: lpfc: Fix errors in log messages. - scsi: sym53c8xx: fix NULL pointer dereference panic in sym_int_sir() - [armhf] imx6: register pm_power_off handler if "fsl,pmic-stby-poweroff" is set - scsi: pm80xx: Corrected dma_unmap_sg() parameter - scsi: pm80xx: Fixed system hang issue during kexec boot - kprobes: Don't call BUG_ON() if there is a kprobe in use on free list - net: aquantia: fix hw_atl_utils_fw_upload_dwords - Drivers: hv: vmbus: Fix synic per-cpu context initialization - nvmem: core: return error code instead of NULL from nvmem_device_get - media: dt-bindings: adv748x: Fix decimal unit addresses - [x86] ALSA: hda: Fix implicit definition of pci_iomap() on SH - media: fix: media: pci: meye: validate offset to avoid arbitrary access - media: dvb: fix compat ioctl translation - net: bcmgenet: Fix speed selection for reverse MII - [arm64] dts: meson: libretech: update board model - [arm64] dts: meson-axg: use the proper compatible for ethmac - [x86] ALSA: intel8x0m: Register irq handler after register initializations - [arm64] dts: renesas: salvator-common: adv748x: Override secondary addresses - [arm64] dts: renesas: r8a77965: Attach the SYS-DMAC to the IPMMU - [arm64] dts: renesas: r8a77965: Fix HS-USB compatible - [arm64] dts: renesas: r8a77965: Fix clock/reset for usb2_phy1 - pinctrl: at91-pio4: fix has_config check in atmel_pctl_dt_subnode_to_map() - llc: avoid blocking in llc_sap_close() - [armhf] dts: qcom: ipq4019: fix cpu0's qcom,saw2 reg value - [arm64] soc: qcom: wcnss_ctrl: Avoid string overflow - [arm64] dts: broadcom: Fix I2C and SPI bus warnings - [armhf] dts: bcm: Fix SPI bus warnings - [armhf] dts: aspeed: Fix I2C bus warnings - [ppc64el,powerpc*] powerpc/vdso: Correct call frame information - [armhf] dts: socfpga: Fix I2C bus unit-address error - [armhf] dts: sunxi: Fix I2C bus warnings - [armhf] dts: sun9i: Fix I2C bus warnings - android: binder: no outgoing transaction when thread todo has transaction - cxgb4: Fix endianness issue in t4_fwcache() - [arm64] fix for bad_mode() handler to always result in panic - block, bfq: inject other-queue I/O into seeky idle queues on NCQ flash - blok, bfq: do not plug I/O if all queues are weight-raised - [arm64] dts: meson: Fix erroneous SPI bus warnings - power: supply: ab8500_fg: silence uninitialized variable warnings - component: fix loop condition to call unbind() if bind() fails - kernfs: Fix range checks in kernfs_get_target_path - ip_gre: fix parsing gre header in ipgre_err - scsi: ufshcd: Fix NULL pointer dereference for in ufshcd_init - [armhf] dts: rockchip: Fix erroneous SPI bus dtc warnings on rk3036 - [arm64] dts: rockchip: Fix I2C bus unit-address error on rk3399-puma-haikou - [x86] ACPI / LPSS: Exclude I2C busses shared with PUNIT from pmc_atom_d3_mask - netfilter: nf_tables: avoid BUG_ON usage - ath9k: Fix a locking bug in ath9k_add_interface() - [s390x] qeth: uninstall IRQ handler on device removal - [s390x] qeth: invoke softirqs after napi_schedule() - media: vsp1: Fix vsp1_regs.h license header - media: vsp1: Fix YCbCr planar formats pitch calculation - media: ov2680: don't register the v4l2 subdevice before checking chip ID - PCI/ACPI: Correct error message for ASPM disabling - net: socionext: Fix two sleep-in-atomic-context bugs in ave_rxfifo_reset() - PCI: mediatek: Fix unchecked return value - [armhf] dts: xilinx: Fix I2C and SPI bus warnings - serial: uartps: Fix suspend functionality - serial: samsung: Enable baud clock for UART reset procedure in resume - serial: mxs-auart: Fix potential infinite loop - tty: serial: qcom_geni_serial: Fix serial when not used as console - [arm64] dts: ti: k3-am65: Change #address-cells and #size-cells of interconnect to 2 - samples/bpf: fix a compilation failure - spi: mediatek: Don't modify spi_transfer when transfer. - ASoC: rt5682: Fix the boost volume at the begining of playback - ipmi_si_pci: fix NULL device in ipmi_si error message - ipmi_si: fix potential integer overflow on large shift - ipmi:dmi: Ignore IPMI SMBIOS entries with a zero base address - ipmi: fix return value of ipmi_set_my_LUN - net: hns3: fix return type of ndo_start_xmit function - net: cavium: fix return type of ndo_start_xmit function - net: ibm: fix return type of ndo_start_xmit function - [ppc64el,powerpc*] iommu: Avoid derefence before pointer check - [ppc64el,powerpc*] selftests: Do not fail with reschedule - [ppc64el,powerpc64] hash: Fix stab_rr off by one initialization - [ppc64el,powerpc64] pseries/memory-hotplug: Only update DT once per memory DLPAR request - [ppc64el,powerpc64] pseries: Disable CPU hotplug across migrations - [ppc64el,powerpc*] Fix duplicate const clang warning in user access code - RDMA/i40iw: Fix incorrect iterator type - OPP: Protect dev_list with opp_table lock - of/unittest: Fix I2C bus unit-address error - libfdt: Ensure INT_MAX is defined in libfdt_env.h - power: supply: twl4030_charger: fix charging current out-of-bounds - power: supply: twl4030_charger: disable eoc interrupt on linear charge - net: mvpp2: fix the number of queues per cpu for PPv2.2 - net: marvell: fix return type of ndo_start_xmit function - net: toshiba: fix return type of ndo_start_xmit function - net: xilinx: fix return type of ndo_start_xmit function - net: broadcom: fix return type of ndo_start_xmit function - net: amd: fix return type of ndo_start_xmit function - net: sun: fix return type of ndo_start_xmit function - net: hns3: Fix for setting speed for phy failed problem - net: hns3: Fix cmdq registers initialization issue for vf - net: hns3: Clear client pointer when initialize client failed or unintialize finished - net: hns3: Fix client initialize state issue when roce client initialize failed - net: hns3: Fix parameter type for q_id in hclge_tm_q_to_qs_map_cfg() - nfp: provide a better warning when ring allocation fails - usb: chipidea: imx: enable OTG overcurrent in case USB subsystem is already started - usb: chipidea: Fix otg event handler - usb: usbtmc: Fix ioctl USBTMC_IOCTL_ABORT_BULK_OUT - [s390x] zcrypt: enable AP bus scan without a valid default domain - [s390x] vdso: avoid 64-bit vdso mapping for compat tasks - [s390x] vdso: correct CFI annotations of vDSO functions - brcmfmac: increase buffer for obtaining firmware capabilities - brcmsmac: Use kvmalloc() for ucode allocations - mlxsw: spectrum: Init shaper for TCs 8..15 - PCI: portdrv: Initialize service drivers directly - [armhf] dts: am335x-evm: fix number of cpsw - [armhf] dts: ti: Fix SPI and I2C bus warnings - f2fs: avoid infinite loop in f2fs_alloc_nid - f2fs: fix to recover inode's uid/gid during POR - [armhf] dts: ux500: Correct SCU unit address - [armhf] dts: ux500: Fix LCDA clock line muxing - [armhf] dts: ste: Fix SPI controller node names - spi: pic32: Use proper enum in dmaengine_prep_slave_rg - crypto: chacha20 - Fix chacha20_block() keystream alignment (again) - cpufeature: avoid warning when compiling with clang - [armhf] crypto: crc32 - avoid warning when compiling with Clang - [armel] dts: marvell: Fix SPI and I2C bus warnings - [x86] mce-inject: Reset injection struct after injection - [armhf,arm64] dts: clearfog: fix sdhci supply property name - bnx2x: Ignore bandwidth attention in single function mode - PCI/AER: Take reference on error devices - PCI/AER: Don't read upstream ports below fatal errors - PCI/ERR: Use slot reset if available - samples/bpf: fix compilation failure - net: phy: mdio-bcm-unimac: Allow configuring MDIO clock divider - net: micrel: fix return type of ndo_start_xmit function - net: freescale: fix return type of ndo_start_xmit function - [x86] CPU: Use correct macros for Cyrix calls - [x86] CPU: Change query logic so CPUID is enabled before testing - EDAC: Correct DIMM capacity unit symbol - [mips*] kexec: Relax memory restriction - [arm64] dts: rockchip: Fix microSD in rk3399 sapphire board - mlxsw: Make MLXSW_SP1_FWREV_MINOR a hard requirement - media: imx: work around false-positive warning, again - media: pci: ivtv: Fix a sleep-in-atomic-context bug in ivtv_yuv_init() - media: au0828: Fix incorrect error messages - media: davinci: Fix implicit enum conversion warning - [armhf] dts: rockchip: explicitly set vcc_sd0 pin to gpio on rk3188-radxarock - usb: gadget: uvc: configfs: Drop leaked references to config items - usb: gadget: uvc: configfs: Prevent format changes after linking header - usb: gadget: uvc: configfs: Sort frame intervals upon writing - [armhf] dts: exynos: Correct audio subsystem parent clock on Peach Chromebooks - i2c: aspeed: fix invalid clock parameters for very large divisors - gpiolib: Fix gpio_direction_* for single direction GPIOs - phy: brcm-sata: allow PHY_BRCM_SATA driver to be built for DSL SoCs - phy: renesas: rcar-gen3-usb2: fix vbus_ctrl for role sysfs - phy: phy-twl4030-usb: fix denied runtime access - [armhf] dts: imx6ull: update vdd_soc voltage for 900MHz operating point - usb: gadget: uvc: Factor out video USB request queueing - usb: gadget: uvc: Only halt video streaming endpoint in bulk mode - coresight: Use ERR_CAST instead of ERR_PTR - coresight: Fix handling of sinks - coresight: perf: Fix per cpu path management - coresight: perf: Disable trace path upon source error - coresight: tmc-etr: Handle driver mode specific ETR buffers - coresight: etm4x: Configure EL2 exception level when kernel is running in HYP - coresight: tmc: Fix byte-address alignment for RRP - coresight: dynamic-replicator: Handle multiple connections - slimbus: ngd: register ngd driver only once. - slimbus: ngd: return proper error code instead of zero - silmbus: ngd: register controller after power up. - misc: kgdbts: Fix restrict error - misc: genwqe: should return proper error value. - vmbus: keep pointer to ring buffer page - vfio/pci: Fix potential memory leak in vfio_msi_cap_len - vfio/pci: Mask buggy SR-IOV VF INTx support - iw_cxgb4: Use proper enumerated type in c4iw_bar2_addrs - scsi: libsas: always unregister the old device if going to discover new - f2fs: fix remount problem of option io_bits - phy: lantiq: Fix compile warning - [arm64] dts: fsl: Fix I2C and SPI bus warnings - [armhf] dts: imx51-zii-rdu1: Fix the rtc compatible string - [arm64] tegra: I2C on Tegra194 is not compatible with Tegra114 - [armhf] dts: tegra30: fix xcvr-setup-use-fuses - [armhf] dts: tegra20: restore address order - [armhf] tegra: apalis_t30: fix mmc1 cmd pull-up - [armhf] tegra: apalis_t30: fix mcp2515 can controller interrupt polarity - [armhf] tegra: colibri_t30: fix mcp2515 can controller interrupt polarity - [armhf] dts: paz00: fix wakeup gpio keycode - net: smsc: fix return type of ndo_start_xmit function - net: faraday: fix return type of ndo_start_xmit function - PCI/ERR: Run error recovery callbacks for all affected devices - f2fs: update i_size after DIO completion - f2fs: fix to recover inode's project id during POR - f2fs: mark inode dirty explicitly in recover_inode() - RDMA: Fix dependencies for rdma_user_mmap_io - EDAC: Raise the maximum number of memory controllers - firmware: dell_rbu: Make payload memory uncachable - Bluetooth: hci_serdev: clear HCI_UART_PROTO_READY to avoid closing proto races - Bluetooth: L2CAP: Detect if remote is not able to use the whole MPS - Bluetooth: btrsi: fix bt tx timeout issue - [x86] hyperv: Suppress "PCI: Fatal: No config space access function found" - crypto: s5p-sss: Fix race in error handling - crypto: s5p-sss: Fix Fix argument list alignment - crypto: fix a memory leak in rsa-kcs1pad's encryption mode - iwlwifi: dbg: don't crash if the firmware crashes in the middle of a debug dump - iwlwifi: fix non_shared_ant for 22000 devices - iwlwifi: pcie: read correct prph address for newer devices - iwlwifi: api: annotate compressed BA notif array sizes - iwlwifi: pcie: gen2: build A-MSDU only for GSO - iwlwifi: pcie: fit reclaim msg to MAX_MSG_LEN - iwlwifi: mvm: use correct FIFO length - iwlwifi: mvm: Allow TKIP for AP mode - scsi: NCR5380: Clear all unissued commands on host reset - scsi: NCR5380: Have NCR5380_select() return a bool - scsi: NCR5380: Withhold disconnect privilege for REQUEST SENSE - scsi: NCR5380: Use DRIVER_SENSE to indicate valid sense data - scsi: NCR5380: Check for invalid reselection target - scsi: NCR5380: Don't clear busy flag when abort fails - scsi: NCR5380: Don't call dsprintk() following reselection interrupt - scsi: NCR5380: Handle BUS FREE during reselection - scsi: NCR5380: Check for bus reset - [arm64] dts: amd: Fix SPI bus warnings - [arm64] dts: lg: Fix SPI controller node names - rtc: isl1208: avoid possible sysfs race - rtc: tx4939: fixup nvmem name and register size - rtc: armada38x: fix possible race condition - netfilter: masquerade: don't flush all conntracks if only one address deleted on device - usb: xhci-mtk: fix ISOC error when interval is zero - usb: usbtmc: uninitialized symbol 'actual' in usbtmc_ioctl_clear - fuse: use READ_ONCE on congestion_threshold and max_background - IB/iser: Fix possible NULL deref at iser_inv_desc() - media: ov2680: fix null dereference at power on - [s390x] vdso: correct vdso mapping for compat tasks - net: phy: mdio-bcm-unimac: mark PM functions as __maybe_unused - memfd: Use radix_tree_deref_slot_protected to avoid the warning. - slcan: Fix memory leak in error path https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.86 - spi: mediatek: use correct mata->xfer_len when in fifo transfer - i2c: mediatek: modify threshold passed to i2c_get_dma_safe_msg_buf() - tee: optee: add missing of_node_put after of_device_is_available - Revert "OPP: Protect dev_list with opp_table lock" - net: cdc_ncm: Signedness bug in cdc_ncm_set_dgram_size() - idr: Fix idr_get_next race with idr_remove - mm/memory_hotplug: don't access uninitialized memmaps in shrink_pgdat_span() - mm/memory_hotplug: fix updating the node span - [arm64] uaccess: Ensure PAN is re-enabled after unhandled uaccess fault - fbdev: Ditch fb_edid_add_monspecs - [i386] bpf, x32: Fix bug for BPF_ALU64 | BPF_NEG - [i386] bpf, x32: Fix bug with ALU64 {LSH, RSH, ARSH} BPF_X shift by 0 - [i386] bpf, x32: Fix bug with ALU64 {LSH, RSH, ARSH} BPF_K shift by 0 - [i386] bpf, x32: Fix bug for BPF_JMP | {BPF_JSGT, BPF_JSLE, BPF_JSLT, BPF_JSGE} - net: ovs: fix return type of ndo_start_xmit function - net: xen-netback: fix return type of ndo_start_xmit function - [armhf] dts: dra7: Enable workaround for errata i870 in PCIe host mode - [armhf] dts: omap5: enable OTG role for DWC3 controller - [arm64] net: hns3: Fix for netdev not up problem when setting mtu - [arm64] net: hns3: Fix loss of coal configuration while doing reset - f2fs: return correct errno in f2fs_gc - [armhf] dts: sun8i: h3-h5: ir register size should be the whole memory block - [armhf] dts: sun8i: h3: bpi-m2-plus: Fix address for external RGMII Ethernet PHY - tcp: up initial rmem to 128KB and SYN rwin to around 64KB - SUNRPC: Fix priority queue fairness - ACPI / LPSS: Make acpi_lpss_find_device() also find PCI devices - ACPI / LPSS: Resume BYT/CHT I2C controllers from resume_noirq - f2fs: keep lazytime on remount - IB/hfi1: Error path MAD response size is incorrect - IB/hfi1: Ensure ucast_dlid access doesnt exceed bounds - mt76x2: fix tx power configuration for VHT mcs 9 - mt76x2: disable WLAN core before probe - mt76: fix handling ps-poll frames - [arm64,armhf] iommu/io-pgtable-arm: Fix race handling in split_blk_unmap() - [arm64,armhf] iommu/arm-smmu-v3: Fix unexpected CMD_SYNC timeout - [arm64,armhf] kvm: Fix stage2_flush_memslot for 4 level page table - [arm64] numa: Report correct memblock range for the dummy node - ath10k: fix vdev-start timeout on error - rtlwifi: btcoex: Use proper enumerated types for Wi-Fi only interface - ata: ahci_brcm: Allow using driver or DSL SoCs - PM / devfreq: Fix devfreq_add_device() when drivers are built as modules. - PM / devfreq: Fix handling of min/max_freq == 0 - PM / devfreq: stopping the governor before device_unregister() - ath9k: fix reporting calculated new FFT upper max - selftests/tls: Fix recv(MSG_PEEK) & splice() test cases - usb: gadget: udc: fotg210-udc: Fix a sleep-in-atomic-context bug in fotg210_get_status() - usb: dwc3: gadget: Check ENBLSLPM before sending ep command - nl80211: Fix a GET_KEY reply attribute - [arm64,armhf] irqchip/irq-mvebu-icu: Fix wrong private data retrieval - watchdog: core: fix null pointer dereference when releasing cdev - watchdog: w83627hf_wdt: Support NCT6796D, NCT6797D, NCT6798D - [ppc64el,powerpc64] Inform the userspace about TCE update failures - printk: Do not miss new messages when replaying the log - printk: CON_PRINTBUFFER console registration is a bit racy - dmaengine: ep93xx: Return proper enum in ep93xx_dma_chan_direction - dmaengine: timb_dma: Use proper enum in td_prep_slave_sg - [x86] ALSA: hda: Fix mismatch for register mask and value in ext controller. - ext4: fix build error when DX_DEBUG is defined - clk: keystone: Enable TISCI clocks if K3_ARCH - sunrpc: Fix connect metrics - [x86] PCI: Apply VMD's AERSID fixup generically - mei: samples: fix a signedness bug in amt_host_if_call() - cxgb4: Use proper enum in cxgb4_dcb_handle_fw_update - cxgb4: Use proper enum in IEEE_FAUX_SYNC - [ppc64el,powerpc*] Fix DTL buffer registration - [ppc64el,powerpc*] Fix how we iterate over the DTL entries - [ppc64el,powerpc*] xive: Move a dereference below a NULL test - mtd: rawnand: sh_flctl: Use proper enum for flctl_dma_fifo0_transfer - PM / hibernate: Check the success of generating md5 digest before hibernation - tools: PCI: Fix compilation warnings - ice: Fix forward to queue group logic - md: allow metadata updates while suspending an array - fix - ixgbe: Fix ixgbe TX hangs with XDP_TX beyond queue limit - i40e: Use proper enum in i40e_ndo_set_vf_link_state - ixgbe: Fix crash with VFs and flow director on interface flap - IB/mthca: Fix error return code in __mthca_init_one() - IB/rxe: avoid srq memory leak - RDMA/hns: Bugfix for reserved qp number - RDMA/hns: Submit bad wr when post send wr exception - RDMA/hns: Bugfix for CM test - RDMA/hns: Limit the size of extend sge of sq - IB/mlx4: Avoid implicit enumerated type conversion - rpmsg: glink: smem: Support rx peak for size less than 4 bytes - msm/gpu/a6xx: Force of_dma_configure to setup DMA for GMU - OPP: Return error on error from dev_pm_opp_get_opp_count() - ACPICA: Never run _REG on system_memory and system_IO - cpuidle: menu: Fix wakeup statistics updates for polling state - ASoC: qdsp6: q6asm-dai: checking NULL vs IS_ERR() - [ppc64el,powerpc*] time: Use clockevents_register_device(), fixing an issue with large decrementer - [ppc64el,powerpc64] radix: Explicitly flush ERAT with local LPID invalidation - ata: ep93xx: Use proper enums for directions - qed: Avoid implicit enum conversion in qed_ooo_submit_tx_buffers - media: rc: ir-rc6-decoder: enable toggle bit for Kathrein RCU-676 remote - media: pxa_camera: Fix check for pdev->dev.of_node - media: rcar-vin: fix redeclaration of symbol - media: i2c: adv748x: Support probing a single output - [x86] ALSA: hda/sigmatel - Disable automute for Elo VuPoint - bnxt_en: return proper error when FW returns HWRM_ERR_CODE_RESOURCE_ACCESS_DENIED - [ppc64el,powerpc64] Book3S PR: Exiting split hack mode needs to fixup both PC and LR - USB: serial: cypress_m8: fix interrupt-out transfer length - usb: dwc2: disable power_down on rockchip devices - mtd: physmap_of: Release resources on error - cpu/SMT: State SMT is disabled even with nosmt and without "=force" - brcmfmac: reduce timeout for action frame scan - brcmfmac: fix full timeout waiting for action frame on-channel tx - qtnfmac: request userspace to do OBSS scanning if FW can not - qtnfmac: pass sgi rate info flag to wireless core - qtnfmac: inform wireless core about supported extended capabilities - qtnfmac: drop error reports for out-of-bounds key indexes - [armhf] clk: samsung: Use NOIRQ stage for Exynos5433 clocks suspend/resume - [armhf] clk: samsung: exynos5420: Define CLK_SECKEY gate clock only or Exynos5420 - [armhf] clk: samsung: Use clk_hw API for calling clk framework from clk notifiers - printk: Correct wrong casting - NFSv4.x: fix lock recovery during delegation recall - dmaengine: ioat: fix prototype of ioat_enumerate_channels - media: ov5640: fix framerate update - media: cec-gpio: select correct Signal Free Time - gfs2: slow the deluge of io error messages - i2c: omap: use core to detect 'no zero length' quirk - i2c: qup: use core to detect 'no zero length' quirk - i2c: tegra: use core to detect 'no zero length' quirk - i2c: zx2967: use core to detect 'no zero length' quirk - Input: st1232 - set INPUT_PROP_DIRECT property - Input: silead - try firmware reload after unsuccessful resume - soc: fsl: bman_portals: defer probe after bman's probe - net: hns3: Fix for rx vlan id handle to support Rev 0x21 hardware - tc-testing: fix build of eBPF programs - remoteproc: Check for NULL firmwares in sysfs interface - remoteproc: qcom: q6v5: Fix a race condition on fatal crash - kexec: Allocate decrypted control pages for kdump if SME is enabled - [x86] olpc: Fix build error with CONFIG_MFD_CS5535=m - dmaengine: rcar-dmac: set scatter/gather max segment size - xfrm: use correct size to initialise sp->ovec - ACPI / SBS: Fix rare oops when removing modules - iwlwifi: mvm: don't send keys when entering D3 - xsk: proper AF_XDP socket teardown ordering - [amd64] fsgsbase: Fix ptrace() to read the FS/GS base accurately - mmc: renesas_sdhi_internal_dmac: Whitelist r8a774a1 - mmc: tmio: Fix SCC error detection - mmc: renesas_sdhi_internal_dmac: set scatter/gather max segment size - fbdev: sbuslib: use checked version of put_user() - fbdev: sbuslib: integer overflow in sbusfb_ioctl_helper() - fbdev: fix broken menu dependencies - reset: Fix potential use-after-free in __of_reset_control_get() - bcache: account size of buckets used in uuid write to ca->meta_sectors_written - bcache: recal cached_dev_sectors on detach - [x86] platform: mlx-platform: Properly use mlxplat_mlxcpld_msn201x_items - media: dw9714: Fix error handling in probe function - media: dw9807-vcm: Fix probe error handling - media: cx18: Don't check for address of video_dev - mtd: spi-nor: cadence-quadspi: Use proper enum for dma_[un]map_single - mtd: devices: m25p80: Make sure WRITE_EN is issued before each write - [x86] intel_rdt: Introduce utility to obtain CDP peer - [x86] intel_rdt: CBM overlap should also check for overlap with CDP peer - mmc: mmci: expand startbiterr to irqmask and error check - [s390x] kasan: avoid vdso instrumentation - [s390x] kasan: avoid instrumentation of early C code - [s390x] kasan: avoid user access code instrumentation - [i386] proc/vmcore: Fix i386 build error of missing copy_oldmem_page_encrypted() - backlight: lm3639: Unconditionally call led_classdev_unregister - mfd: ti_am335x_tscadc: Keep ADC interface on if child is wakeup capable - printk: Give error on attempt to set log buffer length to over 2G - media: isif: fix a NULL pointer dereference bug - GFS2: Flush the GFS2 delete workqueue before stopping the kernel threads - media: cx231xx: fix potential sign-extension overflow on large shift - media: venus: vdec: fix decoded data size - [x86] ALSA: hda/ca0132 - Fix input effect controls for desktop cards - lightnvm: pblk: fix rqd.error return value in pblk_blk_erase_sync - lightnvm: pblk: fix incorrect min_write_pgs - lightnvm: pblk: guarantee emeta on line close - lightnvm: pblk: fix write amplificiation calculation - lightnvm: pblk: guarantee mw_cunits on read buffer - lightnvm: do no update csecs and sos on 1.2 - lightnvm: pblk: fix error handling of pblk_lines_init() - lightnvm: pblk: consider max hw sectors supported for max_write_pgs - [x86] kexec: Correct KEXEC_BACKUP_SRC_END off-by-one error - bpf: btf: Fix a missing check bug - net: fix generic XDP to handle if eth header was mangled - gpio: syscon: Fix possible NULL ptr usage - spi: fsl-lpspi: Prevent FIFO under/overrun by default - pinctrl: gemini: Mask and set properly - spi: spidev: Fix OF tree warning logic - [armel,armhf] 8802/1: Call syscall_trace_exit even when system call skipped - [x86] mm: Do not warn about PCI BIOS W+X mappings - orangefs: rate limit the client not running info message - pinctrl: gemini: Fix up TVC clock group - scsi: arcmsr: clean up clang warning on extraneous parentheses - [x86] hwmon: (k10temp) Support all Family 15h Model 6xh and Model 7xh processors - hwmon: (nct6775) Fix names of DIMM temperature sources - hwmon: (pwm-fan) Silence error on probe deferral - hwmon: (ina3221) Fix INA3221_CONFIG_MODE macros - hwmon: (npcm-750-pwm-fan) Change initial pwm target to 255 - selftests: forwarding: Have lldpad_app_wait_set() wait for unknown, too - net: sched: avoid writing on noop_qdisc - netfilter: nft_compat: do not dump private area - misc: cxl: Fix possible null pointer dereference - mac80211: minstrel: fix using short preamble CCK rates on HT clients - mac80211: minstrel: fix CCK rate group streams value - mac80211: minstrel: fix sampling/reporting of CCK rates in HT mode - spi: rockchip: initialize dma_slave_config properly - mlxsw: spectrum_switchdev: Check notification relevance based on upper device - [armhf] dts: omap5: Fix dual-role mode on Super-Speed port - tcp: start receiver buffer autotuning sooner - ACPI / LPSS: Use acpi_lpss_* instead of acpi_subsys_* functions for hibernate - PM / devfreq: Fix static checker warning in try_then_request_governor - tools: PCI: Fix broken pcitest compilation - [ppc64el,powerpc*] time: Fix clockevent_decrementer initalisation for PR KVM - mmc: tmio: fix SCC error handling to avoid false positive CRC error - [x86] resctrl: Fix rdt_find_domain() return value and checks https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.87 - mlxsw: spectrum_router: Fix determining underlay for a GRE tunnel - net/mlx4_en: fix mlx4 ethtool -N insertion - net/mlx4_en: Fix wrong limitation for number of TX rings - net: rtnetlink: prevent underflows in do_setvfinfo() - net/sched: act_pedit: fix WARN() in the traffic path - net: sched: ensure opts_len <= IP_TUNNEL_OPTS_MAX in act_tunnel_key - sfc: Only cancel the PPS workqueue if it exists - net/mlx5e: Fix set vf link state error flow - net/mlxfw: Verify FSM error code translation doesn't exceed array size - net/mlx5: Fix auto group size calculation - vhost/vsock: split packets to send using multiple buffers - gpio: max77620: Fixup debounce delays - tools: gpio: Correctly add make dependencies for gpio_utils - nbd:fix memory leak in nbd_get_socket() - virtio_console: allocate inbufs in add_port() only if it is needed - Revert "fs: ocfs2: fix possible null-pointer dereferences in ocfs2_xa_prepare_entry()" - mm/ksm.c: don't WARN if page is still mapped in remove_stable_node() - [x86] drm/amd/powerplay: issue no PPSMC_MSG_GetCurrPkgPwr on unsupported ASICs - [x86] drm/i915/pmu: "Frequency" is reported as accumulated cycles - [x86] drm/i915/userptr: Try to acquire the page lock around set_page_dirty() - mwifiex: Fix NL80211_TX_POWER_LIMITED - ALSA: isight: fix leak of reference to firewire unit in error path of .probe callback - crypto: testmgr - fix sizeof() on COMP_BUF_SIZE - printk: lock/unlock console only for new logbuf entries - printk: fix integer overflow in setup_log_buf() - pinctrl: madera: Fix uninitialized variable bug in madera_mux_set_mux - PCI: cadence: Write MSI data with 32bits - gfs2: Fix marking bitmaps non-full - pty: fix compat ioctls - synclink_gt(): fix compat_ioctl() - [ppc64] Fix signedness bug in update_flash_db() - [powerpc] boot: Fix opal console in boot wrapper - [ppc64*,powerpc] boot: Disable vector instructions - [ppc64*,powerpc] eeh: Fix null deref for devices removed during EEH - [ppc64*,powerpc] eeh: Fix use of EEH_PE_KEEP on wrong field - EDAC, thunderx: Fix memory leak in thunderx_l2c_threaded_isr() - mt76: do not store aggregation sequence number for null-data frames - mt76x0: phy: fix restore phase in mt76x0_phy_recalibrate_after_assoc - brcmsmac: AP mode: update beacon when TIM changes - ath10k: set probe request oui during driver start - ath10k: allocate small size dma memory in ath10k_pci_diag_write_mem - skd: fixup usage of legacy IO API - cdrom: don't attempt to fiddle with cdo->capability - spi: sh-msiof: fix deferred probing - mmc: mediatek: fill the actual clock for mmc debugfs - mmc: mediatek: fix cannot receive new request when msdc_cmd_is_ready fail - PCI: mediatek: Fix class type for MT7622 to PCI_CLASS_BRIDGE_PCI - btrfs: defrag: use btrfs_mod_outstanding_extents in cluster_pages_for_defrag - btrfs: handle error of get_old_root - gsmi: Fix bug in append_to_eventlog sysfs handler - misc: mic: fix a DMA pool free failure - w1: IAD Register is yet readable trough iad sys file. Fix snprintf (%u for unsigned, count for max size). - [m68k] fix command-line parsing when passed from u-boot - RDMA/bnxt_re: Avoid NULL check after accessing the pointer - RDMA/bnxt_re: Fix qp async event reporting - RDMA/bnxt_re: Avoid resource leak in case the NQ registration fails - pinctrl: sunxi: Fix a memory leak in 'sunxi_pinctrl_build_state()' - pwm: lpss: Only set update bit if we are actually changing the settings - amiflop: clean up on errors during setup - qed: Align local and global PTT to propagate through the APIs. - scsi: ips: fix missing break in switch - nfp: bpf: protect against mis-initializing atomic counters - [x86] KVM: nVMX: reset cache/shadows when switching loaded VMCS - [x86] KVM: nVMX: move check_vmentry_postreqs() call to nested_vmx_enter_non_root_mode() - [x86] KVM: Fix invvpid and invept register operand size in 64-bit mode - clk: tegra: Fixes for MBIST work around - scsi: isci: Use proper enumerated type in atapi_d2h_reg_frame_handler - scsi: isci: Change sci_controller_start_task's return type to sci_status - scsi: bfa: Avoid implicit enum conversion in bfad_im_post_vendor_event - scsi: iscsi_tcp: Explicitly cast param in iscsi_sw_tcp_host_get_param - nvmet: avoid integer overflow in the discard code - nvmet-fcloop: suppress a compiler warning - nvme-pci: fix hot removal during error handling - PCI: mediatek: Fixup MSI enablement logic by enabling MSI before clocks - clk: mmp2: fix the clock id for sdh2_clk and sdh3_clk - ASoC: tegra_sgtl5000: fix device_node refcounting - scsi: dc395x: fix dma API usage in srb_done - scsi: dc395x: fix DMA API usage in sg_update_list - scsi: zorro_esp: Limit DMA transfers to 65535 bytes - net: dsa: mv88e6xxx: Fix 88E6141/6341 2500mbps SERDES speed - net: fix warning in af_unix - xfs: fix use-after-free race in xfs_buf_rele - xfs: clear ail delwri queued bufs on unmount of shutdown fs - kprobes, x86/ptrace.h: Make regs_get_kernel_stack_nth() not fault on bad stack - ACPI / scan: Create platform device for INT33FE ACPI nodes - PM / Domains: Deal with multiple states but no governor in genpd - ALSA: i2c/cs8427: Fix int to char conversion - macintosh/windfarm_smu_sat: Fix debug output - PCI: vmd: Detach resources after stopping root bus - USB: misc: appledisplay: fix backlight update_status return code - usbip: tools: fix atoi() on non-null terminated string - sctp: use sk_wmem_queued to check for writable space - dm raid: avoid bitmap with raid4/5/6 journal device - selftests/bpf: fix file resource leak in load_kallsyms - SUNRPC: Fix a compile warning for cmpxchg64() - sunrpc: safely reallow resvport min/max inversion - atm: zatm: Fix empty body Clang warnings - [s390x] perf: Return error when debug_register fails - swiotlb: do not panic on mapping failures - spi: omap2-mcspi: Set FIFO DMA trigger level to word length - [x86] intel_rdt: Prevent pseudo-locking from using stale pointers - sparc: Fix parport build warnings. - [ppc64*,powerpc] pseries: Export raw per-CPU VPA data via debugfs - [ppc64*,powerpc] mm/radix: Fix off-by-one in split mapping logic - [ppc64*,powerpc] mm/radix: Fix overuse of small pages in splitting logic - [ppc64*,powerpc] mm/radix: Fix small page at boundary when splitting - [ppc64*] radix: Fix radix__flush_tlb_collapsed_pmd double flushing pmd - selftests/bpf: fix return value comparison for tests in test_libbpf.sh - tools: bpftool: fix completion for "bpftool map update" - ceph: fix dentry leak in ceph_readdir_prepopulate - ceph: only allow punch hole mode in fallocate - thermal: armada: fix a test in probe() - f2fs: fix to spread clear_cold_data() - f2fs: spread f2fs_set_inode_flags() - mISDN: Fix type of switch control variable in ctrl_teimanager - qlcnic: fix a return in qlcnic_dcb_get_capability() - net: ethernet: ti: cpsw: unsync mcast entries while switch promisc mode - mfd: arizona: Correct calling of runtime_put_sync - mfd: mc13xxx-core: Fix PMIC shutdown when reading ADC values - [x86] mfd: intel_soc_pmic_bxtwc: Chain power button IRQs as well - mfd: max8997: Enale irq-wakeup unconditionally - net: socionext: Stop PHY before resetting netsec - fs/cifs: fix uninitialised variable warnings - spi: uniphier: fix incorrect property items - selftests/ftrace: Fix to test kprobe $comm arg only if available - selftests: watchdog: fix message when /dev/watchdog open fails - selftests: watchdog: Fix error message. - selftests: kvm: Fix -Wformat warnings - selftests: fix warning: "_GNU_SOURCE" redefined - net: ethernet: cadence: fix socket buffer corruption problem - bpf: devmap: fix wrong interface selection in notifier_call - bpf, btf: fix a missing check bug in btf_parse - [sparc64] Rework xchg() definition to avoid warnings. - [arm64] lib: use C string functions with KASAN enabled - fs/ocfs2/dlm/dlmdebug.c: fix a sleep-in-atomic-context bug in dlm_print_one_mle() - mm/page-writeback.c: fix range_cyclic writeback vs writepages deadlock - tools/testing/selftests/vm/gup_benchmark.c: fix 'write' flag usage - mm: thp: fix MADV_DONTNEED vs migrate_misplaced_transhuge_page race condition - macsec: update operstate when lower device changes - macsec: let the administrator set UP state even if lowerdev is down - block: fix the DISCARD request merge - i2c: uniphier-f: make driver robust against concurrency - i2c: uniphier-f: fix occasional timeout error - i2c: uniphier-f: fix race condition when IRQ is cleared - um: Make line/tty semantics use true write IRQ - vfs: avoid problematic remapping requests into partial EOF block - ipv4/igmp: fix v1/v2 switchback timeout based on rfc3376, 8.12 - [ppc64*,powerpc] xmon: Relax frame size for clang - [ppc64*,powerpc] selftests/ptrace: Fix out-of-tree build - [ppc64*,powerpc] selftests/signal: Fix out-of-tree build - [ppc64*,powerpc] selftests/switch_endian: Fix out-of-tree build - [ppc64*,powerpc] selftests/cache_shape: Fix out-of-tree build - block: call rq_qos_exit() after queue is frozen - mm/gup_benchmark.c: prevent integer overflow in ioctl - linux/bitmap.h: handle constant zero-size bitmaps correctly - linux/bitmap.h: fix type of nbits in bitmap_shift_right() - lib/bitmap.c: fix remaining space computation in bitmap_print_to_pagebuf - hfsplus: fix BUG on bnode parent update - hfs: fix BUG on bnode parent update - hfsplus: prevent btree data loss on ENOSPC - hfs: prevent btree data loss on ENOSPC - hfsplus: fix return value of hfsplus_get_block() - hfs: fix return value of hfs_get_block() - hfsplus: update timestamps on truncate() - hfs: update timestamp on truncate() - fs/hfs/extent.c: fix array out of bounds read of array extent - kernel/panic.c: do not append newline to the stack protector panic string - mm/memory_hotplug: make add_memory() take the device_hotplug_lock - mm/memory_hotplug: fix online/offline_pages called w.o. mem_hotplug_lock - [ppc64*,powerprc] powerpc/powernv: hold device_hotplug_lock when calling device_online() - igb: shorten maximum PHC timecounter update interval - fm10k: ensure completer aborts are marked as non-fatal after a resume - [arm64] net: hns3: bugfix for buffer not free problem during resetting - [arm64] net: hns3: bugfix for reporting unknown vector0 interrupt repeatly problem - [arm64] net: hns3: bugfix for is_valid_csq_clean_head() - [arm64] net: hns3: bugfix for hclge_mdio_write and hclge_mdio_read - ntb_netdev: fix sleep time mismatch - [x86] ntb: intel: fix return value for ndev_vec_mask() - irq/matrix: Fix memory overallocation - nvme-pci: fix conflicting p2p resource adds - [arm64] makefile fix build of .i file in external module case - [x86] tools/power turbosat: fix AMD APIC-id output - mm: handle no memcg case in memcg_kmem_charge() properly - ocfs2: without quota support, avoid calling quota recovery - ocfs2: don't use iocb when EIOCBQUEUED returns - ocfs2: don't put and assigning null to bh allocated outside - ocfs2: fix clusters leak in ocfs2_defrag_extent() - net: do not abort bulk send on BQL status - sched/topology: Fix off by one bug - sched/fair: Don't increase sd->balance_interval on newidle balance - openvswitch: fix linking without CONFIG_NF_CONNTRACK_LABELS - [armhf] dts: imx6sx-sdb: Fix enet phy regulator - [arm64] sunxi-ng: enable so-said LDOs for A64 SoC's pll-mipi clock - soc: bcm: brcmstb: Fix re-entry point with a THUMB2_KERNEL - audit: print empty EXECVE args - sock_diag: fix autoloading of the raw_diag module - net: bpfilter: fix iptables failure if bpfilter_umh is disabled - nds32: Fix bug in bitfield.h - media: ov13858: Check for possible null pointer - btrfs: avoid link error with CONFIG_NO_AUTO_INLINE - wil6210: fix debugfs memory access alignment - wil6210: fix L2 RX status handling - wil6210: fix RGF_CAF_ICR address for Talyn-MB - wil6210: fix locking in wmi_call - ath10k: snoc: fix unbalanced clock error handling - wlcore: Fix the return value in case of error in 'wlcore_vendor_cmd_smart_config_start()' - rtl8xxxu: Fix missing break in switch - brcmsmac: never log "tid x is not agg'able" by default - wireless: airo: potential buffer overflow in sprintf() - rtlwifi: rtl8192de: Fix misleading REG_MCUFWDL information - net: dsa: bcm_sf2: Turn on PHY to allow successful registration - scsi: mpt3sas: Fix Sync cache command failure during driver unload - scsi: mpt3sas: Don't modify EEDPTagMode field setting on SAS3.5 HBA devices - scsi: mpt3sas: Fix driver modifying persistent data in Manufacturing page11 - scsi: megaraid_sas: Fix msleep granularity - scsi: megaraid_sas: Fix goto labels in error handling - scsi: lpfc: fcoe: Fix link down issue after 1000+ link bounces - scsi: lpfc: Fix odd recovery in duplicate FLOGIs in point-to-point - scsi: lpfc: Correct loss of fc4 type on remote port address change - usb: typec: tcpm: charge current handling for sink during hard reset - dlm: fix invalid free - dlm: don't leak kernel pointer to userspace - vrf: mark skb for multicast or link-local as enslaved to VRF - clk: tegra20: Turn EMC clock gate into divider - ACPICA: Use %d for signed int print formatting instead of %u - net: bcmgenet: return correct value 'ret' from bcmgenet_power_down - of: unittest: allow base devicetree to have symbol metadata - of: unittest: initialize args before calling of_*parse_*() - tools: bpftool: pass an argument to silence open_obj_pinned() - cfg80211: Prevent regulatory restore during STA disconnect in concurrent interfaces - pinctrl: qcom: spmi-gpio: fix gpio-hog related boot issues - pinctrl: bcm2835: Use define directive for BCM2835_PINCONF_PARAM_PULL - pinctrl: lpc18xx: Use define directive for PIN_CONFIG_GPIO_PIN_INT - pinctrl: zynq: Use define directive for PIN_CONFIG_IO_STANDARD - PCI: keystone: Use quirk to limit MRRS for K2G - nvme-pci: fix surprise removal - spi: omap2-mcspi: Fix DMA and FIFO event trigger size mismatch - i2c: uniphier-f: fix timeout error after reading 8 bytes - mm/memory_hotplug: Do not unlock when fails to take the device_hotplug_lock - ipv6: Fix handling of LLA with VRF and sockets bound to VRF - cfg80211: call disconnect_wk when AP stops - mm/page_io.c: do not free shared swap slots - Bluetooth: Fix invalid-free in bcsp_close() - KVM: MMU: Do not treat ZONE_DEVICE pages as being reserved - ath10k: Fix a NULL-ptr-deref bug in ath10k_usb_alloc_urb_from_pipe - ath9k_hw: fix uninitialized variable data - md/raid10: prevent access of uninitialized resync_pages offset - mm/memory_hotplug: don't access uninitialized memmaps in shrink_zone_span() - net: phy: dp83867: fix speed 10 in sgmii mode - net: phy: dp83867: increase SGMII autoneg timer duration - ocfs2: remove ocfs2_is_o2cb_active() - [arm*] 8904/1: skip nomap memblocks while finding the lowmem/highmem boundary - ARC: perf: Accommodate big-endian CPU - [x86] insn: Fix awk regexp warnings - [x86] speculation: Fix incorrect MDS/TAA mitigation status - [x86] speculation: Fix redundant MDS mitigation message - nbd: prevent memory leak - y2038: futex: Move compat implementation into futex.c - futex: Prevent robust futex exit race - ALSA: usb-audio: Fix NULL dereference at parsing BADD - nfc: port100: handle command failure cleanly - media: vivid: Set vid_cap_streaming and vid_out_streaming to true - media: vivid: Fix wrong locking that causes race conditions on streaming stop (CVE-2019-18683) - media: usbvision: Fix races among open, close, and disconnect - cpufreq: Add NULL checks to show() and store() methods of cpufreq - media: uvcvideo: Fix error path in control parsing failure - media: b2c2-flexcop-usb: add sanity checking - media: cxusb: detect cxusb_ctrl_msg error in query - media: imon: invalid dereference in imon_touch_event - virtio_ring: fix return code on DMA mapping fails - USBIP: add config dependency for SGL_ALLOC - usbip: tools: fix fd leakage in the function of read_attr_usbip_status - usbip: Fix uninitialized symbol 'nents' in stub_recv_cmd_submit() - usb-serial: cp201x: support Mark-10 digital force gauge - USB: chaoskey: fix error case of a timeout - appledisplay: fix error handling in the scheduled work - USB: serial: mos7840: add USB ID to support Moxa UPort 2210 - USB: serial: mos7720: fix remote wakeup - USB: serial: mos7840: fix remote wakeup - USB: serial: option: add support for DW5821e with eSIM support - USB: serial: option: add support for Foxconn T77W968 LTE modules - staging: comedi: usbduxfast: usbduxfast_ai_cmdtest rounding error - [ppc64*] support nospectre_v2 cmdline option - [ppc64*] book3s: Fix link stack flush on context switch (CVE-2019-18660) - [ppc64*, powerpc] PPC: Book3S HV: Flush link stack on guest exit to host kernel - PM / devfreq: Fix kernel oops on governor module load . [ Romain Perier ] * [armel/rpi] Enable CONFIG_BRCMFMAC_SDIO (Closes: #940530) * [armhf, arm64] Backport devicetree for enabling support for the Raspberry PI 3 A+ . [ Salvatore Bonaccorso ] * ixgbe: Fix secpath usage for IPsec TX offload (Closes: #930443) * ipv4: Return -ENETUNREACH if we can't create route but saddr is valid (Closes: #945023) * [x86] KVM: x86: introduce is_pae_paging (Regression in 4.19.77) * [rt] Refresh 0011-sched-fair-Robustify-CFS-bandwidth-timer-locking.patch (context changes in 4.19.84) . [ Bastian Blank ] * [amd64/cloud-amd64] Re-enable RTC drivers. (closes: #931341) . [ Noah Meyerhans ] * drivers/net/ethernet/amazon: Backport driver fixes from Linux 5.4 (Closes: #941291) * Bump ABI to 7 . [ Ben Hutchings ] * debian/bin/genpatch-rt: Fix series generation from git * [rt] Update to 4.19.82-rt30: - Drop changes in "fs/dcache: disable preemption on i_dir_seq's write side" that conflict with "Fix the locking in dcache_readdir() and friends" - Rewrite "fs/aio: simple simple work" using kthread_work - Rewrite "thermal: Defer thermal wakups to threads" using kthread_work - Rewrite "block: blk-mq: move blk_queue_usage_counter_release() into process context" using kthread_work - workqueue: rework . [ Benjamin Poirier ] * tools/perf: Add python3 support to scripts (Closes: #944641) . [ Aurelien Jarno ] * [rt] Refresh 0025-NFSv4-replace-seqcount_t-with-a-seqlock_t.patch (context changes in 4.19.86) * [rt] Refresh 0202-net-Qdisc-use-a-seqlock-instead-seqcount.patch (context changes in 4.19.86) * [rt] Refresh 0057-printk-Add-a-printk-kill-switch.patch (context changes in 4.19.87) * [rt] Refresh 0207-printk-Make-rt-aware.patch (context changes in 4.19.87) linux (4.19.67-2+deb10u2) buster-security; urgency=high . * [x86] Add mitigation for TSX Asynchronous Abort (CVE-2019-11135): - KVM: x86: use Intel speculation bugs and features as derived in generic x86 code - x86/msr: Add the IA32_TSX_CTRL MSR - x86/cpu: Add a helper function x86_read_arch_cap_msr() - x86/cpu: Add a "tsx=" cmdline option with TSX disabled by default - x86/speculation/taa: Add mitigation for TSX Async Abort - x86/speculation/taa: Add sysfs reporting for TSX Async Abort - kvm/x86: Export MDS_NO=0 to guests when TSX is enabled - x86/tsx: Add "auto" option to the tsx= cmdline parameter - x86/speculation/taa: Add documentation for TSX Async Abort - x86/tsx: Add config options to set tsx=on|off|auto - x86/speculation/taa: Fix printing of TAA_MSG_SMT on IBRS_ALL CPUs TSX is now disabled by default; see Documentation/admin-guide/hw-vuln/tsx_async_abort.rst * [x86] KVM: Add mitigation for Machine Check Error on Page Size Change (aka iTLB multi-hit, CVE-2018-12207): - kvm: Convert kvm_lock to a mutex - kvm: x86: Do not release the page inside mmu_set_spte() - KVM: x86: make FNAME(fetch) and __direct_map more similar - KVM: x86: remove now unneeded hugepage gfn adjustment - KVM: x86: change kvm_mmu_page_get_gfn BUG_ON to WARN_ON - KVM: x86: add tracepoints around __direct_map and FNAME(fetch) - kvm: x86, powerpc: do not allow clearing largepages debugfs entry - KVM: vmx, svm: always run with EFER.NXE=1 when shadow paging is active - x86/bugs: Add ITLB_MULTIHIT bug infrastructure - cpu/speculation: Uninline and export CPU mitigations helpers - kvm: mmu: ITLB_MULTIHIT mitigation - kvm: Add helper function for creating VM worker threads - kvm: x86: mmu: Recovery of shattered NX large pages - Documentation: Add ITLB_MULTIHIT documentation * [x86] i915: Mitigate local privilege escalation on gen9 (CVE-2019-0155): - drm/i915: Rename gen7 cmdparser tables - drm/i915: Disable Secure Batches for gen6+ - drm/i915: Remove Master tables from cmdparser - drm/i915: Add support for mandatory cmdparsing - drm/i915: Support ro ppgtt mapped cmdparser shadow buffers - drm/i915: Allow parsing of unsized batches - drm/i915: Add gen9 BCS cmdparsing - drm/i915/cmdparser: Use explicit goto for error paths - drm/i915/cmdparser: Add support for backward jumps - drm/i915/cmdparser: Ignore Length operands during command matching - drm/i915/cmdparser: Fix jump whitelist clearing * [x86] i915: Mitigate local denial-of-service on gen8/gen9 (CVE-2019-0154): - drm/i915: Lower RM timeout to avoid DSI hard hangs - drm/i915/gen8+: Add RC6 CTX corruption WA linux (4.19.67-2+deb10u2~bpo9+1) stretch-backports; urgency=medium . * Rebuild for stretch-backports; no further changes required . linux (4.19.67-2+deb10u2) buster-security; urgency=high . * [x86] Add mitigation for TSX Asynchronous Abort (CVE-2019-11135): - KVM: x86: use Intel speculation bugs and features as derived in generic x86 code - x86/msr: Add the IA32_TSX_CTRL MSR - x86/cpu: Add a helper function x86_read_arch_cap_msr() - x86/cpu: Add a "tsx=" cmdline option with TSX disabled by default - x86/speculation/taa: Add mitigation for TSX Async Abort - x86/speculation/taa: Add sysfs reporting for TSX Async Abort - kvm/x86: Export MDS_NO=0 to guests when TSX is enabled - x86/tsx: Add "auto" option to the tsx= cmdline parameter - x86/speculation/taa: Add documentation for TSX Async Abort - x86/tsx: Add config options to set tsx=on|off|auto - x86/speculation/taa: Fix printing of TAA_MSG_SMT on IBRS_ALL CPUs TSX is now disabled by default; see Documentation/admin-guide/hw-vuln/tsx_async_abort.rst * [x86] KVM: Add mitigation for Machine Check Error on Page Size Change (aka iTLB multi-hit, CVE-2018-12207): - kvm: Convert kvm_lock to a mutex - kvm: x86: Do not release the page inside mmu_set_spte() - KVM: x86: make FNAME(fetch) and __direct_map more similar - KVM: x86: remove now unneeded hugepage gfn adjustment - KVM: x86: change kvm_mmu_page_get_gfn BUG_ON to WARN_ON - KVM: x86: add tracepoints around __direct_map and FNAME(fetch) - kvm: x86, powerpc: do not allow clearing largepages debugfs entry - KVM: vmx, svm: always run with EFER.NXE=1 when shadow paging is active - x86/bugs: Add ITLB_MULTIHIT bug infrastructure - cpu/speculation: Uninline and export CPU mitigations helpers - kvm: mmu: ITLB_MULTIHIT mitigation - kvm: Add helper function for creating VM worker threads - kvm: x86: mmu: Recovery of shattered NX large pages - Documentation: Add ITLB_MULTIHIT documentation * [x86] i915: Mitigate local privilege escalation on gen9 (CVE-2019-0155): - drm/i915: Rename gen7 cmdparser tables - drm/i915: Disable Secure Batches for gen6+ - drm/i915: Remove Master tables from cmdparser - drm/i915: Add support for mandatory cmdparsing - drm/i915: Support ro ppgtt mapped cmdparser shadow buffers - drm/i915: Allow parsing of unsized batches - drm/i915: Add gen9 BCS cmdparsing - drm/i915/cmdparser: Use explicit goto for error paths - drm/i915/cmdparser: Add support for backward jumps - drm/i915/cmdparser: Ignore Length operands during command matching - drm/i915/cmdparser: Fix jump whitelist clearing * [x86] i915: Mitigate local denial-of-service on gen8/gen9 (CVE-2019-0154): - drm/i915: Lower RM timeout to avoid DSI hard hangs - drm/i915/gen8+: Add RC6 CTX corruption WA linux-latest (105+deb10u3) buster; urgency=medium . * Update to 4.19.0-8 linux-latest (105+deb10u2) buster; urgency=medium . * Update to 4.19.0-7 linux-signed-amd64 (4.19.98+1) buster; urgency=medium . * Sign kernel from linux 4.19.98-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.88 - [arm64] clk: meson: gxbb: let sar_adc_clk_div set the parent clock rate - ASoC: compress: fix unsigned integer overflow check - reset: Fix memory leak in reset_control_array_put() - [armhf] clk: samsung: exynos5433: Fix error paths - [armel/marvell,armhf] ASoC: kirkwood: fix external clock probe defer - [armel/marvell,armhf] ASoC: kirkwood: fix device remove ordering - [armhf] clk: samsung: exynos5420: Preserve PLL configuration during suspend/resume - [x86] pinctrl: cherryview: Allocate IRQ chip dynamic - [armhf] dts: imx6qdl-sabreauto: Fix storm of accelerometer interrupts - reset: fix reset_control_ops kerneldoc comment - [armhf,arm64] clk: sunxi: Fix operator precedence in sunxi_divs_clk_setup - [armhf] clk: sunxi-ng: a80: fix the zero'ing of bits 16 and 18 - [armhf] dts: sun8i-a83t-tbs-a711: Fix WiFi resume from suspend - [ppc64el] bpf: Fix tail call implementation - idr: Fix integer overflow in idr_for_each_entry - idr: Fix idr_alloc_u32 on 32-bit systems - [x86] resctrl: Prevent NULL pointer dereference when reading mondata - [armhf] clk: ti: dra7-atl-clock: Remove ti_clk_add_alias call - [armhf] clk: ti: clkctrl: Fix failed to enable error with double udelay timeout - bridge: ebtables: don't crash when using dnat target in output chains - can: peak_usb: report bus recovery as well - can: rx-offload: can_rx_offload_queue_tail(): fix error handling, avoid skb mem leak - can: rx-offload: can_rx_offload_offload_one(): do not increase the skb_queue beyond skb_queue_len_max - can: rx-offload: can_rx_offload_offload_one(): increment rx_fifo_errors on queue overflow or OOM - can: rx-offload: can_rx_offload_offload_one(): use ERR_PTR() to propagate error value in case of errors - can: rx-offload: can_rx_offload_irq_offload_timestamp(): continue on error - can: rx-offload: can_rx_offload_irq_offload_fifo(): continue on error - [armhf] can: flexcan: increase error counters if skb enqueueing via can_rx_offload_queue_sorted() fails - [arm64] watchdog: meson: Fix the wrong value of left time - ceph: return -EINVAL if given fsc mount option on kernel w/o support - net/fq_impl: Switch to kvmalloc() for memory allocation - mac80211: fix station inactive_time shortly after boot - block: drbd: remove a stray unlock in __drbd_send_protocol() - scsi: target/tcmu: Fix queue_cmd_ring() declaration - scsi: lpfc: Fix kernel Oops due to null pring pointers - scsi: lpfc: Fix dif and first burst use in write commands - tracing: Lock event_mutex before synth_event_mutex - [armhf] dts: imx*: Fix memory node duplication - [armhf] dts: Fix hsi gdd range for omap4 - [arm64] mm: Prevent mismatched 52-bit VA support - [arm64] smp: Handle errors reported by the firmware - [armhf] bus: ti-sysc: Check for no-reset and no-idle flags at the child level - [arm64] RDMA/hns: Fix the bug while use multi-hop of pbl - [x86] RDMA/vmw_pvrdma: Use atomic memory allocation in create AH - [armhf] PM / AVS: SmartReflex: NULL check before some freeing functions is not needed - xfs: zero length symlinks are not valid - ACPI / LPSS: Ignore acpi_device_fix_up_power() return value - scsi: lpfc: Enable Management features for IF_TYPE=6 - scsi: qla2xxx: Fix NPIV handling for FC-NVMe - scsi: qla2xxx: Fix for FC-NVMe discovery for NPIV port - nvme: provide fallback for discard alloc failure - [s390x] zcrypt: make sysfs reset attribute trigger queue reset - crypto: user - support incremental algorithm dumps - mwifiex: fix potential NULL dereference and use after free - mwifiex: debugfs: correct histogram spacing, formatting - brcmfmac: set F2 watermark to 256 for 4373 - brcmfmac: set SDIO F1 MesBusyCtrl for CYW4373 - rtl818x: fix potential use after free - bcache: do not check if debug dentry is ERR or NULL explicitly on remove - bcache: do not mark writeback_running too early - xfs: require both realtime inodes to mount - nvme: fix kernel paging oops - ubifs: Fix default compression selection in ubifs - ubi: Put MTD device after it is not used - ubi: Do not drop UBI device reference before using - iwlwifi: move iwl_nvm_check_version() into dvm - iwlwifi: mvm: force TCM re-evaluation on TCM resume - iwlwifi: pcie: fix erroneous print - iwlwifi: pcie: set cmd_len in the correct place - [armhf,arm64] gpio: pca953x: Fix AI overflow on PCAL6524 - gpiolib: Fix return value of gpio_to_desc() stub if !GPIOLIB - [x86] kvm: vmx: Set IA32_TSC_AUX for legacy mode guests - [x86] Revert "KVM: nVMX: reset cache/shadows when switching loaded VMCS" - [x86] Revert "KVM: nVMX: move check_vmentry_postreqs() call to nested_vmx_enter_non_root_mode()" - VSOCK: bind to random port for VMADDR_PORT_ANY - [amd64] mmc: meson-gx: make sure the descriptor is stopped on errors - [armhf] mtd: rawnand: sunxi: Write pageprog related opcodes to WCMD_SET - [armhf] usb: ehci-omap: Fix deferred probe for phy handling - btrfs: Check for missing device before bio submission in btrfs_map_bio - btrfs: fix ncopies raid_attr for RAID56 - btrfs: dev-replace: set result code of cancel by status of scrub - Btrfs: allow clear_extent_dirty() to receive a cached extent state record - btrfs: only track ref_heads in delayed_ref_updates - [x86] HID: intel-ish-hid: fixes incorrect error handling - serial: 8250: Rate limit serial port rx interrupts during input overruns - [x86] kprobes/xen: blacklist non-attachable xen interrupt functions - xen/pciback: Check dev_data before using it - kprobes: Blacklist symbols in arch-defined prohibited area - [amd64] kprobes: Show x86-64 specific blacklisted symbols correctly - [armhf] memory: omap-gpmc: Get the header of the enum - net/mlx5: Continue driver initialization despite debugfs failure - netfilter: nf_nat_sip: fix RTP/RTCP source port translations - exofs_mount(): fix leaks on failure exits - bnxt_en: Return linux standard errors in bnxt_ethtool.c - bnxt_en: Save ring statistics before reset. - bnxt_en: query force speeds before disabling autoneg mode. - [s390x] KVM: unregister debug feature on failing arch init - dm flakey: Properly corrupt multi-page bios. - gfs2: take jdata unstuff into account in do_grow - dm raid: fix false -EBUSY when handling check/repair message - xfs: Align compat attrlist_by_handle with native implementation. - xfs: Fix bulkstat compat ioctls on x32 userspace. - IB/qib: Fix an error code in qib_sdma_verbs_send() - vxlan: Fix error path in __vxlan_dev_create() - [ppc64el] xmon: fix dump_segments() - drivers/regulator: fix a missing check of return value - Bluetooth: hci_bcm: Handle specific unknown packets after firmware loading - RDMA/srp: Propagate ib_post_send() failures to the SCSI mid-layer - scsi: qla2xxx: deadlock by configfs_depend_item - scsi: csiostor: fix incorrect dma device in case of vport - brcmfmac: Fix access point mode - ath6kl: Only use match sets when firmware supports it - ath6kl: Fix off by one error in scan completion - [ppc64el] perf: Fix unit_sel/cache_sel checks - [ppc64el] prom: fix early DEBUG messages - [ppc64el] mm: Make NULL pointer deferences explicit on bad page faults. - [ppc64el] vfio/spapr_tce: Get rid of possible infinite loop - [ppc64el] powernv/eeh/npu: Fix uninitialized variables in opal_pci_eeh_freeze_status - drbd: ignore "all zero" peer volume sizes in handshake - drbd: reject attach of unsuitable uuids even if connected - drbd: do not block when adjusting "disk-options" while IO is frozen - drbd: fix print_st_err()'s prototype to match the definition - IB/rxe: Make counters thread safe - bpf/cpumap: make sure frame_size for build_skb is aligned if headroom isn't - [armhf] regulator: tps65910: fix a missing check of return value - [ppc64el] powerpc/pseries: Fix node leak in update_lmb_associativity_index() - net/netlink_compat: Fix a missing check of nla_parse_nested - net/net_namespace: Check the return value of register_pernet_subsys() - f2fs: fix block address for __check_sit_bitmap - f2fs: fix to dirty inode synchronously - [armhf] net: dsa: bcm_sf2: Propagate error value from mdio_write - atl1e: checking the status of atl1e_write_phy_reg - tipc: fix a missing check of genlmsg_put - net: marvell: fix a missing check of acpi_match_device - ocfs2: clear journal dirty flag after shutdown journal - vmscan: return NODE_RECLAIM_NOSCAN in node_reclaim() when CONFIG_NUMA is n - mm/page_alloc.c: free order-0 pages through PCP in page_frag_free() - mm/page_alloc.c: use a single function to free page - mm/page_alloc.c: deduplicate __memblock_free_early() and memblock_free() - netfilter: nf_tables: fix a missing check of nla_put_failure - xprtrdma: Prevent leak of rpcrdma_rep objects - infiniband/qedr: Potential null ptr dereference of qp - lib/genalloc.c: fix allocation of aligned buffer from non-aligned chunk - lib/genalloc.c: use vzalloc_node() to allocate the bitmap - drivers/base/platform.c: kmemleak ignore a known leak - lib/genalloc.c: include vmalloc.h - mtd: Check add_mtd_device() ret code - tipc: fix memory leak in tipc_nl_compat_publ_dump - net/core/neighbour: tell kmemleak about hash tables - [armhf,arm64] ata: ahci: mvebu: do Armada 38x configuration only on relevant SoCs - PCI/MSI: Return -ENOSPC from pci_alloc_irq_vectors_affinity() - net/core/neighbour: fix kmemleak minimal reference count for hash tables - serial: 8250: Fix serial8250 initialization crash - [armhf] gpu: ipu-v3: pre: don't trigger update if buffer address doesn't change - sfc: suppress duplicate nvmem partition types in efx_ef10_mtd_probe - ip_tunnel: Make none-tunnel-dst tunnel port work with lwtunnel - decnet: fix DN_IFREQ_SIZE - net/smc: prevent races between smc_lgr_terminate() and smc_conn_free() - net/smc: don't wait for send buffer space when data was already sent - mm/hotplug: invalid PFNs from pfn_to_online_page() - xfs: end sync buffer I/O properly on shutdown error - net/smc: fix sender_free computation - blktrace: Show requests without sector - net/smc: fix byte_order for rx_curs_confirmed - tipc: fix skb may be leaky in tipc_link_input - sfc: initialise found bitmap in efx_ef10_mtd_probe - geneve: change NET_UDP_TUNNEL dependency to select - net: fix possible overflow in __sk_mem_raise_allocated() - net: ip_gre: do not report erspan_ver for gre or gretap - net: ip6_gre: do not report erspan_ver for ip6gre or ip6gretap - sctp: don't compare hb_timer expire date before starting it - bpf: decrease usercnt if bpf_map_new_fd() fails in bpf_map_get_fd_by_id() - mmc: core: align max segment size with logical block size - net: dev: Use unsigned integer as an argument to left-shift - kvm: properly check debugfs dentry before using it - bpf: drop refcount if bpf_map_new_fd() fails in map_create() - [arm64] net: hns3: Change fw error code NOT_EXEC to NOT_SUPPORTED - [arm64] net: hns3: fix PFC not setting problem for DCB module - [arm64] net: hns3: fix an issue for hclgevf_ae_get_hdev - [arm64] net: hns3: fix an issue for hns3_update_new_int_gl - [x86] iommu/amd: Fix NULL dereference bug in match_hid_uid - apparmor: delete the dentry in aafs_remove() to avoid a leak - scsi: libsas: Support SATA PHY connection rate unmatch fixing during discovery - ACPI / APEI: Don't wait to serialise with oops messages when panic()ing - ACPI / APEI: Switch estatus pool to use vmalloc memory - [arm64] scsi: hisi_sas: shutdown axi bus to avoid exception CQ returned - scsi: libsas: Check SMP PHY control function result - [arm64] RDMA/hns: Fix the bug with updating rq head pointer when flush cqe - [arm64] RDMA/hns: Bugfix for the scene without receiver queue - [arm64] RDMA/hns: Fix the state of rereg mr - [arm64] RDMA/hns: Use GFP_ATOMIC in hns_roce_v2_modify_qp - ASoC: rt5645: Headphone Jack sense inverts on the LattePanda board - [ppc64el] pseries/dlpar: Fix a missing check in dlpar_parse_cc_property() (CVE-2019-12614) - xdp: fix cpumap redirect SKB creation bug - mtd: Remove a debug trace in mtdpart.c - [s390x] mm, gup: add missing refcount overflow checks on s390 - [armhf,arm64] usb: dwc2: use a longer core rest timeout in dwc2_core_reset() - staging: rtl8192e: fix potential use after free - staging: rtl8723bs: Drop ACPI device ids - staging: rtl8723bs: Add 024c:0525 to the list of SDIO device-ids - USB: serial: ftdi_sio: add device IDs for U-Blox C099-F9P - [x86] mei: bus: prefix device names on bus with the bus name - [x86] mei: me: add comet point V device id - thunderbolt: Power cycle the router if NVM authentication fails - xfrm: Fix memleak on xfrm state destroy - media: v4l2-ctrl: fix flags for DO_WHITE_BALANCE - [arm64] net: macb: fix error format in dev_err() - pwm: Clear chip_data in pwm_put() - macvlan: schedule bc_work even if error - net: psample: fix skb_over_panic - openvswitch: fix flow command message size - sctp: Fix memory leak in sctp_sf_do_5_2_4_dupcook - slip: Fix use-after-free Read in slip_open - openvswitch: drop unneeded BUG_ON() in ovs_flow_cmd_build_info() - openvswitch: remove another BUG_ON() - tipc: fix link name length check - sctp: cache netns in sctp_ep_common - net: sched: fix `tc -s class show` no bstats on class with nolock subqueues - [arm64] net: macb: add missed tasklet_kill - ext4: add more paranoia checking in ext4_expand_extra_isize handling (CVE-2019-19767) - [arm64] net: macb: Fix SUBNS increment and increase resolution - [arm64] net: macb driver, check for SKBTX_HW_TSTAMP - mtd: spi-nor: cast to u64 to avoid uint overflows - tcp: exit if nothing to retransmit on RTO timeout - HID: core: check whether Usage Page item is after Usage ID items - [x86] platform: hp-wmi: Fix ACPI errors caused by too small buffer - [x86] platform: hp-wmi: Fix ACPI errors caused by passing 0 as input size https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.89 - rsi: release skb if rsi_prepare_beacon fails (CVE-2019-19071) - [arm64] tegra: Fix 'active-low' warning for Jetson TX1 regulator - usb: gadget: u_serial: add missing port entry locking - [arm64] tty: serial: msm_serial: Fix flow control - [armhf,arm64] serial: pl011: Fix DMA ->flush_buffer() - serial: serial_core: Perform NULL checks for break_ctl ops - autofs: fix a leak in autofs_expire_indirect() - [arm64] RDMA/hns: Correct the value of HNS_ROCE_HEM_CHUNK_LEN - iwlwifi: pcie: don't consider IV len in A-MSDU - exportfs_decode_fh(): negative pinned may become positive without the parent locked - audit_get_nd(): don't unlock parent too early - xfrm: release device reference for invalid state - sched/core: Avoid spurious lock dependencies - perf/core: Consistently fail fork on allocation failures - ALSA: pcm: Fix stream lock usage in snd_pcm_period_elapsed() - [armhf,arm64] drm/sun4i: tcon: Set min division of TCON0_DCLK to 1. - rsxx: add missed destroy_workqueue calls in remove - i2c: core: fix use after free in of_i2c_notify - serial: core: Allow processing sysrq at port unlock time - cxgb4vf: fix memleak in mac_hlist initialization - iwlwifi: mvm: synchronize TID queue removal - iwlwifi: trans: Clear persistence bit when starting the FW - iwlwifi: mvm: Send non offchannel traffic via AP sta - [armhf] 8813/1: Make aligned 2-byte getuser()/putuser() atomic on ARMv6+ - audit: Embed key into chunk - netfilter: nf_tables: don't use position attribute on rule replacement - net/mlx5: Release resource on error flow - [arm64] clk: sunxi-ng: a64: Fix gate bit of DSI DPHY - ice: Fix NVM mask defines - dlm: fix possible call to kfree() for non-initialized pointer - [armhf] dts: exynos: Fix LDO13 min values on Odroid XU3/XU4/HC1 - [armhf,arm64] rtc: max77686: Fix the returned value in case of error in 'max77686_rtc_read_time()' - i40e: don't restart nway if autoneg not supported - virtchnl: Fix off by one error - [armhf] clk: rockchip: fix rk3188 sclk_smc gate data - [armhf] clk: rockchip: fix rk3188 sclk_mac_lbtest parameter ordering - [armhf] dts: rockchip: Fix rk3288-rock2 vcc_flash name - dlm: fix missing idr_destroy for recover_idr - [armhf,arm64] net: dsa: mv88e6xxx: Work around mv886e6161 SERDES missing MII_PHYSID2 - [s390x] scsi: zfcp: update kernel message for invalid FCP_CMND length, it's not the CDB - [s390x] scsi: zfcp: drop default switch case which might paper over missing case - [armhf] bus: ti-sysc: Fix getting optional clocks in clock_roles - [armhf] dts: imx6: RDU2: fix eGalax touchscreen node - crypto: ecc - check for invalid values in the key verification test - crypto: bcm - fix normal/non key hash algorithm failure - [arm64] dts: zynqmp: Fix node names which contain "_" - [arm64] pinctrl: qcom: ssbi-gpio: fix gpio-hog related boot issues - [arm*] firmware: raspberrypi: Fix firmware calls with large buffers - mm/vmstat.c: fix NUMA statistics updates - [arm64] clk: rockchip: fix I2S1 clock gate register for rk3328 - [arm64] clk: rockchip: fix ID of 8ch clock of I2S1 for rk3328 - sctp: count sk_wmem_alloc by skb truesize in sctp_packet_transmit - regulator: Fix return value of _set_load() stub - USB: serial: f81534: fix reading old/new IC config - xfs: extent shifting doesn't fully invalidate page cache - net-next/hinic:fix a bug in set mac address - net-next/hinic: fix a bug in rx data flow - ice: Fix return value from NAPI poll - ice: Fix possible NULL pointer de-reference - iomap: FUA is wrong for DIO O_DSYNC writes into unwritten extents - iomap: sub-block dio needs to zeroout beyond EOF - iomap: dio data corruption and spurious errors when pipes fill - iomap: readpages doesn't zero page tail beyond EOF - iw_cxgb4: only reconnect with MPAv1 if the peer aborts - [mips*/octeon] octeon-platform: fix typing - net/smc: use after free fix in smc_wr_tx_put_slot() - [armhf] dts: exynos: Use Samsung SoC specific compatible for DWC2 module - media: pulse8-cec: return 0 when invalidating the logical address - media: cec: report Vendor ID after initialization - iwlwifi: fix cfg structs for 22000 with different RF modules - net/ipv6: re-do dad when interface has IFF_NOARP flag change - [x86] dmaengine: dw-dmac: implement dma protection control setting - [armhf,arm64] usb: dwc3: debugfs: Properly print/set link state for HS - [armhf,arm64] usb: dwc3: don't log probe deferrals; but do log other error codes - ACPI: fix acpi_find_child_device() invocation in acpi_preset_companion() - f2fs: fix to account preflush command for noflush_merge mode - f2fs: fix count of seg_freed to make sec_freed correct - f2fs: change segment to section in f2fs_ioc_gc_range - [armhf] dts: rockchip: Fix the PMU interrupt number for rv1108 - [armhf] dts: rockchip: Assign the proper GPIO clocks for rv1108 - f2fs: fix to allow node segment for GC by ioctl path - nvme: Free ctrl device name on init failure - dma-mapping: fix return type of dma_set_max_seg_size() - [armhf] serial: imx: fix error handling in console_setup - [armhf] i2c: imx: don't print error message on probe defer - [arm64] clk: meson: Fix GXL HDMI PLL fractional bits width - [armhf,arm64] gpu: host1x: Fix syncpoint ID field size on Tegra186 - lockd: fix decoding of TEST results - sctp: increase sk_wmem_alloc when head->truesize is increased - [x86] iommu/amd: Fix line-break in error log reporting - [armhf] dts: sun8i: a23/a33: Fix OPP DTC warnings - [armhf] dts: sun8i: v3s: Change pinctrl nodes to avoid warning - nfsd: fix a warning in __cld_pipe_upcall() - bpf: btf: implement btf_name_valid_identifier() - bpf: btf: check name validity for various types - [armhf] OMAP1/2: fix SoC name printing - [arm64] dts: meson-gxl-libretech-cc: fix GPIO lines names - [arm64] dts: meson-gxbb-nanopi-k2: fix GPIO lines names - [arm64] dts: meson-gxbb-odroidc2: fix GPIO lines names - [arm64] dts: meson-gxl-khadas-vim: fix GPIO lines names - net/x25: fix called/calling length calculation in x25_parse_address_block - net/x25: fix null_x25_address handling - tcp: make tcp_space() aware of socket backlog - tcp: fix off-by-one bug on aborting window-probing socket - tcp: fix SNMP under-estimation on failed retransmission - tcp: fix SNMP TCP timeout under-estimation - kbuild: fix single target build for external module - mtd: fix mtd_oobavail() incoherent returned value - [arm64] clk: meson: meson8b: fix the offset of vid_pll_dco's N value - [armhf,arm64] clk: sunxi-ng: h3/h5: Fix CSI_MCLK parent - [arm64] clk: qcom: Fix MSM8998 resets - dlm: fix invalid cluster name warning - net/mlx4_core: Fix return codes of unsupported operations - pstore/ram: Avoid NULL deref in ftrace merging failure path - [mips*/octeon] cvmx_pko_mem_debug8: use oldest forward compatible definition - nfsd: Return EPERM, not EACCES, in some SETATTR cases - media: uvcvideo: Abstract streaming object lifetime - [armhf] dts: sun8i: h3: Fix the system-control register range - tty: Don't block on IO when ldisc change is pending - media: stkwebcam: Bugfix for wrong return values - sctp: frag_point sanity check - IB/hfi1: Ignore LNI errors before DC8051 transitions to Polling state - IB/hfi1: Close VNIC sdma_progress sleep window - mlx4: Use snprintf instead of complicated strcpy - [armhf] dts: sunxi: Fix PMU compatible strings - [armhf] dts: am335x-pdu001: Fix polarity of card detection input - net: aquantia: fix RSS table and key sizes - sched/fair: Scale bandwidth quota and period without losing quota/period ratio precision - fuse: verify nlink - fuse: verify attributes - [x86] ALSA: hda/realtek - Enable internal speaker of ASUS UX431FLC - [x86] ALSA: hda/realtek - Enable the headset-mic on a Xiaomi's laptop - [x86] ALSA: hda/realtek - Dell headphone has noise on unmute for ALC236 - ALSA: pcm: oss: Avoid potential buffer overflows - [x86] ALSA: hda - Add mute led support for HP ProBook 645 G4 - [x86] Input: synaptics - switch another X1 Carbon 6 to RMI/SMbus - [x86] Input: synaptics-rmi4 - re-enable IRQs in f34v7_do_reflash - [x86] Input: synaptics-rmi4 - don't increment rmiaddr for SMBus transfers - [x86] Input: goodix - add upside-down quirk for Teclast X89 tablet - Input: Fix memory leak in psxpad_spi_probe - [i386] mm: Sync only to VMALLOC_END in vmalloc_sync_all() - [x86] PCI: Avoid AMD FCH XHCI USB PME# from D0 defect - xfrm interface: fix memory leak on creation - xfrm interface: avoid corruption on changelink - xfrm interface: fix list corruption for x-netns - xfrm interface: fix management of phydev - CIFS: Fix NULL-pointer dereference in smb2_push_mandatory_locks - CIFS: Fix SMB2 oplock break processing - tty: vt: keyboard: reject invalid keycodes - can: slcan: Fix use-after-free Read in slcan_open - kernfs: fix ino wrap-around detection - jbd2: Fix possible overflow in jbd2_log_space_left() - [arm64] drm/msm: fix memleak on release - [i386] drm/i810: Prevent underflow in ioctl - [armhf,arm64] KVM: vgic: Don't rely on the wrong pending table - [x86] KVM: do not modify masked bits of shared MSRs - [x86] KVM: fix presentation of TSX feature in ARCH_CAPABILITIES - [x86] KVM: Grab KVM's srcu lock when setting nested state - crypto: af_alg - cast ki_complete ternary op to int - [x86] crypto: ccp - fix uninitialized list head - crypto: ecdh - fix big endian bug in ECC library - crypto: user - fix memory leak in crypto_report (CVE-2019-19062) - mwifiex: update set_mac_address logic - can: ucan: fix non-atomic allocation in completion handler - RDMA/qib: Validate ->show()/store() callbacks before calling them - iomap: Fix pipe page leakage during splicing - thermal: Fix deadlock in thermal thermal_zone_device_check - vcs: prevent write access to vcsu devices (CVE-2019-19252) - binder: Fix race between mmap() and binder_alloc_print_pages() - binder: Handle start==NULL in binder_update_page_range() - ALSA: hda - Fix pending unsol events at shutdown - perf script: Fix invalid LBR/binary mismatch error - splice: don't read more than available pipe space - iomap: partially revert 4721a601099 (simulated directio short read on EFAULT) - xfs: add missing error check in xfs_prepare_shift() - ASoC: rsnd: fixup MIX kctrl registration - [x86] KVM: fix out-of-bounds write in KVM_GET_EMULATED_CPUID (CVE-2019-19332) - net: qrtr: fix memort leak in qrtr_tun_write_iter (CVE-2019-19079) - appletalk: Fix potential NULL pointer dereference in unregister_snap_client (CVE-2019-19227) - appletalk: Set error code if register_snap_client failed https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.90 - usb: gadget: configfs: Fix missing spin_lock_init() - [x86] usb: gadget: pch_udc: fix use after free - scsi: qla2xxx: Fix driver unload hang - [arm64] media: venus: remove invalid compat_ioctl32 handler - USB: uas: honor flag to avoid CAPACITY16 - USB: uas: heed CAPACITY_HEURISTICS - usb: Allow USB device to be warm reset in suspended state - staging: rtl8188eu: fix interface sanity check - staging: rtl8712: fix interface sanity check - staging: gigaset: fix general protection fault on probe - staging: gigaset: fix illegal free on probe errors - staging: gigaset: add endpoint-type sanity check - usb: xhci: only set D3hot for pci device - xhci: Fix memory leak in xhci_add_in_port() - xhci: Increase STS_HALT timeout in xhci_suspend() - xhci: handle some XHCI_TRUST_TX_LENGTH quirks cases as default behaviour. - [armhf] dts: pandora-common: define wl1251 as child node of mmc3 - [x86] iio: imu: inv_mpu6050: fix temperature reporting using bad unit - USB: atm: ueagle-atm: add missing endpoint check - USB: idmouse: fix interface sanity checks - USB: serial: io_edgeport: fix epic endpoint lookup - usb: roles: fix a potential use after free - USB: adutux: fix interface sanity check - usb: core: urb: fix URB structure initialization function - usb: mon: Fix a deadlock in usbmon between mmap and read - tpm: add check after commands attribs tab allocation - virtio-balloon: fix managed page counts when migrating pages between zones - [armhf,arm64] usb: dwc3: gadget: Fix logical condition - [armhf,arm64] usb: dwc3: ep0: Clear started flag on completion - btrfs: check page->mapping when loading free space cache - btrfs: use refcount_inc_not_zero in kill_all_nodes - Btrfs: fix metadata space leak on fixup worker failure to set range as delalloc - Btrfs: fix negative subv_writers counter and data space leak after buffered write - btrfs: Avoid getting stuck during cyclic writebacks - btrfs: Remove btrfs_bio::flags member - Btrfs: send, skip backreference walking for extents with many references - btrfs: record all roots for rename exchange on a subvol - rtlwifi: rtl8192de: Fix missing code to retrieve RX buffer address - rtlwifi: rtl8192de: Fix missing callback that tests for hw release of buffer - rtlwifi: rtl8192de: Fix missing enable interrupt flag - ovl: fix corner case of non-unique st_dev;st_ino - ovl: relax WARN_ON() on rename to self - [armhf] hwrng: omap - Fix RNG wait loop timeout - dm writecache: handle REQ_FUA - dm zoned: reduce overhead of backing device checks - workqueue: Fix spurious sanity check failures in destroy_workqueue() - workqueue: Fix pwq ref leak in rescuer_thread() - ASoC: rt5645: Fixed buddy jack support. - ASoC: rt5645: Fixed typo for buddy jack support. - ASoC: Jack: Fix NULL pointer dereference in snd_soc_jack_report - md: improve handling of bio with REQ_PREFLUSH in md_flush_request() - blk-mq: avoid sysfs buffer overflow with too many CPU cores - cgroup: pids: use atomic64_t for pids->limit - ar5523: check NULL before memcpy() in ar5523_cmd() - [s390x] mm: properly clear _PAGE_NOEXEC bit when it is not supported - media: cec.h: CEC_OP_REC_FLAG_ values were swapped - cpuidle: Do not unset the driver if it is there already - erofs: zero out when listxattr is called with no xattr - [x86] intel_th: Fix a double put_device() in error path - [x86] intel_th: pci: Add Ice Lake CPU support - [x86] intel_th: pci: Add Tiger Lake CPU support - PM / devfreq: Lock devfreq in trans_stat_show - [ppc64el] cpufreq: powernv: fix stack bloat and hard limit on number of CPUs - ACPI / hotplug / PCI: Allocate resources directly under the non-hotplug bridge - ACPI: OSL: only free map once in osl.c - ACPI: bus: Fix NULL pointer check in acpi_bus_get_private_data() - ACPI: PM: Avoid attaching ACPI PM domain to certain devices - [arm64] pinctrl: armada-37xx: Fix irq mask access in armada_37xx_irq_set_type() - [armhf] pinctrl: samsung: Add of_node_put() before return in error path - [armhf] pinctrl: samsung: Fix device node refcount leaks in Exynos wakeup controller init - [armhf] pinctrl: samsung: Fix device node refcount leaks in init code - [armhf] mmc: host: omap_hsmmc: add code for special init of wl1251 to get rid of pandora_wl1251_init_card - [armhf] dts: omap3-tao3530: Fix incorrect MMC card detection GPIO polarity - ppdev: fix PPGETTIME/PPSETTIME ioctls - [ppc64el] Allow 64bit VDSO __kernel_sync_dicache to work across ranges >4GB - [ppc64el] xive: Prevent page fault issues in the machine crash handler - [ppc64el] Allow flush_icache_range to work across ranges >4GB - [ppc64el] xive: Skip ioremap() of ESB pages for LSI interrupts - video/hdmi: Fix AVI bar unpack - quota: Check that quota is not dirty before release - ext2: check err when partial != NULL - quota: fix livelock in dquot_writeback_dquots - ext4: Fix credit estimate for final inode freeing - reiserfs: fix extended attributes on the root directory - block: fix single range discard merge - [s390x] scsi: zfcp: trace channel log even for FCP command responses - scsi: qla2xxx: Fix DMA unmap leak - scsi: qla2xxx: Fix hang in fcport delete path - scsi: qla2xxx: Fix session lookup in qlt_abort_work() - scsi: qla2xxx: Fix qla24xx_process_bidir_cmd() - scsi: qla2xxx: Always check the qla2x00_wait_for_hba_online() return value - scsi: qla2xxx: Fix message indicating vectors used by driver - scsi: qla2xxx: Fix SRB leak on switch command timeout - xhci: make sure interrupts are restored to correct state - usb: typec: fix use after free in typec_register_port() - [armhf] omap: pdata-quirks: remove openpandora quirks for mmc3 and wl1251 - scsi: lpfc: Cap NPIV vports to 256 - scsi: lpfc: Correct code setting non existent bits in sli4 ABORT WQE - scsi: lpfc: Correct topology type reporting on G7 adapters - sch_cake: Correctly update parent qlen when splitting GSO packets - net/smc: do not wait under send_lock - [arm64] net: hns3: clear pci private data when unload hns3 driver - [arm64] net: hns3: change hnae3_register_ae_dev() to int - [arm64] net: hns3: Check variable is valid before assigning it to another - [arm64] scsi: hisi_sas: send primitive NOTIFY to SSP situation only - [arm64] scsi: hisi_sas: Reject setting programmed minimum linkrate > 1.5G - [x86] MCE/AMD: Turn off MC4_MISC thresholding on all family 0x15 models - [x86] MCE/AMD: Carve out the MC4_MISC thresholding quirk - ath10k: fix fw crash by moving chip reset after napi disabled - [ppc64el] Fix vDSO clock_getres() - ext4: work around deleting a file with i_nlink == 0 safely (CVE-2019-19447) - mm/shmem.c: cast the type of unmap_start to u64 - rtc: disable uie before setting time and enable after - splice: only read in as much information as there is pipe buffer space - ext4: fix a bug in ext4_wait_for_tail_page_commit - [armhf,arm64] mfd: rk808: Fix RK818 ID template - mm, thp, proc: report THP eligibility for each vma - [s390x] smp,vdso: fix ASCE handling - blk-mq: make sure that line break can be printed - workqueue: Fix missing kfree(rescuer) in destroy_workqueue() - perf callchain: Fix segfault in thread__resolve_callchain_sample() - gre: refetch erspan header from skb->data after pskb_may_pull() - sunrpc: fix crash when cache_head become valid before update - net/mlx5e: Fix SFF 8472 eeprom length - leds: trigger: netdev: fix handling on interface rename - gfs2: fix glock reference problem in gfs2_trans_remove_revoke - of: overlay: add_changeset_property() memory leak - kernel/module.c: wakeup processes in module_wq on module unload - cifs: Fix potential softlockups while refreshing DFS cache - [x86] gpiolib: acpi: Add Terra Pad 1061 to the run_edge_events_on_boot_blacklist - raid5: need to set STRIPE_HANDLE for batch head - scsi: qla2xxx: Change discovery state before PLOGI - [x86] iio: imu: mpu6050: add missing available scan masks - idr: Fix idr_get_next_ul race with idr_remove - of: unittest: fix memory leak in attach_node_and_children https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.91 - inet: protect against too small mtu values. - mqprio: Fix out-of-bounds access in mqprio_dump - net: bridge: deny dev_set_mac_address() when unregistering - net: dsa: fix flow dissection on Tx path - net: ethernet: ti: cpsw: fix extra rx interrupt - net: sched: fix dump qlen for sch_mq/sch_mqprio with NOLOCK subqueues - [arm64] net: thunderx: start phy before starting autonegotiation - openvswitch: support asymmetric conntrack - tcp: md5: fix potential overestimation of TCP option space - tipc: fix ordering of tipc module init and exit routine - net/mlx5e: Query global pause state before setting prio2buffer - tcp: fix rejected syncookies due to stale timestamps - tcp: tighten acceptance of ACKs not matching a child socket - tcp: Protect accesses to .ts_recent_stamp with {READ,WRITE}_ONCE() - [arm64] Revert "arm64: preempt: Fix big-endian when checking preempt count in assembly" - mmc: block: Make card_busy_detect() a bit more generic - mmc: block: Add CMD13 polling for MMC IOCTLS with R1B response - PCI/PM: Always return devices to D0 when thawing - PCI: pciehp: Avoid returning prematurely from sysfs requests - [x86] PCI: Fix Intel ACS quirk UPDCR register address - PCI/MSI: Fix incorrect MSI-X masking on resume - [arm64] PCI: Apply Cavium ACS quirk to ThunderX2 and ThunderX3 - [arm64] rpmsg: glink: Set tail pointer to 0 at end of FIFO - [arm64] rpmsg: glink: Fix reuse intents memory leak issue - [arm64] rpmsg: glink: Fix use after free in open_ack TIMEOUT case - [arm64] rpmsg: glink: Put an extra reference during cleanup - [arm64] rpmsg: glink: Fix rpmsg_register_device err handling - [arm64] rpmsg: glink: Don't send pending rx_done during remove - [arm64] rpmsg: glink: Free pending deferred work on remove - cifs: smbd: Return -EAGAIN when transport is reconnecting - cifs: smbd: Add messages on RDMA session destroy and reconnection - cifs: smbd: Return -EINVAL when the number of iovs exceeds SMBDIRECT_MAX_SGE - cifs: Don't display RDMA transport on reconnect - CIFS: Respect O_SYNC and O_DIRECT flags during reconnect - CIFS: Close open handle after interrupted close - [armhf] tegra: Fix FLOW_CTLR_HALT register clobbering by tegra_resume() - vfio/pci: call irq_bypass_unregister_producer() before freeing irq - dma-buf: Fix memory leak in sync_file_merge() - [arm64] drm: meson: venc: cvbs: fix CVBS mode matching - dm mpath: remove harmful bio-based optimization - dm btree: increase rebalance threshold in __rebalance2() - scsi: iscsi: Fix a potential deadlock in the timeout handler - scsi: qla2xxx: Change discovery state before PLOGI - drm/radeon: fix r1xx/r2xx register checker for POT textures - xhci: fix USB3 device initiated resume race with roothub autosuspend https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.92 - af_packet: set defaule value for tmo - [amd64] fjes: fix missed check in fjes_acpi_add - [arm64] net: hisilicon: Fix a BUG trigered by wrong bytes_compl - net: qlogic: Fix error paths in ql_alloc_large_buffers() - net: usb: lan78xx: Fix suspend/resume PHY register access error - qede: Disable hardware gro when xdp prog is installed - qede: Fix multicast mac configuration - sctp: fully initialize v4 addr in some functions - btrfs: don't double lock the subvol_sem for rename exchange - btrfs: do not call synchronize_srcu() in inode_tree_del - Btrfs: fix missing data checksums after replaying a log tree - btrfs: send: remove WARN_ON for readonly mount - btrfs: abort transaction after failed inode updates in create_subvol - btrfs: skip log replay on orphaned roots - btrfs: do not leak reloc root if we fail to read the fs root - btrfs: handle ENOENT in btrfs_uuid_tree_iterate - Btrfs: fix removal logic of the tree mod log that leads to use-after-free issues - ALSA: pcm: Avoid possible info leaks from PCM stream buffers - ALSA: hda/ca0132 - Keep power on during processing DSP response - ALSA: hda/ca0132 - Avoid endless loop - ALSA: hda/ca0132 - Fix work handling in delayed HP detection - [arm64,armhf] drm/panel: Add missing drm_panel_init() in panel drivers - drm/amdgpu: grab the id mgr lock while accessing passid_mapping - spi: Add call to spi_slave_abort() function when spidev driver is released - [x86] staging: rtl8192u: fix multiple memory leaks on error path - staging: rtl8188eu: fix possible null dereference - rtlwifi: prevent memory leak in rtl_usb_probe (CVE-2019-19063) - libertas: fix a potential NULL pointer dereference - ath10k: fix backtrace on coredump - IB/iser: bound protection_sg size by data_sg size - [arm64] media: venus: core: Fix msm8996 frequency table - ath10k: fix offchannel tx failure when no ath10k_mac_tx_frm_has_freq - pinctrl: devicetree: Avoid taking direct reference to device name string - [amd64] drm/amdkfd: fix a potential NULL pointer dereference - [arm64] media: venus: Fix occasionally failures to suspend - [armhf] hwrng: omap3-rom - Call clk_disable_unprepare() on exit only if not idled - media: flexcop-usb: fix NULL-ptr deref in flexcop_usb_transfer_init() - [arm64,armhf] drm/bridge: dw-hdmi: Refuse DDC/CI transfers on the internal I2C controller - block: Fix writeback throttling W=1 compiler warnings - mwifiex: pcie: Fix memory leak in mwifiex_pcie_init_evt_ring (CVE-2019-19057) - drm/drm_vblank: Change EINVAL by the correct errno - media: cx88: Fix some error handling path in 'cx8800_initdev()' - [armhf] media: ti-vpe: vpe: Fix Motion Vector vpdma stride - [armhf] media: ti-vpe: vpe: fix a v4l2-compliance warning about invalid pixel format - [armhf] media: ti-vpe: vpe: fix a v4l2-compliance failure about frame sequence number - [armhf] media: ti-vpe: vpe: Make sure YUYV is set as default format - [armhf] media: ti-vpe: vpe: fix a v4l2-compliance failure causing a kernel panic - [armhf] media: ti-vpe: vpe: ensure buffers are cleaned up properly in abort cases - [armhf] media: ti-vpe: vpe: fix a v4l2-compliance failure about invalid sizeimage - [x86] syscalls/x86: Use the correct function type in SYSCALL_DEFINE0 - [x86] mm: Use the correct function type for native_set_fixmap() - ath10k: Correct error handling of dma_map_single() - [arm64,armhf] drm/bridge: dw-hdmi: Restore audio when setting a mode - perf report: Add warning when libunwind not compiled in - usb: usbfs: Suppress problematic bind and unbind uevents. - Bluetooth: missed cpu_to_le16 conversion in hci_init4_req - Bluetooth: Workaround directed advertising bug in Broadcom controllers - Bluetooth: hci_core: fix init for HCI_USER_CHANNEL - [x86] mce: Lower throttling MCE messages' priority to warning - [x86] drm/gma500: fix memory disclosures due to uninitialized bytes - rtl8xxxu: fix RTL8723BU connection failure issue after warm reboot - ipmi: Don't allow device module unload when in use - [x86] ioapic: Prevent inconsistent state when moving an interrupt - md/bitmap: avoid race window between md_bitmap_resize and bitmap_file_clear_bit - [arm64] psci: Reduce the waiting time for cpu_psci_cpu_kill() - i40e: initialize ITRN registers with correct values - net: phy: dp83867: enable robust auto-mdix - [arm64,armhf] drm/tegra: sor: Use correct SOR index on Tegra210 - ACPI: button: Add DMI quirk for Medion Akoya E2215T - RDMA/qedr: Fix memory leak in user qp and mr - [arm64,armhf] gpu: host1x: Allocate gather copy for host1x - [arm64,armhf] net: dsa: LAN9303: select REGMAP when LAN9303 enable - [arm64] phy: qcom-usb-hs: Fix extcon double register after power cycle - [s390x] time: ensure get_clock_monotonic() returns monotonic values - [s390x] mm: add mm_pxd_folded() checks to pxd_free() - [arm64] net: hns3: add struct netdev_queue debug info for TX timeout - libata: Ensure ata_port probe has completed before detach - loop: fix no-unmap write-zeroes request behavior - Bluetooth: Fix advertising duplicated flags - pinctrl: amd: fix __iomem annotation in amd_gpio_irq_handler() - ixgbe: protect TX timestamping from API misuse - media: rcar_drif: fix a memory disclosure (CVE-2019-18786) - media: v4l2-core: fix touch support in v4l_g_fmt - rfkill: allocate static minor - bnx2x: Fix PF-VF communication over multi-cos queues. - ALSA: timer: Limit max amount of slave instances - rtlwifi: fix memory leak in rtl92c_set_fw_rsvdpagepkt() - perf probe: Fix to find range-only function instance - perf probe: Fix to list probe event with correct line number - perf jevents: Fix resource leak in process_mapfile() and main() - perf probe: Walk function lines in lexical blocks - perf probe: Fix to probe an inline function which has no entry pc - perf probe: Fix to show ranges of variables in functions without entry_pc - perf probe: Fix to show inlined function callsite without entry_pc - perf probe: Fix to probe a function which has no entry pc - perf tools: Splice events onto evlist even on error - perf parse: If pmu configuration fails free terms - perf probe: Skip overlapped location on searching variables - perf probe: Return a better scope DIE if there is no best scope - perf probe: Fix to show calling lines of inlined functions - perf probe: Skip end-of-sequence and non statement lines - perf probe: Filter out instances except for inlined subroutine and subprogram - ath10k: fix get invalid tx rate for Mesh metric - media: pvrusb2: Fix oops on tear-down when radio support is not present - ice: delay less - [amd64] spi: pxa2xx: Add missed security checks - ASoC: rt5677: Mark reg RT5677_PWR_ANLG2 as volatile - iio: dac: ad5446: Add support for new AD5600 DAC - [x86] ASoC: Intel: kbl_rt5663_rt5514_max98927: Add dmic format constraint - [s390x] disassembler: don't hide instruction addresses - nvme: Discard workaround for non-conformant devices - parport: load lowlevel driver if ports not found - bcache: fix static checker warning in bcache_device_free() - cpufreq: Register drivers only after CPU devices have been registered - tracing: use kvcalloc for tgid_map array allocation - tracing/kprobe: Check whether the non-suffixed symbol is notrace - bcache: fix deadlock in bcache_allocator - iwlwifi: mvm: fix unaligned read of rx_pkt_status - [arm64] spi: tegra20-slink: add missed clk_unprepare - tun: fix data-race in gro_normal_list() - crypto: virtio - deal with unsupported input sizes - btrfs: don't prematurely free work in end_workqueue_fn() - btrfs: don't prematurely free work in run_ordered_work() - [x86] ASoC: Intel: bytcr_rt5640: Update quirk for Acer Switch 10 SW5-012 2-in-1 - [x86] insn: Add some Intel instructions to the opcode map - brcmfmac: remove monitor interface when detaching - iwlwifi: check kasprintf() return value - [armhf] net: ethernet: ti: ale: clean ale tbl on init and intf restart - [armhf] crypto: sun4i-ss - Fix 64-bit size_t warnings - [armhf] crypto: sun4i-ss - Fix 64-bit size_t warnings on sun4i-ss-hash.c - mac80211: consider QoS Null frames for STA_NULLFUNC_ACKED - net: phy: initialise phydev speed and duplex sanely - btrfs: don't prematurely free work in reada_start_machine_worker() - btrfs: don't prematurely free work in scrub_missing_raid56_worker() - Revert "mmc: sdhci: Fix incorrect switch to HS mode" - can: kvaser_usb: kvaser_usb_leaf: Fix some info-leaks to USB devices (CVE-2019-19947) - usb: xhci: Fix build warning seen with CONFIG_PM=n - [s390x] ftrace: fix endless recursion in function_graph tracer - btrfs: return error pointer from alloc_test_extent_buffer - usbip: Fix receive error in vhci-hcd when using scatter-gather - usbip: Fix error path of vhci_recv_ret_submit() - cpufreq: Avoid leaving stale IRQ work items during CPU offline - [x86] intel_th: pci: Add Comet Lake PCH-V support - [x86] intel_th: pci: Add Elkhart Lake SOC support - [x86] platform/x86: hp-wmi: Make buffer for HPWMI_FEATURE2_QUERY 128 bytes - [x86] staging: comedi: gsc_hpdi: check dma_alloc_coherent() return value - ext4: fix ext4_empty_dir() for directories with holes (CVE-2019-19037) - ext4: check for directory entries too close to block end - ext4: unlock on error in ext4_expand_extra_isize() - [arm64] KVM: Ensure 'params' is initialised when looking up sys register - [x86] MCE/AMD: Do not use rdmsr_safe_on_cpu() in smca_configure() - [x86] MCE/AMD: Allow Reserved types to be overwritten in smca_banks[] - [powerpc*] irq: fix stack overflow verification - [arm64] mmc: sdhci-msm: Correct the offset and value for DDR_CONFIG register - mmc: sdhci: Update the tuning failed messages to pr_debug level - mmc: sdhci: Workaround broken command queuing on Intel GLK - mmc: sdhci: Add a quirk for broken command queuing - nbd: fix shutdown and recv work deadlock - perf probe: Fix to show function entry line as probe-able https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.93 - scsi: lpfc: Fix discovery failures when target device connectivity bounces - scsi: mpt3sas: Fix clear pending bit in ioctl status - scsi: lpfc: Fix locking on mailbox command completion - Input: atmel_mxt_ts - disable IRQ across suspend - f2fs: fix to update time in lazytime mode - [arm64,armhf] iommu: rockchip: Free domain on .domain_free - [arm64,armhf] iommu/tegra-smmu: Fix page tables in > 4 GiB memory - scsi: target: compare full CHAP_A Algorithm strings - scsi: lpfc: Fix SLI3 hba in loop mode not discovering devices - scsi: csiostor: Don't enable IRQs too early - [arm64] scsi: hisi_sas: Replace in_softirq() check in hisi_sas_task_exec() - [ppc64el] pseries: Mark accumulate_stolen_time() as notrace - [ppc64el] pseries: Don't fail hash page table insert for bolted mapping - clocksource/drivers/timer-of: Use unique device name instead of timer - [ppc64el] security/book3s64: Report L1TF status in sysfs - [ppc64el] book3s64/hash: Add cond_resched to avoid soft lockup warning - ext4: update direct I/O read lock pattern for IOCB_NOWAIT - ext4: iomap that extends beyond EOF should be marked dirty - jbd2: Fix statistics for the number of logged blocks - scsi: tracing: Fix handling of TRANSFER LENGTH == 0 for READ(6) and WRITE(6) - scsi: lpfc: Fix duplicate unreg_rpi error in port offline flow - f2fs: fix to update dir's i_pino during cross_rename - [arm64] clk: qcom: Allow constant ratio freq tables for rcg - clk: clk-gpio: propagate rate change to parent - fs/quota: handle overflows of sysctl fs.quota.* and report as unsigned long - scsi: lpfc: fix: Coverity: lpfc_cmpl_els_rsp(): Null pointer dereferences - [ppc64el] PCI: rpaphp: Fix up pointer to first drc-info entry - scsi: ufs: fix potential bug which ends in system hang - [ppc64el] PCI: rpaphp: Don't rely on firmware feature to imply drc-info support - [ppc64el] PCI: rpaphp: Annotate and correctly byte swap DRC properties - [ppc64el] PCI: rpaphp: Correctly match ibm, my-drc-index to drc-name when using drc-info - [ppc64el] powerpc/security: Fix wrong message when RFI Flush is disable - bcache: at least try to shrink 1 node in bch_mca_scan() - HID: quirks: Add quirk for HP MSU1465 PIXART OEM mouse - HID: logitech-hidpp: Silence intermittent get_battery_capacity errors - [armhf] 8937/1: spectre-v2: remove Brahma-B53 from hardening - libnvdimm/btt: fix variable 'rc' set but not used - HID: Improve Windows Precision Touchpad detection. - HID: rmi: Check that the RMI_STARTED bit is set before unregistering the RMI transport device - watchdog: Fix the race between the release of watchdog_core_data and cdev - scsi: pm80xx: Fix for SATA device discovery - scsi: ufs: Fix error handing during hibern8 enter - scsi: scsi_debug: num_tgts must be >= 0 - scsi: iscsi: Don't send data to unbound connection - scsi: target: iscsi: Wait for all commands to finish before freeing a session - apparmor: fix unsigned len comparison with less than zero - scripts/kallsyms: fix definitely-lost memory leak - cdrom: respect device capabilities during opening action - perf script: Fix brstackinsn for AUXTRACE - perf regs: Make perf_reg_name() return "unknown" instead of NULL - [s390x] zcrypt: handle new reply code FILTERED_BY_HYPERVISOR - [s390x] cpum_sf: Check for SDBT and SDB consistency - ocfs2: fix passing zero to 'PTR_ERR' warning - kernel: sysctl: make drop_caches write-only - userfaultfd: require CAP_SYS_PTRACE for UFFD_FEATURE_EVENT_FORK - [x86] mce: Fix possibly incorrect severity calculation on AMD - net, sysctl: Fix compiler warning when only cBPF is present - netfilter: nf_queue: enqueue skbs with NULL dst - ALSA: hda - Downgrade error message for single-cmd fallback - bonding: fix active-backup transition after link failure - perf strbuf: Remove redundant va_end() in strbuf_addv() - Make filldir[64]() verify the directory entry filename is valid (CVE-2019-10220) - filldir[64]: remove WARN_ON_ONCE() for bad directory entries (CVE-2019-10220) - netfilter: ebtables: compat: reject all padding in matches/watchers - 6pack,mkiss: fix possible deadlock - netfilter: bridge: make sure to pull arp header in br_nf_forward_arp() - inetpeer: fix data-race in inet_putpeer / inet_putpeer - net: add a READ_ONCE() in skb_peek_tail() - net: icmp: fix data-race in cmp_global_allow() - hrtimer: Annotate lockless access to timer->state - net: ena: fix napi handler misbehavior when the napi budget is zero - net/mlxfw: Fix out-of-memory error in mfa2 flash burning - [arm64,armhf] net: stmmac: dwmac-meson8b: Fix the RGMII TX delay on Meson8b/8m2 SoCs - ptp: fix the race between the release of ptp_clock and cdev - tcp: Fix highest_sack and highest_sack_seq - udp: fix integer overflow while computing available space in sk_rcvbuf - vhost/vsock: accept only packets with the right dst_cid - net: add bool confirm_neigh parameter for dst_ops.update_pmtu - ip6_gre: do not confirm neighbor when do pmtu update - gtp: do not confirm neighbor when do pmtu update - net/dst: add new function skb_dst_update_pmtu_no_confirm - tunnel: do not confirm neighbor when do pmtu update - vti: do not confirm neighbor when do pmtu update - sit: do not confirm neighbor when do pmtu update - net/dst: do not confirm neighbor for vxlan and geneve pmtu update - gtp: do not allow adding duplicate tid and ms_addr pdp context - [arm64,armhf] net: marvell: mvpp2: phylink requires the link interrupt - tcp/dccp: fix possible race __inet_lookup_established() - tcp: do not send empty skb from tcp_write_xmit() - gtp: fix wrong condition in gtp_genl_dump_pdp() - gtp: fix an use-after-free in ipv4_pdp_find() - gtp: avoid zero size hashtable - [arm64,armhf] pinctrl: baytrail: Really serialize all register accesses https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.94 - nvme_fc: add module to ops template to allow module references - nvme-fc: fix double-free scenarios on hw queues - drm/amdgpu: add check before enabling/disabling broadcast mode - drm/amdgpu: add cache flush workaround to gfx8 emit_fence - PM / devfreq: Fix devfreq_notifier_call returning errno - PM / devfreq: Set scaling_max_freq to max on OPP notifier error - PM / devfreq: Don't fail devfreq_dev_release if not in list - afs: Fix afs_find_server lookups for ipv4 peers - afs: Fix SELinux setting security label on /afs - RDMA/cma: add missed unregister_pernet_subsys in init failure - rxe: correctly calculate iCRC for unaligned payloads - scsi: lpfc: Fix memory leak on lpfc_bsg_write_ebuf_set func - scsi: qla2xxx: Drop superfluous INIT_WORK of del_work - scsi: qla2xxx: Don't call qlt_async_event twice - scsi: qla2xxx: Fix PLOGI payload and ELS IOCB dump length - scsi: qla2xxx: Configure local loop for N2N target - scsi: qla2xxx: Send Notify ACK after N2N PLOGI - scsi: qla2xxx: Ignore PORT UPDATE after N2N PLOGI - scsi: iscsi: qla4xxx: fix double free in probe - scsi: libsas: stop discovering if oob mode is disconnected (CVE-2019-19965) - drm/nouveau: Move the declaration of struct nouveau_conn_atom up a bit - usb: gadget: fix wrong endpoint desc - net: make socket read/write_iter() honor IOCB_NOWAIT - afs: Fix creation calls in the dynamic root to fail with EOPNOTSUPP - md: raid1: check rdev before reference in raid1_sync_request func - [s390x] cpum_sf: Adjust sampling interval to avoid hitting sample limits - [s390x] cpum_sf: Avoid SBD overflow condition in irq handler - IB/mlx4: Follow mirror sequence of device add during device removal - IB/mlx5: Fix steering rule of drop and count - xen-blkback: prevent premature module unload - xen/balloon: fix ballooned page accounting without hotplug enabled - PM / hibernate: memory_bm_find_bit(): Tighten node optimisation - ALSA: hda/realtek - Add Bass Speaker and fixed dac for bass speaker - ALSA: hda/realtek - Enable the bass speaker of ASUS UX431FLC - ALSA: hda - fixup for the bass speaker on Lenovo Carbon X1 7th gen - xfs: fix mount failure crash on invalid iclog memory access - taskstats: fix data-race - drm: limit to INT_MAX in create_blob ioctl - netfilter: nft_tproxy: Fix port selector on Big Endian - ALSA: ice1724: Fix sleep-in-atomic in Infrasonic Quartet support code - ALSA: usb-audio: fix set_format altsetting sanity check - ALSA: usb-audio: set the interface format after resume on Dell WD19 - ALSA: hda/realtek - Add headset Mic no shutup for ALC283 - [arm64,armhf] drm/sun4i: hdmi: Remove duplicate cleanup calls - [mips*] Avoid VDSO ABI breakage due to global register variable - media: pulse8-cec: fix lost cec_transmit_attempt_done() call - media: cec: CEC 2.0-only bcast messages were ignored - media: cec: avoid decrementing transmit_queue_sz if it is 0 - media: cec: check 'transmit_in_progress', not 'transmitting' - mm/zsmalloc.c: fix the migrated zspage statistics. - memcg: account security cred as well to kmemcg - mm: move_pages: return valid node id in status if the page is already on the target node - [x86,arm64] pstore/ram: Write new dumps to start of recycled zones - locks: print unsigned ino in /proc/locks - compat_ioctl: block: handle Persistent Reservations - compat_ioctl: block: handle BLKREPORTZONE/BLKRESETZONE - ata: libahci_platform: Export again ahci_platform_able_phys() - libata: Fix retrieving of active qcs - gpiolib: fix up emulated open drain outputs - tracing: Fix lock inversion in trace_event_enable_tgid_record() - tracing: Avoid memory leak in process_system_preds() - tracing: Have the histogram compare functions convert to u64 first - tracing: Fix endianness bug in histogram trigger - apparmor: fix aa_xattrs_match() may sleep while holding a RCU lock - [i386] ALSA: cs4236: fix error return comparison of an unsigned integer - ALSA: firewire-motu: Correct a typo in the clock proc string - exit: panic before exit_mm() on global init exit - [arm64] Revert support for execute-only user mappings - ftrace: Avoid potential division by zero in function profiler - [arm64] drm/msm: include linux/sched/task.h - PM / devfreq: Check NULL governor in available_governors_show - nfsd4: fix up replay_matches_cache() - [x86,arm64] HID: i2c-hid: Reset ALPS touchpads on resume - ACPI: sysfs: Change ACPI_MASKABLE_GPE_MAX to 0x100 - xfs: don't check for AG deadlock for realtime files in bunmapi - [x86] platform/x86: pmc_atom: Add Siemens CONNECT X300 to critclk_systems DMI table - Bluetooth: btusb: fix PM leak in error case of setup - Bluetooth: delete a stray unlock - Bluetooth: Fix memory leak in hci_connect_le_scan - media: flexcop-usb: ensure -EIO is returned on error condition - media: usb: fix memory leak in af9005_identify_state (CVE-2019-18809) - [arm64] dts: meson: odroid-c2: Disable usb_otg bus to avoid power failed warning - [arm64] tty: serial: msm_serial: Fix lockup for sysrq and oops - fix compat handling of FICLONERANGE, FIDEDUPERANGE and FS_IOC_FIEMAP - bdev: Factor out bdev revalidation into a common helper - bdev: Refresh bdev size for disks without partitioning - scsi: qedf: Do not retry ELS request if qedf_alloc_cmd fails - drm/mst: Fix MST sideband up-reply failure handling - [ppc64el] pseries/hvconsole: Fix stack overread via udbg - [ppc64el] KVM: PPC: Book3S HV: use smp_mb() when setting/clearing host_ipi flag - rxrpc: Fix possible NULL pointer access in ICMP handling - tcp: annotate tp->rcv_nxt lockless reads - net: core: limit nested device depth - ath9k_htc: Modify byte order for an error message - ath9k_htc: Discard undersized packets - xfs: periodically yield scrub threads to the scheduler - net: add annotations on hh->hh_len lockless accesses - ubifs: ubifs_tnc_start_commit: Fix OOB in layout_in_gaps - [s390x] smp: fix physical to logical CPU map for SMT - xen/blkback: Avoid unmapping unmapped grant pages - [x86] perf/x86/intel/bts: Fix the use of page_private() https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.95 - bpf: Fix passing modified ctx to ld/abs/ind instruction - regulator: fix use after free issue - ASoC: max98090: fix possible race conditions - netfilter: ctnetlink: netns exit must wait for callbacks - mwifiex: Fix heap overflow in mmwifiex_process_tdls_action_frame() (CVE-2019-14901) - [x86] efi: Update e820 with reserved EFI boot services data to fix kexec breakage - [x86] ASoC: Intel: bytcr_rt5640: Update quirk for Teclast X89 - efi/gop: Return EFI_NOT_FOUND if there are no usable GOPs - efi/gop: Return EFI_SUCCESS if a usable GOP was found - efi/gop: Fix memory leak in __gop_query32/64() - netfilter: uapi: Avoid undefined left-shift in xt_sctp.h - netfilter: nft_set_rbtree: bogus lookup/get on consecutive elements in named sets - netfilter: nf_tables: validate NFT_SET_ELEM_INTERVAL_END - netfilter: nf_tables: validate NFT_DATA_VALUE after nft_data_init() - [arm64] spi: spi-cavium-thunderx: Add missing pci_release_regions() - ASoC: topology: Check return value for soc_tplg_pcm_create() - bnxt_en: Return error if FW returns more data than dump length - [mips*] bpf, mips: Limit to 33 tail calls - [armhf] spi: spi-ti-qspi: Fix a bug when accessing non default CS - [powerpc*] Ensure that swiotlb buffer is allocated from low memory - btrfs: Fix error messages in qgroup_rescan_init - bpf: Clear skb->tstamp in bpf_redirect when necessary - bnx2x: Do not handle requests from VFs after parity - bnx2x: Fix logic to get total no. of PFs per engine - cxgb4: Fix kernel panic while accessing sge_info - net: usb: lan78xx: Fix error message format specifier - rfkill: Fix incorrect check to avoid NULL pointer dereference - iommu/iova: Init the struct iova to fix the possible memleak - [x86] perf/x86/intel: Fix PT PMI handling - fs: avoid softlockups in s_inodes iterators - [arm64,armhf] net: stmmac: Do not accept invalid MTU values - [arm64,armhf] net: stmmac: xgmac: Clear previous RX buffer size - [arm64,armhf] net: stmmac: RX buffer size must be 16 byte aligned - [arm64,armhf] net: stmmac: Always arm TX Timer at end of transmission start - [s390x] dasd/cio: Interpret ccw_device_get_mdc return value correctly - [s390x] dasd: fix memleak in path handling error case - block: fix memleak when __blk_rq_map_user_iov() is failed - llc2: Fix return statement of llc_stat_ev_rx_null_dsap_xid_c (and _test_c) - [x86] hv_netvsc: Fix unwanted rx_table reset - [powerpc*] vcpu: Assume dedicated processors as non-preempt - [powerpc*] spinlocks: Include correct header for static key - [armhf] cpufreq: imx6q: read OCOTP through nvmem for imx6ul/imx6ull - gtp: fix bad unlock balance in gtp_encap_enable_socket - macvlan: do not assume mac_header is set in macvlan_broadcast() - [arm64,armhf] net: dsa: mv88e6xxx: Preserve priority when setting CPU port. - [arm64,armhf] net: stmmac: dwmac-sun8i: Allow all RGMII modes - [arm64,armhf] net: stmmac: dwmac-sunxi: Allow all RGMII modes - net: usb: lan78xx: fix possible skb leak - pkt_sched: fq: do not accept silly TCA_FQ_QUANTUM - sch_cake: avoid possible divide by zero in cake_enqueue() - sctp: free cmd->obj.chunk for the unprocessed SCTP_CMD_REPLY - tcp: fix "old stuff" D-SACK causing SACK to be treated as D-SACK - vxlan: fix tos value before xmit - vlan: fix memory leak in vlan_dev_set_egress_priority - vlan: vlan_changelink() should propagate errors - net: sch_prio: When ungrafting, replace with FIFO - [arm64,armhf] usb: dwc3: gadget: Fix request complete check - USB: core: fix check for duplicate endpoints - USB: serial: option: add Telit ME910G1 0x110a composition - usb: missing parentheses in USE_NEW_SCHEME https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.96 - chardev: Avoid potential use-after-free in 'chrdev_open()' - i2c: fix bus recovery stop mode timing - [arm64,armhf] usb: chipidea: host: Disable port power only if previously enabled - ALSA: usb-audio: Apply the sample rate quirk for Bose Companion 5 - ALSA: hda/realtek - Add new codec supported for ALCS1200A - ALSA: hda/realtek - Set EAPD control to default for ALC222 - [x86] ALSA: hda/realtek - Add quirk for the bass speaker on Lenovo Yoga X1 7th gen - kernel/trace: Fix do not unregister tracepoints when register sched_migrate_task fail - tracing: Have stack tracer compile when MCOUNT_INSN_SIZE is not defined - tracing: Change offset type to s32 in preempt/irq tracepoints - HID: Fix slab-out-of-bounds read in hid_field_extract - HID: uhid: Fix returning EPOLLOUT from uhid_char_poll - HID: hid-input: clear unmapped usages - Input: add safety guards to input_set_keycode() - [arm64,armhf] drm/sun4i: tcon: Set RGB DCLK min. divider based on hardware model - drm/fb-helper: Round up bits_per_pixel if possible - drm/dp_mst: correct the shifting in DP_REMOTE_I2C_READ - can: kvaser_usb: fix interface sanity check - can: gs_usb: gs_usb_probe(): use descriptors of current altsetting - can: can_dropped_invalid_skb(): ensure an initialized headroom in outgoing CAN sk_buffs - gpiolib: acpi: Turn dmi_system_id table into a generic quirk table - gpiolib: acpi: Add honor_wakeup module-option + quirk mechanism - [x86] staging: vt6656: set usb_set_intfdata on driver fail. - USB: serial: option: add ZLP support for 0x1bc7/0x9010 - [arm64,armhf] usb: musb: fix idling for suspend after disconnect interrupt - [arm64,armhf] usb: musb: Disable pullup at init - [arm64,armhf] usb: musb: dma: Correct parameter passed to IRQ handler - [x86] staging: comedi: adv_pci1710: fix AI channels 16-31 for PCI-1713 - staging: rtl8188eu: Add device code for TP-Link TL-WN727N v5.21 - serdev: Don't claim unsupported ACPI serial devices - tty: link tty and port before configuring it as console - tty: always relink the port - mwifiex: fix possible heap overflow in mwifiex_process_country_ie() (CVE-2019-14895) - mwifiex: pcie: Fix memory leak in mwifiex_pcie_alloc_cmdrsp_buf (CVE-2019-19056) - scsi: bfa: release allocated memory in case of error (CVE-2019-19066) - rtl8xxxu: prevent leaking urb (CVE-2019-19068) - ath10k: fix memory leak (CVE-2019-19078) - HID: hiddev: fix mess in hiddev_open() - USB: Fix: Don't skip endpoint descriptors with maxpacket=0 - netfilter: arp_tables: init netns pointer in xt_tgchk_param struct - netfilter: conntrack: dccp, sctp: handle null timeout argument - netfilter: ipset: avoid null deref when IPSET_ATTR_LINENO is present - [x86] drm/i915/gen9: Clear residual context state on context switch (CVE-2019-14615) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.97 - hidraw: Return EPOLLOUT from hidraw_poll - HID: hidraw: Fix returning EPOLLOUT from hidraw_poll - HID: hidraw, uhid: Always report EPOLLOUT - cfg80211/mac80211: make ieee80211_send_layer2_update a public function - mac80211: Do not send Layer 2 Update frame before authorization (CVE-2019-5108) - f2fs: Move err variable to function scope in f2fs_fill_dentries() - f2fs: check memory boundary by insane namelen - f2fs: check if file namelen exceeds max value (CVE-2019-9445) - media: usb:zr364xx:Fix KASAN:null-ptr-deref Read in zr364xx_vidioc_querycap (CVE-2019-15217) - iwlwifi: dbg_ini: fix memory leak in alloc_sgtable (CVE-2019-19058) - iwlwifi: pcie: fix memory leaks in iwl_pcie_ctxt_info_gen3_init (CVE-2019-19059) - RDMA: Fix goto target to release the allocated memory (CVE-2019-19077) - dccp: Fix memleak in __feat_register_sp (CVE-2019-20096) - [x86] drm/i915: Fix use-after-free when destroying GEM context - ASoC: soc-core: Set dpcm_playback / dpcm_capture - [armhf] mtd: onenand: omap2: Pass correct flags for prep_dma_memcpy - [arm64] gpio: zynq: Fix for bug in zynq_gpio_restore_context API - iommu: Remove device link to group on failure - gpio: Fix error message on out-of-range GPIO in lookup table - [s390x] qeth: fix false reporting of VNIC CHAR config failure - [s390x] qeth: Fix vnicc_is_in_use if rx_bcast not set - cifs: Adjust indentation in smb2_open_file - afs: Fix missing cell comparison in afs_test_super() - drm/ttm: fix start page for huge page check in ttm_put_pages() (CVE-2019-19927) - drm/ttm: fix incrementing the page pointer for huge pages (CVE-2019-19927) - btrfs: simplify inode locking for RWF_NOWAIT - RDMA/mlx5: Return proper error value - RDMA/srpt: Report the SCSI residual to the initiator - scsi: enclosure: Fix stale device oops with hot replug - scsi: sd: Clear sdkp->protection_type if disk is reformatted without PI - [x86] platform/x86: asus-wmi: Fix keyboard brightness cannot be set to 0 - [x86] platform/x86: GPD pocket fan: Use default values when wrong modparams are given - xprtrdma: Fix completion wait during device removal - crypto: virtio - implement missing support for output IVs - NFSv2: Fix a typo in encode_sattr() - NFSv4.x: Drop the slot if nfs4_delegreturn_prepare waits for layoutreturn - mei: fix modalias documentation - [armhf] clk: samsung: exynos5420: Preserve CPU clocks configuration during suspend/resume - [armhf] pinctl: ti: iodelay: fix error checking on pinctrl_count_index_with_args call - [x86] pinctrl: lewisburg: Update pin list according to v1.1v6 - scsi: sd: enable compat ioctls for sed-opal - af_unix: add compat_ioctl support - compat_ioctl: handle SIOCOUTQNSD - [arm64,armhf] PCI: dwc: Fix find_next_bit() usage - PCI/PTM: Remove spurious "d" from granularity message - [powerpc*] powernv: Disable native PCIe port management - [armhf] tty: serial: imx: use the sg count from dma_map_sg - [i386] tty: serial: pch_uart: correct usage of dma_unmap_sg - mtd: spi-nor: fix silent truncation in spi_nor_read() - mtd: spi-nor: fix silent truncation in spi_nor_read_raw() - rtlwifi: Remove unnecessary NULL check in rtl_regd_init - f2fs: fix potential overflow - scsi: libcxgbi: fix NULL pointer dereference in cxgbi_device_destroy() - [mips*] cacheinfo: report shared CPU map - [arm64] drm/arm/mali: make malidp_mw_connector_helper_funcs static - [arm64] dmaengine: k3dma: Avoid null pointer traversal - [amd64] ioat: ioat_alloc_ring() failure handling. - ocfs2: call journal flush to mark journal as empty after journal recovery when mount https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.98 - clk: Don't try to enable critical clocks if prepare failed - iio: buffer: align the size of scan bytes to size of the largest element - USB: serial: simple: Add Motorola Solutions TETRA MTP3xxx and MTP85xx - USB: serial: option: Add support for Quectel RM500Q - USB: serial: opticon: fix control-message timeouts - USB: serial: option: add support for Quectel RM500Q in QDL mode - USB: serial: suppress driver bind attributes - USB: serial: ch341: handle unbound port at reset_resume - USB: serial: io_edgeport: handle unbound ports on URB completion - USB: serial: io_edgeport: add missing active-port sanity check - USB: serial: keyspan: handle unbound ports - USB: serial: quatech2: handle unbound ports - [x86] scsi: fnic: fix invalid stack access - scsi: mptfusion: Fix double fetch bug in ioctl - [armhf] dts: imx6q-dhcom: Fix SGTL5000 VDDIO regulator connection - ALSA: dice: fix fallback from protocol extension into limited functionality - ALSA: seq: Fix racy access for queue timer in proc read - ALSA: usb-audio: fix sync-ep altsetting sanity check - [arm64] dts: allwinner: a64: olinuxino: Fix SDIO supply regulator - block: fix an integer overflow in logical block size - [armhf] dts: am571x-idk: Fix gpios property to have the correct gpio number - LSM: generalize flag passing to security_capable - ptrace: reintroduce usage of subjective credentials in ptrace_has_cap() - usb: core: hub: Improved device recognition on remote wakeup - [x86] resctrl: Fix an imbalance in domain_remove_cpu() - [x86] CPU/AMD: Ensure clearing of SME/SEV features is maintained - [amd64] x86/efistub: Disable paging at mixed mode entry - [x86] resctrl: Fix potential memory leak - perf hists: Fix variable name's inconsistency in hists__for_each() macro - perf report: Fix incorrectly added dimensions as switch perf data file - mm/shmem.c: thp, shmem: fix conflict of above-47bit hint address and PMD alignment - mm: memcg/slab: call flush_memcg_workqueue() only if memcg workqueue is valid - btrfs: rework arguments of btrfs_unlink_subvol - btrfs: fix invalid removal of root ref - btrfs: do not delete mismatched root refs - btrfs: fix memory leak in qgroup accounting - mm/page-writeback.c: avoid potential division by zero in wb_min_max_ratio() - [armhf] dts: imx6qdl: Add Engicam i.Core 1.5 MX6 - [armhf] dts: imx6q-icore-mipi: Use 1.5 version of i.Core MX6DL - [arm64,armhf] net: stmmac: 16KB buffer must be 16 byte aligned - [arm64,armhf] net: stmmac: Enable 16KB buffer size - mm/huge_memory.c: make __thp_get_unmapped_area static - mm/huge_memory.c: thp: fix conflict of above-47bit hint address and PMD alignment - bpf: Fix incorrect verifier simulation of ARSH under ALU32 - cfg80211: fix deadlocks in autodisconnect work - cfg80211: fix memory leak in cfg80211_cqm_rssi_update - cfg80211: fix page refcount issue in A-MSDU decap - netfilter: fix a use-after-free in mtype_destroy() - netfilter: arp_tables: init netns pointer in xt_tgdtor_param struct - netfilter: nft_tunnel: fix null-attribute check - netfilter: nf_tables: remove WARN and add NLA_STRING upper limits - netfilter: nf_tables: store transaction list locally while requesting module - netfilter: nf_tables: fix flowtable list del corruption - NFC: pn533: fix bulk-message timeout - batman-adv: Fix DAT candidate selection on little endian systems - macvlan: use skb_reset_mac_header() in macvlan_queue_xmit() - [x86] hv_netvsc: Fix memory leak when removing rndis device - [arm64] net: hns: fix soft lockup when there is not enough memory - net: usb: lan78xx: limit size of local TSO packets - ptp: free ptp device pin descriptors properly - r8152: add missing endpoint sanity check - tcp: fix marked lost packets not being retransmitted - xen/blkfront: Adjust indentation in xlvbd_alloc_gendisk - tcp: refine rule to allow EPOLLOUT generation under mem pressure - [arm64] dts: meson-gxl-s905x-khadas-vim: fix gpio-keys-polled node - cfg80211: check for set_wiphy_params - tick/sched: Annotate lockless access to last_jiffies_update - drm/nouveau/bar/nv50: check bar1 vmm return value - drm/nouveau/bar/gf100: ensure BAR is mapped - drm/nouveau/mmu: qualify vmm during dtor - reiserfs: fix handling of -EOPNOTSUPP in reiserfs_for_each_xattr - scsi: esas2r: unlock on error in esas2r_nvram_read_direct() - scsi: qla4xxx: fix double free bug - scsi: bnx2i: fix potential use after free - scsi: target: core: Fix a pr_debug() argument - scsi: qla2xxx: Fix qla2x00_request_irqs() for MSI - scsi: qla2xxx: fix rports not being mark as lost in sync fabric scan - scsi: core: scsi_trace: Use get_unaligned_be*() - perf probe: Fix wrong address verification . [ Joe Richey ] * [cloud-amd64] tpm: Enable TPM drivers for Cloud (Closes: #946237) . [ Salvatore Bonaccorso ] * Refresh powerpc-fix-mcpu-options-for-spe-only-compiler.patch (Context changes in 4.19.88) * Drop 0027-RDMA-hns-Fix-the-bug-with-updating-rq-head-pointer-w.patch * Drop 0028-RDMA-hns-Bugfix-for-the-scene-without-receiver-queue.patch * [rt] Refresh 0199-net-move-xmit_recursion-to-per-task-variable-on-RT.patch (Context changes in 4.19.88) * [rt] Update to 4.19.90-rt35: - Update "workqueue: rework" for workqueue changes in 4.19.90 * [rt] Drop 0245-Revert-arm64-preempt-Fix-big-endian-when-checking-pr.patch * Refresh 0013-scsi-hisi_sas-Relocate-some-codes-to-avoid-an-unused.patch for context changes in 4.19.93. * [rt] Refresh 0253-watchdog-prevent-deferral-of-watchdogd-wakeup-on-RT.patch (Context changes in 4.19.93) * [rt] Refresh 0199-net-move-xmit_recursion-to-per-task-variable-on-RT.patch (Context changes in 4.19.97) . [ Ben Hutchings ] * [rt] Update to 4.19.94-rt38: - Refresh "x86/ioapic: Don't let setaffinity unmask threaded EOI interrupt too early" which was partly included in 4.19.92 * aufs: Update support patchset to aufs4.19.63+ 20200113; no functional changes * Bump ABI to 8 * libertas: Fix two buffer overflows at parsing bss descriptor (CVE-2019-14896, CVE-2019-14897) * wimax: i2400: fix memory leak (CVE-2019-19051) * wimax: i2400: Fix memory leak in i2400m_op_rfkill_sw_toggle (CVE-2019-19051) * [amd64/cloud-amd64] hwrandom: Enable HW_RANDOM_VIRTIO (Closes: #914511) . [ Noah Meyerhans ] * random: try to actively add entropy rather than passively wait for it (Closes: #948519) . [ Aurelien Jarno ] * [mips*/malta] Enable POWER_RESET_PIIX4_POWEROFF. linux-signed-amd64 (4.19.87+1) buster; urgency=medium . * Sign kernel from linux 4.19.87-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.68 - seq_file: fix problem when seeking mid-record - mm/hmm: fix bad subpage pointer in try_to_unmap_one - mm: mempolicy: make the behavior consistent when MPOL_MF_MOVE* and MPOL_MF_STRICT were specified - mm: mempolicy: handle vma with unmovable pages mapped correctly in mbind - mm/memcontrol.c: fix use after free in mem_cgroup_iter() - mm/usercopy: use memory range to be accessed for wraparound check - Revert "pwm: Set class for exported channels in sysfs" - cpufreq: schedutil: Don't skip freq update when limits change - [x86] ALSA: hda/realtek - Add quirk for HP Envy x360 - ALSA: hda - Apply workaround for another AMD chip 1022:1487 - ALSA: hda - Fix a memory leak bug - ALSA: hda - Add a generic reboot_notify - ALSA: hda - Let all conexant codec enter D3 when rebooting - HID: holtek: test for sanity of intfdata - HID: hiddev: avoid opening a disconnected device - HID: hiddev: do cleanup in failure of opening a device - Input: kbtab - sanity check for endpoint type - Input: iforce - add sanity checks - net: usb: pegasus: fix improper read if get_registers() fail - netfilter: ebtables: also count base chain policies - xen/pciback: remove set but not used variable 'old_state' - [armhf,arm64] irqchip/gic-v3-its: Free unused vpt_page when alloc vpe table fail - perf header: Fix divide by zero error if f_header.attr_size==0 - perf header: Fix use of unitialized value warning - libata: zpodd: Fix small read overflow in zpodd_get_mech_type() - Btrfs: fix deadlock between fiemap and transaction commits - scsi: hpsa: correct scsi command status issue after reset - scsi: qla2xxx: Fix possible fcport null-pointer dereferences - drm/amdgpu: fix a potential information leaking bug - ata: libahci: do not complain in case of deferred probe - kbuild: modpost: handle KBUILD_EXTRA_SYMBOLS only for external modules - [arm64] efi: fix variable 'si' set but not used - [arm64] unwind: Prohibit probing on return_address() - [arm64] mm: fix variable 'pud' set but not used - IB/core: Add mitigation for Spectre V1 - IB/mlx5: Fix MR registration flow to use UMR properly - IB/mad: Fix use-after-free in ib mad completion handling - [arm64] drm: msm: Fix add_gpu_components - [armhf] drm/exynos: fix missing decrement of retry counter - ocfs2: remove set but not used variable 'last_hash' - asm-generic: fix -Wtype-limits compiler warnings - [arm64] KVM: regmap: Fix unexpected switch fall-through - [armhf,arm64] KVM: Sync ICH_VMCR_EL2 back when about to block - [x86] staging: comedi: dt3000: Fix signed integer overflow 'divider * base' - [x86] staging: comedi: dt3000: Fix rounding up of timer divisor - USB: core: Fix races in character device registration and deregistraion - usb: cdc-acm: make sure a refcount is taken early enough - USB: CDC: fix sanity checks in CDC union parser - USB: serial: option: add D-Link DWM-222 device ID - USB: serial: option: Add support for ZTE MF871A - USB: serial: option: add the BroadMobi BM818 card - USB: serial: option: Add Motorola modem UARTs - [x86] drm/i915/cfl: Add a new CFL PCI ID. - [arm64] ftrace: Ensure module ftrace trampoline is coherent with I-side - Input: psmouse - fix build error of multiple definition - bnx2x: Fix VF's VLAN reconfiguration in reload. - bonding: Add vlan tx offload to hw_enc_features - net: dsa: Check existence of .port_mdb_add callback before calling it - net/mlx4_en: fix a memory leak bug - net/packet: fix race in tpacket_snd() - sctp: fix memleak in sctp_send_reset_streams - sctp: fix the transport error_count check - team: Add vlan tx offload to hw_enc_features - tipc: initialise addr_trail_end when setting node addresses - xen/netback: Reset nr_frags before freeing skb - net/mlx5e: Only support tx/rx pause setting for port owner - net/mlx5e: Use flow keys dissector to parse packets for ARFS - [arm64] mmc: sdhci-of-arasan: Do now show error message in case of deffered probe https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.69 - HID: Add 044f:b320 ThrustMaster, Inc. 2 in 1 DT - [mips*] kernel: only use i8253 clocksource with periodic clockevent - [mips*] fix cacheinfo - netfilter: ebtables: fix a memory leak bug in compat - ASoC: dapm: Fix handling of custom_stop_condition on DAPM graph walks - bonding: Force slave speed check after link state recovery for 802.3ad - [armhf,arm64] net: mvpp2: Don't check for 3 consecutive Idle frames for 10G links - can: dev: call netif_carrier_off() in register_candev() - can: gw: Fix error path of cgw_module_init - [armhf,arm64] ASoC: rockchip: Fix mono capture - [armhf] ASoC: ti: davinci-mcasp: Correct slot_width posed constraint - net: usb: qmi_wwan: Add the BroadMobi BM818 card - qed: RDMA - Fix the hw_ver returned in device attributes - isdn: mISDN: hfcsusb: Fix possible null-pointer dereferences in start_isoc_chain() - mac80211_hwsim: Fix possible null-pointer dereferences in hwsim_dump_radio_nl() - netfilter: ipset: Actually allow destination MAC address for hash:ip,mac sets too - netfilter: ipset: Copy the right MAC address in bitmap:ip,mac and hash:ip,mac sets - netfilter: ipset: Fix rename concurrency with listing - rxrpc: Fix potential deadlock - rxrpc: Fix the lack of notification when sendmsg() fails on a DATA packet - isdn: hfcsusb: Fix mISDN driver crash caused by transfer buffer on the stack - net: phy: phy_led_triggers: Fix a possible null-pointer dereference in phy_led_trigger_change_speed() - can: sja1000: force the string buffer NULL-terminated - can: peak_usb: force the string buffer NULL-terminated - net/ethernet/qlogic/qed: force the string buffer NULL-terminated - NFSv4: Fix a potential sleep while atomic in nfs4_do_reclaim() - NFS: Fix regression whereby fscache errors are appearing on 'nofsc' mounts - HID: quirks: Set the INCREMENT_USAGE_ON_DUPLICATE quirk on Saitek X52 - HID: input: fix a4tech horizontal wheel custom usage - [armhf,arm64] drm/rockchip: Suspend DP late - SMB3: Fix potential memory leak when processing compound chain - SMB3: Kernel oops mounting a encryptData share with CONFIG_DEBUG_VIRTUAL - [s390x] put _stext and _etext into .text section - net: cxgb3_main: Fix a resource leak in a error path in 'init_one()' - [armhf,arm64] net: stmmac: Fix issues when number of Queues >= 4 - [armhf,arm64] net: stmmac: tc: Do not return a fragment entry - [arm64] net: hisilicon: make hip04_tx_reclaim non-reentrant - [arm64] net: hisilicon: fix hip04-xmit never return TX_BUSY - [arm64] net: hisilicon: Fix dma_map_single failed on arm64 - libata: have ata_scsi_rw_xlat() fail invalid passthrough requests - libata: add SG safety checks in SFF pio transfers - [x86] lib/cpu: Address missing prototypes warning - [x86] drm/vmwgfx: fix memory leak when too many retries have occurred - block, bfq: handle NULL return value by bfq_init_rq() - perf ftrace: Fix failure to set cpumask when only one cpu is present - perf cpumap: Fix writing to illegal memory in handling cpumap mask - perf pmu-events: Fix missing "cpu_clk_unhalted.core" event - [arm64] KVM: Don't write junk to sysregs on reset - [armhf] KVM: Don't write junk to CP15 registers on reset - HID: wacom: correct misreported EKR ring values - HID: wacom: Correct distance scale for 2nd-gen Intuos devices - Revert "dm bufio: fix deadlock with loop device" (regression in 4.19.61) - ceph: clear page dirty before invalidate page - ceph: don't try fill file_lock on unsuccessful GETFILELOCK reply - libceph: fix PG split vs OSD (re)connect race - drm/nouveau: Don't retry infinitely when receiving no data on i2c over AUX - gpiolib: never report open-drain/source lines as 'input' to user-space - [x86] Drivers: hv: vmbus: Fix virt_to_hvpfn() for X86_PAE - userfaultfd_release: always remove uffd flags and clear vm_userfaultfd_ctx - [i386] retpoline: Don't clobber RFLAGS during CALL_NOSPEC on i386 - [x86] apic: Handle missing global clockevent gracefully - [x86] CPU/AMD: Clear RDRAND CPUID bit on AMD family 15h/16h - [x86] boot: Save fields explicitly, zero out everything else - [x86] boot: Fix boot regression caused by bootparam sanitizing - dm kcopyd: always complete failed jobs - dm btree: fix order of block initialization in btree_split_beneath - dm integrity: fix a crash due to BUG_ON in __journal_read_write() - dm raid: add missing cleanup in raid_ctr() - dm space map metadata: fix missing store of apply_bops() return value - dm table: fix invalid memory accesses with too high sector number - dm zoned: improve error handling in reclaim - dm zoned: improve error handling in i/o map code - dm zoned: properly handle backing device failure - genirq: Properly pair kobject_del() with kobject_add() - mm, page_owner: handle THP splits correctly - mm/zsmalloc.c: migration can leave pages in ZS_EMPTY indefinitely - mm/zsmalloc.c: fix race condition in zs_destroy_pool - xfs: don't trip over uninitialized buffer on extent read of corrupted inode - xfs: Move fs/xfs/xfs_attr.h to fs/xfs/libxfs/xfs_attr.h - xfs: Add helper function xfs_attr_try_sf_addname - xfs: Add attibute set and helper functions - xfs: Add attibute remove and helper functions - xfs: always rejoin held resources during defer roll - dm zoned: fix potential NULL dereference in dmz_do_reclaim() - [ppc64el] Allow flush_(inval_)dcache_range to work across ranges >4GB - rxrpc: Fix local endpoint refcounting - rxrpc: Fix read-after-free in rxrpc_queue_local() - rxrpc: Fix local endpoint replacement - rxrpc: Fix local refcounting https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.70 - nvme-multipath: revalidate nvme_ns_head gendisk in nvme_validate_ns - afs: Fix the CB.ProbeUuid service handler to reply correctly - afs: Fix loop index mixup in afs_deliver_vl_get_entry_by_name_u() - fs: afs: Fix a possible null-pointer dereference in afs_put_read() - afs: Only update d_fsdata if different in afs_d_revalidate() - nvmet-loop: Flush nvme_delete_wq when removing the port - nvme: fix a possible deadlock when passthru commands sent to a multipath device - nvme-pci: Fix async probe remove race - [armhf] omap-dma/omap_vout_vrfb: fix off-by-one fi value - iommu/dma: Handle SG length overflow better - usb: gadget: composite: Clear "suspended" on reset/disconnect - usb: gadget: mass_storage: Fix races between fsg_disable and fsg_set_alt - xen/blkback: fix memory leaks - [arm64] cpufeature: Don't treat granule sizes as strict - drm/ast: Fixed reboot test may cause system hanged - [x86] tools: hv: fix KVP and VSS daemons exit code - [x86] drm/i915: fix broadwell EU computation - [arm*] watchdog: bcm2835_wdt: Fix module autoload - scsi: ufs: Fix RX_TERMINATION_FORCE_ENABLE define value - [armhf] drm/tilcdc: Register cpufreq notifier after we have initialized crtc - ipv6/addrconf: allow adding multicast addr if IFA_F_MCAUTOJOIN is set - ipv6: Default fib6_type to RTN_UNICAST when not set - net/smc: make sure EPOLLOUT is raised - tcp: make sure EPOLLOUT wont be missed - ipv4/icmp: fix rt dst dev null pointer dereference - mm/zsmalloc.c: fix build when CONFIG_COMPACTION=n - ALSA: usb-audio: Check mixer unit bitmap yet more strictly - ALSA: line6: Fix memory leak at line6_init_pcm() error path - ALSA: hda - Fixes inverted Conexant GPIO mic mute led - ALSA: seq: Fix potential concurrent access to the deleted pool - ALSA: usb-audio: Fix invalid NULL check in snd_emuusb_set_samplerate() - ALSA: usb-audio: Add implicit fb quirk for Behringer UFX1604 - [x86] kvm: skip populating logical dest map if apic is not sw enabled - [x86] KVM: Don't update RIP or do single-step on faulting emulation - [amd64] uprobes: Fix detection of 32-bit user mode - [x86] apic: Do not initialize LDR and DFR for bigsmp - ftrace: Fix NULL pointer dereference in t_probe_next() - ftrace: Check for successful allocation of hash - ftrace: Check for empty hash and comment the race with registering probes - usb-storage: Add new JMS567 revision to unusual_devs - USB: cdc-wdm: fix race between write and disconnect due to flag abuse - usb: hcd: use managed device resources - [armhf,arm64] usb: chipidea: udc: don't do hardware access if gadget has stopped - usb: host: ohci: fix a race condition between shutdown and irq - usb: host: xhci: rcar: Fix typo in compatible string matching - USB: storage: ums-realtek: Update module parameter description for auto_delink_en - USB: storage: ums-realtek: Whitelist auto-delink support - [x86] mei: me: add Tiger Lake point LP device ID - mmc: core: Fix init of SD cards reporting an invalid VDD range - stm class: Fix a double free of stm_source_device - [x86] intel_th: pci: Add support for another Lewisburg PCH - [x86] intel_th: pci: Add Tiger Lake support - [x86] typec: tcpm: fix a typo in the comparison of pdo_max_voltage - lib: logic_pio: Fix RCU usage - lib: logic_pio: Avoid possible overlap for unregistering regions - lib: logic_pio: Add logic_pio_unregister_range() - [x86] drm/amdgpu: Add APTX quirk for Dell Latitude 5495 - [x86] drm/i915: Don't deballoon unused ggtt drm_mm_node in linux guest - [x86] drm/i915: Call dma_set_max_seg_size() in i915_driver_hw_probe() - [arm64] bus: hisi_lpc: Unregister logical PIO range to avoid potential use-after-free - [arm64] bus: hisi_lpc: Add .remove method to avoid driver unbind crash - [x86] VMCI: Release resource if the work is already queued - [x86] crypto: ccp - Ignore unconfigured CCP device on suspend/resume - Revert "cfg80211: fix processing world regdomain when non modular" - mac80211: fix possible sta leak - mac80211: Don't memset RXCB prior to PAE intercept - mac80211: Correctly set noencrypt for PAE frames - [ppc64el] KVM: Book3S: Fix incorrect guest-to-user-translation error handling - [armhf,arm64] KVM: vgic: Fix potential deadlock when ap_list is long - [armhf,arm64] KVM: vgic-v2: Handle SGI bits in GICD_I{S,C}PENDR0 as WI - NFS: Clean up list moves of struct nfs_page - NFSv4/pnfs: Fix a page lock leak in nfs_pageio_resend() - NFS: Pass error information to the pgio error cleanup routine - NFS: Ensure O_DIRECT reports an error if the bytes read/written is 0 - [x86] i2c: piix4: Fix port selection for AMD Family 16h Model 30h - mt76: mt76x0u: do not reset radio on resume https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.71 - Revert "Input: elantech - enable SMBus on new (2018+) systems" (regression in 4.19.67) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.72 - mld: fix memory leak in mld_del_delrec() - net: fix skb use after free in netpoll - net: sched: act_sample: fix psample group handling on overwrite - net_sched: fix a NULL pointer deref in ipt action - [armhf,arm64] net: stmmac: dwmac-rk: Don't fail if phy regulator is absent - tcp: inherit timestamp on mtu probe - tcp: remove empty skb from write queue in error cases - net/rds: Fix info leak in rds6_inc_info_copy() (CVE-2019-16714) - [x86] boot: Preserve boot_params.secure_boot from sanitizing - [arm*] spi: bcm2835aux: unifying code between polling and interrupt driven code - [arm*] spi: bcm2835aux: remove dangerous uncontrolled read of fifo - [arm*] spi: bcm2835aux: fix corruptions for longer spi transfers - netfilter: nf_tables: use-after-free in failing rule with bound set - [x86] hv_netvsc: Fix a warning of suspicious RCU usage - Bluetooth: btqca: Add a short delay before downloading the NVM - [ppc64el] ibmveth: Convert multicast list size for little-endian system - gpio: Fix build error of function redefinition - netfilter: nft_flow_offload: skip tcp rst and fin packets - scsi: qla2xxx: Fix gnl.l memory leak on adapter init failure - scsi: target: tcmu: avoid use-after-free after command timeout - cxgb4: fix a memory leak bug - liquidio: add cleanup in octeon_setup_iq() - net: myri10ge: fix memory leaks - lan78xx: Fix memory leaks - vfs: fix page locking deadlocks when deduping files - cx82310_eth: fix a memory leak bug - net: kalmia: fix memory leaks - net: cavium: fix driver name - wimax/i2400m: fix a memory leak bug - kprobes: Fix potential deadlock in kprobe_optimizer() - HID: cp2112: prevent sleeping function called from invalid context - [amd64] boot/compressed: Fix boot on machines with broken E820 table - [x86] Input: hyperv-keyboard: Use in-place iterator API in the channel callback - [x86] Tools: hv: kvp: eliminate 'may be used uninitialized' warning - nvme-multipath: fix possible I/O hang when paths are updated - IB/mlx4: Fix memory leaks - infiniband: hfi1: fix a memory leak bug - infiniband: hfi1: fix memory leaks - ceph: fix buffer free while holding i_ceph_lock in __ceph_setxattr() - ceph: fix buffer free while holding i_ceph_lock in __ceph_build_xattrs_blob() - ceph: fix buffer free while holding i_ceph_lock in fill_inode() - [armhf,arm64] KVM: Only skip MMIO insn once - afs: Fix leak in afs_lookup_cell_rcu() - [armhf,arm64] KVM: VGIC: Properly initialise private IRQ affinity - [amd64] boot/compressed: Fix missing initialization in find_trampoline_placement() - libceph: allow ceph_buffer_put() to receive a NULL ceph_buffer https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.73 - ALSA: hda - Fix potential endless loop at applying quirks - ALSA: hda/realtek - Fix overridden device-specific initialization - [x86] ALSA: hda/realtek - Add quirk for HP Pavilion 15 - [x86] ALSA: hda/realtek - Enable internal speaker & headset mic of ASUS UX431FL - [x86] ALSA: hda/realtek - Fix the problem of two front mics on a ThinkCentre - sched/fair: Don't assign runtime for throttled cfs_rq - [x86] drm/vmwgfx: Fix double free in vmw_recv_msg() - [ppc64el] tm: Fix FP/VMX unavailable exceptions inside a transaction (CVE-2019-15030) - batman-adv: fix uninit-value in batadv_netlink_get_ifindex() - batman-adv: Only read OGM tvlv_len after buffer len check - [x86] hv_sock: Fix hang when a connection is closed - Blk-iolatency: warn on negative inflight IO counter - blk-iolatency: fix STS_AGAIN handling - {nl,mac}80211: fix interface combinations on crypto controlled devices - timekeeping: Use proper ktime_add when adding nsecs in coarse offset - selftests: fib_rule_tests: use pre-defined DEV_ADDR - [x86] ftrace: Fix warning and considate ftrace_jmp_replace() and ftrace_call_replace() - [ppc64el] mark start_here_multiplatform as __ref - [arm64] dts: rockchip: enable usb-host regulators at boot on rk3328-rock64 - nvme-fc: use separate work queue to avoid warning - [armhf] clk: s2mps11: Add used attribute to s2mps11_dt_match - [arm64] remoteproc: qcom: q6v5: shore up resource probe handling - modules: always page-align module section allocations - kernel/module: Fix mem leak in module_add_modinfo_attrs - [x86] drm/i915: Re-apply "Perform link quality check, unconditionally during long pulse" - scsi: qla2xxx: Move log messages before issuing command to firmware - keys: Fix the use of the C++ keyword "private" in uapi/linux/keyctl.h - [x86] Drivers: hv: kvp: Fix two "this statement may fall through" warnings - [x86] hibernate: Fix nosave_regions setup for hibernation - [arm64] remoteproc: qcom: q6v5-mss: add SCM probe dependency - drm/amdgpu/gfx9: Update gfx9 golden settings. - drm/amdgpu: Update gc_9_0 golden settings. - [x86] KVM: hyperv: enforce vp_index < KVM_MAX_VCPUS - [x86] KVM: hyperv: consistently use 'hv_vcpu' for 'struct kvm_vcpu_hv' variables - [x86] KVM: hyperv: keep track of mismatched VP indexes - [x86] KVM: hyperv: define VP assist page helpers - [x86] kvm/lapic: preserve gfn_to_hva_cache len on cache reinit - [x86] drm/i915: Fix intel_dp_mst_best_encoder() - [x86] drm/i915: Rename PLANE_CTL_DECOMPRESSION_ENABLE - [x86] drm/i915/gen9+: Fix initial readout for Y tiled framebuffers - drm/atomic_helper: Disallow new modesets on unregistered connectors - [x86] Drivers: hv: kvp: Fix the recent regression caused by incorrect clean-up - powerplay: Respect units on max dcfclk watermark - drm/amd/pp: Fix truncated clock value when set watermark - drm/amd/dm: Understand why attaching path/tile properties are needed - [s390x] zcrypt: reinit ap queue state machine during device probe - [x86] drm/i915: Restore sane defaults for KMS on GEM error load - [x86] drm/i915: Cleanup gt powerstate from gem - [ppc64el] KVM: Book3S HV: Fix race between kvm_unmap_hva_range and MMU mode switch - Btrfs: clean up scrub is_dev_replace parameter - Btrfs: fix deadlock with memory reclaim during scrub - btrfs: Remove extent_io_ops::fill_delalloc - btrfs: Fix error handling in btrfs_cleanup_ordered_extents - scsi: megaraid_sas: Fix combined reply queue mode detection - scsi: megaraid_sas: Add check for reset adapter bit - scsi: megaraid_sas: Use 63-bit DMA addressing - [ppc64el] pkeys: Fix handling of pkey state across fork() - btrfs: volumes: Make sure no dev extent is beyond device boundary - btrfs: Use real device structure to verify dev extent - IB/uverbs: Fix OOPs upon device disassociation - drm/vblank: Allow dynamic per-crtc max_vblank_count - [x86] drm/i915/ilk: Fix warning when reading emon_status with no output - tpm: Fix some name collisions with drivers/char/tpm.h - bcache: replace hard coded number with BUCKET_GC_GEN_MAX - bcache: treat stale && dirty keys as bad keys - [x86] KVM: VMX: Compare only a single byte for VMCS' "launched" in vCPU-run - [armhf] iio: adc: exynos-adc: Add S5PV210 variant - [armhf] iio: adc: exynos-adc: Use proper number of channels for Exynos4x12 - mt76: fix corrupted software generated tx CCMP PN - drm/nouveau: Don't WARN_ON VCPI allocation failures - iwlwifi: fix devices with PCI Device ID 0x34F0 and 11ac RF modules - iwlwifi: add new card for 9260 series - spi: spi-gpio: fix SPI_CS_HIGH capability - [ppc64el] kvm: Save and restore host AMR/IAMR/UAMOR - btrfs: scrub: pass fs_info to scrub_setup_ctx - btrfs: scrub: move scrub_setup_ctx allocation out of device_list_mutex - btrfs: scrub: fix circular locking dependency warning - btrfs: init csum_list before possible free - [arm64] PCI: qcom: Fix error handling in runtime PM support - [arm64] PCI: qcom: Don't deassert reset GPIO during probe - CIFS: Fix error paths in writeback code - CIFS: Fix leaking locked VFS cache pages in writeback retry - [x86] drm/i915: Handle vm_mmap error during I915_GEM_MMAP ioctl with WC set - [x86] drm/i915: Sanity check mmap length against object size - [x86] usb: typec: tcpm: Try PD-2.0 if sink does not respond to 3.0 source-caps - IB/mlx5: Reset access mask when looping inside page fault handler - kvm: mmu: Fix overflow on kvm mmu page limit calculation - [x86] kvm: move kvm_load/put_guest_xcr0 into atomic context - [x86] KVM: Always use 32-bit SMRAM save state for 32-bit kernels - cifs: Fix lease buffer length error (CVE-2019-15918) - ext4: protect journal inode's blocks using block_validity - [x86] PCI: Reset Lenovo ThinkPad P50 nvgpu at boot if necessary - dm mpath: fix missing call of path selector type->end_io - blk-mq: free hw queue's resource in hctx's release handler - mmc: sdhci-pci: Add support for Intel CML - PCI: dwc: Use devm_pci_alloc_host_bridge() to simplify code - cifs: smbd: take an array of reqeusts when sending upper layer data - dm crypt: move detailed message into debug level - [x86] drm/amdkfd: Add missing Polaris10 ID - kvm: Check irqchip mode before assign irqfd - drm/amdgpu: fix ring test failure issue during s3 in vce 3.0 (V2) - drm/amdgpu/{uvd,vcn}: fetch ring's read_ptr after alloc - Btrfs: fix race between block group removal and block group allocation - cifs: add spinlock for the openFileList to cifsInodeInfo - [arm64] clk: tegra: Fix maximum audio sync clock for Tegra124/210 - [arm64] clk: tegra210: Fix default rates for HDA clocks - IB/hfi1: Avoid hardlockup with flushlist_lock - apparmor: reset pos on failure to unpack for various functions - scsi: target/core: Use the SECTOR_SHIFT constant - scsi: target/iblock: Fix overrun in WRITE SAME emulation - [s390x] scsi: zfcp: fix request object use-after-free in send path causing wrong traces - cifs: Properly handle auto disabling of serverino option - [x86] ALSA: hda - Don't resume forcibly i915 HDMI/DP codec - [x86] KVM: optimize check for valid PAT value - [x86] KVM: VMX: Always signal #GP on WRMSR to MSR_IA32_CR_PAT with bad value - [x86] KVM: VMX: Fix handling of #MC that occurs during VM-Entry - [x86] KVM: VMX: check CPUID before allowing read/write of IA32_XSS - [ppc64el] KVM: Use ccr field in pt_regs struct embedded in vcpu struct - [ppc64el] KVM: Book3S HV: Fix CR0 setting in TM emulation - RDMA/srp: Document srp_parse_in() arguments - RDMA/srp: Accept again source addresses that do not have a port number - btrfs: correctly validate compression type - resource: Include resource end in walk_*() interfaces - resource: Fix find_next_iomem_res() iteration issue - resource: fix locking in find_next_iomem_res() - pstore: Fix double-free in pstore_mkfile() failure path - dm thin metadata: check if in fail_io mode when setting needs_check - [armhf,arm64] drm/panel: Add support for Armadeus ST0700 Adapt - [x86] ALSA: hda - Fix intermittent CORB/RIRB stall on Intel chips - [ppc64el] mm: Limit rma_size to 1TB when running without HV mode - iommu/iova: Remove stale cached32_node - gpio: don't WARN() on NULL descs if gpiolib is disabled - mm/migrate.c: initialize pud_entry in migrate_vma() - NFSv4: Fix delegation state recovery - bcache: only clear BTREE_NODE_dirty bit when it is set - bcache: add comments for mutex_lock(&b->write_lock) - bcache: fix race in btree_flush_write() - [x86] drm/i915: Make sure cdclk is high enough for DP audio on VLV/CHV - [s390x] virtio: fix race on airq_areas[] - drm/atomic_helper: Allow DPMS On<->Off changes for unregistered connectors - ext4: don't perform block validity checks on the journal inode - ext4: fix block validity checks for journal inodes using indirect blocks - ext4: unsigned int compared against zero - [x86] PCI: Reset both NVIDIA GPU and HDA in ThinkPad P50 workaround - [ppc64el] tm: Remove msr_tm_active() - [ppc64el] tm: Fix restoring FP/VMX facility incorrectly on interrupts (CVE-2019-15031) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.74 - bridge/mdb: remove wrong use of NLM_F_MULTI - cdc_ether: fix rndis support for Mediatek based smartphones - ipv6: Fix the link time qualifier of 'ping_v6_proc_exit_net()' - isdn/capi: check message length in capi_write() - net: Fix null de-reference of device refcount - net: gso: Fix skb_segment splat when splitting gso_size mangled skb having linear-headed frag_list - net: phylink: Fix flow control resolution - net: sched: fix reordering issues - sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero - sctp: Fix the link time qualifier of 'sctp_ctrlsock_exit()' - sctp: use transport pf_retrans in sctp_do_8_2_transport_strike - tcp: fix tcp_ecn_withdraw_cwr() to clear TCP_ECN_QUEUE_CWR - tipc: add NULL pointer check before calling kfree_rcu - tun: fix use-after-free when register netdev failed - gpiolib: acpi: Add gpiolib_acpi_run_edge_events_on_boot option and blacklist - gpio: fix line flag validation in linehandle_create - Btrfs: fix assertion failure during fsync and use of stale transaction - ixgbe: Prevent u8 wrapping of ITR value to something less than 10us - genirq: Prevent NULL pointer dereference in resend_irqs() - [s390x] KVM: kvm_s390_vm_start_migration: check dirty_bitmap before using it as target for memset() - [s390x] KVM: Do not leak kernel stack data in the KVM_S390_INTERRUPT ioctl - [x86] KVM: work around leak of uninitialized stack contents - [x86] KVM: nVMX: handle page fault in vmread - [x86] purgatory: Change compiler flags from -mcmodel=kernel to -mcmodel=large to fix kexec relocation errors - [ppc64el] Add barrier_nospec to raw_copy_in_user() - [arm64] drm/meson: Add support for XBGR8888 & ABGR8888 formats - [armhf,arm64] clk: rockchip: Don't yell about bad mmc phases when getting - PCI: Always allow probing with driver_override - gpio: fix line flag validation in lineevent_create - ubifs: Correctly use tnc_next() in search_dh_cookie() - driver core: Fix use-after-free and double free on glue directory - firmware: ti_sci: Always request response from firmware - [x86] drm: panel-orientation-quirks: Add extra quirk table entry for GPD MicroPC - Revert "Bluetooth: btusb: driver to enable the usb-wakeup feature" - modules: fix BUG when load module with rodata=n - rsi: fix a double free bug in rsi_91x_deinit() (CVE-2019-15504) - nvmem: Use the same permissions for eeprom as for nvmem https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.75 - netfilter: nf_flow_table: set default timeout after successful insertion - HID: wacom: generic: read HID_DG_CONTACTMAX from any feature report - RDMA/restrack: Release task struct which was hold by CM_ID object - [x86] Input: elan_i2c - remove Lenovo Legion Y7000 PnpID - [ppc64el] mm/radix: Use the right page size for vmemmap mapping - USB: usbcore: Fix slab-out-of-bounds bug during device reset - media: tm6000: double free if usb disconnect while streaming - ip6_gre: fix a dst leak in ip6erspan_tunnel_xmit - udp: correct reuseport selection with connected sockets - xen-netfront: do not assume sk_buff_head list is empty in error handling - net_sched: let qdisc_put() accept NULL pointer - mwifiex: Fix three heap overflow at parsing element in cfg80211_ap_settings (CVE-2019-14814, CVE-2019-14815, CVE-2019-14816) - nl80211: Fix possible Spectre-v1 for CQM RSSI thresholds - ieee802154: hwsim: Fix error handle path in hwsim_init_module - ieee802154: hwsim: unregister hw while hwsim_subscribe_all_others fails - [armhf] dts: am57xx: Disable voltage switching for SD card - [armhf] OMAP2+: Fix missing SYSC_HAS_RESET_STATUS for dra7 epwmss - [armhf] bus: ti-sysc: Fix using configured sysc mask value - [s390x] bpf: fix lcgr instruction encoding - [armhf] OMAP2+: Fix omap4 errata warning on other SoCs - [armhf] dts: dra74x: Fix iodelay configuration for mmc3 - [armhf] bus: ti-sysc: Simplify cleanup upon failures in sysc_probe() - [s390x] bpf: use 32-bit index for tail calls - netfilter: ebtables: Fix argument order to ADD_COUNTER - netfilter: nft_flow_offload: missing netlink attribute policy - netfilter: xt_nfacct: Fix alignment mismatch in xt_nfacct_match_info - NFSv4: Fix return values for nfs4_file_open() - NFSv4: Fix return value in nfs_finish_open() - NFS: Fix initialisation of I/O result struct in nfs_pgio_rpcsetup - xdp: unpin xdp umem pages in error path - qed: Add cleanup in qed_slowpath_start() - [armel,armhf] 8874/1: mm: only adjust sections of valid mm structures - batman-adv: Only read OGM2 tvlv_len after buffer len check - bpf: allow narrow loads of some sk_reuseport_md fields with offset > 0 - r8152: Set memory to all 0xFFs on failed reg reads - [x86] apic: Fix arch_dynirq_lower_bound() bug for DT enabled machines - netfilter: xt_physdev: Fix spurious error message in physdev_mt_check - netfilter: nf_conntrack_ftp: Fix debug output - NFSv2: Fix eof handling - NFSv2: Fix write regression - kallsyms: Don't let kallsyms_lookup_size_offset() fail on retrieving the first symbol - cifs: set domainName when a domain-key is used in multiuser - cifs: Use kzfree() to zero out the password - [armhf,arm64] usb: host: xhci-tegra: Set DMA mask correctly - [armel,armhf] 8901/1: add a criteria for pfn_valid of arm - sky2: Disable MSI on yet another ASUS boards (P6Xxxx) - i2c: designware: Synchronize IRQs when unregistering slave client - [x86] perf/intel: Restrict period on Nehalem - [x86] perf/amd/ibs: Fix sample bias for dispatched micro-ops - amd-xgbe: Fix error path in xgbe_mod_init() - [x86] tools/power x86_energy_perf_policy: Fix argument parsing - [x86] tools/power turbostat: fix buffer overrun - net: aquantia: fix out of memory condition on rx side - [armhf] dmaengine: ti: omap-dma: Add cleanup in omap_dma_probe() - [x86] uaccess: Don't leak the AC flags into __get_user() argument evaluation - [x86] hyper-v: Fix overflow bug in fill_gva_list() - keys: Fix missing null pointer check in request_key_auth_describe() - [x86] iommu/amd: Flush old domains in kdump kernel - [x86] iommu/amd: Fix race in increase_address_space() - [arm64] PCI: kirin: Fix section mismatch warning - ovl: fix regression caused by overlapping layers detection - floppy: fix usercopy direction - binfmt_elf: move brk out of mmap when doing direct loader exec - [arm64] kpti: Whitelist Cortex-A CPUs that don't implement the CSV3 field - media: technisat-usb2: break out of loop at end of buffer (CVE-2019-15505) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.76 - Revert "Bluetooth: validate BLE connection interval updates" - RDMA/restrack: Protect from reentry to resource return path - [ppc64el] xive: Fix bogus error code returned by OPAL - IB/core: Add an unbound WQ type to the new CQ API - HID: prodikeys: Fix general protection fault during probe - HID: sony: Fix memory corruption issue on cleanup. - HID: logitech: Fix general protection fault caused by Logitech driver - HID: hidraw: Fix invalid read in hidraw_ioctl - HID: Add quirk for HP X500 PIXART OEM mouse - mtd: cfi_cmdset_0002: Use chip_good() to retry in do_write_oneword() - CIFS: fix deadlock in cached root handling - net/mlx5e: Set ECN for received packets using CQE indication - net/mlx5e: don't set CHECKSUM_COMPLETE on SCTP packets - mlx5: fix get_ip_proto() - net/mlx5e: Allow reporting of checksum unnecessary - net/mlx5e: XDP, Avoid checksum complete when XDP prog is loaded - net/mlx5e: Rx, Fixup skb checksum for packets with tail padding - net/mlx5e: Rx, Check ip headers sanity - iwlwifi: mvm: send BCAST management frames to the right station - iwlwifi: mvm: always init rs_fw with 20MHz bandwidth rates - media: tvp5150: fix switch exit in set control handler - [x86] ASoC: Intel: cht_bsw_max98090_ti: Enable codec clock once and keep it enabled - ALSA: usb-audio: Add Hiby device family to quirks for native DSD support - ALSA: usb-audio: Add DSD support for EVGA NU Audio - ALSA: dice: fix wrong packet parameter for Alesis iO26 - [x86] ALSA: hda - Add laptop imic fixup for ASUS M9V laptop - [x86] ALSA: hda - Apply AMD controller workaround for Raven platform - objtool: Clobber user CFLAGS variable - power: supply: sysfs: ratelimit property read error message - scsi: qla2xxx: Turn off IOCB timeout timer on IOCB completion - scsi: qla2xxx: Remove all rports if fabric scan retry fails - scsi: qla2xxx: Return switch command on a timeout - Revert "drm/amd/powerplay: Enable/Disable NBPSTATE on On/OFF of UVD" - bpf: libbpf: retry loading program on EAGAIN - [armhf,arm64] irqchip/gic-v3-its: Fix LPI release for Multi-MSI devices - f2fs: check all the data segments against all node ones - [x86] PCI: hv: Avoid use of hv_pci_dev->pci_slot after freeing it - bcache: remove redundant LIST_HEAD(journal) from run_cache_set() - initramfs: don't free a non-existent initrd - blk-mq: change gfp flags to GFP_NOIO in blk_mq_realloc_hw_ctxs - blk-mq: move cancel of requeue_work to the front of blk_exit_queue - Revert "f2fs: avoid out-of-range memory access" - dm zoned: fix invalid memory access - f2fs: fix to do sanity check on segment bitmap of LFS curseg - drm: Flush output polling on shutdown - net: don't warn in inet diag when IPV6 is disabled - Bluetooth: btrtl: HCI reset on close for Realtek BT chip - [x86] ACPI: video: Add new hw_changes_brightness quirk, set it on PB Easynote MZ35 - drm/nouveau/disp/nv50-: fix center/aspect-corrected scaling - xfs: don't crash on null attr fork xfs_bmapi_read - netfilter: nft_socket: fix erroneous socket assignment - Bluetooth: btrtl: Additional Realtek 8822CE Bluetooth devices - net_sched: check cops->tcf_block in tc_bind_tclass() - net/rds: An rds_sock is added too early to the hash table - net/rds: Check laddr_check before calling it - f2fs: use generic EFSBADCRC/EFSCORRUPTED https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.77 - arcnet: provide a buffer big enough to actually receive packets - cdc_ncm: fix divide-by-zero caused by invalid wMaxPacketSize - macsec: drop skb sk before calling gro_cells_receive - net/phy: fix DP83865 10 Mbps HDX loopback disable function - net/sched: act_sample: don't push mac header on ip6gre ingress - net_sched: add max len check for TCA_KIND - nfp: flower: fix memory leak in nfp_flower_spawn_vnic_reprs (CVE-2019-19081) - openvswitch: change type of UPCALL_PID attribute to NLA_UNSPEC - ppp: Fix memory leak in ppp_write - sch_netem: fix a divide by zero in tabledist() - skge: fix checksum byte order - usbnet: ignore endpoints with invalid wMaxPacketSize - usbnet: sanity checking of packet sizes and device mtu - net: sched: fix possible crash in tcf_action_destroy() - tcp: better handle TCP_USER_TIMEOUT in SYN_SENT state - net/mlx5: Add device ID of upcoming BlueField-2 - mISDN: enforce CAP_NET_RAW for raw sockets (CVE-2019-17055) - appletalk: enforce CAP_NET_RAW for raw sockets (CVE-2019-17054) - ax25: enforce CAP_NET_RAW for raw sockets (CVE-2019-17052) - ieee802154: enforce CAP_NET_RAW for raw sockets (CVE-2019-17053) - nfc: enforce CAP_NET_RAW for raw sockets (CVE-2019-17056) - nfp: flower: prevent memory leak in nfp_flower_spawn_phy_reprs (CVE-2019-19080) - ALSA: hda: Flush interrupts on disabling - [armhf] ASoC: sgtl5000: Fix of unmute outputs on probe - [armhf] ASoC: sgtl5000: Fix charge pump source assignment - [arm*] dmaengine: bcm2835: Print error in case setting DMA mask fails - media: dib0700: fix link error for dibx000_i2c_set_speed - media: hdpvr: Add device num check and handling - time/tick-broadcast: Fix tick_broadcast_offline() lockdep complaint - sched/fair: Fix imbalance due to CPU affinity - sched/core: Fix CPU controller for !RT_GROUP_SCHED - [x86] apic: Make apic_pending_intr_clear() more robust - sched/deadline: Fix bandwidth accounting at all levels after offline migration - [x86] reboot: Always use NMI fallback when shutdown via reboot vector IPI fails - [x86] apic: Soft disable APIC before initializing it - ALSA: hda - Show the fatal CORB/RIRB error more clearly - ALSA: i2c: ak4xxx-adda: Fix a possible null pointer dereference in build_adc_controls() - EDAC/mc: Fix grain_bits calculation - media: iguanair: add sanity checks - base: soc: Export soc_device_register/unregister APIs - ALSA: usb-audio: Skip bSynchAddress endpoint check if it is invalid - [arm64] prefetch: fix a -Wtype-limits warning - md/raid1: end bio when the device faulty - md: don't call spare_active in md_reap_sync_thread if all member devices can't work - md: don't set In_sync if array is frozen - ACPI / processor: don't print errors for processorIDs == 0xff - loop: Add LOOP_SET_DIRECT_IO to compat ioctl - [x86] EDAC, pnd2: Fix ioremap() size in dnv_rd_reg() - efi: cper: print AER info of PCIe fatal error - sched/fair: Use rq_lock/unlock in online_fair_sched_group - idle: Prevent late-arriving interrupts from disrupting offline - media: gspca: zero usb_buf on error - perf config: Honour $PERF_CONFIG env var to specify alternate .perfconfig - perf test vfs_getname: Disable ~/.perfconfig to get default output - media: em28xx: modules workqueue not inited for 2nd device - media: rc: imon: Allow iMON RC protocol for ffdc 7e device - [arm64] perf record: Support aarch64 random socket_id assignment - [armhf] media: omap3isp: Don't set streaming state on random subdevs - media: radio/si470x: kill urb on error - media: hdpvr: add terminating 0 at end of string - led: triggers: Fix a memory leak bug - nbd: add missing config put - media: mceusb: fix (eliminate) TX IR signal length limit - media: dvb-frontends: use ida for pll number - posix-cpu-timers: Sanitize bogus WARNONS - media: dvb-core: fix a memory leak bug - libperf: Fix alignment trap with xyarray contents in 'perf stat' - [amd64] EDAC/amd64: Recognize DRAM device type ECC capability - [amd64] EDAC/amd64: Decode syndrome before translating address - PM / devfreq: passive: Use non-devm notifiers - PM / devfreq: exynos-bus: Correct clock enable sequence - media: cec-notifier: clear cec_adap in cec_notifier_unregister - media: saa7146: add cleanup in hexium_attach() - media: cpia2_usb: fix memory leaks - media: saa7134: fix terminology around saa7134_i2c_eeprom_md7134_gate() - perf trace beauty ioctl: Fix off-by-one error in cmd->string table - [x86] ASoC: es8316: fix headphone mixer volume table - ACPI / CPPC: do not require the _PSD method - sched/cpufreq: Align trace event behavior of fast switching - [x86] apic/vector: Warn when vector space exhaustion breaks affinity - [arm64] kpti: ensure patched kernel text is fetched from PoU - [x86] mm/pti: Do not invoke PTI functions when PTI is disabled - [x86] mm/pti: Handle unaligned address gracefully in pti_clone_pagetable() - nvmet: fix data units read and written counters in SMART log - nvme-multipath: fix ana log nsid lookup when nsid is not found - ALSA: firewire-motu: add support for MOTU 4pre - iommu/amd: Silence warnings under memory pressure - libata/ahci: Drop PCS quirk for Denverton and beyond - iommu/iova: Avoid false sharing on fq_timer_on - libtraceevent: Change users plugin directory - [armhf] dts: exynos: Mark LDO10 as always-on on Peach Pit/Pi Chromebooks - ACPI: custom_method: fix memory leaks - ACPI / PCI: fix acpi_pci_irq_enable() memory leak - closures: fix a race on wakeup from closure_sync - hwmon: (acpi_power_meter) Change log level for 'unsafe software power cap' - md/raid1: fail run raid1 array when active disk less than one - dmaengine: ti: edma: Do not reset reserved paRAM slots - kprobes: Prohibit probing on BUG() and WARN() address - [s390x] crypto: xts-aes-s390 fix extra run-time crypto self tests finding - [x86] cpu: Add Tiger Lake to Intel family - [x86] platform: intel_pmc_core: Do not ioremap RAM - ASoC: dmaengine: Make the pcm->name equal to pcm->id if the name is not set - raid5: don't set STRIPE_HANDLE to stripe which is in batch list - mmc: core: Clarify sdio_irq_pending flag for MMC_CAP2_SDIO_IRQ_NOTHREAD - mmc: sdhci: Fix incorrect switch to HS mode - mmc: core: Add helper function to indicate if SDIO IRQs is enabled - [armhf,arm64] mmc: dw_mmc: Re-store SDIO IRQs mask at system resume - raid5: don't increment read_errors on EILSEQ return - libertas: Add missing sentinel at end of if_usb.c fw_table - e1000e: add workaround for possible stalled packet - ALSA: hda - Drop unsol event handler for Intel HDMI codecs - drm/amd/powerplay/smu7: enforce minimal VBITimeout (v2) - media: ttusb-dec: Fix info-leak in ttusb_dec_send_command() - [x86] ALSA: hda/realtek - Blacklist PC beep for Lenovo ThinkCentre M73/93 - [x86] iommu/amd: Override wrong IVRS IOAPIC on Raven Ridge systems - btrfs: extent-tree: Make sure we only allocate extents from block groups with the same type - [armhf] media: omap3isp: Set device on omap3isp subdevs - PM / devfreq: passive: fix compiler warning - iwlwifi: fw: don't send GEO_TX_POWER_LIMIT command to FW version 36 - ALSA: firewire-tascam: handle error code when getting current source of clock - ALSA: firewire-tascam: check intermediate state of clock status and retry - scsi: scsi_dh_rdac: zero cdb in send_mode_select() - scsi: qla2xxx: Fix Relogin to prevent modifying scan_state flag - printk: Do not lose last line in kmsg buffer dump - IB/mlx5: Free mpi in mp_slave mode - IB/hfi1: Define variables as unsigned long to fix KASAN warning - randstruct: Check member structs in is_pure_ops_struct() - ceph: use ceph_evict_inode to cleanup inode's resource - [x86] ALSA: hda/realtek - PCI quirk for Medion E4254 - blk-mq: add callback of .cleanup_rq - scsi: implement .cleanup_rq callback - [ppc64el] imc: Dont create debugfs files for cpu-less nodes - fuse: fix missing unlock_page in fuse_writepage() - [x86] KVM: always stop emulation on page fault - [x86] KVM: set ctxt->have_exception in x86_decode_insn() - [x86] KVM: Manually calculate reserved bits when loading PDPTRS - [x86] media: sn9c20x: Add MSI MS-1039 laptop to flip_dmi_table - media: don't drop front-end reference count for ->detach - binfmt_elf: Do not move brk for INTERP-less ET_EXEC - [x86] ASoC: Intel: NHLT: Fix debug print format - [x86] ASoC: Intel: Skylake: Use correct function to access iomem space - [x86] ASoC: Intel: Fix use of potentially uninitialized variable - [arm64] Revert "arm64: Remove unnecessary ISBs from set_{pte,pmd,pud}" - [arm64] tlb: Ensure we execute an ISB following walk cache invalidation - [arm64] dts: rockchip: limit clock rate of MMC controllers for RK3328 - alarmtimer: Use EOPNOTSUPP instead of ENOTSUPP - regulator: Defer init completion for a while after late_initcall - efifb: BGRT: Improve efifb_bgrt_sanity_check - gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps - memcg, oom: don't require __GFP_FS when invoking memcg OOM killer - memcg, kmem: do not fail __GFP_NOFAIL charges - i40e: check __I40E_VF_DISABLE bit in i40e_sync_filters_subtask - block: fix null pointer dereference in blk_mq_rq_timed_out() - smb3: allow disabling requesting leases - ovl: Fix dereferencing possible ERR_PTR() - ovl: filter of trusted xattr results in audit - btrfs: fix allocation of free space cache v1 bitmap pages - Btrfs: fix use-after-free when using the tree modification log - btrfs: Relinquish CPUs in btrfs_compare_trees - btrfs: qgroup: Fix the wrong target io_tree when freeing reserved data space - btrfs: qgroup: Fix reserved data space leak if we have multiple reserve calls - Btrfs: fix race setting up and completing qgroup rescan workers - md/raid6: Set R5_ReadError when there is read failure on parity disk - md: don't report active array_state until after revalidate_disk() completes. - md: only call set_in_sync() when it is expected to succeed. - cfg80211: Purge frame registrations on iftype change - /dev/mem: Bail out upon SIGKILL. - ext4: fix warning inside ext4_convert_unwritten_extents_endio - ext4: fix punch hole for inline_data file systems - quota: fix wrong condition in is_quota_modification() - hwrng: core - don't wait on add_early_randomness() - CIFS: fix max ea value size - CIFS: Fix oplock handling for SMB 2.1+ protocols - md/raid0: avoid RAID0 data corruption due to layout confusion. - fuse: fix deadlock with aio poll and fuse_iqueue::waitq.lock - mm/compaction.c: clear total_{migrate,free}_scanned before scanning a new zone - drm/amd/display: Restore backlight brightness after system resume https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.78 - tpm: use tpm_try_get_ops() in tpm-sysfs.c. - tpm: Fix TPM 1.2 Shutdown sequence to prevent future TPM operations - [armhf,arm64] drm/panel: simple: fix AUO g185han01 horizontal blanking - [armhf,arm64] drm/panel: check failure cases in the probe func - [armhf,arm64] drm/rockchip: Check for fast link training before enabling psr - gpu: drm: radeon: Fix a possible null-pointer dereference in radeon_connector_set_property() - [ppc64el] PCI: rpaphp: Avoid a sometimes-uninitialized warning - ipmi_si: Only schedule continuously in the thread in maintenance mode - [armhf,arm64] clk: sunxi-ng: v3s: add missing clock slices for MMC2 module clocks - drm/amd/display: fix issue where 252-255 values are clipped - drm/amd/display: reprogram VM config when system resume - [ppc64el] powernv/ioda2: Allocate TCE table levels on demand for default DMA window - [ppc64el] xmon: Check for HV mode when dumping XIVE info from OPAL - [ppc64el] rtas: use device model APIs and serialization during LPM - [ppc64el] futex: Fix warning: 'oldval' may be used uninitialized in this function - [ppc64el] pseries/mobility: use cond_resched when updating device tree - [armhf,arm64] pinctrl: tegra: Fix write barrier placement in pmx_writel - [ppc64el] eeh: Clear stale EEH_DEV_NO_HANDLER flag - vfio_pci: Restore original state on release - drm/nouveau/volt: Fix for some cards having 0 maximum voltage - [x86] pinctrl: amd: disable spurious-firing GPIO IRQs - drm/amd/display: support spdif - drm/amdgpu/si: fix ASIC tests - [ppc64el] exception: machine check use correct cfar for late handler - pstore: fs superblock limits - [ppc64el] pseries: correctly track irq state in default idle - [arm64] pinctrl: meson-gxbb: Fix wrong pinning definition for uart_c - [ppc64el] dump kernel log before carrying out fadump or kdump - [arm64] mbox: qcom: add APCS child device for QCS404 - scsi: core: Reduce memory required for SCSI logging - dma-buf/sw_sync: Synchronize signal vs syncpt free - ext4: fix potential use after free after remounting with noblock_validity - [mips*] tlbex: Explicitly cast _PAGE_NO_EXEC to a boolean - [x86] i2c-cht-wc: Fix lockdep warning - [x86] mfd: intel-lpss: Remove D3cold delay - HID: wacom: Fix several minor compiler warnings - [armel,armhf] 8898/1: mm: Don't treat faults reported from cache maintenance as writes - [armhf] rtc: snvs: fix possible race condition - HID: apple: Fix stuck function keys when using FN - [arm64] PCI: rockchip: Propagate errors for optional regulators - [armhf] PCI: imx6: Propagate errors for optional regulators - [armel,armhf] 8903/1: ensure that usable memory in bank 0 starts from a PMD-aligned address - fat: work around race with userspace's read via blockdev while mounting - pktcdvd: remove warning on attempting to register non-passthrough dev - [s390x] hypfs: Fix error number left in struct pointer member - ocfs2: wait for recovering done after direct unlock request - [arm64] consider stack randomization for mmap base only when necessary - [mips*] properly account for stack randomization and stack guard gap - [armel,armhf] properly account for stack randomization and stack guard gap - [armel,armhf] use STACK_TOP when computing mmap base address - block: mq-deadline: Fix queue restart handling - bpf: fix use after free in prog symbol exposure - cxgb4:Fix out-of-bounds MSI-X info array access - erspan: remove the incorrect mtu limit for erspan - hso: fix NULL-deref on tty open - ipv6: drop incoming packets having a v4mapped source address - ipv6: Handle missing host route in __ipv6_ifa_notify - net: ipv4: avoid mixed n_redirects and rate_tokens usage - net: qlogic: Fix memory leak in ql_alloc_large_buffers - net: Unpublish sk from sk_reuseport_cb before call_rcu - nfc: fix memory leak in llcp_sock_bind() - qmi_wwan: add support for Cinterion CLS8 devices - rxrpc: Fix rxrpc_recvmsg tracepoint - sch_dsmark: fix potential NULL deref in dsmark_init() - udp: fix gso_segs calculations - vsock: Fix a lockdep warning in __vsock_release() - udp: only do GSO if # of segs > 1 - net/rds: Fix error handling in rds_ib_add_one() - xen-netfront: do not use ~0U as error return value for xennet_fill_frags() - tipc: fix unlimited bundling of small messages - sch_cbq: validate TCA_CBQ_WRROPT to avoid crash - NFC: fix attrs checks in netlink interface - kexec: bail out upon SIGKILL when allocating memory. - 9p/cache.c: Fix memory leak in v9fs_cache_session_get_cookie https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.79 - [s390x] process: avoid potential reading of freed stack - [s390x] KVM: Test for bad access register and size at the start of S390_MEM_OP - [s390x] topology: avoid firing events before kobjs are created - [s390x] cio: exclude subchannels with no parent from pseudo check - [ppc64el] KVM: Book3S HV: Fix race in re-enabling XIVE escalation interrupts - [ppc64el] KVM: Book3S HV: Check for MMU ready on piggybacked virtual cores - [ppc64el] KVM: Book3S HV: Don't lose pending doorbell request on migration on P9 - [x86] KVM: Fix userspace set invalid CR4 - [x86] KVM: nVMX: handle page fault in vmread fix - nbd: fix max number of supported devs - PM / devfreq: tegra: Fix kHz to Hz conversion - ASoC: Define a set of DAPM pre/post-up events - [armhf] ASoC: sgtl5000: Improve VAG power and mute control - [ppc64el] mce: Fix MCE handling for huge pages - [ppc64el] mce: Schedule work from irq_work - [ppc64el] powernv: Restrict OPAL symbol map to only be readable by root - [ppc64el] powernv/ioda: Fix race in TCE level allocation - [ppc64el] book3s64/mm: Don't do tlbie fixup for some hardware revisions - tools lib traceevent: Fix "robust" test of do_generate_dynamic_list_file - [x86] crypto: qat - Silence smp_processor_id() warning - crypto: skcipher - Unmap pages after an external error - [mips*el/loongson-3] Treat Loongson Extensions as ASEs - power: supply: sbs-battery: use correct flags field - power: supply: sbs-battery: only return health when battery present - tracing: Make sure variable reference alias has correct var_ref_idx - usercopy: Avoid HIGHMEM pfn warning - timer: Read jiffies once when forwarding base clk - [x86] PCI: vmd: Fix shadow offsets to reflect spec changes - PCI: Restore Resizable BAR size bits correctly for 1MB BARs - [armhf] watchdog: imx2_wdt: fix min() calculation in imx2_wdt_set_timeout - perf stat: Fix a segmentation fault when using repeat forever - [armhf] drm/omap: fix max fclk divider for omap36xx - [arm64] drm/msm/dsi: Fix return value check for clk_get_parent - drm/nouveau/kms/nv50-: Don't create MSTMs for eDP connectors - [x86] drm/i915/gvt: update vgpu workload head pointer correctly - mmc: sdhci: improve ADMA error reporting - Revert "locking/pvqspinlock: Don't wait if vCPU is preempted" - xen/xenbus: fix self-deadlock after killing user process - ieee802154: atusb: fix use-after-free at disconnect - [s390x] cio: avoid calling strlen on null pointer - cfg80211: initialize on-stack chandefs - [arm64] cpufeature: Detect SSBS and advertise to userspace - ima: always return negative code for error - ima: fix freeing ongoing ahash_request - fs: nfs: Fix possible null-pointer dereferences in encode_attrs() - 9p: Transport error uninitialized - 9p: avoid attaching writeback_fid on mmap with type PRIVATE - xen/pci: reserve MCFG areas earlier - ceph: fix directories inode i_blkbits initialization - ceph: reconnect connection if session hang in opening state - watchdog: aspeed: Add support for AST2600 - netfilter: nf_tables: allow lookups in dynamic sets - drm/amdgpu: Fix KFD-related kernel oops on Hawaii - drm/amdgpu: Check for valid number of registers to read - pNFS: Ensure we do clear the return-on-close layout stateid on fatal errors - [x86] purgatory: Disable the stackleak GCC plugin for the purgatory - ntb: point to right memory window index - thermal: Fix use-after-free when unregistering thermal zone device - thermal_hwmon: Sanitize thermal_zone type - libnvdimm/region: Initialize bad block for volatile namespaces - fuse: fix memleak in cuse_channel_open - libnvdimm/nfit_test: Fix acpi_handle redefinition - sched/membarrier: Call sync_core only before usermode for same mm - sched/membarrier: Fix private expedited registration check - sched/core: Fix migration to invalid CPU in __set_cpus_allowed_ptr() - kernel/elfcore.c: include proper prototypes - nfp: flower: fix memory leak in nfp_flower_spawn_vnic_reprs - drm/radeon: Bail earlier when radeon.cik_/si_support=0 is passed - [ppc64el] KVM: HV: XIVE: Free escalation interrupts before disabling the VP - [x86] KVM: nVMX: Fix consistency check on injected exception error code - nbd: fix crash when the blksize is zero - [ppc64el] pseries: Fix cpu_hotplug_lock acquisition in resize_hpt() - [ppc64el] radix: Rename CPU_FTR_P9_TLBIE_BUG feature flag - tools lib traceevent: Do not free tep->cmdlines in add_new_comm() on failure - tick: broadcast-hrtimer: Fix a race in bc_set_next - perf tools: Fix segfault in cpu_cache_level__read() - perf stat: Reset previous counts on repeat with interval - [arm64] ssbd: Add support for PSTATE.SSBS rather than trapping to EL3 - [arm64] KVM: Set SCTLR_EL2.DSSBS if SSBD is forcefully disabled and !vhe - [arm64] docs: Document SSBS HWCAP - [arm64] fix SSBS sanitization - [arm64] Add sysfs vulnerability show for spectre-v1 - [arm64] add sysfs vulnerability show for meltdown - [arm64] enable generic CPU vulnerabilites support - [arm64] Always enable ssb vulnerability detection - [arm64] Provide a command line to disable spectre_v2 mitigation - [arm64] Advertise mitigation of Spectre-v2, or lack thereof - [arm64] Always enable spectre-v2 vulnerability detection - [arm64] add sysfs vulnerability show for spectre-v2 - [arm64] add sysfs vulnerability show for speculative store bypass - [arm64] ssbs: Don't treat CPUs with SSBS as unaffected by SSB - [arm64] Force SSBS on context switch - [arm64] Use firmware to detect CPUs that are not affected by Spectre-v2 - [arm64] speculation: Support 'mitigations=' cmdline option - vfs: Fix EOVERFLOW testing in put_compat_statfs64 - cfg80211: add and use strongly typed element iteration macros - cfg80211: Use const more consistently in for_each_element macros - nl80211: validate beacon head (CVE-2019-16746) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.80 - panic: ensure preemption is disabled during panic() - f2fs: use EINVAL for superblock with invalid magic - USB: rio500: Remove Rio 500 kernel driver - USB: yurex: Don't retry on unexpected errors - USB: yurex: fix NULL-derefs on disconnect - USB: usb-skeleton: fix runtime PM after driver unbind - USB: usb-skeleton: fix NULL-deref on disconnect - xhci: Fix false warning message about wrong bounce buffer write length - xhci: Prevent device initiated U1/U2 link pm if exit latency is too long - xhci: Check all endpoints for LPM timeout - xhci: Fix USB 3.1 capability detection on early xHCI 1.1 spec based hosts - usb: xhci: wait for CNR controller not ready bit in xhci resume - xhci: Prevent deadlock when xhci adapter breaks during init - xhci: Increase STS_SAVE timeout in xhci_suspend() - USB: adutux: fix use-after-free on disconnect - USB: adutux: fix NULL-derefs on disconnect - USB: adutux: fix use-after-free on release - USB: iowarrior: fix use-after-free on disconnect - USB: iowarrior: fix use-after-free on release - USB: iowarrior: fix use-after-free after driver unbind - USB: usblp: fix runtime PM after driver unbind - USB: chaoskey: fix use-after-free on release - USB: ldusb: fix NULL-derefs on driver unbind - serial: uartlite: fix exit path null pointer - USB: serial: keyspan: fix NULL-derefs on open() and write() - USB: serial: ftdi_sio: add device IDs for Sienna and Echelon PL-20 - USB: serial: option: add Telit FN980 compositions - USB: serial: option: add support for Cinterion CLS8 devices - USB: serial: fix runtime PM after driver unbind - USB: usblcd: fix I/O after disconnect - USB: microtek: fix info-leak at probe - USB: dummy-hcd: fix power budget for SuperSpeed mode - USB: legousbtower: fix slab info leak at probe - USB: legousbtower: fix deadlock on disconnect - USB: legousbtower: fix potential NULL-deref on disconnect - USB: legousbtower: fix open after failed reset request - USB: legousbtower: fix use-after-free on release - [x86] mei: me: add comet point (lake) LP device ids - [x86] mei: avoid FW version request on Ibex Peak and earlier - [armhf,arm64] iio: adc: axp288: Override TS pin bias current for some models - efivar/ssdt: Don't iterate over EFI vars if no SSDT override was specified - perf llvm: Don't access out-of-scope array - perf inject jit: Fix JIT_CODE_MOVE filename - blk-wbt: fix performance regression in wbt scale_up/scale_down - CIFS: Gracefully handle QueryInfo errors during open - CIFS: Force revalidate inode when dentry is stale - CIFS: Force reval dentry if LOOKUP_REVAL flag is set - kernel/sysctl.c: do not override max_threads provided by userspace - mm/vmpressure.c: fix a signedness bug in vmpressure_register_event() - gpiolib: don't clear FLAG_IS_OUT when emulating open-drain/open-source - cifs: use cifsInodeInfo->open_file_lock while iterating to avoid a panic - btrfs: fix incorrect updating of log root tree - btrfs: fix uninitialized ret in ref-verify - NFS: Fix O_DIRECT accounting of number of bytes read/written - [mips*] elf_hwcap: Export userspace ASEs - ACPICA: ACPI 6.3: PPTT add additional fields in Processor Structure Flags - ACPI/PPTT: Add support for ACPI 6.3 thread flag - [arm64] topology: Use PPTT to determine if PE is a thread - vfs: Fix the locking in dcache_readdir() and friends - media: stkwebcam: fix runtime PM after driver unbind - [arm64] sve: Fix wrong free for task->thread.sve_state - [rt] tracing/hwlat: Report total time spent in all NMIs during the sample - [rt] tracing/hwlat: Don't ignore outer-loop duration when calculating max_latency - ftrace: Get a reference counter for the trace_array on filter files - tracing: Get trace_array reference for available_tracers files - hwmon: Fix HWMON_P_MIN_ALARM mask - [x86] asm: Fix MWAITX C-state hint value - [x86] PCI: vmd: Fix config addressing when using bus offsets - perf/hw_breakpoint: Fix arch_hw_breakpoint use-before-initialization https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.81 - nvme-pci: Fix a race in controller removal - scsi: ufs: skip shutdown if hba is not powered - scsi: megaraid: disable device when probe failed after enabled device - scsi: qla2xxx: Fix unbound sleep in fcport delete path. - [armhf] OMAP2+: Fix missing reset done flag for am3 and am43 - [armhf] OMAP2+: Fix warnings with broken omap2_set_init_voltage() - xen/efi: Set nonblocking callbacks - nl80211: fix null pointer dereference - mac80211: fix txq null pointer dereference - netfilter: nft_connlimit: disable bh on garbage collection - [mips*el/loongson-3] Fix the link time qualifier of 'serial_exit()' - [arm64] net: hisilicon: Fix usage of uninitialized variable in function mdio_sc_cfg_reg_write() - lib: textsearch: fix escapes in example code - r8152: Set macpassthru in reset_resume callback - libata/ahci: Fix PCS quirk application - md/raid0: fix warning message for parameter default_layout - ocfs2: fix panic due to ocfs2_wq is null - ipv4: fix race condition between route lookup and invalidation - net: avoid potential infinite loop in tc_ctl_action() - net: ipv6: fix listify ip6_rcv_finish in case of forwarding - [armhf,arm64] net: stmmac: disable/enable ptp_ref_clk in suspend/resume flow - sctp: change sctp_prot .no_autobind with true - memfd: Fix locking when tagging pins - USB: legousbtower: fix memleak on disconnect - ALSA: hda/realtek - Add support for ALC711 - [x86] ALSA: hda/realtek - Enable headset mic on Asus MJ401TA - ALSA: usb-audio: Disable quirks for BOSS Katana amplifiers - ALSA: hda - Force runtime PM on Nvidia HDMI codecs - USB: serial: ti_usb_3410_5052: fix port-close races - USB: ldusb: fix memleak on disconnect - USB: usblp: fix use-after-free on disconnect - USB: ldusb: fix read info leaks - [mips*] tlbex: Fix build_restore_pagemask KScratch restore - staging: wlan-ng: fix exit return when sme->key_idx >= NUM_WEPKEYS - [s390x] scsi: zfcp: fix reaction on bit error threshold notification - scsi: sd: Ignore a failure to sync cache due to lack of authorization - scsi: core: save/restore command resid for error handling - scsi: core: try to get module before removing device - scsi: ch: Make it possible to open a ch device multiple times again - Input: synaptics-rmi4 - avoid processing unknown IRQs - ACPI: CPPC: Set pcc_data[pcc_ss_id] to NULL in acpi_cppc_processor_exit() - cfg80211: wext: avoid copying malformed SSIDs (CVE-2019-17133) - mac80211: Reject malformed SSID elements - [x86] drm/edid: Add 6 bpc quirk for SDC panel in Lenovo G50 - drm/ttm: Restore ttm prefaulting - drm/amdgpu: Bail earlier when amdgpu.cik_/si_support is not set to 1 - drivers/base/memory.c: don't access uninitialized memmaps in soft_offline_page_store() - fs/proc/page.c: don't access uninitialized memmaps in fs/proc/page.c - mm/memory-failure.c: don't access uninitialized memmaps in memory_failure() - mm/slub: fix a deadlock in show_slab_objects() - mm/page_owner: don't access uninitialized memmaps when reading /proc/pagetypeinfo - hugetlbfs: don't access uninitialized memmaps in pfn_range_valid_gigantic() - mm/memory-failure: poison read receives SIGKILL instead of SIGBUS if mmaped more than once - EDAC/ghes: Fix Use after free in ghes_edac remove path - [arm64] Enable workaround for Cavium TX2 erratum 219 when running SMT - CIFS: avoid using MID 0xFFFF - CIFS: Fix use after free of file info structures - perf/aux: Fix AUX output stopping - tracing: Fix race in perf_trace_buf initialization - dm cache: fix bugs when a GFP_NOWAIT allocation fails - [amd64] boot: Make level2_kernel_pgt pages invalid outside kernel area - [x86] apic/x2apic: Fix a NULL pointer deref when handling a dying cpu - [x86] pinctrl: cherryview: restore Strago DMI workaround for all versions - [arm64] pinctrl: armada-37xx: fix control of pins 32 and up - [arm64] pinctrl: armada-37xx: swap polarity on LED group - btrfs: block-group: Fix a memory leak due to missing btrfs_put_block_group() - Btrfs: add missing extents release on file extent cluster relocation error - Btrfs: check for the full sync flag while holding the inode lock during fsync - btrfs: tracepoints: Fix bad entry members of qgroup events - memstick: jmb38x_ms: Fix an error handling path in 'jmb38x_ms_probe()' - cpufreq: Avoid cpufreq_suspend() deadlock on system shutdown - xen/netback: fix error path of xenvif_connect_data() - PCI: PM: Fix pci_power_up() - blk-rq-qos: fix first node deletion of rq_qos_del() - RDMA/cxgb4: Do not dma memory off of the stack (CVE-2019-17075) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.82 - zram: fix race between backing_dev_show and backing_dev_store - dm snapshot: introduce account_start_copy() and account_end_copy() - dm snapshot: rework COW throttling to fix deadlock - Btrfs: fix inode cache block reserve leak on failure to allocate data space - Btrfs: fix memory leak due to concurrent append writes with fiemap - btrfs: qgroup: Always free PREALLOC META reserve in btrfs_delalloc_release_extents() - btrfs: tracepoints: Fix wrong parameter order for qgroup events - wil6210: fix freeing of rx buffers in EDMA mode - f2fs: flush quota blocks after turnning it off - scsi: lpfc: Fix a duplicate 0711 log message number. - f2fs: fix to recover inode's i_gc_failures during POR - f2fs: fix to recover inode->i_flags of inode block during POR - [x86] HID: i2c-hid: add Direkt-Tek DTLAPY133-1 to descriptor override - [arm64,armel,armhf] usb: dwc2: fix unbalanced use of external vbus-supply - [x86] tools/power turbostat: fix goldmont C-state limit decoding - [x86] cpu: Add Atom Tremont (Jacobsville) - [arm64] drm/msm/dpu: handle failures while initializing displays - bcache: fix input overflow to writeback_rate_minimum - PCI: Fix Switchtec DMA aliasing quirk dmesg noise - Btrfs: fix deadlock on tree root leaf when finding free extent - netfilter: ipset: Make invalid MAC address checks consistent - HID: i2c-hid: Disable runtime PM for LG touchscreen - HID: i2c-hid: Ignore input report if there's no data present on Elan touchpanels - HID: i2c-hid: Add Odys Winbook 13 to descriptor override - [x86] platform/x86: Add the VLV ISP PCI ID to atomisp2_pm - [x86] platform/x86: Fix config space access for intel_atomisp2_pm - ath10k: assign 'n_cipher_suites = 11' for WCN3990 to enable WPA3 - HID: Add ASUS T100CHI keyboard dock battery quirks - NFSv4: Ensure that the state manager exits the loop on SIGKILL - HID: steam: fix boot loop with bluetooth firmware - HID: steam: fix deadlock with input devices. - [arm64,armhf] usb: dwc3: gadget: early giveback if End Transfer already completed - [arm64,armhf] usb: dwc3: gadget: clear DWC3_EP_TRANSFER_STARTED on cmd complete - ALSA: usb-audio: Cleanup DSD whitelist - usb: handle warm-reset port requests on hub resume - [armhf] rtc: pcf8523: set xtal load capacitance from DT - [arm64] Add MIDR encoding for HiSilicon Taishan CPUs - [arm64] kpti: Whitelist HiSilicon Taishan v110 CPUs - scsi: lpfc: Correct localport timeout duration error - CIFS: Respect SMB2 hdr preamble size in read responses - cifs: add credits from unmatched responses/messages - ALSA: hda/realtek - Apply ALC294 hp init also for S4 resume - ext4: disallow files with EXT4_JOURNAL_DATA_FL from EXT4_IOC_SWAP_BOOT - exec: load_script: Do not exec truncated interpreter path - [arm64,armhf] net: dsa: mv88e6xxx: Release lock while requesting IRQ - PCI/PME: Fix possible use-after-free on remove - [arm64,armhf] iio: adc: meson_saradc: Fix memory allocation order - [x86] iio: fix center temperature of bmc150-accel-core - perf map: Fix overlapped map handling - perf script brstackinsn: Fix recovery from LBR/binary mismatch - perf jevents: Fix period for Intel fixed counters - perf tools: Propagate get_cpuid() error - perf annotate: Propagate perf_env__arch() error - perf annotate: Fix the signedness of failure returns - perf annotate: Propagate the symbol__annotate() error return - perf annotate: Return appropriate error code for allocation failures - staging: rtl8188eu: fix null dereference when kzalloc fails - RDMA/hfi1: Prevent memory leak in sdma_init (CVE-2019-19065) - RDMA/iwcm: Fix a lock inversion issue - [x86] HID: hyperv: Use in-place iterator API in the channel callback - nfs: Fix nfsi->nrequests count error on nfs_inode_remove_request - [arm64] ftrace: Ensure synchronisation in PLT setup for Neoverse-N1 - [arm64] gpio: max77620: Use correct unit for debounce times - fs: cifs: mute -Wunused-const-variable message - [armhf] serial: mctrl_gpio: Check for NULL pointer - efi/cper: Fix endianness of PCIe class code - [x86] efi/x86: Do not clean dummy variable in kexec path - [x86] xen: Return from panic notifier - ocfs2: clear zero in unaligned direct IO - fs: ocfs2: fix possible null-pointer dereferences in ocfs2_xa_prepare_entry() - fs: ocfs2: fix a possible null-pointer dereference in ocfs2_write_end_nolock() - fs: ocfs2: fix a possible null-pointer dereference in ocfs2_info_scan_inode_alloc() - [arm64] armv8_deprecated: Checking return value for memory allocation - [x86] cpu: Add Comet Lake to the Intel CPU models header - sched/vtime: Fix guest/system mis-accounting on task switch - [x86] perf/x86/amd: Change/fix NMI latency mitigation to use a timestamp - drm/amdgpu: fix memory leak - iio: imu: adis16400: release allocated memory on failure (CVE-2019-19060) - [x86] virt: vbox: fix memory leak in hgcm_call_preprocess_linaddr (CVE-2019-19048) - NFSv4: Fix leak of clp->cl_acceptor string - tracing: Initialize iter->seq after zeroing in tracing_read_pipe() - ALSA: hda/realtek: Reduce the Headphone static noise on XPS 9350/9360 - iwlwifi: exclude GEO SAR support for 3168 - nbd: verify socket is supported during setup - USB: legousbtower: fix a signedness bug in tower_probe() - [x86] thunderbolt: Use 32-bit writes when writing ring producer/consumer - ath6kl: fix a NULL-ptr-deref bug in ath6kl_usb_alloc_urb_from_pipe() (CVE-2019-15098) - fuse: flush dirty data/metadata before non-truncate setattr - fuse: truncate pending writes on O_TRUNC - ALSA: bebob: Fix prototype of helper function to return negative value - ALSA: hda/realtek - Fix 2 front mics of codec 0x623 - ALSA: hda/realtek - Add support for ALC623 - UAS: Revert commit 3ae62a42090f ("UAS: fix alignment of scatter/gather segments") - USB: gadget: Reject endpoints with 0 maxpacket value - usb-storage: Revert commit 747668dbc061 ("usb-storage: Set virt_boundary_mask to avoid SG overflows") - USB: ldusb: fix ring-buffer locking - USB: ldusb: fix control-message timeout - usb: xhci: fix __le32/__le64 accessors in debugfs code - USB: serial: whiteheat: fix potential slab corruption - USB: serial: whiteheat: fix line-speed endianness - scsi: target: cxgbit: Fix cxgbit_fw4_ack() - HID: i2c-hid: add Trekstor Primebook C11B to descriptor override - HID: Fix assumption that devices have inputs - HID: fix error message in hid_open_report() - nl80211: fix validation of mesh path nexthop - [s390x] cmm: fix information leak in cmm_timeout_handler() - [s390x] idle: fix cpu idle time calculation - [arm64] Ensure VM_WRITE|VM_SHARED ptes are clean by default - rtlwifi: Fix potential overflow on P2P code (CVE-2019-17666) - [arm64] dmaengine: qcom: bam_dma: Fix resource leak - [armhf] dmaengine: cppi41: Fix cppi41_dma_prep_slave_sg() when idle - NFS: Fix an RCU lock leak in nfs4_refresh_delegation_stateid() - batman-adv: Avoid free/alloc race when handling OGM buffer - llc: fix sk_buff leak in llc_sap_state_process() - llc: fix sk_buff leak in llc_conn_service() - rxrpc: Fix call ref leak - rxrpc: rxrpc_peer needs to hold a ref on the rxrpc_local record - rxrpc: Fix trace-after-put looking at the put peer record - NFC: pn533: fix use-after-free and memleaks - bonding: fix potential NULL deref in bond_update_slave_arr - net: usb: sr9800: fix uninitialized local variable - sch_netem: fix rcu splat in netem_enqueue() - ALSA: timer: Simplify error path in snd_timer_open() - ALSA: timer: Fix mutex deadlock at releasing card - ALSA: usb-audio: DSD auto-detection for Playback Designs - ALSA: usb-audio: Update DSD support quirks for Oppo and Rotel - ALSA: usb-audio: Add DSD support for Gustard U16/X26 USB Interface - [ppc64el] powerpc/powernv: Fix CPU idle to be called with IRQs disabled - Revert "ALSA: hda: Flush interrupts on disabling" https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.83 - regulator: of: fix suspend-min/max-voltage parsing - [arm64] dts: allwinner: a64: pine64-plus: Add PHY regulator delay - [arm64] arm64: dts: allwinner: a64: sopine-baseboard: Add PHY regulator delay - [armhf] regulator: ti-abb: Fix timeout in ti_abb_wait_txdone/ti_abb_clear_all_txdone - [x86] ASoC: rt5682: add NULL handler to set_jack function - [armhf] regulator: pfuze100-regulator: Variable "val" in pfuze100_regulator_probe() could be uninitialized - [arm64,armhf] ASoc: rockchip: i2s: Fix RPM imbalance - [armel,armhf] mm: fix alignment handler faults under memory pressure - scsi: qla2xxx: fix a potential NULL pointer dereference - scsi: scsi_dh_alua: handle RTPG sense code correctly during state transitions - drm/amdgpu: fix potential VM faults - scsi: target: core: Do not overwrite CDB byte 1 - tracing: Fix "gfp_t" format for synthetic events - of: unittest: fix memory leak in unittest_data_add (CVE-2019-19049) - [arm64,armhf] irqchip/gic-v3-its: Use the exact ITSList for VMOVP - cifs: Fix cifsInodeInfo lock_sem deadlock when reconnect occurs - nbd: protect cmd->status with cmd->lock - nbd: handle racing with error'ed out commands - cxgb4: fix panic when attaching to ULD fail - dccp: do not leak jiffies on the wire - erspan: fix the tun_info options_len check for erspan - inet: stop leaking jiffies on the wire - net: annotate accesses to sk->sk_incoming_cpu - net: annotate lockless accesses to sk->sk_napi_id - [armhf] net: dsa: bcm_sf2: Fix IMP setup for port different than 8 - net: fix sk_page_frag() recursion from memory reclaim - [arm64] net: hisilicon: Fix ping latency when deal with high throughput - net/mlx4_core: Dynamically set guaranteed amount of counters per VF - netns: fix GFP flags in rtnl_net_notifyid() - net: usb: lan78xx: Disable interrupts before calling generic_handle_irq() - net: Zeroing the structure ethtool_wolinfo in ethtool_get_wol() - udp: fix data-race in udp_set_dev_scratch() - vxlan: check tun_info options_len properly - net: add skb_queue_empty_lockless() - udp: use skb_queue_empty_lockless() - net: use skb_queue_empty_lockless() in poll() handlers - net: use skb_queue_empty_lockless() in busy poll contexts - net: add READ_ONCE() annotation in __skb_wait_for_more_packets() - ipv4: fix route update on metric change. - net/mlx5e: Fix handling of compressed CQEs in case of low NAPI budget - r8169: fix wrong PHY ID issue with RTL8168dp - net/mlx5e: Fix ethtool self test: link speed - [armhf] net: dsa: b53: Do not clear existing mirrored port mask - [armhf] net: phy: bcm7xxx: define soft_reset for 40nm EPHY - net: usb: lan78xx: Connect PHY before registering MAC - [arm64,armhf] net: dsa: fix switch tree list - r8152: add device id for Lenovo ThinkPad USB-C Dock Gen 2 - net/flow_dissector: switch to siphash - wireless: Skip directory when generating certificates - [x86] platform/x86: pmc_atom: Add Siemens SIMATIC IPC227E to critclk_systems DMI table - [ppc64el] powerpc/mm: Fixup tlbie vs mtpidr/mtlpidr ordering issue on POWER9 - usb: gadget: udc: core: Fix segfault if udc_bind_to_driver() for pending driver fails https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.84 - bonding: fix state transition issue in link monitoring - CDC-NCM: handle incomplete transfer of MTU - ipv4: Fix table id reference in fib_sync_down_addr - [mips*] net: ethernet: octeon_mgmt: Account for second possible VLAN header - net: fix data-race in neigh_event_send() - net: usb: qmi_wwan: add support for DW5821e with eSIM support - nfc: netlink: fix double device reference drop - qede: fix NULL pointer deref in __qede_remove() - ipv6: fixes rt6_probe() and fib6_nh->last_probe init - [arm64] net: hns: Fix the stray netpoll locks causing deadlock in NAPI path - ALSA: timer: Fix incorrectly assigned timer instance - ALSA: bebob: fix to detect configured source of sampling clock for Focusrite Saffire Pro i/o series - ALSA: hda/ca0132 - Fix possible workqueue stall - mm: memcontrol: fix network errors from failing __GFP_ATOMIC charges - mm, meminit: recalculate pcpu batch and high limits after init completes - mm: thp: handle page cache THP correctly in PageTransCompoundMap - mm, vmstat: hide /proc/pagetypeinfo from normal users - dump_stack: avoid the livelock of the dump_lock - perf tools: Fix time sorting - drm/radeon: fix si_enable_smc_cac() failed issue - HID: wacom: generic: Treat serial number and related fields as unsigned - [arm64] Do not mask out PTE_RDONLY in pte_same() - ceph: fix use-after-free in __ceph_remove_cap() - ceph: add missing check in d_revalidate snapdir handling - [armhf] sunxi: Fix CPU powerdown on A83T - netfilter: nf_tables: Align nft_expr private data to 64-bit - netfilter: ipset: Fix an error code in ip_set_sockfn_get() - [x86] intel_th: pci: Add Comet Lake PCH support - [x86] intel_th: pci: Add Jasper Lake PCH support - [x86] apic/32: Avoid bogus LDR warnings - SMB3: Fix persistent handles reconnect - can: usb_8dev: fix use-after-free on disconnect - [armhf] can: flexcan: disable completely the ECC mechanism - can: peak_usb: fix a potential out-of-sync while decoding packets - can: rx-offload: can_rx_offload_queue_sorted(): fix error handling, avoid skb mem leak - can: gs_usb: gs_can_open(): prevent memory leak (CVE-2019-19052) - can: dev: add missing of_node_put() after calling of_get_child_by_name() - can: mcba_usb: fix use-after-free on disconnect - can: peak_usb: fix slab info leak - configfs: stash the data we need into configfs_buffer at open time - configfs_register_group() shouldn't be (and isn't) called in rmdirable parts - configfs: new object reprsenting tree fragments - configfs: provide exclusion between IO and removals - configfs: fix a deadlock in configfs_symlink() - ALSA: usb-audio: More validations of descriptor units - ALSA: usb-audio: Simplify parse_audio_unit() - ALSA: usb-audio: Unify the release of usb_mixer_elem_info objects - ALSA: usb-audio: Remove superfluous bLength checks - ALSA: usb-audio: Clean up check_input_term() - ALSA: usb-audio: Fix possible NULL dereference at create_yamaha_midi_quirk() - ALSA: usb-audio: remove some dead code - ALSA: usb-audio: Fix copy&paste error in the validator - sched/fair: Fix low cpu usage with high throttling by removing expiration of cpu-local slices - sched/fair: Fix -Wunused-but-set-variable warnings - usbip: Fix vhci_urb_enqueue() URB null transfer buffer error path - usbip: Implement SG support to vhci-hcd and stub driver - [arm64,armhf] PCI: tegra: Enable Relaxed Ordering only for Tegra20 & Tegra30 - [amd64] HID: intel-ish-hid: fix wrong error handling in ishtp_cl_alloc_tx_ring() - RDMA/mlx5: Clear old rate limit when closing QP - iw_cxgb4: fix ECN check on the passive accept - RDMA/qedr: Fix reported firmware version - net/mlx5e: TX, Fix consumer index of error cqe dump - net/mlx5: prevent memory leak in mlx5_fpga_conn_create_cq (CVE-2019-19045) - scsi: qla2xxx: fixup incorrect usage of host_byte - RDMA/uverbs: Prevent potential underflow - net: openvswitch: free vport unless register_netdevice() succeeds - scsi: lpfc: Honor module parameter lpfc_use_adisc - scsi: qla2xxx: Initialized mailbox to prevent driver load failure - netfilter: nf_flow_table: set timeout before insertion into hashes - ipvs: don't ignore errors in case refcounting ip_vs module fails - ipvs: move old_secure_tcp into struct netns_ipvs - bonding: fix unexpected IFF_BONDING bit unset - macsec: fix refcnt leak in module exit routine - usb: gadget: composite: Fix possible double free memory bug - [arm64] usb: dwc3: pci: prevent memory leak in dwc3_pci_probe (CVE-2019-18813) - usb: gadget: configfs: fix concurrent issue between composite APIs - [arm64,armhf] usb: dwc3: remove the call trace of USBx_GFLADJ - [x86] perf/x86/amd/ibs: Fix reading of the IBS OpData register and thus precise RIP validity - [x86] perf/x86/amd/ibs: Handle erratum #420 only on the affected CPU family (10h) - [x86] perf/x86/uncore: Fix event group support - USB: Skip endpoints with 0 maxpacket length - USB: ldusb: use unsigned size format specifiers - usbip: tools: Fix read_usb_vudc_device() error path handling - RDMA/iw_cxgb4: Avoid freeing skb twice in arp failure case - [arm64] RDMA/hns: Prevent memory leaks of eq->buf_list - scsi: qla2xxx: stop timer in shutdown path - nvme-multipath: fix possible io hang after ctrl reconnect - [amd64] fjes: Handle workqueue allocation failure - [arm64] net: hisilicon: Fix "Trying to free already-free IRQ" - drm/amdgpu: If amdgpu_ib_schedule fails return back the error. - [x86] hv_netvsc: Fix error handling in netvsc_attach() - [arm64,armhf] usb: dwc3: gadget: fix race when disabling ep with cancelled xfers - NFSv4: Don't allow a cached open with a revoked delegation - igb: Fix constant media auto sense switching when no cable is connected - e1000: fix memory leaks - [x86] pinctrl: intel: Avoid potential glitches if pin is in GPIO mode - ocfs2: protect extent tree in ocfs2_prepare_inode_for_write() - [x86] pinctrl: cherryview: Fix irq_valid_mask calculation - blkcg: make blkcg_print_stat() print stats only for online blkgs - [x86] iio: imu: mpu6050: Add support for the ICM 20602 IMU - [x86] iio: imu: inv_mpu6050: fix no data on MPU6050 - mm/filemap.c: don't initiate writeback if mapping has no dirty pages - cgroup,writeback: don't switch wbs immediately on dead wbs if the memcg is dead - usbip: Fix free of unallocated memory in vhci tx - netfilter: ipset: Copy the right MAC address in hash:ip,mac IPv6 sets - net: prevent load/store tearing on sk->sk_stamp - [x86] iio: imu: mpu6050: Fix FIFO layout for ICM20602 - vsock/virtio: fix sock refcnt holding during the shutdown - x86/cpu: Add Tremont to the cpu vulnerability whitelist https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.85 - scsi: core: Handle drivers which set sg_tablesize to zero - ax88172a: fix information leak on short answers - ipmr: Fix skb headroom in ipmr_get_route(). - net: gemini: add missed free_netdev - net: usb: qmi_wwan: add support for Foxconn T77W968 LTE modules - slip: Fix memory leak in slip_open error path - ALSA: usb-audio: Fix missing error check at mixer resolution test - ALSA: usb-audio: not submit urb for stopped endpoint - ALSA: usb-audio: Fix incorrect NULL check in create_yamaha_midi_quirk() - ALSA: usb-audio: Fix incorrect size check for processing/extension units - Btrfs: fix log context list corruption after rename exchange operation - Input: ff-memless - kill timer in destroy() - Input: synaptics-rmi4 - fix video buffer size - Input: synaptics-rmi4 - disable the relative position IRQ in the F12 driver - Input: synaptics-rmi4 - do not consume more data than we have (F11, F12) - Input: synaptics-rmi4 - clear IRQ enables for F54 - Input: synaptics-rmi4 - destroy F54 poller workqueue when removing - IB/hfi1: Ensure full Gen3 speed in a Gen4 system - IB/hfi1: Use a common pad buffer for 9B and 16B packets - i2c: acpi: Force bus speed to 400KHz if a Silead touchscreen is present - ecryptfs_lookup_interpose(): lower_dentry->d_inode is not stable - ecryptfs_lookup_interpose(): lower_dentry->d_parent is not stable either - [armhf] net: ethernet: dwmac-sun8i: Use the correct function in exit path - [x86] iommu/vt-d: Fix QI_DEV_IOTLB_PFSID and QI_DEV_EIOTLB_PFSID macros - mm: mempolicy: fix the wrong return value and potential pages leak of mbind - mm: memcg: switch to css_tryget() in get_mem_cgroup_from_mm() - mm: hugetlb: switch to css_tryget() in hugetlb_cgroup_charge_cgroup() - iio: adc: max9611: explicitly cast gain_selectors - tee: optee: take DT status property into account - ath10k: fix kernel panic by moving pci flush after napi_disable - clk: sunxi-ng: h6: fix PWM gate/reset offset - soundwire: Initialize completion for defer messages - [x86] soundwire: intel: Fix uninitialized adev deref - [arm64] dts: allwinner: a64: Orange Pi Win: Fix SD card node - [arm64] dts: allwinner: a64: Olinuxino: fix DRAM voltage - [arm64] dts: allwinner: a64: NanoPi-A64: Fix DCDC1 voltage - ALSA: pcm: signedness bug in snd_pcm_plug_alloc() - [arm64] soc/tegra: pmc: Fix pad voltage configuration for Tegra186 - [arm64] dts: tegra210-p2180: Correct sdmmc4 vqmmc-supply - y2038: make do_gettimeofday() and get_seconds() inline - rtc: sysfs: fix NULL check in rtc_add_groups() - remoteproc/davinci: Use %zx for formating size_t - extcon: cht-wc: Return from default case to avoid warnings - cfg80211: Avoid regulatory restore when COUNTRY_IE_IGNORE is set - ALSA: seq: Do error checks at creating system ports - ath10k: skip resetting rx filter for WCN3990 - ath9k: fix tx99 with monitor mode interface - wil6210: drop Rx multicast packets that are looped-back to STA - wil6210: set edma variables only for Talyn-MB devices - wil6210: prevent usage of tx ring 0 for eDMA - wil6210: fix invalid memory access for rx_buff_mgmt debugfs - ath10k: limit available channels via DT ieee80211-freq-limit - ice: Update request resource command to latest specification - ice: Prevent control queue operations during reset - gfs2: Don't set GFS2_RDF_UPTODATE when the lvb is updated - ice: Fix and update driver version string - ASoC: dapm: Don't fail creating new DAPM control on NULL pinctrl - ASoC: dpcm: Properly initialise hw->rate_max - ASoC: meson: axg-fifo: report interrupt request failure - ASoC: AMD: Change MCLK to 48Mhz - pinctrl: ingenic: Probe driver at subsys_initcall - [armhf] dts: exynos: Use i2c-gpio for HDMI-DDC on Arndale - [armhf] dts: exynos: Fix HDMI-HPD line handling on Arndale - [armhf] dts: exynos: Fix sound in Snow-rev5 Chromebook - liquidio: fix race condition in instruction completion processing - [arm64] dts: stratix10: i2c clock running out of spec - [armhf] dts: exynos: Fix regulators configuration on Peach Pi/Pit Chromebooks - i40evf: Validate the number of queues a PF sends - i40e: use correct length for strncpy - i40evf: set IFF_UNICAST_FLT flag for the VF - i40e: Check and correct speed values for link on open - i40evf: Don't enable vlan stripping when rx offload is turned on - i40e: hold the rtnl lock on clearing interrupt scheme - i40evf: cancel workqueue sync for adminq when a VF is removed - i40e: Prevent deleting MAC address from VF when set by PF - IB/rxe: avoid back-to-back retries - IB/rxe: fixes for rdma read retry - iwlwifi: drop packets with bad status in CD - iwlwifi: don't WARN on trying to dump dead firmware - iwlwifi: mvm: avoid sending too many BARs - media: vicodec: fix out-of-range values when decoding - media: i2c: Fix pm_runtime_get_if_in_use() usage in sensor drivers - media: ov772x: Disable clk on error path - rtl8187: Fix warning generated when strncpy() destination length matches the sixe argument - mwifiex: do no submit URB in suspended state - mwifex: free rx_cmd skb in suspended state - brcmfmac: fix wrong strnchr usage - mt76: Fix comparisons with invalid hardware key index - soc: imx: gpc: fix PDN delay - ASoC: rsnd: ssi: Fix issue in dma data address assignment - net: hns3: Fix for multicast failure - net: hns3: Fix error of checking used vlan id - net: hns3: Fix for loopback selftest failed problem - net: hns3: Change the dst mac addr of loopback packet - net/mlx5: Fix atomic_mode enum values - net: phy: mscc: read 'vsc8531,vddmac' as an u32 - net: phy: mscc: read 'vsc8531, edge-slowdown' as an u32 - [armhf] dts: meson8: fix the clock controller register size - [armhf] dts: meson8b: fix the clock controller register size - mtd: rawnand: marvell: use regmap_update_bits() for syscon access - mtd: rawnand: fsl_ifc: check result of SRAM initialization - mtd: rawnand: fsl_ifc: fixup SRAM init for newer ctrl versions - mtd: rawnand: qcom: don't include dma-direct.h - IB/mlx5: Change TX affinity assignment in RoCE LAG mode - qxl: fix null-pointer crash during suspend - mac80211: fix saving a few HE values - cfg80211: validate wmm rule when setting - f2fs: avoid wrong decrypted data from disk - net: lan78xx: Bail out if lan78xx_get_endpoints fails - rtnetlink: move type calculation out of loop - ASoC: sgtl5000: avoid division by zero if lo_vag is zero - ath10k: avoid possible memory access violation - [armhf] dts: exynos: Disable pull control for S5M8767 PMIC - ath10k: wmi: disable softirq's while calling ieee80211_rx - i2c: mediatek: Use DMA safe buffers for i2c transactions - IB/mlx5: Don't hold spin lock while checking device state - IB/ipoib: Ensure that MTU isn't less than minimum permitted - RDMA/core: Rate limit MAD error messages - RDMA/core: Follow correct unregister order between sysfs and cgroup - udf: Fix crash during mount - ASoC: dapm: Avoid uninitialised variable warning - [x86] ASoC: Intel: hdac_hdmi: Limit sampling rates at dai creation - ata: Disable AHCI ALPM feature for Ampere Computing eMAG SATA - [powerpc] make PowerMac cache node search conditional on CONFIG_PPC_PMAC - [armhf] dts: omap3-gta04: give spi_lcd node a label so that we can overwrite in other DTS files - [armhf] dts: omap3-gta04: fixes for tvout / venc - [armhf] dts: omap3-gta04: tvout: enable as display1 alias - [armhf] dts: omap3-gta04: fix touchscreen tsc2007 - [armhf] dts: omap3-gta04: make NAND partitions compatible with recent U-Boot - [armhf] dts: omap3-gta04: keep vpll2 always on - f2fs: submit bio after shutdown - failover: Fix error return code in net_failover_create - sched/debug: Explicitly cast sched_feat() to bool - sched/debug: Use symbolic names for task state constants - firmware: arm_scmi: use strlcpy to ensure NULL-terminated strings - [arm64] dts: rockchip: Fix VCC5V0_HOST_EN on rk3399-sapphire - [armhf] dts: exynos: Disable pull control for PMIC IRQ line on Artik5 board - usb: mtu3: disable vbus rise/fall interrupts of ltssm - EDAC, sb_edac: Return early on ADDRV bit and address type test - [armhf] rtc: pl030: fix possible race condition - ath9k: add back support for using active monitor interfaces for tx99 - dmaengine: at_xdmac: remove a stray bottom half unlock - RDMA/hns: Fix an error code in hns_roce_v2_init_eq_table() - IB/hfi1: Missing return value in error path for user sdma - signal: Always ignore SIGKILL and SIGSTOP sent to the global init - signal: Properly deliver SIGILL from uprobes - signal: Properly deliver SIGSEGV from x86 uprobes - f2fs: fix memory leak of write_io in fill_super() - f2fs: fix memory leak of percpu counter in fill_super() - f2fs: fix setattr project check upon fssetxattr ioctl - scsi: qla2xxx: Use correct qpair for ABTS/CMD - scsi: qla2xxx: Fix iIDMA error - scsi: qla2xxx: Defer chip reset until target mode is enabled - scsi: qla2xxx: Terminate Plogi/PRLI if WWN is 0 - scsi: qla2xxx: Fix deadlock between ATIO and HW lock - scsi: qla2xxx: Increase abort timeout value - scsi: qla2xxx: Check for Register disconnect - scsi: qla2xxx: Fix port speed display on chip reset - scsi: qla2xxx: Fix dropped srb resource. - scsi: qla2xxx: Fix duplicate switch's Nport ID entries - scsi: lpfc: Fix GFT_ID and PRLI logic for RSCN - scsi: lpfc: Correct invalid EQ doorbell write on if_type=6 - scsi: lpfc: Fix errors in log messages. - scsi: sym53c8xx: fix NULL pointer dereference panic in sym_int_sir() - [armhf] imx6: register pm_power_off handler if "fsl,pmic-stby-poweroff" is set - scsi: pm80xx: Corrected dma_unmap_sg() parameter - scsi: pm80xx: Fixed system hang issue during kexec boot - kprobes: Don't call BUG_ON() if there is a kprobe in use on free list - net: aquantia: fix hw_atl_utils_fw_upload_dwords - Drivers: hv: vmbus: Fix synic per-cpu context initialization - nvmem: core: return error code instead of NULL from nvmem_device_get - media: dt-bindings: adv748x: Fix decimal unit addresses - [x86] ALSA: hda: Fix implicit definition of pci_iomap() on SH - media: fix: media: pci: meye: validate offset to avoid arbitrary access - media: dvb: fix compat ioctl translation - net: bcmgenet: Fix speed selection for reverse MII - [arm64] dts: meson: libretech: update board model - [arm64] dts: meson-axg: use the proper compatible for ethmac - [x86] ALSA: intel8x0m: Register irq handler after register initializations - [arm64] dts: renesas: salvator-common: adv748x: Override secondary addresses - [arm64] dts: renesas: r8a77965: Attach the SYS-DMAC to the IPMMU - [arm64] dts: renesas: r8a77965: Fix HS-USB compatible - [arm64] dts: renesas: r8a77965: Fix clock/reset for usb2_phy1 - pinctrl: at91-pio4: fix has_config check in atmel_pctl_dt_subnode_to_map() - llc: avoid blocking in llc_sap_close() - [armhf] dts: qcom: ipq4019: fix cpu0's qcom,saw2 reg value - [arm64] soc: qcom: wcnss_ctrl: Avoid string overflow - [arm64] dts: broadcom: Fix I2C and SPI bus warnings - [armhf] dts: bcm: Fix SPI bus warnings - [armhf] dts: aspeed: Fix I2C bus warnings - [ppc64el,powerpc*] powerpc/vdso: Correct call frame information - [armhf] dts: socfpga: Fix I2C bus unit-address error - [armhf] dts: sunxi: Fix I2C bus warnings - [armhf] dts: sun9i: Fix I2C bus warnings - android: binder: no outgoing transaction when thread todo has transaction - cxgb4: Fix endianness issue in t4_fwcache() - [arm64] fix for bad_mode() handler to always result in panic - block, bfq: inject other-queue I/O into seeky idle queues on NCQ flash - blok, bfq: do not plug I/O if all queues are weight-raised - [arm64] dts: meson: Fix erroneous SPI bus warnings - power: supply: ab8500_fg: silence uninitialized variable warnings - component: fix loop condition to call unbind() if bind() fails - kernfs: Fix range checks in kernfs_get_target_path - ip_gre: fix parsing gre header in ipgre_err - scsi: ufshcd: Fix NULL pointer dereference for in ufshcd_init - [armhf] dts: rockchip: Fix erroneous SPI bus dtc warnings on rk3036 - [arm64] dts: rockchip: Fix I2C bus unit-address error on rk3399-puma-haikou - [x86] ACPI / LPSS: Exclude I2C busses shared with PUNIT from pmc_atom_d3_mask - netfilter: nf_tables: avoid BUG_ON usage - ath9k: Fix a locking bug in ath9k_add_interface() - [s390x] qeth: uninstall IRQ handler on device removal - [s390x] qeth: invoke softirqs after napi_schedule() - media: vsp1: Fix vsp1_regs.h license header - media: vsp1: Fix YCbCr planar formats pitch calculation - media: ov2680: don't register the v4l2 subdevice before checking chip ID - PCI/ACPI: Correct error message for ASPM disabling - net: socionext: Fix two sleep-in-atomic-context bugs in ave_rxfifo_reset() - PCI: mediatek: Fix unchecked return value - [armhf] dts: xilinx: Fix I2C and SPI bus warnings - serial: uartps: Fix suspend functionality - serial: samsung: Enable baud clock for UART reset procedure in resume - serial: mxs-auart: Fix potential infinite loop - tty: serial: qcom_geni_serial: Fix serial when not used as console - [arm64] dts: ti: k3-am65: Change #address-cells and #size-cells of interconnect to 2 - samples/bpf: fix a compilation failure - spi: mediatek: Don't modify spi_transfer when transfer. - ASoC: rt5682: Fix the boost volume at the begining of playback - ipmi_si_pci: fix NULL device in ipmi_si error message - ipmi_si: fix potential integer overflow on large shift - ipmi:dmi: Ignore IPMI SMBIOS entries with a zero base address - ipmi: fix return value of ipmi_set_my_LUN - net: hns3: fix return type of ndo_start_xmit function - net: cavium: fix return type of ndo_start_xmit function - net: ibm: fix return type of ndo_start_xmit function - [ppc64el,powerpc*] iommu: Avoid derefence before pointer check - [ppc64el,powerpc*] selftests: Do not fail with reschedule - [ppc64el,powerpc64] hash: Fix stab_rr off by one initialization - [ppc64el,powerpc64] pseries/memory-hotplug: Only update DT once per memory DLPAR request - [ppc64el,powerpc64] pseries: Disable CPU hotplug across migrations - [ppc64el,powerpc*] Fix duplicate const clang warning in user access code - RDMA/i40iw: Fix incorrect iterator type - OPP: Protect dev_list with opp_table lock - of/unittest: Fix I2C bus unit-address error - libfdt: Ensure INT_MAX is defined in libfdt_env.h - power: supply: twl4030_charger: fix charging current out-of-bounds - power: supply: twl4030_charger: disable eoc interrupt on linear charge - net: mvpp2: fix the number of queues per cpu for PPv2.2 - net: marvell: fix return type of ndo_start_xmit function - net: toshiba: fix return type of ndo_start_xmit function - net: xilinx: fix return type of ndo_start_xmit function - net: broadcom: fix return type of ndo_start_xmit function - net: amd: fix return type of ndo_start_xmit function - net: sun: fix return type of ndo_start_xmit function - net: hns3: Fix for setting speed for phy failed problem - net: hns3: Fix cmdq registers initialization issue for vf - net: hns3: Clear client pointer when initialize client failed or unintialize finished - net: hns3: Fix client initialize state issue when roce client initialize failed - net: hns3: Fix parameter type for q_id in hclge_tm_q_to_qs_map_cfg() - nfp: provide a better warning when ring allocation fails - usb: chipidea: imx: enable OTG overcurrent in case USB subsystem is already started - usb: chipidea: Fix otg event handler - usb: usbtmc: Fix ioctl USBTMC_IOCTL_ABORT_BULK_OUT - [s390x] zcrypt: enable AP bus scan without a valid default domain - [s390x] vdso: avoid 64-bit vdso mapping for compat tasks - [s390x] vdso: correct CFI annotations of vDSO functions - brcmfmac: increase buffer for obtaining firmware capabilities - brcmsmac: Use kvmalloc() for ucode allocations - mlxsw: spectrum: Init shaper for TCs 8..15 - PCI: portdrv: Initialize service drivers directly - [armhf] dts: am335x-evm: fix number of cpsw - [armhf] dts: ti: Fix SPI and I2C bus warnings - f2fs: avoid infinite loop in f2fs_alloc_nid - f2fs: fix to recover inode's uid/gid during POR - [armhf] dts: ux500: Correct SCU unit address - [armhf] dts: ux500: Fix LCDA clock line muxing - [armhf] dts: ste: Fix SPI controller node names - spi: pic32: Use proper enum in dmaengine_prep_slave_rg - crypto: chacha20 - Fix chacha20_block() keystream alignment (again) - cpufeature: avoid warning when compiling with clang - [armhf] crypto: crc32 - avoid warning when compiling with Clang - [armel] dts: marvell: Fix SPI and I2C bus warnings - [x86] mce-inject: Reset injection struct after injection - [armhf,arm64] dts: clearfog: fix sdhci supply property name - bnx2x: Ignore bandwidth attention in single function mode - PCI/AER: Take reference on error devices - PCI/AER: Don't read upstream ports below fatal errors - PCI/ERR: Use slot reset if available - samples/bpf: fix compilation failure - net: phy: mdio-bcm-unimac: Allow configuring MDIO clock divider - net: micrel: fix return type of ndo_start_xmit function - net: freescale: fix return type of ndo_start_xmit function - [x86] CPU: Use correct macros for Cyrix calls - [x86] CPU: Change query logic so CPUID is enabled before testing - EDAC: Correct DIMM capacity unit symbol - [mips*] kexec: Relax memory restriction - [arm64] dts: rockchip: Fix microSD in rk3399 sapphire board - mlxsw: Make MLXSW_SP1_FWREV_MINOR a hard requirement - media: imx: work around false-positive warning, again - media: pci: ivtv: Fix a sleep-in-atomic-context bug in ivtv_yuv_init() - media: au0828: Fix incorrect error messages - media: davinci: Fix implicit enum conversion warning - [armhf] dts: rockchip: explicitly set vcc_sd0 pin to gpio on rk3188-radxarock - usb: gadget: uvc: configfs: Drop leaked references to config items - usb: gadget: uvc: configfs: Prevent format changes after linking header - usb: gadget: uvc: configfs: Sort frame intervals upon writing - [armhf] dts: exynos: Correct audio subsystem parent clock on Peach Chromebooks - i2c: aspeed: fix invalid clock parameters for very large divisors - gpiolib: Fix gpio_direction_* for single direction GPIOs - phy: brcm-sata: allow PHY_BRCM_SATA driver to be built for DSL SoCs - phy: renesas: rcar-gen3-usb2: fix vbus_ctrl for role sysfs - phy: phy-twl4030-usb: fix denied runtime access - [armhf] dts: imx6ull: update vdd_soc voltage for 900MHz operating point - usb: gadget: uvc: Factor out video USB request queueing - usb: gadget: uvc: Only halt video streaming endpoint in bulk mode - coresight: Use ERR_CAST instead of ERR_PTR - coresight: Fix handling of sinks - coresight: perf: Fix per cpu path management - coresight: perf: Disable trace path upon source error - coresight: tmc-etr: Handle driver mode specific ETR buffers - coresight: etm4x: Configure EL2 exception level when kernel is running in HYP - coresight: tmc: Fix byte-address alignment for RRP - coresight: dynamic-replicator: Handle multiple connections - slimbus: ngd: register ngd driver only once. - slimbus: ngd: return proper error code instead of zero - silmbus: ngd: register controller after power up. - misc: kgdbts: Fix restrict error - misc: genwqe: should return proper error value. - vmbus: keep pointer to ring buffer page - vfio/pci: Fix potential memory leak in vfio_msi_cap_len - vfio/pci: Mask buggy SR-IOV VF INTx support - iw_cxgb4: Use proper enumerated type in c4iw_bar2_addrs - scsi: libsas: always unregister the old device if going to discover new - f2fs: fix remount problem of option io_bits - phy: lantiq: Fix compile warning - [arm64] dts: fsl: Fix I2C and SPI bus warnings - [armhf] dts: imx51-zii-rdu1: Fix the rtc compatible string - [arm64] tegra: I2C on Tegra194 is not compatible with Tegra114 - [armhf] dts: tegra30: fix xcvr-setup-use-fuses - [armhf] dts: tegra20: restore address order - [armhf] tegra: apalis_t30: fix mmc1 cmd pull-up - [armhf] tegra: apalis_t30: fix mcp2515 can controller interrupt polarity - [armhf] tegra: colibri_t30: fix mcp2515 can controller interrupt polarity - [armhf] dts: paz00: fix wakeup gpio keycode - net: smsc: fix return type of ndo_start_xmit function - net: faraday: fix return type of ndo_start_xmit function - PCI/ERR: Run error recovery callbacks for all affected devices - f2fs: update i_size after DIO completion - f2fs: fix to recover inode's project id during POR - f2fs: mark inode dirty explicitly in recover_inode() - RDMA: Fix dependencies for rdma_user_mmap_io - EDAC: Raise the maximum number of memory controllers - firmware: dell_rbu: Make payload memory uncachable - Bluetooth: hci_serdev: clear HCI_UART_PROTO_READY to avoid closing proto races - Bluetooth: L2CAP: Detect if remote is not able to use the whole MPS - Bluetooth: btrsi: fix bt tx timeout issue - [x86] hyperv: Suppress "PCI: Fatal: No config space access function found" - crypto: s5p-sss: Fix race in error handling - crypto: s5p-sss: Fix Fix argument list alignment - crypto: fix a memory leak in rsa-kcs1pad's encryption mode - iwlwifi: dbg: don't crash if the firmware crashes in the middle of a debug dump - iwlwifi: fix non_shared_ant for 22000 devices - iwlwifi: pcie: read correct prph address for newer devices - iwlwifi: api: annotate compressed BA notif array sizes - iwlwifi: pcie: gen2: build A-MSDU only for GSO - iwlwifi: pcie: fit reclaim msg to MAX_MSG_LEN - iwlwifi: mvm: use correct FIFO length - iwlwifi: mvm: Allow TKIP for AP mode - scsi: NCR5380: Clear all unissued commands on host reset - scsi: NCR5380: Have NCR5380_select() return a bool - scsi: NCR5380: Withhold disconnect privilege for REQUEST SENSE - scsi: NCR5380: Use DRIVER_SENSE to indicate valid sense data - scsi: NCR5380: Check for invalid reselection target - scsi: NCR5380: Don't clear busy flag when abort fails - scsi: NCR5380: Don't call dsprintk() following reselection interrupt - scsi: NCR5380: Handle BUS FREE during reselection - scsi: NCR5380: Check for bus reset - [arm64] dts: amd: Fix SPI bus warnings - [arm64] dts: lg: Fix SPI controller node names - rtc: isl1208: avoid possible sysfs race - rtc: tx4939: fixup nvmem name and register size - rtc: armada38x: fix possible race condition - netfilter: masquerade: don't flush all conntracks if only one address deleted on device - usb: xhci-mtk: fix ISOC error when interval is zero - usb: usbtmc: uninitialized symbol 'actual' in usbtmc_ioctl_clear - fuse: use READ_ONCE on congestion_threshold and max_background - IB/iser: Fix possible NULL deref at iser_inv_desc() - media: ov2680: fix null dereference at power on - [s390x] vdso: correct vdso mapping for compat tasks - net: phy: mdio-bcm-unimac: mark PM functions as __maybe_unused - memfd: Use radix_tree_deref_slot_protected to avoid the warning. - slcan: Fix memory leak in error path https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.86 - spi: mediatek: use correct mata->xfer_len when in fifo transfer - i2c: mediatek: modify threshold passed to i2c_get_dma_safe_msg_buf() - tee: optee: add missing of_node_put after of_device_is_available - Revert "OPP: Protect dev_list with opp_table lock" - net: cdc_ncm: Signedness bug in cdc_ncm_set_dgram_size() - idr: Fix idr_get_next race with idr_remove - mm/memory_hotplug: don't access uninitialized memmaps in shrink_pgdat_span() - mm/memory_hotplug: fix updating the node span - [arm64] uaccess: Ensure PAN is re-enabled after unhandled uaccess fault - fbdev: Ditch fb_edid_add_monspecs - [i386] bpf, x32: Fix bug for BPF_ALU64 | BPF_NEG - [i386] bpf, x32: Fix bug with ALU64 {LSH, RSH, ARSH} BPF_X shift by 0 - [i386] bpf, x32: Fix bug with ALU64 {LSH, RSH, ARSH} BPF_K shift by 0 - [i386] bpf, x32: Fix bug for BPF_JMP | {BPF_JSGT, BPF_JSLE, BPF_JSLT, BPF_JSGE} - net: ovs: fix return type of ndo_start_xmit function - net: xen-netback: fix return type of ndo_start_xmit function - [armhf] dts: dra7: Enable workaround for errata i870 in PCIe host mode - [armhf] dts: omap5: enable OTG role for DWC3 controller - [arm64] net: hns3: Fix for netdev not up problem when setting mtu - [arm64] net: hns3: Fix loss of coal configuration while doing reset - f2fs: return correct errno in f2fs_gc - [armhf] dts: sun8i: h3-h5: ir register size should be the whole memory block - [armhf] dts: sun8i: h3: bpi-m2-plus: Fix address for external RGMII Ethernet PHY - tcp: up initial rmem to 128KB and SYN rwin to around 64KB - SUNRPC: Fix priority queue fairness - ACPI / LPSS: Make acpi_lpss_find_device() also find PCI devices - ACPI / LPSS: Resume BYT/CHT I2C controllers from resume_noirq - f2fs: keep lazytime on remount - IB/hfi1: Error path MAD response size is incorrect - IB/hfi1: Ensure ucast_dlid access doesnt exceed bounds - mt76x2: fix tx power configuration for VHT mcs 9 - mt76x2: disable WLAN core before probe - mt76: fix handling ps-poll frames - [arm64,armhf] iommu/io-pgtable-arm: Fix race handling in split_blk_unmap() - [arm64,armhf] iommu/arm-smmu-v3: Fix unexpected CMD_SYNC timeout - [arm64,armhf] kvm: Fix stage2_flush_memslot for 4 level page table - [arm64] numa: Report correct memblock range for the dummy node - ath10k: fix vdev-start timeout on error - rtlwifi: btcoex: Use proper enumerated types for Wi-Fi only interface - ata: ahci_brcm: Allow using driver or DSL SoCs - PM / devfreq: Fix devfreq_add_device() when drivers are built as modules. - PM / devfreq: Fix handling of min/max_freq == 0 - PM / devfreq: stopping the governor before device_unregister() - ath9k: fix reporting calculated new FFT upper max - selftests/tls: Fix recv(MSG_PEEK) & splice() test cases - usb: gadget: udc: fotg210-udc: Fix a sleep-in-atomic-context bug in fotg210_get_status() - usb: dwc3: gadget: Check ENBLSLPM before sending ep command - nl80211: Fix a GET_KEY reply attribute - [arm64,armhf] irqchip/irq-mvebu-icu: Fix wrong private data retrieval - watchdog: core: fix null pointer dereference when releasing cdev - watchdog: w83627hf_wdt: Support NCT6796D, NCT6797D, NCT6798D - [ppc64el,powerpc64] Inform the userspace about TCE update failures - printk: Do not miss new messages when replaying the log - printk: CON_PRINTBUFFER console registration is a bit racy - dmaengine: ep93xx: Return proper enum in ep93xx_dma_chan_direction - dmaengine: timb_dma: Use proper enum in td_prep_slave_sg - [x86] ALSA: hda: Fix mismatch for register mask and value in ext controller. - ext4: fix build error when DX_DEBUG is defined - clk: keystone: Enable TISCI clocks if K3_ARCH - sunrpc: Fix connect metrics - [x86] PCI: Apply VMD's AERSID fixup generically - mei: samples: fix a signedness bug in amt_host_if_call() - cxgb4: Use proper enum in cxgb4_dcb_handle_fw_update - cxgb4: Use proper enum in IEEE_FAUX_SYNC - [ppc64el,powerpc*] Fix DTL buffer registration - [ppc64el,powerpc*] Fix how we iterate over the DTL entries - [ppc64el,powerpc*] xive: Move a dereference below a NULL test - mtd: rawnand: sh_flctl: Use proper enum for flctl_dma_fifo0_transfer - PM / hibernate: Check the success of generating md5 digest before hibernation - tools: PCI: Fix compilation warnings - ice: Fix forward to queue group logic - md: allow metadata updates while suspending an array - fix - ixgbe: Fix ixgbe TX hangs with XDP_TX beyond queue limit - i40e: Use proper enum in i40e_ndo_set_vf_link_state - ixgbe: Fix crash with VFs and flow director on interface flap - IB/mthca: Fix error return code in __mthca_init_one() - IB/rxe: avoid srq memory leak - RDMA/hns: Bugfix for reserved qp number - RDMA/hns: Submit bad wr when post send wr exception - RDMA/hns: Bugfix for CM test - RDMA/hns: Limit the size of extend sge of sq - IB/mlx4: Avoid implicit enumerated type conversion - rpmsg: glink: smem: Support rx peak for size less than 4 bytes - msm/gpu/a6xx: Force of_dma_configure to setup DMA for GMU - OPP: Return error on error from dev_pm_opp_get_opp_count() - ACPICA: Never run _REG on system_memory and system_IO - cpuidle: menu: Fix wakeup statistics updates for polling state - ASoC: qdsp6: q6asm-dai: checking NULL vs IS_ERR() - [ppc64el,powerpc*] time: Use clockevents_register_device(), fixing an issue with large decrementer - [ppc64el,powerpc64] radix: Explicitly flush ERAT with local LPID invalidation - ata: ep93xx: Use proper enums for directions - qed: Avoid implicit enum conversion in qed_ooo_submit_tx_buffers - media: rc: ir-rc6-decoder: enable toggle bit for Kathrein RCU-676 remote - media: pxa_camera: Fix check for pdev->dev.of_node - media: rcar-vin: fix redeclaration of symbol - media: i2c: adv748x: Support probing a single output - [x86] ALSA: hda/sigmatel - Disable automute for Elo VuPoint - bnxt_en: return proper error when FW returns HWRM_ERR_CODE_RESOURCE_ACCESS_DENIED - [ppc64el,powerpc64] Book3S PR: Exiting split hack mode needs to fixup both PC and LR - USB: serial: cypress_m8: fix interrupt-out transfer length - usb: dwc2: disable power_down on rockchip devices - mtd: physmap_of: Release resources on error - cpu/SMT: State SMT is disabled even with nosmt and without "=force" - brcmfmac: reduce timeout for action frame scan - brcmfmac: fix full timeout waiting for action frame on-channel tx - qtnfmac: request userspace to do OBSS scanning if FW can not - qtnfmac: pass sgi rate info flag to wireless core - qtnfmac: inform wireless core about supported extended capabilities - qtnfmac: drop error reports for out-of-bounds key indexes - [armhf] clk: samsung: Use NOIRQ stage for Exynos5433 clocks suspend/resume - [armhf] clk: samsung: exynos5420: Define CLK_SECKEY gate clock only or Exynos5420 - [armhf] clk: samsung: Use clk_hw API for calling clk framework from clk notifiers - printk: Correct wrong casting - NFSv4.x: fix lock recovery during delegation recall - dmaengine: ioat: fix prototype of ioat_enumerate_channels - media: ov5640: fix framerate update - media: cec-gpio: select correct Signal Free Time - gfs2: slow the deluge of io error messages - i2c: omap: use core to detect 'no zero length' quirk - i2c: qup: use core to detect 'no zero length' quirk - i2c: tegra: use core to detect 'no zero length' quirk - i2c: zx2967: use core to detect 'no zero length' quirk - Input: st1232 - set INPUT_PROP_DIRECT property - Input: silead - try firmware reload after unsuccessful resume - soc: fsl: bman_portals: defer probe after bman's probe - net: hns3: Fix for rx vlan id handle to support Rev 0x21 hardware - tc-testing: fix build of eBPF programs - remoteproc: Check for NULL firmwares in sysfs interface - remoteproc: qcom: q6v5: Fix a race condition on fatal crash - kexec: Allocate decrypted control pages for kdump if SME is enabled - [x86] olpc: Fix build error with CONFIG_MFD_CS5535=m - dmaengine: rcar-dmac: set scatter/gather max segment size - xfrm: use correct size to initialise sp->ovec - ACPI / SBS: Fix rare oops when removing modules - iwlwifi: mvm: don't send keys when entering D3 - xsk: proper AF_XDP socket teardown ordering - [amd64] fsgsbase: Fix ptrace() to read the FS/GS base accurately - mmc: renesas_sdhi_internal_dmac: Whitelist r8a774a1 - mmc: tmio: Fix SCC error detection - mmc: renesas_sdhi_internal_dmac: set scatter/gather max segment size - fbdev: sbuslib: use checked version of put_user() - fbdev: sbuslib: integer overflow in sbusfb_ioctl_helper() - fbdev: fix broken menu dependencies - reset: Fix potential use-after-free in __of_reset_control_get() - bcache: account size of buckets used in uuid write to ca->meta_sectors_written - bcache: recal cached_dev_sectors on detach - [x86] platform: mlx-platform: Properly use mlxplat_mlxcpld_msn201x_items - media: dw9714: Fix error handling in probe function - media: dw9807-vcm: Fix probe error handling - media: cx18: Don't check for address of video_dev - mtd: spi-nor: cadence-quadspi: Use proper enum for dma_[un]map_single - mtd: devices: m25p80: Make sure WRITE_EN is issued before each write - [x86] intel_rdt: Introduce utility to obtain CDP peer - [x86] intel_rdt: CBM overlap should also check for overlap with CDP peer - mmc: mmci: expand startbiterr to irqmask and error check - [s390x] kasan: avoid vdso instrumentation - [s390x] kasan: avoid instrumentation of early C code - [s390x] kasan: avoid user access code instrumentation - [i386] proc/vmcore: Fix i386 build error of missing copy_oldmem_page_encrypted() - backlight: lm3639: Unconditionally call led_classdev_unregister - mfd: ti_am335x_tscadc: Keep ADC interface on if child is wakeup capable - printk: Give error on attempt to set log buffer length to over 2G - media: isif: fix a NULL pointer dereference bug - GFS2: Flush the GFS2 delete workqueue before stopping the kernel threads - media: cx231xx: fix potential sign-extension overflow on large shift - media: venus: vdec: fix decoded data size - [x86] ALSA: hda/ca0132 - Fix input effect controls for desktop cards - lightnvm: pblk: fix rqd.error return value in pblk_blk_erase_sync - lightnvm: pblk: fix incorrect min_write_pgs - lightnvm: pblk: guarantee emeta on line close - lightnvm: pblk: fix write amplificiation calculation - lightnvm: pblk: guarantee mw_cunits on read buffer - lightnvm: do no update csecs and sos on 1.2 - lightnvm: pblk: fix error handling of pblk_lines_init() - lightnvm: pblk: consider max hw sectors supported for max_write_pgs - [x86] kexec: Correct KEXEC_BACKUP_SRC_END off-by-one error - bpf: btf: Fix a missing check bug - net: fix generic XDP to handle if eth header was mangled - gpio: syscon: Fix possible NULL ptr usage - spi: fsl-lpspi: Prevent FIFO under/overrun by default - pinctrl: gemini: Mask and set properly - spi: spidev: Fix OF tree warning logic - [armel,armhf] 8802/1: Call syscall_trace_exit even when system call skipped - [x86] mm: Do not warn about PCI BIOS W+X mappings - orangefs: rate limit the client not running info message - pinctrl: gemini: Fix up TVC clock group - scsi: arcmsr: clean up clang warning on extraneous parentheses - [x86] hwmon: (k10temp) Support all Family 15h Model 6xh and Model 7xh processors - hwmon: (nct6775) Fix names of DIMM temperature sources - hwmon: (pwm-fan) Silence error on probe deferral - hwmon: (ina3221) Fix INA3221_CONFIG_MODE macros - hwmon: (npcm-750-pwm-fan) Change initial pwm target to 255 - selftests: forwarding: Have lldpad_app_wait_set() wait for unknown, too - net: sched: avoid writing on noop_qdisc - netfilter: nft_compat: do not dump private area - misc: cxl: Fix possible null pointer dereference - mac80211: minstrel: fix using short preamble CCK rates on HT clients - mac80211: minstrel: fix CCK rate group streams value - mac80211: minstrel: fix sampling/reporting of CCK rates in HT mode - spi: rockchip: initialize dma_slave_config properly - mlxsw: spectrum_switchdev: Check notification relevance based on upper device - [armhf] dts: omap5: Fix dual-role mode on Super-Speed port - tcp: start receiver buffer autotuning sooner - ACPI / LPSS: Use acpi_lpss_* instead of acpi_subsys_* functions for hibernate - PM / devfreq: Fix static checker warning in try_then_request_governor - tools: PCI: Fix broken pcitest compilation - [ppc64el,powerpc*] time: Fix clockevent_decrementer initalisation for PR KVM - mmc: tmio: fix SCC error handling to avoid false positive CRC error - [x86] resctrl: Fix rdt_find_domain() return value and checks https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.87 - mlxsw: spectrum_router: Fix determining underlay for a GRE tunnel - net/mlx4_en: fix mlx4 ethtool -N insertion - net/mlx4_en: Fix wrong limitation for number of TX rings - net: rtnetlink: prevent underflows in do_setvfinfo() - net/sched: act_pedit: fix WARN() in the traffic path - net: sched: ensure opts_len <= IP_TUNNEL_OPTS_MAX in act_tunnel_key - sfc: Only cancel the PPS workqueue if it exists - net/mlx5e: Fix set vf link state error flow - net/mlxfw: Verify FSM error code translation doesn't exceed array size - net/mlx5: Fix auto group size calculation - vhost/vsock: split packets to send using multiple buffers - gpio: max77620: Fixup debounce delays - tools: gpio: Correctly add make dependencies for gpio_utils - nbd:fix memory leak in nbd_get_socket() - virtio_console: allocate inbufs in add_port() only if it is needed - Revert "fs: ocfs2: fix possible null-pointer dereferences in ocfs2_xa_prepare_entry()" - mm/ksm.c: don't WARN if page is still mapped in remove_stable_node() - [x86] drm/amd/powerplay: issue no PPSMC_MSG_GetCurrPkgPwr on unsupported ASICs - [x86] drm/i915/pmu: "Frequency" is reported as accumulated cycles - [x86] drm/i915/userptr: Try to acquire the page lock around set_page_dirty() - mwifiex: Fix NL80211_TX_POWER_LIMITED - ALSA: isight: fix leak of reference to firewire unit in error path of .probe callback - crypto: testmgr - fix sizeof() on COMP_BUF_SIZE - printk: lock/unlock console only for new logbuf entries - printk: fix integer overflow in setup_log_buf() - pinctrl: madera: Fix uninitialized variable bug in madera_mux_set_mux - PCI: cadence: Write MSI data with 32bits - gfs2: Fix marking bitmaps non-full - pty: fix compat ioctls - synclink_gt(): fix compat_ioctl() - [ppc64] Fix signedness bug in update_flash_db() - [powerpc] boot: Fix opal console in boot wrapper - [ppc64*,powerpc] boot: Disable vector instructions - [ppc64*,powerpc] eeh: Fix null deref for devices removed during EEH - [ppc64*,powerpc] eeh: Fix use of EEH_PE_KEEP on wrong field - EDAC, thunderx: Fix memory leak in thunderx_l2c_threaded_isr() - mt76: do not store aggregation sequence number for null-data frames - mt76x0: phy: fix restore phase in mt76x0_phy_recalibrate_after_assoc - brcmsmac: AP mode: update beacon when TIM changes - ath10k: set probe request oui during driver start - ath10k: allocate small size dma memory in ath10k_pci_diag_write_mem - skd: fixup usage of legacy IO API - cdrom: don't attempt to fiddle with cdo->capability - spi: sh-msiof: fix deferred probing - mmc: mediatek: fill the actual clock for mmc debugfs - mmc: mediatek: fix cannot receive new request when msdc_cmd_is_ready fail - PCI: mediatek: Fix class type for MT7622 to PCI_CLASS_BRIDGE_PCI - btrfs: defrag: use btrfs_mod_outstanding_extents in cluster_pages_for_defrag - btrfs: handle error of get_old_root - gsmi: Fix bug in append_to_eventlog sysfs handler - misc: mic: fix a DMA pool free failure - w1: IAD Register is yet readable trough iad sys file. Fix snprintf (%u for unsigned, count for max size). - [m68k] fix command-line parsing when passed from u-boot - RDMA/bnxt_re: Avoid NULL check after accessing the pointer - RDMA/bnxt_re: Fix qp async event reporting - RDMA/bnxt_re: Avoid resource leak in case the NQ registration fails - pinctrl: sunxi: Fix a memory leak in 'sunxi_pinctrl_build_state()' - pwm: lpss: Only set update bit if we are actually changing the settings - amiflop: clean up on errors during setup - qed: Align local and global PTT to propagate through the APIs. - scsi: ips: fix missing break in switch - nfp: bpf: protect against mis-initializing atomic counters - [x86] KVM: nVMX: reset cache/shadows when switching loaded VMCS - [x86] KVM: nVMX: move check_vmentry_postreqs() call to nested_vmx_enter_non_root_mode() - [x86] KVM: Fix invvpid and invept register operand size in 64-bit mode - clk: tegra: Fixes for MBIST work around - scsi: isci: Use proper enumerated type in atapi_d2h_reg_frame_handler - scsi: isci: Change sci_controller_start_task's return type to sci_status - scsi: bfa: Avoid implicit enum conversion in bfad_im_post_vendor_event - scsi: iscsi_tcp: Explicitly cast param in iscsi_sw_tcp_host_get_param - nvmet: avoid integer overflow in the discard code - nvmet-fcloop: suppress a compiler warning - nvme-pci: fix hot removal during error handling - PCI: mediatek: Fixup MSI enablement logic by enabling MSI before clocks - clk: mmp2: fix the clock id for sdh2_clk and sdh3_clk - ASoC: tegra_sgtl5000: fix device_node refcounting - scsi: dc395x: fix dma API usage in srb_done - scsi: dc395x: fix DMA API usage in sg_update_list - scsi: zorro_esp: Limit DMA transfers to 65535 bytes - net: dsa: mv88e6xxx: Fix 88E6141/6341 2500mbps SERDES speed - net: fix warning in af_unix - xfs: fix use-after-free race in xfs_buf_rele - xfs: clear ail delwri queued bufs on unmount of shutdown fs - kprobes, x86/ptrace.h: Make regs_get_kernel_stack_nth() not fault on bad stack - ACPI / scan: Create platform device for INT33FE ACPI nodes - PM / Domains: Deal with multiple states but no governor in genpd - ALSA: i2c/cs8427: Fix int to char conversion - macintosh/windfarm_smu_sat: Fix debug output - PCI: vmd: Detach resources after stopping root bus - USB: misc: appledisplay: fix backlight update_status return code - usbip: tools: fix atoi() on non-null terminated string - sctp: use sk_wmem_queued to check for writable space - dm raid: avoid bitmap with raid4/5/6 journal device - selftests/bpf: fix file resource leak in load_kallsyms - SUNRPC: Fix a compile warning for cmpxchg64() - sunrpc: safely reallow resvport min/max inversion - atm: zatm: Fix empty body Clang warnings - [s390x] perf: Return error when debug_register fails - swiotlb: do not panic on mapping failures - spi: omap2-mcspi: Set FIFO DMA trigger level to word length - [x86] intel_rdt: Prevent pseudo-locking from using stale pointers - sparc: Fix parport build warnings. - [ppc64*,powerpc] pseries: Export raw per-CPU VPA data via debugfs - [ppc64*,powerpc] mm/radix: Fix off-by-one in split mapping logic - [ppc64*,powerpc] mm/radix: Fix overuse of small pages in splitting logic - [ppc64*,powerpc] mm/radix: Fix small page at boundary when splitting - [ppc64*] radix: Fix radix__flush_tlb_collapsed_pmd double flushing pmd - selftests/bpf: fix return value comparison for tests in test_libbpf.sh - tools: bpftool: fix completion for "bpftool map update" - ceph: fix dentry leak in ceph_readdir_prepopulate - ceph: only allow punch hole mode in fallocate - thermal: armada: fix a test in probe() - f2fs: fix to spread clear_cold_data() - f2fs: spread f2fs_set_inode_flags() - mISDN: Fix type of switch control variable in ctrl_teimanager - qlcnic: fix a return in qlcnic_dcb_get_capability() - net: ethernet: ti: cpsw: unsync mcast entries while switch promisc mode - mfd: arizona: Correct calling of runtime_put_sync - mfd: mc13xxx-core: Fix PMIC shutdown when reading ADC values - [x86] mfd: intel_soc_pmic_bxtwc: Chain power button IRQs as well - mfd: max8997: Enale irq-wakeup unconditionally - net: socionext: Stop PHY before resetting netsec - fs/cifs: fix uninitialised variable warnings - spi: uniphier: fix incorrect property items - selftests/ftrace: Fix to test kprobe $comm arg only if available - selftests: watchdog: fix message when /dev/watchdog open fails - selftests: watchdog: Fix error message. - selftests: kvm: Fix -Wformat warnings - selftests: fix warning: "_GNU_SOURCE" redefined - net: ethernet: cadence: fix socket buffer corruption problem - bpf: devmap: fix wrong interface selection in notifier_call - bpf, btf: fix a missing check bug in btf_parse - [sparc64] Rework xchg() definition to avoid warnings. - [arm64] lib: use C string functions with KASAN enabled - fs/ocfs2/dlm/dlmdebug.c: fix a sleep-in-atomic-context bug in dlm_print_one_mle() - mm/page-writeback.c: fix range_cyclic writeback vs writepages deadlock - tools/testing/selftests/vm/gup_benchmark.c: fix 'write' flag usage - mm: thp: fix MADV_DONTNEED vs migrate_misplaced_transhuge_page race condition - macsec: update operstate when lower device changes - macsec: let the administrator set UP state even if lowerdev is down - block: fix the DISCARD request merge - i2c: uniphier-f: make driver robust against concurrency - i2c: uniphier-f: fix occasional timeout error - i2c: uniphier-f: fix race condition when IRQ is cleared - um: Make line/tty semantics use true write IRQ - vfs: avoid problematic remapping requests into partial EOF block - ipv4/igmp: fix v1/v2 switchback timeout based on rfc3376, 8.12 - [ppc64*,powerpc] xmon: Relax frame size for clang - [ppc64*,powerpc] selftests/ptrace: Fix out-of-tree build - [ppc64*,powerpc] selftests/signal: Fix out-of-tree build - [ppc64*,powerpc] selftests/switch_endian: Fix out-of-tree build - [ppc64*,powerpc] selftests/cache_shape: Fix out-of-tree build - block: call rq_qos_exit() after queue is frozen - mm/gup_benchmark.c: prevent integer overflow in ioctl - linux/bitmap.h: handle constant zero-size bitmaps correctly - linux/bitmap.h: fix type of nbits in bitmap_shift_right() - lib/bitmap.c: fix remaining space computation in bitmap_print_to_pagebuf - hfsplus: fix BUG on bnode parent update - hfs: fix BUG on bnode parent update - hfsplus: prevent btree data loss on ENOSPC - hfs: prevent btree data loss on ENOSPC - hfsplus: fix return value of hfsplus_get_block() - hfs: fix return value of hfs_get_block() - hfsplus: update timestamps on truncate() - hfs: update timestamp on truncate() - fs/hfs/extent.c: fix array out of bounds read of array extent - kernel/panic.c: do not append newline to the stack protector panic string - mm/memory_hotplug: make add_memory() take the device_hotplug_lock - mm/memory_hotplug: fix online/offline_pages called w.o. mem_hotplug_lock - [ppc64*,powerprc] powerpc/powernv: hold device_hotplug_lock when calling device_online() - igb: shorten maximum PHC timecounter update interval - fm10k: ensure completer aborts are marked as non-fatal after a resume - [arm64] net: hns3: bugfix for buffer not free problem during resetting - [arm64] net: hns3: bugfix for reporting unknown vector0 interrupt repeatly problem - [arm64] net: hns3: bugfix for is_valid_csq_clean_head() - [arm64] net: hns3: bugfix for hclge_mdio_write and hclge_mdio_read - ntb_netdev: fix sleep time mismatch - [x86] ntb: intel: fix return value for ndev_vec_mask() - irq/matrix: Fix memory overallocation - nvme-pci: fix conflicting p2p resource adds - [arm64] makefile fix build of .i file in external module case - [x86] tools/power turbosat: fix AMD APIC-id output - mm: handle no memcg case in memcg_kmem_charge() properly - ocfs2: without quota support, avoid calling quota recovery - ocfs2: don't use iocb when EIOCBQUEUED returns - ocfs2: don't put and assigning null to bh allocated outside - ocfs2: fix clusters leak in ocfs2_defrag_extent() - net: do not abort bulk send on BQL status - sched/topology: Fix off by one bug - sched/fair: Don't increase sd->balance_interval on newidle balance - openvswitch: fix linking without CONFIG_NF_CONNTRACK_LABELS - [armhf] dts: imx6sx-sdb: Fix enet phy regulator - [arm64] sunxi-ng: enable so-said LDOs for A64 SoC's pll-mipi clock - soc: bcm: brcmstb: Fix re-entry point with a THUMB2_KERNEL - audit: print empty EXECVE args - sock_diag: fix autoloading of the raw_diag module - net: bpfilter: fix iptables failure if bpfilter_umh is disabled - nds32: Fix bug in bitfield.h - media: ov13858: Check for possible null pointer - btrfs: avoid link error with CONFIG_NO_AUTO_INLINE - wil6210: fix debugfs memory access alignment - wil6210: fix L2 RX status handling - wil6210: fix RGF_CAF_ICR address for Talyn-MB - wil6210: fix locking in wmi_call - ath10k: snoc: fix unbalanced clock error handling - wlcore: Fix the return value in case of error in 'wlcore_vendor_cmd_smart_config_start()' - rtl8xxxu: Fix missing break in switch - brcmsmac: never log "tid x is not agg'able" by default - wireless: airo: potential buffer overflow in sprintf() - rtlwifi: rtl8192de: Fix misleading REG_MCUFWDL information - net: dsa: bcm_sf2: Turn on PHY to allow successful registration - scsi: mpt3sas: Fix Sync cache command failure during driver unload - scsi: mpt3sas: Don't modify EEDPTagMode field setting on SAS3.5 HBA devices - scsi: mpt3sas: Fix driver modifying persistent data in Manufacturing page11 - scsi: megaraid_sas: Fix msleep granularity - scsi: megaraid_sas: Fix goto labels in error handling - scsi: lpfc: fcoe: Fix link down issue after 1000+ link bounces - scsi: lpfc: Fix odd recovery in duplicate FLOGIs in point-to-point - scsi: lpfc: Correct loss of fc4 type on remote port address change - usb: typec: tcpm: charge current handling for sink during hard reset - dlm: fix invalid free - dlm: don't leak kernel pointer to userspace - vrf: mark skb for multicast or link-local as enslaved to VRF - clk: tegra20: Turn EMC clock gate into divider - ACPICA: Use %d for signed int print formatting instead of %u - net: bcmgenet: return correct value 'ret' from bcmgenet_power_down - of: unittest: allow base devicetree to have symbol metadata - of: unittest: initialize args before calling of_*parse_*() - tools: bpftool: pass an argument to silence open_obj_pinned() - cfg80211: Prevent regulatory restore during STA disconnect in concurrent interfaces - pinctrl: qcom: spmi-gpio: fix gpio-hog related boot issues - pinctrl: bcm2835: Use define directive for BCM2835_PINCONF_PARAM_PULL - pinctrl: lpc18xx: Use define directive for PIN_CONFIG_GPIO_PIN_INT - pinctrl: zynq: Use define directive for PIN_CONFIG_IO_STANDARD - PCI: keystone: Use quirk to limit MRRS for K2G - nvme-pci: fix surprise removal - spi: omap2-mcspi: Fix DMA and FIFO event trigger size mismatch - i2c: uniphier-f: fix timeout error after reading 8 bytes - mm/memory_hotplug: Do not unlock when fails to take the device_hotplug_lock - ipv6: Fix handling of LLA with VRF and sockets bound to VRF - cfg80211: call disconnect_wk when AP stops - mm/page_io.c: do not free shared swap slots - Bluetooth: Fix invalid-free in bcsp_close() - KVM: MMU: Do not treat ZONE_DEVICE pages as being reserved - ath10k: Fix a NULL-ptr-deref bug in ath10k_usb_alloc_urb_from_pipe - ath9k_hw: fix uninitialized variable data - md/raid10: prevent access of uninitialized resync_pages offset - mm/memory_hotplug: don't access uninitialized memmaps in shrink_zone_span() - net: phy: dp83867: fix speed 10 in sgmii mode - net: phy: dp83867: increase SGMII autoneg timer duration - ocfs2: remove ocfs2_is_o2cb_active() - [arm*] 8904/1: skip nomap memblocks while finding the lowmem/highmem boundary - ARC: perf: Accommodate big-endian CPU - [x86] insn: Fix awk regexp warnings - [x86] speculation: Fix incorrect MDS/TAA mitigation status - [x86] speculation: Fix redundant MDS mitigation message - nbd: prevent memory leak - y2038: futex: Move compat implementation into futex.c - futex: Prevent robust futex exit race - ALSA: usb-audio: Fix NULL dereference at parsing BADD - nfc: port100: handle command failure cleanly - media: vivid: Set vid_cap_streaming and vid_out_streaming to true - media: vivid: Fix wrong locking that causes race conditions on streaming stop (CVE-2019-18683) - media: usbvision: Fix races among open, close, and disconnect - cpufreq: Add NULL checks to show() and store() methods of cpufreq - media: uvcvideo: Fix error path in control parsing failure - media: b2c2-flexcop-usb: add sanity checking - media: cxusb: detect cxusb_ctrl_msg error in query - media: imon: invalid dereference in imon_touch_event - virtio_ring: fix return code on DMA mapping fails - USBIP: add config dependency for SGL_ALLOC - usbip: tools: fix fd leakage in the function of read_attr_usbip_status - usbip: Fix uninitialized symbol 'nents' in stub_recv_cmd_submit() - usb-serial: cp201x: support Mark-10 digital force gauge - USB: chaoskey: fix error case of a timeout - appledisplay: fix error handling in the scheduled work - USB: serial: mos7840: add USB ID to support Moxa UPort 2210 - USB: serial: mos7720: fix remote wakeup - USB: serial: mos7840: fix remote wakeup - USB: serial: option: add support for DW5821e with eSIM support - USB: serial: option: add support for Foxconn T77W968 LTE modules - staging: comedi: usbduxfast: usbduxfast_ai_cmdtest rounding error - [ppc64*] support nospectre_v2 cmdline option - [ppc64*] book3s: Fix link stack flush on context switch (CVE-2019-18660) - [ppc64*, powerpc] PPC: Book3S HV: Flush link stack on guest exit to host kernel - PM / devfreq: Fix kernel oops on governor module load . [ Romain Perier ] * [armel/rpi] Enable CONFIG_BRCMFMAC_SDIO (Closes: #940530) * [armhf, arm64] Backport devicetree for enabling support for the Raspberry PI 3 A+ . [ Salvatore Bonaccorso ] * ixgbe: Fix secpath usage for IPsec TX offload (Closes: #930443) * ipv4: Return -ENETUNREACH if we can't create route but saddr is valid (Closes: #945023) * [x86] KVM: x86: introduce is_pae_paging (Regression in 4.19.77) * [rt] Refresh 0011-sched-fair-Robustify-CFS-bandwidth-timer-locking.patch (context changes in 4.19.84) . [ Bastian Blank ] * [amd64/cloud-amd64] Re-enable RTC drivers. (closes: #931341) . [ Noah Meyerhans ] * drivers/net/ethernet/amazon: Backport driver fixes from Linux 5.4 (Closes: #941291) * Bump ABI to 7 . [ Ben Hutchings ] * debian/bin/genpatch-rt: Fix series generation from git * [rt] Update to 4.19.82-rt30: - Drop changes in "fs/dcache: disable preemption on i_dir_seq's write side" that conflict with "Fix the locking in dcache_readdir() and friends" - Rewrite "fs/aio: simple simple work" using kthread_work - Rewrite "thermal: Defer thermal wakups to threads" using kthread_work - Rewrite "block: blk-mq: move blk_queue_usage_counter_release() into process context" using kthread_work - workqueue: rework . [ Benjamin Poirier ] * tools/perf: Add python3 support to scripts (Closes: #944641) . [ Aurelien Jarno ] * [rt] Refresh 0025-NFSv4-replace-seqcount_t-with-a-seqlock_t.patch (context changes in 4.19.86) * [rt] Refresh 0202-net-Qdisc-use-a-seqlock-instead-seqcount.patch (context changes in 4.19.86) * [rt] Refresh 0057-printk-Add-a-printk-kill-switch.patch (context changes in 4.19.87) * [rt] Refresh 0207-printk-Make-rt-aware.patch (context changes in 4.19.87) linux-signed-amd64 (4.19.67+2+deb10u2) buster-security; urgency=high . * Sign kernel from linux 4.19.67-2+deb10u2 . * [x86] Add mitigation for TSX Asynchronous Abort (CVE-2019-11135): - KVM: x86: use Intel speculation bugs and features as derived in generic x86 code - x86/msr: Add the IA32_TSX_CTRL MSR - x86/cpu: Add a helper function x86_read_arch_cap_msr() - x86/cpu: Add a "tsx=" cmdline option with TSX disabled by default - x86/speculation/taa: Add mitigation for TSX Async Abort - x86/speculation/taa: Add sysfs reporting for TSX Async Abort - kvm/x86: Export MDS_NO=0 to guests when TSX is enabled - x86/tsx: Add "auto" option to the tsx= cmdline parameter - x86/speculation/taa: Add documentation for TSX Async Abort - x86/tsx: Add config options to set tsx=on|off|auto - x86/speculation/taa: Fix printing of TAA_MSG_SMT on IBRS_ALL CPUs TSX is now disabled by default; see Documentation/admin-guide/hw-vuln/tsx_async_abort.rst * [x86] KVM: Add mitigation for Machine Check Error on Page Size Change (aka iTLB multi-hit, CVE-2018-12207): - kvm: Convert kvm_lock to a mutex - kvm: x86: Do not release the page inside mmu_set_spte() - KVM: x86: make FNAME(fetch) and __direct_map more similar - KVM: x86: remove now unneeded hugepage gfn adjustment - KVM: x86: change kvm_mmu_page_get_gfn BUG_ON to WARN_ON - KVM: x86: add tracepoints around __direct_map and FNAME(fetch) - kvm: x86, powerpc: do not allow clearing largepages debugfs entry - KVM: vmx, svm: always run with EFER.NXE=1 when shadow paging is active - x86/bugs: Add ITLB_MULTIHIT bug infrastructure - cpu/speculation: Uninline and export CPU mitigations helpers - kvm: mmu: ITLB_MULTIHIT mitigation - kvm: Add helper function for creating VM worker threads - kvm: x86: mmu: Recovery of shattered NX large pages - Documentation: Add ITLB_MULTIHIT documentation * [x86] i915: Mitigate local privilege escalation on gen9 (CVE-2019-0155): - drm/i915: Rename gen7 cmdparser tables - drm/i915: Disable Secure Batches for gen6+ - drm/i915: Remove Master tables from cmdparser - drm/i915: Add support for mandatory cmdparsing - drm/i915: Support ro ppgtt mapped cmdparser shadow buffers - drm/i915: Allow parsing of unsized batches - drm/i915: Add gen9 BCS cmdparsing - drm/i915/cmdparser: Use explicit goto for error paths - drm/i915/cmdparser: Add support for backward jumps - drm/i915/cmdparser: Ignore Length operands during command matching - drm/i915/cmdparser: Fix jump whitelist clearing * [x86] i915: Mitigate local denial-of-service on gen8/gen9 (CVE-2019-0154): - drm/i915: Lower RM timeout to avoid DSI hard hangs - drm/i915/gen8+: Add RC6 CTX corruption WA linux-signed-amd64 (4.19.67+2+deb10u2~bpo9+1) stretch-backports; urgency=medium . * Sign kernel from linux 4.19.67-2+deb10u2~bpo9+1 . * Rebuild for stretch-backports; no further changes required linux-signed-arm64 (4.19.98+1) buster; urgency=medium . * Sign kernel from linux 4.19.98-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.88 - [arm64] clk: meson: gxbb: let sar_adc_clk_div set the parent clock rate - ASoC: compress: fix unsigned integer overflow check - reset: Fix memory leak in reset_control_array_put() - [armhf] clk: samsung: exynos5433: Fix error paths - [armel/marvell,armhf] ASoC: kirkwood: fix external clock probe defer - [armel/marvell,armhf] ASoC: kirkwood: fix device remove ordering - [armhf] clk: samsung: exynos5420: Preserve PLL configuration during suspend/resume - [x86] pinctrl: cherryview: Allocate IRQ chip dynamic - [armhf] dts: imx6qdl-sabreauto: Fix storm of accelerometer interrupts - reset: fix reset_control_ops kerneldoc comment - [armhf,arm64] clk: sunxi: Fix operator precedence in sunxi_divs_clk_setup - [armhf] clk: sunxi-ng: a80: fix the zero'ing of bits 16 and 18 - [armhf] dts: sun8i-a83t-tbs-a711: Fix WiFi resume from suspend - [ppc64el] bpf: Fix tail call implementation - idr: Fix integer overflow in idr_for_each_entry - idr: Fix idr_alloc_u32 on 32-bit systems - [x86] resctrl: Prevent NULL pointer dereference when reading mondata - [armhf] clk: ti: dra7-atl-clock: Remove ti_clk_add_alias call - [armhf] clk: ti: clkctrl: Fix failed to enable error with double udelay timeout - bridge: ebtables: don't crash when using dnat target in output chains - can: peak_usb: report bus recovery as well - can: rx-offload: can_rx_offload_queue_tail(): fix error handling, avoid skb mem leak - can: rx-offload: can_rx_offload_offload_one(): do not increase the skb_queue beyond skb_queue_len_max - can: rx-offload: can_rx_offload_offload_one(): increment rx_fifo_errors on queue overflow or OOM - can: rx-offload: can_rx_offload_offload_one(): use ERR_PTR() to propagate error value in case of errors - can: rx-offload: can_rx_offload_irq_offload_timestamp(): continue on error - can: rx-offload: can_rx_offload_irq_offload_fifo(): continue on error - [armhf] can: flexcan: increase error counters if skb enqueueing via can_rx_offload_queue_sorted() fails - [arm64] watchdog: meson: Fix the wrong value of left time - ceph: return -EINVAL if given fsc mount option on kernel w/o support - net/fq_impl: Switch to kvmalloc() for memory allocation - mac80211: fix station inactive_time shortly after boot - block: drbd: remove a stray unlock in __drbd_send_protocol() - scsi: target/tcmu: Fix queue_cmd_ring() declaration - scsi: lpfc: Fix kernel Oops due to null pring pointers - scsi: lpfc: Fix dif and first burst use in write commands - tracing: Lock event_mutex before synth_event_mutex - [armhf] dts: imx*: Fix memory node duplication - [armhf] dts: Fix hsi gdd range for omap4 - [arm64] mm: Prevent mismatched 52-bit VA support - [arm64] smp: Handle errors reported by the firmware - [armhf] bus: ti-sysc: Check for no-reset and no-idle flags at the child level - [arm64] RDMA/hns: Fix the bug while use multi-hop of pbl - [x86] RDMA/vmw_pvrdma: Use atomic memory allocation in create AH - [armhf] PM / AVS: SmartReflex: NULL check before some freeing functions is not needed - xfs: zero length symlinks are not valid - ACPI / LPSS: Ignore acpi_device_fix_up_power() return value - scsi: lpfc: Enable Management features for IF_TYPE=6 - scsi: qla2xxx: Fix NPIV handling for FC-NVMe - scsi: qla2xxx: Fix for FC-NVMe discovery for NPIV port - nvme: provide fallback for discard alloc failure - [s390x] zcrypt: make sysfs reset attribute trigger queue reset - crypto: user - support incremental algorithm dumps - mwifiex: fix potential NULL dereference and use after free - mwifiex: debugfs: correct histogram spacing, formatting - brcmfmac: set F2 watermark to 256 for 4373 - brcmfmac: set SDIO F1 MesBusyCtrl for CYW4373 - rtl818x: fix potential use after free - bcache: do not check if debug dentry is ERR or NULL explicitly on remove - bcache: do not mark writeback_running too early - xfs: require both realtime inodes to mount - nvme: fix kernel paging oops - ubifs: Fix default compression selection in ubifs - ubi: Put MTD device after it is not used - ubi: Do not drop UBI device reference before using - iwlwifi: move iwl_nvm_check_version() into dvm - iwlwifi: mvm: force TCM re-evaluation on TCM resume - iwlwifi: pcie: fix erroneous print - iwlwifi: pcie: set cmd_len in the correct place - [armhf,arm64] gpio: pca953x: Fix AI overflow on PCAL6524 - gpiolib: Fix return value of gpio_to_desc() stub if !GPIOLIB - [x86] kvm: vmx: Set IA32_TSC_AUX for legacy mode guests - [x86] Revert "KVM: nVMX: reset cache/shadows when switching loaded VMCS" - [x86] Revert "KVM: nVMX: move check_vmentry_postreqs() call to nested_vmx_enter_non_root_mode()" - VSOCK: bind to random port for VMADDR_PORT_ANY - [amd64] mmc: meson-gx: make sure the descriptor is stopped on errors - [armhf] mtd: rawnand: sunxi: Write pageprog related opcodes to WCMD_SET - [armhf] usb: ehci-omap: Fix deferred probe for phy handling - btrfs: Check for missing device before bio submission in btrfs_map_bio - btrfs: fix ncopies raid_attr for RAID56 - btrfs: dev-replace: set result code of cancel by status of scrub - Btrfs: allow clear_extent_dirty() to receive a cached extent state record - btrfs: only track ref_heads in delayed_ref_updates - [x86] HID: intel-ish-hid: fixes incorrect error handling - serial: 8250: Rate limit serial port rx interrupts during input overruns - [x86] kprobes/xen: blacklist non-attachable xen interrupt functions - xen/pciback: Check dev_data before using it - kprobes: Blacklist symbols in arch-defined prohibited area - [amd64] kprobes: Show x86-64 specific blacklisted symbols correctly - [armhf] memory: omap-gpmc: Get the header of the enum - net/mlx5: Continue driver initialization despite debugfs failure - netfilter: nf_nat_sip: fix RTP/RTCP source port translations - exofs_mount(): fix leaks on failure exits - bnxt_en: Return linux standard errors in bnxt_ethtool.c - bnxt_en: Save ring statistics before reset. - bnxt_en: query force speeds before disabling autoneg mode. - [s390x] KVM: unregister debug feature on failing arch init - dm flakey: Properly corrupt multi-page bios. - gfs2: take jdata unstuff into account in do_grow - dm raid: fix false -EBUSY when handling check/repair message - xfs: Align compat attrlist_by_handle with native implementation. - xfs: Fix bulkstat compat ioctls on x32 userspace. - IB/qib: Fix an error code in qib_sdma_verbs_send() - vxlan: Fix error path in __vxlan_dev_create() - [ppc64el] xmon: fix dump_segments() - drivers/regulator: fix a missing check of return value - Bluetooth: hci_bcm: Handle specific unknown packets after firmware loading - RDMA/srp: Propagate ib_post_send() failures to the SCSI mid-layer - scsi: qla2xxx: deadlock by configfs_depend_item - scsi: csiostor: fix incorrect dma device in case of vport - brcmfmac: Fix access point mode - ath6kl: Only use match sets when firmware supports it - ath6kl: Fix off by one error in scan completion - [ppc64el] perf: Fix unit_sel/cache_sel checks - [ppc64el] prom: fix early DEBUG messages - [ppc64el] mm: Make NULL pointer deferences explicit on bad page faults. - [ppc64el] vfio/spapr_tce: Get rid of possible infinite loop - [ppc64el] powernv/eeh/npu: Fix uninitialized variables in opal_pci_eeh_freeze_status - drbd: ignore "all zero" peer volume sizes in handshake - drbd: reject attach of unsuitable uuids even if connected - drbd: do not block when adjusting "disk-options" while IO is frozen - drbd: fix print_st_err()'s prototype to match the definition - IB/rxe: Make counters thread safe - bpf/cpumap: make sure frame_size for build_skb is aligned if headroom isn't - [armhf] regulator: tps65910: fix a missing check of return value - [ppc64el] powerpc/pseries: Fix node leak in update_lmb_associativity_index() - net/netlink_compat: Fix a missing check of nla_parse_nested - net/net_namespace: Check the return value of register_pernet_subsys() - f2fs: fix block address for __check_sit_bitmap - f2fs: fix to dirty inode synchronously - [armhf] net: dsa: bcm_sf2: Propagate error value from mdio_write - atl1e: checking the status of atl1e_write_phy_reg - tipc: fix a missing check of genlmsg_put - net: marvell: fix a missing check of acpi_match_device - ocfs2: clear journal dirty flag after shutdown journal - vmscan: return NODE_RECLAIM_NOSCAN in node_reclaim() when CONFIG_NUMA is n - mm/page_alloc.c: free order-0 pages through PCP in page_frag_free() - mm/page_alloc.c: use a single function to free page - mm/page_alloc.c: deduplicate __memblock_free_early() and memblock_free() - netfilter: nf_tables: fix a missing check of nla_put_failure - xprtrdma: Prevent leak of rpcrdma_rep objects - infiniband/qedr: Potential null ptr dereference of qp - lib/genalloc.c: fix allocation of aligned buffer from non-aligned chunk - lib/genalloc.c: use vzalloc_node() to allocate the bitmap - drivers/base/platform.c: kmemleak ignore a known leak - lib/genalloc.c: include vmalloc.h - mtd: Check add_mtd_device() ret code - tipc: fix memory leak in tipc_nl_compat_publ_dump - net/core/neighbour: tell kmemleak about hash tables - [armhf,arm64] ata: ahci: mvebu: do Armada 38x configuration only on relevant SoCs - PCI/MSI: Return -ENOSPC from pci_alloc_irq_vectors_affinity() - net/core/neighbour: fix kmemleak minimal reference count for hash tables - serial: 8250: Fix serial8250 initialization crash - [armhf] gpu: ipu-v3: pre: don't trigger update if buffer address doesn't change - sfc: suppress duplicate nvmem partition types in efx_ef10_mtd_probe - ip_tunnel: Make none-tunnel-dst tunnel port work with lwtunnel - decnet: fix DN_IFREQ_SIZE - net/smc: prevent races between smc_lgr_terminate() and smc_conn_free() - net/smc: don't wait for send buffer space when data was already sent - mm/hotplug: invalid PFNs from pfn_to_online_page() - xfs: end sync buffer I/O properly on shutdown error - net/smc: fix sender_free computation - blktrace: Show requests without sector - net/smc: fix byte_order for rx_curs_confirmed - tipc: fix skb may be leaky in tipc_link_input - sfc: initialise found bitmap in efx_ef10_mtd_probe - geneve: change NET_UDP_TUNNEL dependency to select - net: fix possible overflow in __sk_mem_raise_allocated() - net: ip_gre: do not report erspan_ver for gre or gretap - net: ip6_gre: do not report erspan_ver for ip6gre or ip6gretap - sctp: don't compare hb_timer expire date before starting it - bpf: decrease usercnt if bpf_map_new_fd() fails in bpf_map_get_fd_by_id() - mmc: core: align max segment size with logical block size - net: dev: Use unsigned integer as an argument to left-shift - kvm: properly check debugfs dentry before using it - bpf: drop refcount if bpf_map_new_fd() fails in map_create() - [arm64] net: hns3: Change fw error code NOT_EXEC to NOT_SUPPORTED - [arm64] net: hns3: fix PFC not setting problem for DCB module - [arm64] net: hns3: fix an issue for hclgevf_ae_get_hdev - [arm64] net: hns3: fix an issue for hns3_update_new_int_gl - [x86] iommu/amd: Fix NULL dereference bug in match_hid_uid - apparmor: delete the dentry in aafs_remove() to avoid a leak - scsi: libsas: Support SATA PHY connection rate unmatch fixing during discovery - ACPI / APEI: Don't wait to serialise with oops messages when panic()ing - ACPI / APEI: Switch estatus pool to use vmalloc memory - [arm64] scsi: hisi_sas: shutdown axi bus to avoid exception CQ returned - scsi: libsas: Check SMP PHY control function result - [arm64] RDMA/hns: Fix the bug with updating rq head pointer when flush cqe - [arm64] RDMA/hns: Bugfix for the scene without receiver queue - [arm64] RDMA/hns: Fix the state of rereg mr - [arm64] RDMA/hns: Use GFP_ATOMIC in hns_roce_v2_modify_qp - ASoC: rt5645: Headphone Jack sense inverts on the LattePanda board - [ppc64el] pseries/dlpar: Fix a missing check in dlpar_parse_cc_property() (CVE-2019-12614) - xdp: fix cpumap redirect SKB creation bug - mtd: Remove a debug trace in mtdpart.c - [s390x] mm, gup: add missing refcount overflow checks on s390 - [armhf,arm64] usb: dwc2: use a longer core rest timeout in dwc2_core_reset() - staging: rtl8192e: fix potential use after free - staging: rtl8723bs: Drop ACPI device ids - staging: rtl8723bs: Add 024c:0525 to the list of SDIO device-ids - USB: serial: ftdi_sio: add device IDs for U-Blox C099-F9P - [x86] mei: bus: prefix device names on bus with the bus name - [x86] mei: me: add comet point V device id - thunderbolt: Power cycle the router if NVM authentication fails - xfrm: Fix memleak on xfrm state destroy - media: v4l2-ctrl: fix flags for DO_WHITE_BALANCE - [arm64] net: macb: fix error format in dev_err() - pwm: Clear chip_data in pwm_put() - macvlan: schedule bc_work even if error - net: psample: fix skb_over_panic - openvswitch: fix flow command message size - sctp: Fix memory leak in sctp_sf_do_5_2_4_dupcook - slip: Fix use-after-free Read in slip_open - openvswitch: drop unneeded BUG_ON() in ovs_flow_cmd_build_info() - openvswitch: remove another BUG_ON() - tipc: fix link name length check - sctp: cache netns in sctp_ep_common - net: sched: fix `tc -s class show` no bstats on class with nolock subqueues - [arm64] net: macb: add missed tasklet_kill - ext4: add more paranoia checking in ext4_expand_extra_isize handling (CVE-2019-19767) - [arm64] net: macb: Fix SUBNS increment and increase resolution - [arm64] net: macb driver, check for SKBTX_HW_TSTAMP - mtd: spi-nor: cast to u64 to avoid uint overflows - tcp: exit if nothing to retransmit on RTO timeout - HID: core: check whether Usage Page item is after Usage ID items - [x86] platform: hp-wmi: Fix ACPI errors caused by too small buffer - [x86] platform: hp-wmi: Fix ACPI errors caused by passing 0 as input size https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.89 - rsi: release skb if rsi_prepare_beacon fails (CVE-2019-19071) - [arm64] tegra: Fix 'active-low' warning for Jetson TX1 regulator - usb: gadget: u_serial: add missing port entry locking - [arm64] tty: serial: msm_serial: Fix flow control - [armhf,arm64] serial: pl011: Fix DMA ->flush_buffer() - serial: serial_core: Perform NULL checks for break_ctl ops - autofs: fix a leak in autofs_expire_indirect() - [arm64] RDMA/hns: Correct the value of HNS_ROCE_HEM_CHUNK_LEN - iwlwifi: pcie: don't consider IV len in A-MSDU - exportfs_decode_fh(): negative pinned may become positive without the parent locked - audit_get_nd(): don't unlock parent too early - xfrm: release device reference for invalid state - sched/core: Avoid spurious lock dependencies - perf/core: Consistently fail fork on allocation failures - ALSA: pcm: Fix stream lock usage in snd_pcm_period_elapsed() - [armhf,arm64] drm/sun4i: tcon: Set min division of TCON0_DCLK to 1. - rsxx: add missed destroy_workqueue calls in remove - i2c: core: fix use after free in of_i2c_notify - serial: core: Allow processing sysrq at port unlock time - cxgb4vf: fix memleak in mac_hlist initialization - iwlwifi: mvm: synchronize TID queue removal - iwlwifi: trans: Clear persistence bit when starting the FW - iwlwifi: mvm: Send non offchannel traffic via AP sta - [armhf] 8813/1: Make aligned 2-byte getuser()/putuser() atomic on ARMv6+ - audit: Embed key into chunk - netfilter: nf_tables: don't use position attribute on rule replacement - net/mlx5: Release resource on error flow - [arm64] clk: sunxi-ng: a64: Fix gate bit of DSI DPHY - ice: Fix NVM mask defines - dlm: fix possible call to kfree() for non-initialized pointer - [armhf] dts: exynos: Fix LDO13 min values on Odroid XU3/XU4/HC1 - [armhf,arm64] rtc: max77686: Fix the returned value in case of error in 'max77686_rtc_read_time()' - i40e: don't restart nway if autoneg not supported - virtchnl: Fix off by one error - [armhf] clk: rockchip: fix rk3188 sclk_smc gate data - [armhf] clk: rockchip: fix rk3188 sclk_mac_lbtest parameter ordering - [armhf] dts: rockchip: Fix rk3288-rock2 vcc_flash name - dlm: fix missing idr_destroy for recover_idr - [armhf,arm64] net: dsa: mv88e6xxx: Work around mv886e6161 SERDES missing MII_PHYSID2 - [s390x] scsi: zfcp: update kernel message for invalid FCP_CMND length, it's not the CDB - [s390x] scsi: zfcp: drop default switch case which might paper over missing case - [armhf] bus: ti-sysc: Fix getting optional clocks in clock_roles - [armhf] dts: imx6: RDU2: fix eGalax touchscreen node - crypto: ecc - check for invalid values in the key verification test - crypto: bcm - fix normal/non key hash algorithm failure - [arm64] dts: zynqmp: Fix node names which contain "_" - [arm64] pinctrl: qcom: ssbi-gpio: fix gpio-hog related boot issues - [arm*] firmware: raspberrypi: Fix firmware calls with large buffers - mm/vmstat.c: fix NUMA statistics updates - [arm64] clk: rockchip: fix I2S1 clock gate register for rk3328 - [arm64] clk: rockchip: fix ID of 8ch clock of I2S1 for rk3328 - sctp: count sk_wmem_alloc by skb truesize in sctp_packet_transmit - regulator: Fix return value of _set_load() stub - USB: serial: f81534: fix reading old/new IC config - xfs: extent shifting doesn't fully invalidate page cache - net-next/hinic:fix a bug in set mac address - net-next/hinic: fix a bug in rx data flow - ice: Fix return value from NAPI poll - ice: Fix possible NULL pointer de-reference - iomap: FUA is wrong for DIO O_DSYNC writes into unwritten extents - iomap: sub-block dio needs to zeroout beyond EOF - iomap: dio data corruption and spurious errors when pipes fill - iomap: readpages doesn't zero page tail beyond EOF - iw_cxgb4: only reconnect with MPAv1 if the peer aborts - [mips*/octeon] octeon-platform: fix typing - net/smc: use after free fix in smc_wr_tx_put_slot() - [armhf] dts: exynos: Use Samsung SoC specific compatible for DWC2 module - media: pulse8-cec: return 0 when invalidating the logical address - media: cec: report Vendor ID after initialization - iwlwifi: fix cfg structs for 22000 with different RF modules - net/ipv6: re-do dad when interface has IFF_NOARP flag change - [x86] dmaengine: dw-dmac: implement dma protection control setting - [armhf,arm64] usb: dwc3: debugfs: Properly print/set link state for HS - [armhf,arm64] usb: dwc3: don't log probe deferrals; but do log other error codes - ACPI: fix acpi_find_child_device() invocation in acpi_preset_companion() - f2fs: fix to account preflush command for noflush_merge mode - f2fs: fix count of seg_freed to make sec_freed correct - f2fs: change segment to section in f2fs_ioc_gc_range - [armhf] dts: rockchip: Fix the PMU interrupt number for rv1108 - [armhf] dts: rockchip: Assign the proper GPIO clocks for rv1108 - f2fs: fix to allow node segment for GC by ioctl path - nvme: Free ctrl device name on init failure - dma-mapping: fix return type of dma_set_max_seg_size() - [armhf] serial: imx: fix error handling in console_setup - [armhf] i2c: imx: don't print error message on probe defer - [arm64] clk: meson: Fix GXL HDMI PLL fractional bits width - [armhf,arm64] gpu: host1x: Fix syncpoint ID field size on Tegra186 - lockd: fix decoding of TEST results - sctp: increase sk_wmem_alloc when head->truesize is increased - [x86] iommu/amd: Fix line-break in error log reporting - [armhf] dts: sun8i: a23/a33: Fix OPP DTC warnings - [armhf] dts: sun8i: v3s: Change pinctrl nodes to avoid warning - nfsd: fix a warning in __cld_pipe_upcall() - bpf: btf: implement btf_name_valid_identifier() - bpf: btf: check name validity for various types - [armhf] OMAP1/2: fix SoC name printing - [arm64] dts: meson-gxl-libretech-cc: fix GPIO lines names - [arm64] dts: meson-gxbb-nanopi-k2: fix GPIO lines names - [arm64] dts: meson-gxbb-odroidc2: fix GPIO lines names - [arm64] dts: meson-gxl-khadas-vim: fix GPIO lines names - net/x25: fix called/calling length calculation in x25_parse_address_block - net/x25: fix null_x25_address handling - tcp: make tcp_space() aware of socket backlog - tcp: fix off-by-one bug on aborting window-probing socket - tcp: fix SNMP under-estimation on failed retransmission - tcp: fix SNMP TCP timeout under-estimation - kbuild: fix single target build for external module - mtd: fix mtd_oobavail() incoherent returned value - [arm64] clk: meson: meson8b: fix the offset of vid_pll_dco's N value - [armhf,arm64] clk: sunxi-ng: h3/h5: Fix CSI_MCLK parent - [arm64] clk: qcom: Fix MSM8998 resets - dlm: fix invalid cluster name warning - net/mlx4_core: Fix return codes of unsupported operations - pstore/ram: Avoid NULL deref in ftrace merging failure path - [mips*/octeon] cvmx_pko_mem_debug8: use oldest forward compatible definition - nfsd: Return EPERM, not EACCES, in some SETATTR cases - media: uvcvideo: Abstract streaming object lifetime - [armhf] dts: sun8i: h3: Fix the system-control register range - tty: Don't block on IO when ldisc change is pending - media: stkwebcam: Bugfix for wrong return values - sctp: frag_point sanity check - IB/hfi1: Ignore LNI errors before DC8051 transitions to Polling state - IB/hfi1: Close VNIC sdma_progress sleep window - mlx4: Use snprintf instead of complicated strcpy - [armhf] dts: sunxi: Fix PMU compatible strings - [armhf] dts: am335x-pdu001: Fix polarity of card detection input - net: aquantia: fix RSS table and key sizes - sched/fair: Scale bandwidth quota and period without losing quota/period ratio precision - fuse: verify nlink - fuse: verify attributes - [x86] ALSA: hda/realtek - Enable internal speaker of ASUS UX431FLC - [x86] ALSA: hda/realtek - Enable the headset-mic on a Xiaomi's laptop - [x86] ALSA: hda/realtek - Dell headphone has noise on unmute for ALC236 - ALSA: pcm: oss: Avoid potential buffer overflows - [x86] ALSA: hda - Add mute led support for HP ProBook 645 G4 - [x86] Input: synaptics - switch another X1 Carbon 6 to RMI/SMbus - [x86] Input: synaptics-rmi4 - re-enable IRQs in f34v7_do_reflash - [x86] Input: synaptics-rmi4 - don't increment rmiaddr for SMBus transfers - [x86] Input: goodix - add upside-down quirk for Teclast X89 tablet - Input: Fix memory leak in psxpad_spi_probe - [i386] mm: Sync only to VMALLOC_END in vmalloc_sync_all() - [x86] PCI: Avoid AMD FCH XHCI USB PME# from D0 defect - xfrm interface: fix memory leak on creation - xfrm interface: avoid corruption on changelink - xfrm interface: fix list corruption for x-netns - xfrm interface: fix management of phydev - CIFS: Fix NULL-pointer dereference in smb2_push_mandatory_locks - CIFS: Fix SMB2 oplock break processing - tty: vt: keyboard: reject invalid keycodes - can: slcan: Fix use-after-free Read in slcan_open - kernfs: fix ino wrap-around detection - jbd2: Fix possible overflow in jbd2_log_space_left() - [arm64] drm/msm: fix memleak on release - [i386] drm/i810: Prevent underflow in ioctl - [armhf,arm64] KVM: vgic: Don't rely on the wrong pending table - [x86] KVM: do not modify masked bits of shared MSRs - [x86] KVM: fix presentation of TSX feature in ARCH_CAPABILITIES - [x86] KVM: Grab KVM's srcu lock when setting nested state - crypto: af_alg - cast ki_complete ternary op to int - [x86] crypto: ccp - fix uninitialized list head - crypto: ecdh - fix big endian bug in ECC library - crypto: user - fix memory leak in crypto_report (CVE-2019-19062) - mwifiex: update set_mac_address logic - can: ucan: fix non-atomic allocation in completion handler - RDMA/qib: Validate ->show()/store() callbacks before calling them - iomap: Fix pipe page leakage during splicing - thermal: Fix deadlock in thermal thermal_zone_device_check - vcs: prevent write access to vcsu devices (CVE-2019-19252) - binder: Fix race between mmap() and binder_alloc_print_pages() - binder: Handle start==NULL in binder_update_page_range() - ALSA: hda - Fix pending unsol events at shutdown - perf script: Fix invalid LBR/binary mismatch error - splice: don't read more than available pipe space - iomap: partially revert 4721a601099 (simulated directio short read on EFAULT) - xfs: add missing error check in xfs_prepare_shift() - ASoC: rsnd: fixup MIX kctrl registration - [x86] KVM: fix out-of-bounds write in KVM_GET_EMULATED_CPUID (CVE-2019-19332) - net: qrtr: fix memort leak in qrtr_tun_write_iter (CVE-2019-19079) - appletalk: Fix potential NULL pointer dereference in unregister_snap_client (CVE-2019-19227) - appletalk: Set error code if register_snap_client failed https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.90 - usb: gadget: configfs: Fix missing spin_lock_init() - [x86] usb: gadget: pch_udc: fix use after free - scsi: qla2xxx: Fix driver unload hang - [arm64] media: venus: remove invalid compat_ioctl32 handler - USB: uas: honor flag to avoid CAPACITY16 - USB: uas: heed CAPACITY_HEURISTICS - usb: Allow USB device to be warm reset in suspended state - staging: rtl8188eu: fix interface sanity check - staging: rtl8712: fix interface sanity check - staging: gigaset: fix general protection fault on probe - staging: gigaset: fix illegal free on probe errors - staging: gigaset: add endpoint-type sanity check - usb: xhci: only set D3hot for pci device - xhci: Fix memory leak in xhci_add_in_port() - xhci: Increase STS_HALT timeout in xhci_suspend() - xhci: handle some XHCI_TRUST_TX_LENGTH quirks cases as default behaviour. - [armhf] dts: pandora-common: define wl1251 as child node of mmc3 - [x86] iio: imu: inv_mpu6050: fix temperature reporting using bad unit - USB: atm: ueagle-atm: add missing endpoint check - USB: idmouse: fix interface sanity checks - USB: serial: io_edgeport: fix epic endpoint lookup - usb: roles: fix a potential use after free - USB: adutux: fix interface sanity check - usb: core: urb: fix URB structure initialization function - usb: mon: Fix a deadlock in usbmon between mmap and read - tpm: add check after commands attribs tab allocation - virtio-balloon: fix managed page counts when migrating pages between zones - [armhf,arm64] usb: dwc3: gadget: Fix logical condition - [armhf,arm64] usb: dwc3: ep0: Clear started flag on completion - btrfs: check page->mapping when loading free space cache - btrfs: use refcount_inc_not_zero in kill_all_nodes - Btrfs: fix metadata space leak on fixup worker failure to set range as delalloc - Btrfs: fix negative subv_writers counter and data space leak after buffered write - btrfs: Avoid getting stuck during cyclic writebacks - btrfs: Remove btrfs_bio::flags member - Btrfs: send, skip backreference walking for extents with many references - btrfs: record all roots for rename exchange on a subvol - rtlwifi: rtl8192de: Fix missing code to retrieve RX buffer address - rtlwifi: rtl8192de: Fix missing callback that tests for hw release of buffer - rtlwifi: rtl8192de: Fix missing enable interrupt flag - ovl: fix corner case of non-unique st_dev;st_ino - ovl: relax WARN_ON() on rename to self - [armhf] hwrng: omap - Fix RNG wait loop timeout - dm writecache: handle REQ_FUA - dm zoned: reduce overhead of backing device checks - workqueue: Fix spurious sanity check failures in destroy_workqueue() - workqueue: Fix pwq ref leak in rescuer_thread() - ASoC: rt5645: Fixed buddy jack support. - ASoC: rt5645: Fixed typo for buddy jack support. - ASoC: Jack: Fix NULL pointer dereference in snd_soc_jack_report - md: improve handling of bio with REQ_PREFLUSH in md_flush_request() - blk-mq: avoid sysfs buffer overflow with too many CPU cores - cgroup: pids: use atomic64_t for pids->limit - ar5523: check NULL before memcpy() in ar5523_cmd() - [s390x] mm: properly clear _PAGE_NOEXEC bit when it is not supported - media: cec.h: CEC_OP_REC_FLAG_ values were swapped - cpuidle: Do not unset the driver if it is there already - erofs: zero out when listxattr is called with no xattr - [x86] intel_th: Fix a double put_device() in error path - [x86] intel_th: pci: Add Ice Lake CPU support - [x86] intel_th: pci: Add Tiger Lake CPU support - PM / devfreq: Lock devfreq in trans_stat_show - [ppc64el] cpufreq: powernv: fix stack bloat and hard limit on number of CPUs - ACPI / hotplug / PCI: Allocate resources directly under the non-hotplug bridge - ACPI: OSL: only free map once in osl.c - ACPI: bus: Fix NULL pointer check in acpi_bus_get_private_data() - ACPI: PM: Avoid attaching ACPI PM domain to certain devices - [arm64] pinctrl: armada-37xx: Fix irq mask access in armada_37xx_irq_set_type() - [armhf] pinctrl: samsung: Add of_node_put() before return in error path - [armhf] pinctrl: samsung: Fix device node refcount leaks in Exynos wakeup controller init - [armhf] pinctrl: samsung: Fix device node refcount leaks in init code - [armhf] mmc: host: omap_hsmmc: add code for special init of wl1251 to get rid of pandora_wl1251_init_card - [armhf] dts: omap3-tao3530: Fix incorrect MMC card detection GPIO polarity - ppdev: fix PPGETTIME/PPSETTIME ioctls - [ppc64el] Allow 64bit VDSO __kernel_sync_dicache to work across ranges >4GB - [ppc64el] xive: Prevent page fault issues in the machine crash handler - [ppc64el] Allow flush_icache_range to work across ranges >4GB - [ppc64el] xive: Skip ioremap() of ESB pages for LSI interrupts - video/hdmi: Fix AVI bar unpack - quota: Check that quota is not dirty before release - ext2: check err when partial != NULL - quota: fix livelock in dquot_writeback_dquots - ext4: Fix credit estimate for final inode freeing - reiserfs: fix extended attributes on the root directory - block: fix single range discard merge - [s390x] scsi: zfcp: trace channel log even for FCP command responses - scsi: qla2xxx: Fix DMA unmap leak - scsi: qla2xxx: Fix hang in fcport delete path - scsi: qla2xxx: Fix session lookup in qlt_abort_work() - scsi: qla2xxx: Fix qla24xx_process_bidir_cmd() - scsi: qla2xxx: Always check the qla2x00_wait_for_hba_online() return value - scsi: qla2xxx: Fix message indicating vectors used by driver - scsi: qla2xxx: Fix SRB leak on switch command timeout - xhci: make sure interrupts are restored to correct state - usb: typec: fix use after free in typec_register_port() - [armhf] omap: pdata-quirks: remove openpandora quirks for mmc3 and wl1251 - scsi: lpfc: Cap NPIV vports to 256 - scsi: lpfc: Correct code setting non existent bits in sli4 ABORT WQE - scsi: lpfc: Correct topology type reporting on G7 adapters - sch_cake: Correctly update parent qlen when splitting GSO packets - net/smc: do not wait under send_lock - [arm64] net: hns3: clear pci private data when unload hns3 driver - [arm64] net: hns3: change hnae3_register_ae_dev() to int - [arm64] net: hns3: Check variable is valid before assigning it to another - [arm64] scsi: hisi_sas: send primitive NOTIFY to SSP situation only - [arm64] scsi: hisi_sas: Reject setting programmed minimum linkrate > 1.5G - [x86] MCE/AMD: Turn off MC4_MISC thresholding on all family 0x15 models - [x86] MCE/AMD: Carve out the MC4_MISC thresholding quirk - ath10k: fix fw crash by moving chip reset after napi disabled - [ppc64el] Fix vDSO clock_getres() - ext4: work around deleting a file with i_nlink == 0 safely (CVE-2019-19447) - mm/shmem.c: cast the type of unmap_start to u64 - rtc: disable uie before setting time and enable after - splice: only read in as much information as there is pipe buffer space - ext4: fix a bug in ext4_wait_for_tail_page_commit - [armhf,arm64] mfd: rk808: Fix RK818 ID template - mm, thp, proc: report THP eligibility for each vma - [s390x] smp,vdso: fix ASCE handling - blk-mq: make sure that line break can be printed - workqueue: Fix missing kfree(rescuer) in destroy_workqueue() - perf callchain: Fix segfault in thread__resolve_callchain_sample() - gre: refetch erspan header from skb->data after pskb_may_pull() - sunrpc: fix crash when cache_head become valid before update - net/mlx5e: Fix SFF 8472 eeprom length - leds: trigger: netdev: fix handling on interface rename - gfs2: fix glock reference problem in gfs2_trans_remove_revoke - of: overlay: add_changeset_property() memory leak - kernel/module.c: wakeup processes in module_wq on module unload - cifs: Fix potential softlockups while refreshing DFS cache - [x86] gpiolib: acpi: Add Terra Pad 1061 to the run_edge_events_on_boot_blacklist - raid5: need to set STRIPE_HANDLE for batch head - scsi: qla2xxx: Change discovery state before PLOGI - [x86] iio: imu: mpu6050: add missing available scan masks - idr: Fix idr_get_next_ul race with idr_remove - of: unittest: fix memory leak in attach_node_and_children https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.91 - inet: protect against too small mtu values. - mqprio: Fix out-of-bounds access in mqprio_dump - net: bridge: deny dev_set_mac_address() when unregistering - net: dsa: fix flow dissection on Tx path - net: ethernet: ti: cpsw: fix extra rx interrupt - net: sched: fix dump qlen for sch_mq/sch_mqprio with NOLOCK subqueues - [arm64] net: thunderx: start phy before starting autonegotiation - openvswitch: support asymmetric conntrack - tcp: md5: fix potential overestimation of TCP option space - tipc: fix ordering of tipc module init and exit routine - net/mlx5e: Query global pause state before setting prio2buffer - tcp: fix rejected syncookies due to stale timestamps - tcp: tighten acceptance of ACKs not matching a child socket - tcp: Protect accesses to .ts_recent_stamp with {READ,WRITE}_ONCE() - [arm64] Revert "arm64: preempt: Fix big-endian when checking preempt count in assembly" - mmc: block: Make card_busy_detect() a bit more generic - mmc: block: Add CMD13 polling for MMC IOCTLS with R1B response - PCI/PM: Always return devices to D0 when thawing - PCI: pciehp: Avoid returning prematurely from sysfs requests - [x86] PCI: Fix Intel ACS quirk UPDCR register address - PCI/MSI: Fix incorrect MSI-X masking on resume - [arm64] PCI: Apply Cavium ACS quirk to ThunderX2 and ThunderX3 - [arm64] rpmsg: glink: Set tail pointer to 0 at end of FIFO - [arm64] rpmsg: glink: Fix reuse intents memory leak issue - [arm64] rpmsg: glink: Fix use after free in open_ack TIMEOUT case - [arm64] rpmsg: glink: Put an extra reference during cleanup - [arm64] rpmsg: glink: Fix rpmsg_register_device err handling - [arm64] rpmsg: glink: Don't send pending rx_done during remove - [arm64] rpmsg: glink: Free pending deferred work on remove - cifs: smbd: Return -EAGAIN when transport is reconnecting - cifs: smbd: Add messages on RDMA session destroy and reconnection - cifs: smbd: Return -EINVAL when the number of iovs exceeds SMBDIRECT_MAX_SGE - cifs: Don't display RDMA transport on reconnect - CIFS: Respect O_SYNC and O_DIRECT flags during reconnect - CIFS: Close open handle after interrupted close - [armhf] tegra: Fix FLOW_CTLR_HALT register clobbering by tegra_resume() - vfio/pci: call irq_bypass_unregister_producer() before freeing irq - dma-buf: Fix memory leak in sync_file_merge() - [arm64] drm: meson: venc: cvbs: fix CVBS mode matching - dm mpath: remove harmful bio-based optimization - dm btree: increase rebalance threshold in __rebalance2() - scsi: iscsi: Fix a potential deadlock in the timeout handler - scsi: qla2xxx: Change discovery state before PLOGI - drm/radeon: fix r1xx/r2xx register checker for POT textures - xhci: fix USB3 device initiated resume race with roothub autosuspend https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.92 - af_packet: set defaule value for tmo - [amd64] fjes: fix missed check in fjes_acpi_add - [arm64] net: hisilicon: Fix a BUG trigered by wrong bytes_compl - net: qlogic: Fix error paths in ql_alloc_large_buffers() - net: usb: lan78xx: Fix suspend/resume PHY register access error - qede: Disable hardware gro when xdp prog is installed - qede: Fix multicast mac configuration - sctp: fully initialize v4 addr in some functions - btrfs: don't double lock the subvol_sem for rename exchange - btrfs: do not call synchronize_srcu() in inode_tree_del - Btrfs: fix missing data checksums after replaying a log tree - btrfs: send: remove WARN_ON for readonly mount - btrfs: abort transaction after failed inode updates in create_subvol - btrfs: skip log replay on orphaned roots - btrfs: do not leak reloc root if we fail to read the fs root - btrfs: handle ENOENT in btrfs_uuid_tree_iterate - Btrfs: fix removal logic of the tree mod log that leads to use-after-free issues - ALSA: pcm: Avoid possible info leaks from PCM stream buffers - ALSA: hda/ca0132 - Keep power on during processing DSP response - ALSA: hda/ca0132 - Avoid endless loop - ALSA: hda/ca0132 - Fix work handling in delayed HP detection - [arm64,armhf] drm/panel: Add missing drm_panel_init() in panel drivers - drm/amdgpu: grab the id mgr lock while accessing passid_mapping - spi: Add call to spi_slave_abort() function when spidev driver is released - [x86] staging: rtl8192u: fix multiple memory leaks on error path - staging: rtl8188eu: fix possible null dereference - rtlwifi: prevent memory leak in rtl_usb_probe (CVE-2019-19063) - libertas: fix a potential NULL pointer dereference - ath10k: fix backtrace on coredump - IB/iser: bound protection_sg size by data_sg size - [arm64] media: venus: core: Fix msm8996 frequency table - ath10k: fix offchannel tx failure when no ath10k_mac_tx_frm_has_freq - pinctrl: devicetree: Avoid taking direct reference to device name string - [amd64] drm/amdkfd: fix a potential NULL pointer dereference - [arm64] media: venus: Fix occasionally failures to suspend - [armhf] hwrng: omap3-rom - Call clk_disable_unprepare() on exit only if not idled - media: flexcop-usb: fix NULL-ptr deref in flexcop_usb_transfer_init() - [arm64,armhf] drm/bridge: dw-hdmi: Refuse DDC/CI transfers on the internal I2C controller - block: Fix writeback throttling W=1 compiler warnings - mwifiex: pcie: Fix memory leak in mwifiex_pcie_init_evt_ring (CVE-2019-19057) - drm/drm_vblank: Change EINVAL by the correct errno - media: cx88: Fix some error handling path in 'cx8800_initdev()' - [armhf] media: ti-vpe: vpe: Fix Motion Vector vpdma stride - [armhf] media: ti-vpe: vpe: fix a v4l2-compliance warning about invalid pixel format - [armhf] media: ti-vpe: vpe: fix a v4l2-compliance failure about frame sequence number - [armhf] media: ti-vpe: vpe: Make sure YUYV is set as default format - [armhf] media: ti-vpe: vpe: fix a v4l2-compliance failure causing a kernel panic - [armhf] media: ti-vpe: vpe: ensure buffers are cleaned up properly in abort cases - [armhf] media: ti-vpe: vpe: fix a v4l2-compliance failure about invalid sizeimage - [x86] syscalls/x86: Use the correct function type in SYSCALL_DEFINE0 - [x86] mm: Use the correct function type for native_set_fixmap() - ath10k: Correct error handling of dma_map_single() - [arm64,armhf] drm/bridge: dw-hdmi: Restore audio when setting a mode - perf report: Add warning when libunwind not compiled in - usb: usbfs: Suppress problematic bind and unbind uevents. - Bluetooth: missed cpu_to_le16 conversion in hci_init4_req - Bluetooth: Workaround directed advertising bug in Broadcom controllers - Bluetooth: hci_core: fix init for HCI_USER_CHANNEL - [x86] mce: Lower throttling MCE messages' priority to warning - [x86] drm/gma500: fix memory disclosures due to uninitialized bytes - rtl8xxxu: fix RTL8723BU connection failure issue after warm reboot - ipmi: Don't allow device module unload when in use - [x86] ioapic: Prevent inconsistent state when moving an interrupt - md/bitmap: avoid race window between md_bitmap_resize and bitmap_file_clear_bit - [arm64] psci: Reduce the waiting time for cpu_psci_cpu_kill() - i40e: initialize ITRN registers with correct values - net: phy: dp83867: enable robust auto-mdix - [arm64,armhf] drm/tegra: sor: Use correct SOR index on Tegra210 - ACPI: button: Add DMI quirk for Medion Akoya E2215T - RDMA/qedr: Fix memory leak in user qp and mr - [arm64,armhf] gpu: host1x: Allocate gather copy for host1x - [arm64,armhf] net: dsa: LAN9303: select REGMAP when LAN9303 enable - [arm64] phy: qcom-usb-hs: Fix extcon double register after power cycle - [s390x] time: ensure get_clock_monotonic() returns monotonic values - [s390x] mm: add mm_pxd_folded() checks to pxd_free() - [arm64] net: hns3: add struct netdev_queue debug info for TX timeout - libata: Ensure ata_port probe has completed before detach - loop: fix no-unmap write-zeroes request behavior - Bluetooth: Fix advertising duplicated flags - pinctrl: amd: fix __iomem annotation in amd_gpio_irq_handler() - ixgbe: protect TX timestamping from API misuse - media: rcar_drif: fix a memory disclosure (CVE-2019-18786) - media: v4l2-core: fix touch support in v4l_g_fmt - rfkill: allocate static minor - bnx2x: Fix PF-VF communication over multi-cos queues. - ALSA: timer: Limit max amount of slave instances - rtlwifi: fix memory leak in rtl92c_set_fw_rsvdpagepkt() - perf probe: Fix to find range-only function instance - perf probe: Fix to list probe event with correct line number - perf jevents: Fix resource leak in process_mapfile() and main() - perf probe: Walk function lines in lexical blocks - perf probe: Fix to probe an inline function which has no entry pc - perf probe: Fix to show ranges of variables in functions without entry_pc - perf probe: Fix to show inlined function callsite without entry_pc - perf probe: Fix to probe a function which has no entry pc - perf tools: Splice events onto evlist even on error - perf parse: If pmu configuration fails free terms - perf probe: Skip overlapped location on searching variables - perf probe: Return a better scope DIE if there is no best scope - perf probe: Fix to show calling lines of inlined functions - perf probe: Skip end-of-sequence and non statement lines - perf probe: Filter out instances except for inlined subroutine and subprogram - ath10k: fix get invalid tx rate for Mesh metric - media: pvrusb2: Fix oops on tear-down when radio support is not present - ice: delay less - [amd64] spi: pxa2xx: Add missed security checks - ASoC: rt5677: Mark reg RT5677_PWR_ANLG2 as volatile - iio: dac: ad5446: Add support for new AD5600 DAC - [x86] ASoC: Intel: kbl_rt5663_rt5514_max98927: Add dmic format constraint - [s390x] disassembler: don't hide instruction addresses - nvme: Discard workaround for non-conformant devices - parport: load lowlevel driver if ports not found - bcache: fix static checker warning in bcache_device_free() - cpufreq: Register drivers only after CPU devices have been registered - tracing: use kvcalloc for tgid_map array allocation - tracing/kprobe: Check whether the non-suffixed symbol is notrace - bcache: fix deadlock in bcache_allocator - iwlwifi: mvm: fix unaligned read of rx_pkt_status - [arm64] spi: tegra20-slink: add missed clk_unprepare - tun: fix data-race in gro_normal_list() - crypto: virtio - deal with unsupported input sizes - btrfs: don't prematurely free work in end_workqueue_fn() - btrfs: don't prematurely free work in run_ordered_work() - [x86] ASoC: Intel: bytcr_rt5640: Update quirk for Acer Switch 10 SW5-012 2-in-1 - [x86] insn: Add some Intel instructions to the opcode map - brcmfmac: remove monitor interface when detaching - iwlwifi: check kasprintf() return value - [armhf] net: ethernet: ti: ale: clean ale tbl on init and intf restart - [armhf] crypto: sun4i-ss - Fix 64-bit size_t warnings - [armhf] crypto: sun4i-ss - Fix 64-bit size_t warnings on sun4i-ss-hash.c - mac80211: consider QoS Null frames for STA_NULLFUNC_ACKED - net: phy: initialise phydev speed and duplex sanely - btrfs: don't prematurely free work in reada_start_machine_worker() - btrfs: don't prematurely free work in scrub_missing_raid56_worker() - Revert "mmc: sdhci: Fix incorrect switch to HS mode" - can: kvaser_usb: kvaser_usb_leaf: Fix some info-leaks to USB devices (CVE-2019-19947) - usb: xhci: Fix build warning seen with CONFIG_PM=n - [s390x] ftrace: fix endless recursion in function_graph tracer - btrfs: return error pointer from alloc_test_extent_buffer - usbip: Fix receive error in vhci-hcd when using scatter-gather - usbip: Fix error path of vhci_recv_ret_submit() - cpufreq: Avoid leaving stale IRQ work items during CPU offline - [x86] intel_th: pci: Add Comet Lake PCH-V support - [x86] intel_th: pci: Add Elkhart Lake SOC support - [x86] platform/x86: hp-wmi: Make buffer for HPWMI_FEATURE2_QUERY 128 bytes - [x86] staging: comedi: gsc_hpdi: check dma_alloc_coherent() return value - ext4: fix ext4_empty_dir() for directories with holes (CVE-2019-19037) - ext4: check for directory entries too close to block end - ext4: unlock on error in ext4_expand_extra_isize() - [arm64] KVM: Ensure 'params' is initialised when looking up sys register - [x86] MCE/AMD: Do not use rdmsr_safe_on_cpu() in smca_configure() - [x86] MCE/AMD: Allow Reserved types to be overwritten in smca_banks[] - [powerpc*] irq: fix stack overflow verification - [arm64] mmc: sdhci-msm: Correct the offset and value for DDR_CONFIG register - mmc: sdhci: Update the tuning failed messages to pr_debug level - mmc: sdhci: Workaround broken command queuing on Intel GLK - mmc: sdhci: Add a quirk for broken command queuing - nbd: fix shutdown and recv work deadlock - perf probe: Fix to show function entry line as probe-able https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.93 - scsi: lpfc: Fix discovery failures when target device connectivity bounces - scsi: mpt3sas: Fix clear pending bit in ioctl status - scsi: lpfc: Fix locking on mailbox command completion - Input: atmel_mxt_ts - disable IRQ across suspend - f2fs: fix to update time in lazytime mode - [arm64,armhf] iommu: rockchip: Free domain on .domain_free - [arm64,armhf] iommu/tegra-smmu: Fix page tables in > 4 GiB memory - scsi: target: compare full CHAP_A Algorithm strings - scsi: lpfc: Fix SLI3 hba in loop mode not discovering devices - scsi: csiostor: Don't enable IRQs too early - [arm64] scsi: hisi_sas: Replace in_softirq() check in hisi_sas_task_exec() - [ppc64el] pseries: Mark accumulate_stolen_time() as notrace - [ppc64el] pseries: Don't fail hash page table insert for bolted mapping - clocksource/drivers/timer-of: Use unique device name instead of timer - [ppc64el] security/book3s64: Report L1TF status in sysfs - [ppc64el] book3s64/hash: Add cond_resched to avoid soft lockup warning - ext4: update direct I/O read lock pattern for IOCB_NOWAIT - ext4: iomap that extends beyond EOF should be marked dirty - jbd2: Fix statistics for the number of logged blocks - scsi: tracing: Fix handling of TRANSFER LENGTH == 0 for READ(6) and WRITE(6) - scsi: lpfc: Fix duplicate unreg_rpi error in port offline flow - f2fs: fix to update dir's i_pino during cross_rename - [arm64] clk: qcom: Allow constant ratio freq tables for rcg - clk: clk-gpio: propagate rate change to parent - fs/quota: handle overflows of sysctl fs.quota.* and report as unsigned long - scsi: lpfc: fix: Coverity: lpfc_cmpl_els_rsp(): Null pointer dereferences - [ppc64el] PCI: rpaphp: Fix up pointer to first drc-info entry - scsi: ufs: fix potential bug which ends in system hang - [ppc64el] PCI: rpaphp: Don't rely on firmware feature to imply drc-info support - [ppc64el] PCI: rpaphp: Annotate and correctly byte swap DRC properties - [ppc64el] PCI: rpaphp: Correctly match ibm, my-drc-index to drc-name when using drc-info - [ppc64el] powerpc/security: Fix wrong message when RFI Flush is disable - bcache: at least try to shrink 1 node in bch_mca_scan() - HID: quirks: Add quirk for HP MSU1465 PIXART OEM mouse - HID: logitech-hidpp: Silence intermittent get_battery_capacity errors - [armhf] 8937/1: spectre-v2: remove Brahma-B53 from hardening - libnvdimm/btt: fix variable 'rc' set but not used - HID: Improve Windows Precision Touchpad detection. - HID: rmi: Check that the RMI_STARTED bit is set before unregistering the RMI transport device - watchdog: Fix the race between the release of watchdog_core_data and cdev - scsi: pm80xx: Fix for SATA device discovery - scsi: ufs: Fix error handing during hibern8 enter - scsi: scsi_debug: num_tgts must be >= 0 - scsi: iscsi: Don't send data to unbound connection - scsi: target: iscsi: Wait for all commands to finish before freeing a session - apparmor: fix unsigned len comparison with less than zero - scripts/kallsyms: fix definitely-lost memory leak - cdrom: respect device capabilities during opening action - perf script: Fix brstackinsn for AUXTRACE - perf regs: Make perf_reg_name() return "unknown" instead of NULL - [s390x] zcrypt: handle new reply code FILTERED_BY_HYPERVISOR - [s390x] cpum_sf: Check for SDBT and SDB consistency - ocfs2: fix passing zero to 'PTR_ERR' warning - kernel: sysctl: make drop_caches write-only - userfaultfd: require CAP_SYS_PTRACE for UFFD_FEATURE_EVENT_FORK - [x86] mce: Fix possibly incorrect severity calculation on AMD - net, sysctl: Fix compiler warning when only cBPF is present - netfilter: nf_queue: enqueue skbs with NULL dst - ALSA: hda - Downgrade error message for single-cmd fallback - bonding: fix active-backup transition after link failure - perf strbuf: Remove redundant va_end() in strbuf_addv() - Make filldir[64]() verify the directory entry filename is valid (CVE-2019-10220) - filldir[64]: remove WARN_ON_ONCE() for bad directory entries (CVE-2019-10220) - netfilter: ebtables: compat: reject all padding in matches/watchers - 6pack,mkiss: fix possible deadlock - netfilter: bridge: make sure to pull arp header in br_nf_forward_arp() - inetpeer: fix data-race in inet_putpeer / inet_putpeer - net: add a READ_ONCE() in skb_peek_tail() - net: icmp: fix data-race in cmp_global_allow() - hrtimer: Annotate lockless access to timer->state - net: ena: fix napi handler misbehavior when the napi budget is zero - net/mlxfw: Fix out-of-memory error in mfa2 flash burning - [arm64,armhf] net: stmmac: dwmac-meson8b: Fix the RGMII TX delay on Meson8b/8m2 SoCs - ptp: fix the race between the release of ptp_clock and cdev - tcp: Fix highest_sack and highest_sack_seq - udp: fix integer overflow while computing available space in sk_rcvbuf - vhost/vsock: accept only packets with the right dst_cid - net: add bool confirm_neigh parameter for dst_ops.update_pmtu - ip6_gre: do not confirm neighbor when do pmtu update - gtp: do not confirm neighbor when do pmtu update - net/dst: add new function skb_dst_update_pmtu_no_confirm - tunnel: do not confirm neighbor when do pmtu update - vti: do not confirm neighbor when do pmtu update - sit: do not confirm neighbor when do pmtu update - net/dst: do not confirm neighbor for vxlan and geneve pmtu update - gtp: do not allow adding duplicate tid and ms_addr pdp context - [arm64,armhf] net: marvell: mvpp2: phylink requires the link interrupt - tcp/dccp: fix possible race __inet_lookup_established() - tcp: do not send empty skb from tcp_write_xmit() - gtp: fix wrong condition in gtp_genl_dump_pdp() - gtp: fix an use-after-free in ipv4_pdp_find() - gtp: avoid zero size hashtable - [arm64,armhf] pinctrl: baytrail: Really serialize all register accesses https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.94 - nvme_fc: add module to ops template to allow module references - nvme-fc: fix double-free scenarios on hw queues - drm/amdgpu: add check before enabling/disabling broadcast mode - drm/amdgpu: add cache flush workaround to gfx8 emit_fence - PM / devfreq: Fix devfreq_notifier_call returning errno - PM / devfreq: Set scaling_max_freq to max on OPP notifier error - PM / devfreq: Don't fail devfreq_dev_release if not in list - afs: Fix afs_find_server lookups for ipv4 peers - afs: Fix SELinux setting security label on /afs - RDMA/cma: add missed unregister_pernet_subsys in init failure - rxe: correctly calculate iCRC for unaligned payloads - scsi: lpfc: Fix memory leak on lpfc_bsg_write_ebuf_set func - scsi: qla2xxx: Drop superfluous INIT_WORK of del_work - scsi: qla2xxx: Don't call qlt_async_event twice - scsi: qla2xxx: Fix PLOGI payload and ELS IOCB dump length - scsi: qla2xxx: Configure local loop for N2N target - scsi: qla2xxx: Send Notify ACK after N2N PLOGI - scsi: qla2xxx: Ignore PORT UPDATE after N2N PLOGI - scsi: iscsi: qla4xxx: fix double free in probe - scsi: libsas: stop discovering if oob mode is disconnected (CVE-2019-19965) - drm/nouveau: Move the declaration of struct nouveau_conn_atom up a bit - usb: gadget: fix wrong endpoint desc - net: make socket read/write_iter() honor IOCB_NOWAIT - afs: Fix creation calls in the dynamic root to fail with EOPNOTSUPP - md: raid1: check rdev before reference in raid1_sync_request func - [s390x] cpum_sf: Adjust sampling interval to avoid hitting sample limits - [s390x] cpum_sf: Avoid SBD overflow condition in irq handler - IB/mlx4: Follow mirror sequence of device add during device removal - IB/mlx5: Fix steering rule of drop and count - xen-blkback: prevent premature module unload - xen/balloon: fix ballooned page accounting without hotplug enabled - PM / hibernate: memory_bm_find_bit(): Tighten node optimisation - ALSA: hda/realtek - Add Bass Speaker and fixed dac for bass speaker - ALSA: hda/realtek - Enable the bass speaker of ASUS UX431FLC - ALSA: hda - fixup for the bass speaker on Lenovo Carbon X1 7th gen - xfs: fix mount failure crash on invalid iclog memory access - taskstats: fix data-race - drm: limit to INT_MAX in create_blob ioctl - netfilter: nft_tproxy: Fix port selector on Big Endian - ALSA: ice1724: Fix sleep-in-atomic in Infrasonic Quartet support code - ALSA: usb-audio: fix set_format altsetting sanity check - ALSA: usb-audio: set the interface format after resume on Dell WD19 - ALSA: hda/realtek - Add headset Mic no shutup for ALC283 - [arm64,armhf] drm/sun4i: hdmi: Remove duplicate cleanup calls - [mips*] Avoid VDSO ABI breakage due to global register variable - media: pulse8-cec: fix lost cec_transmit_attempt_done() call - media: cec: CEC 2.0-only bcast messages were ignored - media: cec: avoid decrementing transmit_queue_sz if it is 0 - media: cec: check 'transmit_in_progress', not 'transmitting' - mm/zsmalloc.c: fix the migrated zspage statistics. - memcg: account security cred as well to kmemcg - mm: move_pages: return valid node id in status if the page is already on the target node - [x86,arm64] pstore/ram: Write new dumps to start of recycled zones - locks: print unsigned ino in /proc/locks - compat_ioctl: block: handle Persistent Reservations - compat_ioctl: block: handle BLKREPORTZONE/BLKRESETZONE - ata: libahci_platform: Export again ahci_platform_able_phys() - libata: Fix retrieving of active qcs - gpiolib: fix up emulated open drain outputs - tracing: Fix lock inversion in trace_event_enable_tgid_record() - tracing: Avoid memory leak in process_system_preds() - tracing: Have the histogram compare functions convert to u64 first - tracing: Fix endianness bug in histogram trigger - apparmor: fix aa_xattrs_match() may sleep while holding a RCU lock - [i386] ALSA: cs4236: fix error return comparison of an unsigned integer - ALSA: firewire-motu: Correct a typo in the clock proc string - exit: panic before exit_mm() on global init exit - [arm64] Revert support for execute-only user mappings - ftrace: Avoid potential division by zero in function profiler - [arm64] drm/msm: include linux/sched/task.h - PM / devfreq: Check NULL governor in available_governors_show - nfsd4: fix up replay_matches_cache() - [x86,arm64] HID: i2c-hid: Reset ALPS touchpads on resume - ACPI: sysfs: Change ACPI_MASKABLE_GPE_MAX to 0x100 - xfs: don't check for AG deadlock for realtime files in bunmapi - [x86] platform/x86: pmc_atom: Add Siemens CONNECT X300 to critclk_systems DMI table - Bluetooth: btusb: fix PM leak in error case of setup - Bluetooth: delete a stray unlock - Bluetooth: Fix memory leak in hci_connect_le_scan - media: flexcop-usb: ensure -EIO is returned on error condition - media: usb: fix memory leak in af9005_identify_state (CVE-2019-18809) - [arm64] dts: meson: odroid-c2: Disable usb_otg bus to avoid power failed warning - [arm64] tty: serial: msm_serial: Fix lockup for sysrq and oops - fix compat handling of FICLONERANGE, FIDEDUPERANGE and FS_IOC_FIEMAP - bdev: Factor out bdev revalidation into a common helper - bdev: Refresh bdev size for disks without partitioning - scsi: qedf: Do not retry ELS request if qedf_alloc_cmd fails - drm/mst: Fix MST sideband up-reply failure handling - [ppc64el] pseries/hvconsole: Fix stack overread via udbg - [ppc64el] KVM: PPC: Book3S HV: use smp_mb() when setting/clearing host_ipi flag - rxrpc: Fix possible NULL pointer access in ICMP handling - tcp: annotate tp->rcv_nxt lockless reads - net: core: limit nested device depth - ath9k_htc: Modify byte order for an error message - ath9k_htc: Discard undersized packets - xfs: periodically yield scrub threads to the scheduler - net: add annotations on hh->hh_len lockless accesses - ubifs: ubifs_tnc_start_commit: Fix OOB in layout_in_gaps - [s390x] smp: fix physical to logical CPU map for SMT - xen/blkback: Avoid unmapping unmapped grant pages - [x86] perf/x86/intel/bts: Fix the use of page_private() https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.95 - bpf: Fix passing modified ctx to ld/abs/ind instruction - regulator: fix use after free issue - ASoC: max98090: fix possible race conditions - netfilter: ctnetlink: netns exit must wait for callbacks - mwifiex: Fix heap overflow in mmwifiex_process_tdls_action_frame() (CVE-2019-14901) - [x86] efi: Update e820 with reserved EFI boot services data to fix kexec breakage - [x86] ASoC: Intel: bytcr_rt5640: Update quirk for Teclast X89 - efi/gop: Return EFI_NOT_FOUND if there are no usable GOPs - efi/gop: Return EFI_SUCCESS if a usable GOP was found - efi/gop: Fix memory leak in __gop_query32/64() - netfilter: uapi: Avoid undefined left-shift in xt_sctp.h - netfilter: nft_set_rbtree: bogus lookup/get on consecutive elements in named sets - netfilter: nf_tables: validate NFT_SET_ELEM_INTERVAL_END - netfilter: nf_tables: validate NFT_DATA_VALUE after nft_data_init() - [arm64] spi: spi-cavium-thunderx: Add missing pci_release_regions() - ASoC: topology: Check return value for soc_tplg_pcm_create() - bnxt_en: Return error if FW returns more data than dump length - [mips*] bpf, mips: Limit to 33 tail calls - [armhf] spi: spi-ti-qspi: Fix a bug when accessing non default CS - [powerpc*] Ensure that swiotlb buffer is allocated from low memory - btrfs: Fix error messages in qgroup_rescan_init - bpf: Clear skb->tstamp in bpf_redirect when necessary - bnx2x: Do not handle requests from VFs after parity - bnx2x: Fix logic to get total no. of PFs per engine - cxgb4: Fix kernel panic while accessing sge_info - net: usb: lan78xx: Fix error message format specifier - rfkill: Fix incorrect check to avoid NULL pointer dereference - iommu/iova: Init the struct iova to fix the possible memleak - [x86] perf/x86/intel: Fix PT PMI handling - fs: avoid softlockups in s_inodes iterators - [arm64,armhf] net: stmmac: Do not accept invalid MTU values - [arm64,armhf] net: stmmac: xgmac: Clear previous RX buffer size - [arm64,armhf] net: stmmac: RX buffer size must be 16 byte aligned - [arm64,armhf] net: stmmac: Always arm TX Timer at end of transmission start - [s390x] dasd/cio: Interpret ccw_device_get_mdc return value correctly - [s390x] dasd: fix memleak in path handling error case - block: fix memleak when __blk_rq_map_user_iov() is failed - llc2: Fix return statement of llc_stat_ev_rx_null_dsap_xid_c (and _test_c) - [x86] hv_netvsc: Fix unwanted rx_table reset - [powerpc*] vcpu: Assume dedicated processors as non-preempt - [powerpc*] spinlocks: Include correct header for static key - [armhf] cpufreq: imx6q: read OCOTP through nvmem for imx6ul/imx6ull - gtp: fix bad unlock balance in gtp_encap_enable_socket - macvlan: do not assume mac_header is set in macvlan_broadcast() - [arm64,armhf] net: dsa: mv88e6xxx: Preserve priority when setting CPU port. - [arm64,armhf] net: stmmac: dwmac-sun8i: Allow all RGMII modes - [arm64,armhf] net: stmmac: dwmac-sunxi: Allow all RGMII modes - net: usb: lan78xx: fix possible skb leak - pkt_sched: fq: do not accept silly TCA_FQ_QUANTUM - sch_cake: avoid possible divide by zero in cake_enqueue() - sctp: free cmd->obj.chunk for the unprocessed SCTP_CMD_REPLY - tcp: fix "old stuff" D-SACK causing SACK to be treated as D-SACK - vxlan: fix tos value before xmit - vlan: fix memory leak in vlan_dev_set_egress_priority - vlan: vlan_changelink() should propagate errors - net: sch_prio: When ungrafting, replace with FIFO - [arm64,armhf] usb: dwc3: gadget: Fix request complete check - USB: core: fix check for duplicate endpoints - USB: serial: option: add Telit ME910G1 0x110a composition - usb: missing parentheses in USE_NEW_SCHEME https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.96 - chardev: Avoid potential use-after-free in 'chrdev_open()' - i2c: fix bus recovery stop mode timing - [arm64,armhf] usb: chipidea: host: Disable port power only if previously enabled - ALSA: usb-audio: Apply the sample rate quirk for Bose Companion 5 - ALSA: hda/realtek - Add new codec supported for ALCS1200A - ALSA: hda/realtek - Set EAPD control to default for ALC222 - [x86] ALSA: hda/realtek - Add quirk for the bass speaker on Lenovo Yoga X1 7th gen - kernel/trace: Fix do not unregister tracepoints when register sched_migrate_task fail - tracing: Have stack tracer compile when MCOUNT_INSN_SIZE is not defined - tracing: Change offset type to s32 in preempt/irq tracepoints - HID: Fix slab-out-of-bounds read in hid_field_extract - HID: uhid: Fix returning EPOLLOUT from uhid_char_poll - HID: hid-input: clear unmapped usages - Input: add safety guards to input_set_keycode() - [arm64,armhf] drm/sun4i: tcon: Set RGB DCLK min. divider based on hardware model - drm/fb-helper: Round up bits_per_pixel if possible - drm/dp_mst: correct the shifting in DP_REMOTE_I2C_READ - can: kvaser_usb: fix interface sanity check - can: gs_usb: gs_usb_probe(): use descriptors of current altsetting - can: can_dropped_invalid_skb(): ensure an initialized headroom in outgoing CAN sk_buffs - gpiolib: acpi: Turn dmi_system_id table into a generic quirk table - gpiolib: acpi: Add honor_wakeup module-option + quirk mechanism - [x86] staging: vt6656: set usb_set_intfdata on driver fail. - USB: serial: option: add ZLP support for 0x1bc7/0x9010 - [arm64,armhf] usb: musb: fix idling for suspend after disconnect interrupt - [arm64,armhf] usb: musb: Disable pullup at init - [arm64,armhf] usb: musb: dma: Correct parameter passed to IRQ handler - [x86] staging: comedi: adv_pci1710: fix AI channels 16-31 for PCI-1713 - staging: rtl8188eu: Add device code for TP-Link TL-WN727N v5.21 - serdev: Don't claim unsupported ACPI serial devices - tty: link tty and port before configuring it as console - tty: always relink the port - mwifiex: fix possible heap overflow in mwifiex_process_country_ie() (CVE-2019-14895) - mwifiex: pcie: Fix memory leak in mwifiex_pcie_alloc_cmdrsp_buf (CVE-2019-19056) - scsi: bfa: release allocated memory in case of error (CVE-2019-19066) - rtl8xxxu: prevent leaking urb (CVE-2019-19068) - ath10k: fix memory leak (CVE-2019-19078) - HID: hiddev: fix mess in hiddev_open() - USB: Fix: Don't skip endpoint descriptors with maxpacket=0 - netfilter: arp_tables: init netns pointer in xt_tgchk_param struct - netfilter: conntrack: dccp, sctp: handle null timeout argument - netfilter: ipset: avoid null deref when IPSET_ATTR_LINENO is present - [x86] drm/i915/gen9: Clear residual context state on context switch (CVE-2019-14615) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.97 - hidraw: Return EPOLLOUT from hidraw_poll - HID: hidraw: Fix returning EPOLLOUT from hidraw_poll - HID: hidraw, uhid: Always report EPOLLOUT - cfg80211/mac80211: make ieee80211_send_layer2_update a public function - mac80211: Do not send Layer 2 Update frame before authorization (CVE-2019-5108) - f2fs: Move err variable to function scope in f2fs_fill_dentries() - f2fs: check memory boundary by insane namelen - f2fs: check if file namelen exceeds max value (CVE-2019-9445) - media: usb:zr364xx:Fix KASAN:null-ptr-deref Read in zr364xx_vidioc_querycap (CVE-2019-15217) - iwlwifi: dbg_ini: fix memory leak in alloc_sgtable (CVE-2019-19058) - iwlwifi: pcie: fix memory leaks in iwl_pcie_ctxt_info_gen3_init (CVE-2019-19059) - RDMA: Fix goto target to release the allocated memory (CVE-2019-19077) - dccp: Fix memleak in __feat_register_sp (CVE-2019-20096) - [x86] drm/i915: Fix use-after-free when destroying GEM context - ASoC: soc-core: Set dpcm_playback / dpcm_capture - [armhf] mtd: onenand: omap2: Pass correct flags for prep_dma_memcpy - [arm64] gpio: zynq: Fix for bug in zynq_gpio_restore_context API - iommu: Remove device link to group on failure - gpio: Fix error message on out-of-range GPIO in lookup table - [s390x] qeth: fix false reporting of VNIC CHAR config failure - [s390x] qeth: Fix vnicc_is_in_use if rx_bcast not set - cifs: Adjust indentation in smb2_open_file - afs: Fix missing cell comparison in afs_test_super() - drm/ttm: fix start page for huge page check in ttm_put_pages() (CVE-2019-19927) - drm/ttm: fix incrementing the page pointer for huge pages (CVE-2019-19927) - btrfs: simplify inode locking for RWF_NOWAIT - RDMA/mlx5: Return proper error value - RDMA/srpt: Report the SCSI residual to the initiator - scsi: enclosure: Fix stale device oops with hot replug - scsi: sd: Clear sdkp->protection_type if disk is reformatted without PI - [x86] platform/x86: asus-wmi: Fix keyboard brightness cannot be set to 0 - [x86] platform/x86: GPD pocket fan: Use default values when wrong modparams are given - xprtrdma: Fix completion wait during device removal - crypto: virtio - implement missing support for output IVs - NFSv2: Fix a typo in encode_sattr() - NFSv4.x: Drop the slot if nfs4_delegreturn_prepare waits for layoutreturn - mei: fix modalias documentation - [armhf] clk: samsung: exynos5420: Preserve CPU clocks configuration during suspend/resume - [armhf] pinctl: ti: iodelay: fix error checking on pinctrl_count_index_with_args call - [x86] pinctrl: lewisburg: Update pin list according to v1.1v6 - scsi: sd: enable compat ioctls for sed-opal - af_unix: add compat_ioctl support - compat_ioctl: handle SIOCOUTQNSD - [arm64,armhf] PCI: dwc: Fix find_next_bit() usage - PCI/PTM: Remove spurious "d" from granularity message - [powerpc*] powernv: Disable native PCIe port management - [armhf] tty: serial: imx: use the sg count from dma_map_sg - [i386] tty: serial: pch_uart: correct usage of dma_unmap_sg - mtd: spi-nor: fix silent truncation in spi_nor_read() - mtd: spi-nor: fix silent truncation in spi_nor_read_raw() - rtlwifi: Remove unnecessary NULL check in rtl_regd_init - f2fs: fix potential overflow - scsi: libcxgbi: fix NULL pointer dereference in cxgbi_device_destroy() - [mips*] cacheinfo: report shared CPU map - [arm64] drm/arm/mali: make malidp_mw_connector_helper_funcs static - [arm64] dmaengine: k3dma: Avoid null pointer traversal - [amd64] ioat: ioat_alloc_ring() failure handling. - ocfs2: call journal flush to mark journal as empty after journal recovery when mount https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.98 - clk: Don't try to enable critical clocks if prepare failed - iio: buffer: align the size of scan bytes to size of the largest element - USB: serial: simple: Add Motorola Solutions TETRA MTP3xxx and MTP85xx - USB: serial: option: Add support for Quectel RM500Q - USB: serial: opticon: fix control-message timeouts - USB: serial: option: add support for Quectel RM500Q in QDL mode - USB: serial: suppress driver bind attributes - USB: serial: ch341: handle unbound port at reset_resume - USB: serial: io_edgeport: handle unbound ports on URB completion - USB: serial: io_edgeport: add missing active-port sanity check - USB: serial: keyspan: handle unbound ports - USB: serial: quatech2: handle unbound ports - [x86] scsi: fnic: fix invalid stack access - scsi: mptfusion: Fix double fetch bug in ioctl - [armhf] dts: imx6q-dhcom: Fix SGTL5000 VDDIO regulator connection - ALSA: dice: fix fallback from protocol extension into limited functionality - ALSA: seq: Fix racy access for queue timer in proc read - ALSA: usb-audio: fix sync-ep altsetting sanity check - [arm64] dts: allwinner: a64: olinuxino: Fix SDIO supply regulator - block: fix an integer overflow in logical block size - [armhf] dts: am571x-idk: Fix gpios property to have the correct gpio number - LSM: generalize flag passing to security_capable - ptrace: reintroduce usage of subjective credentials in ptrace_has_cap() - usb: core: hub: Improved device recognition on remote wakeup - [x86] resctrl: Fix an imbalance in domain_remove_cpu() - [x86] CPU/AMD: Ensure clearing of SME/SEV features is maintained - [amd64] x86/efistub: Disable paging at mixed mode entry - [x86] resctrl: Fix potential memory leak - perf hists: Fix variable name's inconsistency in hists__for_each() macro - perf report: Fix incorrectly added dimensions as switch perf data file - mm/shmem.c: thp, shmem: fix conflict of above-47bit hint address and PMD alignment - mm: memcg/slab: call flush_memcg_workqueue() only if memcg workqueue is valid - btrfs: rework arguments of btrfs_unlink_subvol - btrfs: fix invalid removal of root ref - btrfs: do not delete mismatched root refs - btrfs: fix memory leak in qgroup accounting - mm/page-writeback.c: avoid potential division by zero in wb_min_max_ratio() - [armhf] dts: imx6qdl: Add Engicam i.Core 1.5 MX6 - [armhf] dts: imx6q-icore-mipi: Use 1.5 version of i.Core MX6DL - [arm64,armhf] net: stmmac: 16KB buffer must be 16 byte aligned - [arm64,armhf] net: stmmac: Enable 16KB buffer size - mm/huge_memory.c: make __thp_get_unmapped_area static - mm/huge_memory.c: thp: fix conflict of above-47bit hint address and PMD alignment - bpf: Fix incorrect verifier simulation of ARSH under ALU32 - cfg80211: fix deadlocks in autodisconnect work - cfg80211: fix memory leak in cfg80211_cqm_rssi_update - cfg80211: fix page refcount issue in A-MSDU decap - netfilter: fix a use-after-free in mtype_destroy() - netfilter: arp_tables: init netns pointer in xt_tgdtor_param struct - netfilter: nft_tunnel: fix null-attribute check - netfilter: nf_tables: remove WARN and add NLA_STRING upper limits - netfilter: nf_tables: store transaction list locally while requesting module - netfilter: nf_tables: fix flowtable list del corruption - NFC: pn533: fix bulk-message timeout - batman-adv: Fix DAT candidate selection on little endian systems - macvlan: use skb_reset_mac_header() in macvlan_queue_xmit() - [x86] hv_netvsc: Fix memory leak when removing rndis device - [arm64] net: hns: fix soft lockup when there is not enough memory - net: usb: lan78xx: limit size of local TSO packets - ptp: free ptp device pin descriptors properly - r8152: add missing endpoint sanity check - tcp: fix marked lost packets not being retransmitted - xen/blkfront: Adjust indentation in xlvbd_alloc_gendisk - tcp: refine rule to allow EPOLLOUT generation under mem pressure - [arm64] dts: meson-gxl-s905x-khadas-vim: fix gpio-keys-polled node - cfg80211: check for set_wiphy_params - tick/sched: Annotate lockless access to last_jiffies_update - drm/nouveau/bar/nv50: check bar1 vmm return value - drm/nouveau/bar/gf100: ensure BAR is mapped - drm/nouveau/mmu: qualify vmm during dtor - reiserfs: fix handling of -EOPNOTSUPP in reiserfs_for_each_xattr - scsi: esas2r: unlock on error in esas2r_nvram_read_direct() - scsi: qla4xxx: fix double free bug - scsi: bnx2i: fix potential use after free - scsi: target: core: Fix a pr_debug() argument - scsi: qla2xxx: Fix qla2x00_request_irqs() for MSI - scsi: qla2xxx: fix rports not being mark as lost in sync fabric scan - scsi: core: scsi_trace: Use get_unaligned_be*() - perf probe: Fix wrong address verification . [ Joe Richey ] * [cloud-amd64] tpm: Enable TPM drivers for Cloud (Closes: #946237) . [ Salvatore Bonaccorso ] * Refresh powerpc-fix-mcpu-options-for-spe-only-compiler.patch (Context changes in 4.19.88) * Drop 0027-RDMA-hns-Fix-the-bug-with-updating-rq-head-pointer-w.patch * Drop 0028-RDMA-hns-Bugfix-for-the-scene-without-receiver-queue.patch * [rt] Refresh 0199-net-move-xmit_recursion-to-per-task-variable-on-RT.patch (Context changes in 4.19.88) * [rt] Update to 4.19.90-rt35: - Update "workqueue: rework" for workqueue changes in 4.19.90 * [rt] Drop 0245-Revert-arm64-preempt-Fix-big-endian-when-checking-pr.patch * Refresh 0013-scsi-hisi_sas-Relocate-some-codes-to-avoid-an-unused.patch for context changes in 4.19.93. * [rt] Refresh 0253-watchdog-prevent-deferral-of-watchdogd-wakeup-on-RT.patch (Context changes in 4.19.93) * [rt] Refresh 0199-net-move-xmit_recursion-to-per-task-variable-on-RT.patch (Context changes in 4.19.97) . [ Ben Hutchings ] * [rt] Update to 4.19.94-rt38: - Refresh "x86/ioapic: Don't let setaffinity unmask threaded EOI interrupt too early" which was partly included in 4.19.92 * aufs: Update support patchset to aufs4.19.63+ 20200113; no functional changes * Bump ABI to 8 * libertas: Fix two buffer overflows at parsing bss descriptor (CVE-2019-14896, CVE-2019-14897) * wimax: i2400: fix memory leak (CVE-2019-19051) * wimax: i2400: Fix memory leak in i2400m_op_rfkill_sw_toggle (CVE-2019-19051) * [amd64/cloud-amd64] hwrandom: Enable HW_RANDOM_VIRTIO (Closes: #914511) . [ Noah Meyerhans ] * random: try to actively add entropy rather than passively wait for it (Closes: #948519) . [ Aurelien Jarno ] * [mips*/malta] Enable POWER_RESET_PIIX4_POWEROFF. linux-signed-arm64 (4.19.87+1) buster; urgency=medium . * Sign kernel from linux 4.19.87-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.68 - seq_file: fix problem when seeking mid-record - mm/hmm: fix bad subpage pointer in try_to_unmap_one - mm: mempolicy: make the behavior consistent when MPOL_MF_MOVE* and MPOL_MF_STRICT were specified - mm: mempolicy: handle vma with unmovable pages mapped correctly in mbind - mm/memcontrol.c: fix use after free in mem_cgroup_iter() - mm/usercopy: use memory range to be accessed for wraparound check - Revert "pwm: Set class for exported channels in sysfs" - cpufreq: schedutil: Don't skip freq update when limits change - [x86] ALSA: hda/realtek - Add quirk for HP Envy x360 - ALSA: hda - Apply workaround for another AMD chip 1022:1487 - ALSA: hda - Fix a memory leak bug - ALSA: hda - Add a generic reboot_notify - ALSA: hda - Let all conexant codec enter D3 when rebooting - HID: holtek: test for sanity of intfdata - HID: hiddev: avoid opening a disconnected device - HID: hiddev: do cleanup in failure of opening a device - Input: kbtab - sanity check for endpoint type - Input: iforce - add sanity checks - net: usb: pegasus: fix improper read if get_registers() fail - netfilter: ebtables: also count base chain policies - xen/pciback: remove set but not used variable 'old_state' - [armhf,arm64] irqchip/gic-v3-its: Free unused vpt_page when alloc vpe table fail - perf header: Fix divide by zero error if f_header.attr_size==0 - perf header: Fix use of unitialized value warning - libata: zpodd: Fix small read overflow in zpodd_get_mech_type() - Btrfs: fix deadlock between fiemap and transaction commits - scsi: hpsa: correct scsi command status issue after reset - scsi: qla2xxx: Fix possible fcport null-pointer dereferences - drm/amdgpu: fix a potential information leaking bug - ata: libahci: do not complain in case of deferred probe - kbuild: modpost: handle KBUILD_EXTRA_SYMBOLS only for external modules - [arm64] efi: fix variable 'si' set but not used - [arm64] unwind: Prohibit probing on return_address() - [arm64] mm: fix variable 'pud' set but not used - IB/core: Add mitigation for Spectre V1 - IB/mlx5: Fix MR registration flow to use UMR properly - IB/mad: Fix use-after-free in ib mad completion handling - [arm64] drm: msm: Fix add_gpu_components - [armhf] drm/exynos: fix missing decrement of retry counter - ocfs2: remove set but not used variable 'last_hash' - asm-generic: fix -Wtype-limits compiler warnings - [arm64] KVM: regmap: Fix unexpected switch fall-through - [armhf,arm64] KVM: Sync ICH_VMCR_EL2 back when about to block - [x86] staging: comedi: dt3000: Fix signed integer overflow 'divider * base' - [x86] staging: comedi: dt3000: Fix rounding up of timer divisor - USB: core: Fix races in character device registration and deregistraion - usb: cdc-acm: make sure a refcount is taken early enough - USB: CDC: fix sanity checks in CDC union parser - USB: serial: option: add D-Link DWM-222 device ID - USB: serial: option: Add support for ZTE MF871A - USB: serial: option: add the BroadMobi BM818 card - USB: serial: option: Add Motorola modem UARTs - [x86] drm/i915/cfl: Add a new CFL PCI ID. - [arm64] ftrace: Ensure module ftrace trampoline is coherent with I-side - Input: psmouse - fix build error of multiple definition - bnx2x: Fix VF's VLAN reconfiguration in reload. - bonding: Add vlan tx offload to hw_enc_features - net: dsa: Check existence of .port_mdb_add callback before calling it - net/mlx4_en: fix a memory leak bug - net/packet: fix race in tpacket_snd() - sctp: fix memleak in sctp_send_reset_streams - sctp: fix the transport error_count check - team: Add vlan tx offload to hw_enc_features - tipc: initialise addr_trail_end when setting node addresses - xen/netback: Reset nr_frags before freeing skb - net/mlx5e: Only support tx/rx pause setting for port owner - net/mlx5e: Use flow keys dissector to parse packets for ARFS - [arm64] mmc: sdhci-of-arasan: Do now show error message in case of deffered probe https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.69 - HID: Add 044f:b320 ThrustMaster, Inc. 2 in 1 DT - [mips*] kernel: only use i8253 clocksource with periodic clockevent - [mips*] fix cacheinfo - netfilter: ebtables: fix a memory leak bug in compat - ASoC: dapm: Fix handling of custom_stop_condition on DAPM graph walks - bonding: Force slave speed check after link state recovery for 802.3ad - [armhf,arm64] net: mvpp2: Don't check for 3 consecutive Idle frames for 10G links - can: dev: call netif_carrier_off() in register_candev() - can: gw: Fix error path of cgw_module_init - [armhf,arm64] ASoC: rockchip: Fix mono capture - [armhf] ASoC: ti: davinci-mcasp: Correct slot_width posed constraint - net: usb: qmi_wwan: Add the BroadMobi BM818 card - qed: RDMA - Fix the hw_ver returned in device attributes - isdn: mISDN: hfcsusb: Fix possible null-pointer dereferences in start_isoc_chain() - mac80211_hwsim: Fix possible null-pointer dereferences in hwsim_dump_radio_nl() - netfilter: ipset: Actually allow destination MAC address for hash:ip,mac sets too - netfilter: ipset: Copy the right MAC address in bitmap:ip,mac and hash:ip,mac sets - netfilter: ipset: Fix rename concurrency with listing - rxrpc: Fix potential deadlock - rxrpc: Fix the lack of notification when sendmsg() fails on a DATA packet - isdn: hfcsusb: Fix mISDN driver crash caused by transfer buffer on the stack - net: phy: phy_led_triggers: Fix a possible null-pointer dereference in phy_led_trigger_change_speed() - can: sja1000: force the string buffer NULL-terminated - can: peak_usb: force the string buffer NULL-terminated - net/ethernet/qlogic/qed: force the string buffer NULL-terminated - NFSv4: Fix a potential sleep while atomic in nfs4_do_reclaim() - NFS: Fix regression whereby fscache errors are appearing on 'nofsc' mounts - HID: quirks: Set the INCREMENT_USAGE_ON_DUPLICATE quirk on Saitek X52 - HID: input: fix a4tech horizontal wheel custom usage - [armhf,arm64] drm/rockchip: Suspend DP late - SMB3: Fix potential memory leak when processing compound chain - SMB3: Kernel oops mounting a encryptData share with CONFIG_DEBUG_VIRTUAL - [s390x] put _stext and _etext into .text section - net: cxgb3_main: Fix a resource leak in a error path in 'init_one()' - [armhf,arm64] net: stmmac: Fix issues when number of Queues >= 4 - [armhf,arm64] net: stmmac: tc: Do not return a fragment entry - [arm64] net: hisilicon: make hip04_tx_reclaim non-reentrant - [arm64] net: hisilicon: fix hip04-xmit never return TX_BUSY - [arm64] net: hisilicon: Fix dma_map_single failed on arm64 - libata: have ata_scsi_rw_xlat() fail invalid passthrough requests - libata: add SG safety checks in SFF pio transfers - [x86] lib/cpu: Address missing prototypes warning - [x86] drm/vmwgfx: fix memory leak when too many retries have occurred - block, bfq: handle NULL return value by bfq_init_rq() - perf ftrace: Fix failure to set cpumask when only one cpu is present - perf cpumap: Fix writing to illegal memory in handling cpumap mask - perf pmu-events: Fix missing "cpu_clk_unhalted.core" event - [arm64] KVM: Don't write junk to sysregs on reset - [armhf] KVM: Don't write junk to CP15 registers on reset - HID: wacom: correct misreported EKR ring values - HID: wacom: Correct distance scale for 2nd-gen Intuos devices - Revert "dm bufio: fix deadlock with loop device" (regression in 4.19.61) - ceph: clear page dirty before invalidate page - ceph: don't try fill file_lock on unsuccessful GETFILELOCK reply - libceph: fix PG split vs OSD (re)connect race - drm/nouveau: Don't retry infinitely when receiving no data on i2c over AUX - gpiolib: never report open-drain/source lines as 'input' to user-space - [x86] Drivers: hv: vmbus: Fix virt_to_hvpfn() for X86_PAE - userfaultfd_release: always remove uffd flags and clear vm_userfaultfd_ctx - [i386] retpoline: Don't clobber RFLAGS during CALL_NOSPEC on i386 - [x86] apic: Handle missing global clockevent gracefully - [x86] CPU/AMD: Clear RDRAND CPUID bit on AMD family 15h/16h - [x86] boot: Save fields explicitly, zero out everything else - [x86] boot: Fix boot regression caused by bootparam sanitizing - dm kcopyd: always complete failed jobs - dm btree: fix order of block initialization in btree_split_beneath - dm integrity: fix a crash due to BUG_ON in __journal_read_write() - dm raid: add missing cleanup in raid_ctr() - dm space map metadata: fix missing store of apply_bops() return value - dm table: fix invalid memory accesses with too high sector number - dm zoned: improve error handling in reclaim - dm zoned: improve error handling in i/o map code - dm zoned: properly handle backing device failure - genirq: Properly pair kobject_del() with kobject_add() - mm, page_owner: handle THP splits correctly - mm/zsmalloc.c: migration can leave pages in ZS_EMPTY indefinitely - mm/zsmalloc.c: fix race condition in zs_destroy_pool - xfs: don't trip over uninitialized buffer on extent read of corrupted inode - xfs: Move fs/xfs/xfs_attr.h to fs/xfs/libxfs/xfs_attr.h - xfs: Add helper function xfs_attr_try_sf_addname - xfs: Add attibute set and helper functions - xfs: Add attibute remove and helper functions - xfs: always rejoin held resources during defer roll - dm zoned: fix potential NULL dereference in dmz_do_reclaim() - [ppc64el] Allow flush_(inval_)dcache_range to work across ranges >4GB - rxrpc: Fix local endpoint refcounting - rxrpc: Fix read-after-free in rxrpc_queue_local() - rxrpc: Fix local endpoint replacement - rxrpc: Fix local refcounting https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.70 - nvme-multipath: revalidate nvme_ns_head gendisk in nvme_validate_ns - afs: Fix the CB.ProbeUuid service handler to reply correctly - afs: Fix loop index mixup in afs_deliver_vl_get_entry_by_name_u() - fs: afs: Fix a possible null-pointer dereference in afs_put_read() - afs: Only update d_fsdata if different in afs_d_revalidate() - nvmet-loop: Flush nvme_delete_wq when removing the port - nvme: fix a possible deadlock when passthru commands sent to a multipath device - nvme-pci: Fix async probe remove race - [armhf] omap-dma/omap_vout_vrfb: fix off-by-one fi value - iommu/dma: Handle SG length overflow better - usb: gadget: composite: Clear "suspended" on reset/disconnect - usb: gadget: mass_storage: Fix races between fsg_disable and fsg_set_alt - xen/blkback: fix memory leaks - [arm64] cpufeature: Don't treat granule sizes as strict - drm/ast: Fixed reboot test may cause system hanged - [x86] tools: hv: fix KVP and VSS daemons exit code - [x86] drm/i915: fix broadwell EU computation - [arm*] watchdog: bcm2835_wdt: Fix module autoload - scsi: ufs: Fix RX_TERMINATION_FORCE_ENABLE define value - [armhf] drm/tilcdc: Register cpufreq notifier after we have initialized crtc - ipv6/addrconf: allow adding multicast addr if IFA_F_MCAUTOJOIN is set - ipv6: Default fib6_type to RTN_UNICAST when not set - net/smc: make sure EPOLLOUT is raised - tcp: make sure EPOLLOUT wont be missed - ipv4/icmp: fix rt dst dev null pointer dereference - mm/zsmalloc.c: fix build when CONFIG_COMPACTION=n - ALSA: usb-audio: Check mixer unit bitmap yet more strictly - ALSA: line6: Fix memory leak at line6_init_pcm() error path - ALSA: hda - Fixes inverted Conexant GPIO mic mute led - ALSA: seq: Fix potential concurrent access to the deleted pool - ALSA: usb-audio: Fix invalid NULL check in snd_emuusb_set_samplerate() - ALSA: usb-audio: Add implicit fb quirk for Behringer UFX1604 - [x86] kvm: skip populating logical dest map if apic is not sw enabled - [x86] KVM: Don't update RIP or do single-step on faulting emulation - [amd64] uprobes: Fix detection of 32-bit user mode - [x86] apic: Do not initialize LDR and DFR for bigsmp - ftrace: Fix NULL pointer dereference in t_probe_next() - ftrace: Check for successful allocation of hash - ftrace: Check for empty hash and comment the race with registering probes - usb-storage: Add new JMS567 revision to unusual_devs - USB: cdc-wdm: fix race between write and disconnect due to flag abuse - usb: hcd: use managed device resources - [armhf,arm64] usb: chipidea: udc: don't do hardware access if gadget has stopped - usb: host: ohci: fix a race condition between shutdown and irq - usb: host: xhci: rcar: Fix typo in compatible string matching - USB: storage: ums-realtek: Update module parameter description for auto_delink_en - USB: storage: ums-realtek: Whitelist auto-delink support - [x86] mei: me: add Tiger Lake point LP device ID - mmc: core: Fix init of SD cards reporting an invalid VDD range - stm class: Fix a double free of stm_source_device - [x86] intel_th: pci: Add support for another Lewisburg PCH - [x86] intel_th: pci: Add Tiger Lake support - [x86] typec: tcpm: fix a typo in the comparison of pdo_max_voltage - lib: logic_pio: Fix RCU usage - lib: logic_pio: Avoid possible overlap for unregistering regions - lib: logic_pio: Add logic_pio_unregister_range() - [x86] drm/amdgpu: Add APTX quirk for Dell Latitude 5495 - [x86] drm/i915: Don't deballoon unused ggtt drm_mm_node in linux guest - [x86] drm/i915: Call dma_set_max_seg_size() in i915_driver_hw_probe() - [arm64] bus: hisi_lpc: Unregister logical PIO range to avoid potential use-after-free - [arm64] bus: hisi_lpc: Add .remove method to avoid driver unbind crash - [x86] VMCI: Release resource if the work is already queued - [x86] crypto: ccp - Ignore unconfigured CCP device on suspend/resume - Revert "cfg80211: fix processing world regdomain when non modular" - mac80211: fix possible sta leak - mac80211: Don't memset RXCB prior to PAE intercept - mac80211: Correctly set noencrypt for PAE frames - [ppc64el] KVM: Book3S: Fix incorrect guest-to-user-translation error handling - [armhf,arm64] KVM: vgic: Fix potential deadlock when ap_list is long - [armhf,arm64] KVM: vgic-v2: Handle SGI bits in GICD_I{S,C}PENDR0 as WI - NFS: Clean up list moves of struct nfs_page - NFSv4/pnfs: Fix a page lock leak in nfs_pageio_resend() - NFS: Pass error information to the pgio error cleanup routine - NFS: Ensure O_DIRECT reports an error if the bytes read/written is 0 - [x86] i2c: piix4: Fix port selection for AMD Family 16h Model 30h - mt76: mt76x0u: do not reset radio on resume https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.71 - Revert "Input: elantech - enable SMBus on new (2018+) systems" (regression in 4.19.67) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.72 - mld: fix memory leak in mld_del_delrec() - net: fix skb use after free in netpoll - net: sched: act_sample: fix psample group handling on overwrite - net_sched: fix a NULL pointer deref in ipt action - [armhf,arm64] net: stmmac: dwmac-rk: Don't fail if phy regulator is absent - tcp: inherit timestamp on mtu probe - tcp: remove empty skb from write queue in error cases - net/rds: Fix info leak in rds6_inc_info_copy() (CVE-2019-16714) - [x86] boot: Preserve boot_params.secure_boot from sanitizing - [arm*] spi: bcm2835aux: unifying code between polling and interrupt driven code - [arm*] spi: bcm2835aux: remove dangerous uncontrolled read of fifo - [arm*] spi: bcm2835aux: fix corruptions for longer spi transfers - netfilter: nf_tables: use-after-free in failing rule with bound set - [x86] hv_netvsc: Fix a warning of suspicious RCU usage - Bluetooth: btqca: Add a short delay before downloading the NVM - [ppc64el] ibmveth: Convert multicast list size for little-endian system - gpio: Fix build error of function redefinition - netfilter: nft_flow_offload: skip tcp rst and fin packets - scsi: qla2xxx: Fix gnl.l memory leak on adapter init failure - scsi: target: tcmu: avoid use-after-free after command timeout - cxgb4: fix a memory leak bug - liquidio: add cleanup in octeon_setup_iq() - net: myri10ge: fix memory leaks - lan78xx: Fix memory leaks - vfs: fix page locking deadlocks when deduping files - cx82310_eth: fix a memory leak bug - net: kalmia: fix memory leaks - net: cavium: fix driver name - wimax/i2400m: fix a memory leak bug - kprobes: Fix potential deadlock in kprobe_optimizer() - HID: cp2112: prevent sleeping function called from invalid context - [amd64] boot/compressed: Fix boot on machines with broken E820 table - [x86] Input: hyperv-keyboard: Use in-place iterator API in the channel callback - [x86] Tools: hv: kvp: eliminate 'may be used uninitialized' warning - nvme-multipath: fix possible I/O hang when paths are updated - IB/mlx4: Fix memory leaks - infiniband: hfi1: fix a memory leak bug - infiniband: hfi1: fix memory leaks - ceph: fix buffer free while holding i_ceph_lock in __ceph_setxattr() - ceph: fix buffer free while holding i_ceph_lock in __ceph_build_xattrs_blob() - ceph: fix buffer free while holding i_ceph_lock in fill_inode() - [armhf,arm64] KVM: Only skip MMIO insn once - afs: Fix leak in afs_lookup_cell_rcu() - [armhf,arm64] KVM: VGIC: Properly initialise private IRQ affinity - [amd64] boot/compressed: Fix missing initialization in find_trampoline_placement() - libceph: allow ceph_buffer_put() to receive a NULL ceph_buffer https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.73 - ALSA: hda - Fix potential endless loop at applying quirks - ALSA: hda/realtek - Fix overridden device-specific initialization - [x86] ALSA: hda/realtek - Add quirk for HP Pavilion 15 - [x86] ALSA: hda/realtek - Enable internal speaker & headset mic of ASUS UX431FL - [x86] ALSA: hda/realtek - Fix the problem of two front mics on a ThinkCentre - sched/fair: Don't assign runtime for throttled cfs_rq - [x86] drm/vmwgfx: Fix double free in vmw_recv_msg() - [ppc64el] tm: Fix FP/VMX unavailable exceptions inside a transaction (CVE-2019-15030) - batman-adv: fix uninit-value in batadv_netlink_get_ifindex() - batman-adv: Only read OGM tvlv_len after buffer len check - [x86] hv_sock: Fix hang when a connection is closed - Blk-iolatency: warn on negative inflight IO counter - blk-iolatency: fix STS_AGAIN handling - {nl,mac}80211: fix interface combinations on crypto controlled devices - timekeeping: Use proper ktime_add when adding nsecs in coarse offset - selftests: fib_rule_tests: use pre-defined DEV_ADDR - [x86] ftrace: Fix warning and considate ftrace_jmp_replace() and ftrace_call_replace() - [ppc64el] mark start_here_multiplatform as __ref - [arm64] dts: rockchip: enable usb-host regulators at boot on rk3328-rock64 - nvme-fc: use separate work queue to avoid warning - [armhf] clk: s2mps11: Add used attribute to s2mps11_dt_match - [arm64] remoteproc: qcom: q6v5: shore up resource probe handling - modules: always page-align module section allocations - kernel/module: Fix mem leak in module_add_modinfo_attrs - [x86] drm/i915: Re-apply "Perform link quality check, unconditionally during long pulse" - scsi: qla2xxx: Move log messages before issuing command to firmware - keys: Fix the use of the C++ keyword "private" in uapi/linux/keyctl.h - [x86] Drivers: hv: kvp: Fix two "this statement may fall through" warnings - [x86] hibernate: Fix nosave_regions setup for hibernation - [arm64] remoteproc: qcom: q6v5-mss: add SCM probe dependency - drm/amdgpu/gfx9: Update gfx9 golden settings. - drm/amdgpu: Update gc_9_0 golden settings. - [x86] KVM: hyperv: enforce vp_index < KVM_MAX_VCPUS - [x86] KVM: hyperv: consistently use 'hv_vcpu' for 'struct kvm_vcpu_hv' variables - [x86] KVM: hyperv: keep track of mismatched VP indexes - [x86] KVM: hyperv: define VP assist page helpers - [x86] kvm/lapic: preserve gfn_to_hva_cache len on cache reinit - [x86] drm/i915: Fix intel_dp_mst_best_encoder() - [x86] drm/i915: Rename PLANE_CTL_DECOMPRESSION_ENABLE - [x86] drm/i915/gen9+: Fix initial readout for Y tiled framebuffers - drm/atomic_helper: Disallow new modesets on unregistered connectors - [x86] Drivers: hv: kvp: Fix the recent regression caused by incorrect clean-up - powerplay: Respect units on max dcfclk watermark - drm/amd/pp: Fix truncated clock value when set watermark - drm/amd/dm: Understand why attaching path/tile properties are needed - [s390x] zcrypt: reinit ap queue state machine during device probe - [x86] drm/i915: Restore sane defaults for KMS on GEM error load - [x86] drm/i915: Cleanup gt powerstate from gem - [ppc64el] KVM: Book3S HV: Fix race between kvm_unmap_hva_range and MMU mode switch - Btrfs: clean up scrub is_dev_replace parameter - Btrfs: fix deadlock with memory reclaim during scrub - btrfs: Remove extent_io_ops::fill_delalloc - btrfs: Fix error handling in btrfs_cleanup_ordered_extents - scsi: megaraid_sas: Fix combined reply queue mode detection - scsi: megaraid_sas: Add check for reset adapter bit - scsi: megaraid_sas: Use 63-bit DMA addressing - [ppc64el] pkeys: Fix handling of pkey state across fork() - btrfs: volumes: Make sure no dev extent is beyond device boundary - btrfs: Use real device structure to verify dev extent - IB/uverbs: Fix OOPs upon device disassociation - drm/vblank: Allow dynamic per-crtc max_vblank_count - [x86] drm/i915/ilk: Fix warning when reading emon_status with no output - tpm: Fix some name collisions with drivers/char/tpm.h - bcache: replace hard coded number with BUCKET_GC_GEN_MAX - bcache: treat stale && dirty keys as bad keys - [x86] KVM: VMX: Compare only a single byte for VMCS' "launched" in vCPU-run - [armhf] iio: adc: exynos-adc: Add S5PV210 variant - [armhf] iio: adc: exynos-adc: Use proper number of channels for Exynos4x12 - mt76: fix corrupted software generated tx CCMP PN - drm/nouveau: Don't WARN_ON VCPI allocation failures - iwlwifi: fix devices with PCI Device ID 0x34F0 and 11ac RF modules - iwlwifi: add new card for 9260 series - spi: spi-gpio: fix SPI_CS_HIGH capability - [ppc64el] kvm: Save and restore host AMR/IAMR/UAMOR - btrfs: scrub: pass fs_info to scrub_setup_ctx - btrfs: scrub: move scrub_setup_ctx allocation out of device_list_mutex - btrfs: scrub: fix circular locking dependency warning - btrfs: init csum_list before possible free - [arm64] PCI: qcom: Fix error handling in runtime PM support - [arm64] PCI: qcom: Don't deassert reset GPIO during probe - CIFS: Fix error paths in writeback code - CIFS: Fix leaking locked VFS cache pages in writeback retry - [x86] drm/i915: Handle vm_mmap error during I915_GEM_MMAP ioctl with WC set - [x86] drm/i915: Sanity check mmap length against object size - [x86] usb: typec: tcpm: Try PD-2.0 if sink does not respond to 3.0 source-caps - IB/mlx5: Reset access mask when looping inside page fault handler - kvm: mmu: Fix overflow on kvm mmu page limit calculation - [x86] kvm: move kvm_load/put_guest_xcr0 into atomic context - [x86] KVM: Always use 32-bit SMRAM save state for 32-bit kernels - cifs: Fix lease buffer length error (CVE-2019-15918) - ext4: protect journal inode's blocks using block_validity - [x86] PCI: Reset Lenovo ThinkPad P50 nvgpu at boot if necessary - dm mpath: fix missing call of path selector type->end_io - blk-mq: free hw queue's resource in hctx's release handler - mmc: sdhci-pci: Add support for Intel CML - PCI: dwc: Use devm_pci_alloc_host_bridge() to simplify code - cifs: smbd: take an array of reqeusts when sending upper layer data - dm crypt: move detailed message into debug level - [x86] drm/amdkfd: Add missing Polaris10 ID - kvm: Check irqchip mode before assign irqfd - drm/amdgpu: fix ring test failure issue during s3 in vce 3.0 (V2) - drm/amdgpu/{uvd,vcn}: fetch ring's read_ptr after alloc - Btrfs: fix race between block group removal and block group allocation - cifs: add spinlock for the openFileList to cifsInodeInfo - [arm64] clk: tegra: Fix maximum audio sync clock for Tegra124/210 - [arm64] clk: tegra210: Fix default rates for HDA clocks - IB/hfi1: Avoid hardlockup with flushlist_lock - apparmor: reset pos on failure to unpack for various functions - scsi: target/core: Use the SECTOR_SHIFT constant - scsi: target/iblock: Fix overrun in WRITE SAME emulation - [s390x] scsi: zfcp: fix request object use-after-free in send path causing wrong traces - cifs: Properly handle auto disabling of serverino option - [x86] ALSA: hda - Don't resume forcibly i915 HDMI/DP codec - [x86] KVM: optimize check for valid PAT value - [x86] KVM: VMX: Always signal #GP on WRMSR to MSR_IA32_CR_PAT with bad value - [x86] KVM: VMX: Fix handling of #MC that occurs during VM-Entry - [x86] KVM: VMX: check CPUID before allowing read/write of IA32_XSS - [ppc64el] KVM: Use ccr field in pt_regs struct embedded in vcpu struct - [ppc64el] KVM: Book3S HV: Fix CR0 setting in TM emulation - RDMA/srp: Document srp_parse_in() arguments - RDMA/srp: Accept again source addresses that do not have a port number - btrfs: correctly validate compression type - resource: Include resource end in walk_*() interfaces - resource: Fix find_next_iomem_res() iteration issue - resource: fix locking in find_next_iomem_res() - pstore: Fix double-free in pstore_mkfile() failure path - dm thin metadata: check if in fail_io mode when setting needs_check - [armhf,arm64] drm/panel: Add support for Armadeus ST0700 Adapt - [x86] ALSA: hda - Fix intermittent CORB/RIRB stall on Intel chips - [ppc64el] mm: Limit rma_size to 1TB when running without HV mode - iommu/iova: Remove stale cached32_node - gpio: don't WARN() on NULL descs if gpiolib is disabled - mm/migrate.c: initialize pud_entry in migrate_vma() - NFSv4: Fix delegation state recovery - bcache: only clear BTREE_NODE_dirty bit when it is set - bcache: add comments for mutex_lock(&b->write_lock) - bcache: fix race in btree_flush_write() - [x86] drm/i915: Make sure cdclk is high enough for DP audio on VLV/CHV - [s390x] virtio: fix race on airq_areas[] - drm/atomic_helper: Allow DPMS On<->Off changes for unregistered connectors - ext4: don't perform block validity checks on the journal inode - ext4: fix block validity checks for journal inodes using indirect blocks - ext4: unsigned int compared against zero - [x86] PCI: Reset both NVIDIA GPU and HDA in ThinkPad P50 workaround - [ppc64el] tm: Remove msr_tm_active() - [ppc64el] tm: Fix restoring FP/VMX facility incorrectly on interrupts (CVE-2019-15031) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.74 - bridge/mdb: remove wrong use of NLM_F_MULTI - cdc_ether: fix rndis support for Mediatek based smartphones - ipv6: Fix the link time qualifier of 'ping_v6_proc_exit_net()' - isdn/capi: check message length in capi_write() - net: Fix null de-reference of device refcount - net: gso: Fix skb_segment splat when splitting gso_size mangled skb having linear-headed frag_list - net: phylink: Fix flow control resolution - net: sched: fix reordering issues - sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero - sctp: Fix the link time qualifier of 'sctp_ctrlsock_exit()' - sctp: use transport pf_retrans in sctp_do_8_2_transport_strike - tcp: fix tcp_ecn_withdraw_cwr() to clear TCP_ECN_QUEUE_CWR - tipc: add NULL pointer check before calling kfree_rcu - tun: fix use-after-free when register netdev failed - gpiolib: acpi: Add gpiolib_acpi_run_edge_events_on_boot option and blacklist - gpio: fix line flag validation in linehandle_create - Btrfs: fix assertion failure during fsync and use of stale transaction - ixgbe: Prevent u8 wrapping of ITR value to something less than 10us - genirq: Prevent NULL pointer dereference in resend_irqs() - [s390x] KVM: kvm_s390_vm_start_migration: check dirty_bitmap before using it as target for memset() - [s390x] KVM: Do not leak kernel stack data in the KVM_S390_INTERRUPT ioctl - [x86] KVM: work around leak of uninitialized stack contents - [x86] KVM: nVMX: handle page fault in vmread - [x86] purgatory: Change compiler flags from -mcmodel=kernel to -mcmodel=large to fix kexec relocation errors - [ppc64el] Add barrier_nospec to raw_copy_in_user() - [arm64] drm/meson: Add support for XBGR8888 & ABGR8888 formats - [armhf,arm64] clk: rockchip: Don't yell about bad mmc phases when getting - PCI: Always allow probing with driver_override - gpio: fix line flag validation in lineevent_create - ubifs: Correctly use tnc_next() in search_dh_cookie() - driver core: Fix use-after-free and double free on glue directory - firmware: ti_sci: Always request response from firmware - [x86] drm: panel-orientation-quirks: Add extra quirk table entry for GPD MicroPC - Revert "Bluetooth: btusb: driver to enable the usb-wakeup feature" - modules: fix BUG when load module with rodata=n - rsi: fix a double free bug in rsi_91x_deinit() (CVE-2019-15504) - nvmem: Use the same permissions for eeprom as for nvmem https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.75 - netfilter: nf_flow_table: set default timeout after successful insertion - HID: wacom: generic: read HID_DG_CONTACTMAX from any feature report - RDMA/restrack: Release task struct which was hold by CM_ID object - [x86] Input: elan_i2c - remove Lenovo Legion Y7000 PnpID - [ppc64el] mm/radix: Use the right page size for vmemmap mapping - USB: usbcore: Fix slab-out-of-bounds bug during device reset - media: tm6000: double free if usb disconnect while streaming - ip6_gre: fix a dst leak in ip6erspan_tunnel_xmit - udp: correct reuseport selection with connected sockets - xen-netfront: do not assume sk_buff_head list is empty in error handling - net_sched: let qdisc_put() accept NULL pointer - mwifiex: Fix three heap overflow at parsing element in cfg80211_ap_settings (CVE-2019-14814, CVE-2019-14815, CVE-2019-14816) - nl80211: Fix possible Spectre-v1 for CQM RSSI thresholds - ieee802154: hwsim: Fix error handle path in hwsim_init_module - ieee802154: hwsim: unregister hw while hwsim_subscribe_all_others fails - [armhf] dts: am57xx: Disable voltage switching for SD card - [armhf] OMAP2+: Fix missing SYSC_HAS_RESET_STATUS for dra7 epwmss - [armhf] bus: ti-sysc: Fix using configured sysc mask value - [s390x] bpf: fix lcgr instruction encoding - [armhf] OMAP2+: Fix omap4 errata warning on other SoCs - [armhf] dts: dra74x: Fix iodelay configuration for mmc3 - [armhf] bus: ti-sysc: Simplify cleanup upon failures in sysc_probe() - [s390x] bpf: use 32-bit index for tail calls - netfilter: ebtables: Fix argument order to ADD_COUNTER - netfilter: nft_flow_offload: missing netlink attribute policy - netfilter: xt_nfacct: Fix alignment mismatch in xt_nfacct_match_info - NFSv4: Fix return values for nfs4_file_open() - NFSv4: Fix return value in nfs_finish_open() - NFS: Fix initialisation of I/O result struct in nfs_pgio_rpcsetup - xdp: unpin xdp umem pages in error path - qed: Add cleanup in qed_slowpath_start() - [armel,armhf] 8874/1: mm: only adjust sections of valid mm structures - batman-adv: Only read OGM2 tvlv_len after buffer len check - bpf: allow narrow loads of some sk_reuseport_md fields with offset > 0 - r8152: Set memory to all 0xFFs on failed reg reads - [x86] apic: Fix arch_dynirq_lower_bound() bug for DT enabled machines - netfilter: xt_physdev: Fix spurious error message in physdev_mt_check - netfilter: nf_conntrack_ftp: Fix debug output - NFSv2: Fix eof handling - NFSv2: Fix write regression - kallsyms: Don't let kallsyms_lookup_size_offset() fail on retrieving the first symbol - cifs: set domainName when a domain-key is used in multiuser - cifs: Use kzfree() to zero out the password - [armhf,arm64] usb: host: xhci-tegra: Set DMA mask correctly - [armel,armhf] 8901/1: add a criteria for pfn_valid of arm - sky2: Disable MSI on yet another ASUS boards (P6Xxxx) - i2c: designware: Synchronize IRQs when unregistering slave client - [x86] perf/intel: Restrict period on Nehalem - [x86] perf/amd/ibs: Fix sample bias for dispatched micro-ops - amd-xgbe: Fix error path in xgbe_mod_init() - [x86] tools/power x86_energy_perf_policy: Fix argument parsing - [x86] tools/power turbostat: fix buffer overrun - net: aquantia: fix out of memory condition on rx side - [armhf] dmaengine: ti: omap-dma: Add cleanup in omap_dma_probe() - [x86] uaccess: Don't leak the AC flags into __get_user() argument evaluation - [x86] hyper-v: Fix overflow bug in fill_gva_list() - keys: Fix missing null pointer check in request_key_auth_describe() - [x86] iommu/amd: Flush old domains in kdump kernel - [x86] iommu/amd: Fix race in increase_address_space() - [arm64] PCI: kirin: Fix section mismatch warning - ovl: fix regression caused by overlapping layers detection - floppy: fix usercopy direction - binfmt_elf: move brk out of mmap when doing direct loader exec - [arm64] kpti: Whitelist Cortex-A CPUs that don't implement the CSV3 field - media: technisat-usb2: break out of loop at end of buffer (CVE-2019-15505) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.76 - Revert "Bluetooth: validate BLE connection interval updates" - RDMA/restrack: Protect from reentry to resource return path - [ppc64el] xive: Fix bogus error code returned by OPAL - IB/core: Add an unbound WQ type to the new CQ API - HID: prodikeys: Fix general protection fault during probe - HID: sony: Fix memory corruption issue on cleanup. - HID: logitech: Fix general protection fault caused by Logitech driver - HID: hidraw: Fix invalid read in hidraw_ioctl - HID: Add quirk for HP X500 PIXART OEM mouse - mtd: cfi_cmdset_0002: Use chip_good() to retry in do_write_oneword() - CIFS: fix deadlock in cached root handling - net/mlx5e: Set ECN for received packets using CQE indication - net/mlx5e: don't set CHECKSUM_COMPLETE on SCTP packets - mlx5: fix get_ip_proto() - net/mlx5e: Allow reporting of checksum unnecessary - net/mlx5e: XDP, Avoid checksum complete when XDP prog is loaded - net/mlx5e: Rx, Fixup skb checksum for packets with tail padding - net/mlx5e: Rx, Check ip headers sanity - iwlwifi: mvm: send BCAST management frames to the right station - iwlwifi: mvm: always init rs_fw with 20MHz bandwidth rates - media: tvp5150: fix switch exit in set control handler - [x86] ASoC: Intel: cht_bsw_max98090_ti: Enable codec clock once and keep it enabled - ALSA: usb-audio: Add Hiby device family to quirks for native DSD support - ALSA: usb-audio: Add DSD support for EVGA NU Audio - ALSA: dice: fix wrong packet parameter for Alesis iO26 - [x86] ALSA: hda - Add laptop imic fixup for ASUS M9V laptop - [x86] ALSA: hda - Apply AMD controller workaround for Raven platform - objtool: Clobber user CFLAGS variable - power: supply: sysfs: ratelimit property read error message - scsi: qla2xxx: Turn off IOCB timeout timer on IOCB completion - scsi: qla2xxx: Remove all rports if fabric scan retry fails - scsi: qla2xxx: Return switch command on a timeout - Revert "drm/amd/powerplay: Enable/Disable NBPSTATE on On/OFF of UVD" - bpf: libbpf: retry loading program on EAGAIN - [armhf,arm64] irqchip/gic-v3-its: Fix LPI release for Multi-MSI devices - f2fs: check all the data segments against all node ones - [x86] PCI: hv: Avoid use of hv_pci_dev->pci_slot after freeing it - bcache: remove redundant LIST_HEAD(journal) from run_cache_set() - initramfs: don't free a non-existent initrd - blk-mq: change gfp flags to GFP_NOIO in blk_mq_realloc_hw_ctxs - blk-mq: move cancel of requeue_work to the front of blk_exit_queue - Revert "f2fs: avoid out-of-range memory access" - dm zoned: fix invalid memory access - f2fs: fix to do sanity check on segment bitmap of LFS curseg - drm: Flush output polling on shutdown - net: don't warn in inet diag when IPV6 is disabled - Bluetooth: btrtl: HCI reset on close for Realtek BT chip - [x86] ACPI: video: Add new hw_changes_brightness quirk, set it on PB Easynote MZ35 - drm/nouveau/disp/nv50-: fix center/aspect-corrected scaling - xfs: don't crash on null attr fork xfs_bmapi_read - netfilter: nft_socket: fix erroneous socket assignment - Bluetooth: btrtl: Additional Realtek 8822CE Bluetooth devices - net_sched: check cops->tcf_block in tc_bind_tclass() - net/rds: An rds_sock is added too early to the hash table - net/rds: Check laddr_check before calling it - f2fs: use generic EFSBADCRC/EFSCORRUPTED https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.77 - arcnet: provide a buffer big enough to actually receive packets - cdc_ncm: fix divide-by-zero caused by invalid wMaxPacketSize - macsec: drop skb sk before calling gro_cells_receive - net/phy: fix DP83865 10 Mbps HDX loopback disable function - net/sched: act_sample: don't push mac header on ip6gre ingress - net_sched: add max len check for TCA_KIND - nfp: flower: fix memory leak in nfp_flower_spawn_vnic_reprs (CVE-2019-19081) - openvswitch: change type of UPCALL_PID attribute to NLA_UNSPEC - ppp: Fix memory leak in ppp_write - sch_netem: fix a divide by zero in tabledist() - skge: fix checksum byte order - usbnet: ignore endpoints with invalid wMaxPacketSize - usbnet: sanity checking of packet sizes and device mtu - net: sched: fix possible crash in tcf_action_destroy() - tcp: better handle TCP_USER_TIMEOUT in SYN_SENT state - net/mlx5: Add device ID of upcoming BlueField-2 - mISDN: enforce CAP_NET_RAW for raw sockets (CVE-2019-17055) - appletalk: enforce CAP_NET_RAW for raw sockets (CVE-2019-17054) - ax25: enforce CAP_NET_RAW for raw sockets (CVE-2019-17052) - ieee802154: enforce CAP_NET_RAW for raw sockets (CVE-2019-17053) - nfc: enforce CAP_NET_RAW for raw sockets (CVE-2019-17056) - nfp: flower: prevent memory leak in nfp_flower_spawn_phy_reprs (CVE-2019-19080) - ALSA: hda: Flush interrupts on disabling - [armhf] ASoC: sgtl5000: Fix of unmute outputs on probe - [armhf] ASoC: sgtl5000: Fix charge pump source assignment - [arm*] dmaengine: bcm2835: Print error in case setting DMA mask fails - media: dib0700: fix link error for dibx000_i2c_set_speed - media: hdpvr: Add device num check and handling - time/tick-broadcast: Fix tick_broadcast_offline() lockdep complaint - sched/fair: Fix imbalance due to CPU affinity - sched/core: Fix CPU controller for !RT_GROUP_SCHED - [x86] apic: Make apic_pending_intr_clear() more robust - sched/deadline: Fix bandwidth accounting at all levels after offline migration - [x86] reboot: Always use NMI fallback when shutdown via reboot vector IPI fails - [x86] apic: Soft disable APIC before initializing it - ALSA: hda - Show the fatal CORB/RIRB error more clearly - ALSA: i2c: ak4xxx-adda: Fix a possible null pointer dereference in build_adc_controls() - EDAC/mc: Fix grain_bits calculation - media: iguanair: add sanity checks - base: soc: Export soc_device_register/unregister APIs - ALSA: usb-audio: Skip bSynchAddress endpoint check if it is invalid - [arm64] prefetch: fix a -Wtype-limits warning - md/raid1: end bio when the device faulty - md: don't call spare_active in md_reap_sync_thread if all member devices can't work - md: don't set In_sync if array is frozen - ACPI / processor: don't print errors for processorIDs == 0xff - loop: Add LOOP_SET_DIRECT_IO to compat ioctl - [x86] EDAC, pnd2: Fix ioremap() size in dnv_rd_reg() - efi: cper: print AER info of PCIe fatal error - sched/fair: Use rq_lock/unlock in online_fair_sched_group - idle: Prevent late-arriving interrupts from disrupting offline - media: gspca: zero usb_buf on error - perf config: Honour $PERF_CONFIG env var to specify alternate .perfconfig - perf test vfs_getname: Disable ~/.perfconfig to get default output - media: em28xx: modules workqueue not inited for 2nd device - media: rc: imon: Allow iMON RC protocol for ffdc 7e device - [arm64] perf record: Support aarch64 random socket_id assignment - [armhf] media: omap3isp: Don't set streaming state on random subdevs - media: radio/si470x: kill urb on error - media: hdpvr: add terminating 0 at end of string - led: triggers: Fix a memory leak bug - nbd: add missing config put - media: mceusb: fix (eliminate) TX IR signal length limit - media: dvb-frontends: use ida for pll number - posix-cpu-timers: Sanitize bogus WARNONS - media: dvb-core: fix a memory leak bug - libperf: Fix alignment trap with xyarray contents in 'perf stat' - [amd64] EDAC/amd64: Recognize DRAM device type ECC capability - [amd64] EDAC/amd64: Decode syndrome before translating address - PM / devfreq: passive: Use non-devm notifiers - PM / devfreq: exynos-bus: Correct clock enable sequence - media: cec-notifier: clear cec_adap in cec_notifier_unregister - media: saa7146: add cleanup in hexium_attach() - media: cpia2_usb: fix memory leaks - media: saa7134: fix terminology around saa7134_i2c_eeprom_md7134_gate() - perf trace beauty ioctl: Fix off-by-one error in cmd->string table - [x86] ASoC: es8316: fix headphone mixer volume table - ACPI / CPPC: do not require the _PSD method - sched/cpufreq: Align trace event behavior of fast switching - [x86] apic/vector: Warn when vector space exhaustion breaks affinity - [arm64] kpti: ensure patched kernel text is fetched from PoU - [x86] mm/pti: Do not invoke PTI functions when PTI is disabled - [x86] mm/pti: Handle unaligned address gracefully in pti_clone_pagetable() - nvmet: fix data units read and written counters in SMART log - nvme-multipath: fix ana log nsid lookup when nsid is not found - ALSA: firewire-motu: add support for MOTU 4pre - iommu/amd: Silence warnings under memory pressure - libata/ahci: Drop PCS quirk for Denverton and beyond - iommu/iova: Avoid false sharing on fq_timer_on - libtraceevent: Change users plugin directory - [armhf] dts: exynos: Mark LDO10 as always-on on Peach Pit/Pi Chromebooks - ACPI: custom_method: fix memory leaks - ACPI / PCI: fix acpi_pci_irq_enable() memory leak - closures: fix a race on wakeup from closure_sync - hwmon: (acpi_power_meter) Change log level for 'unsafe software power cap' - md/raid1: fail run raid1 array when active disk less than one - dmaengine: ti: edma: Do not reset reserved paRAM slots - kprobes: Prohibit probing on BUG() and WARN() address - [s390x] crypto: xts-aes-s390 fix extra run-time crypto self tests finding - [x86] cpu: Add Tiger Lake to Intel family - [x86] platform: intel_pmc_core: Do not ioremap RAM - ASoC: dmaengine: Make the pcm->name equal to pcm->id if the name is not set - raid5: don't set STRIPE_HANDLE to stripe which is in batch list - mmc: core: Clarify sdio_irq_pending flag for MMC_CAP2_SDIO_IRQ_NOTHREAD - mmc: sdhci: Fix incorrect switch to HS mode - mmc: core: Add helper function to indicate if SDIO IRQs is enabled - [armhf,arm64] mmc: dw_mmc: Re-store SDIO IRQs mask at system resume - raid5: don't increment read_errors on EILSEQ return - libertas: Add missing sentinel at end of if_usb.c fw_table - e1000e: add workaround for possible stalled packet - ALSA: hda - Drop unsol event handler for Intel HDMI codecs - drm/amd/powerplay/smu7: enforce minimal VBITimeout (v2) - media: ttusb-dec: Fix info-leak in ttusb_dec_send_command() - [x86] ALSA: hda/realtek - Blacklist PC beep for Lenovo ThinkCentre M73/93 - [x86] iommu/amd: Override wrong IVRS IOAPIC on Raven Ridge systems - btrfs: extent-tree: Make sure we only allocate extents from block groups with the same type - [armhf] media: omap3isp: Set device on omap3isp subdevs - PM / devfreq: passive: fix compiler warning - iwlwifi: fw: don't send GEO_TX_POWER_LIMIT command to FW version 36 - ALSA: firewire-tascam: handle error code when getting current source of clock - ALSA: firewire-tascam: check intermediate state of clock status and retry - scsi: scsi_dh_rdac: zero cdb in send_mode_select() - scsi: qla2xxx: Fix Relogin to prevent modifying scan_state flag - printk: Do not lose last line in kmsg buffer dump - IB/mlx5: Free mpi in mp_slave mode - IB/hfi1: Define variables as unsigned long to fix KASAN warning - randstruct: Check member structs in is_pure_ops_struct() - ceph: use ceph_evict_inode to cleanup inode's resource - [x86] ALSA: hda/realtek - PCI quirk for Medion E4254 - blk-mq: add callback of .cleanup_rq - scsi: implement .cleanup_rq callback - [ppc64el] imc: Dont create debugfs files for cpu-less nodes - fuse: fix missing unlock_page in fuse_writepage() - [x86] KVM: always stop emulation on page fault - [x86] KVM: set ctxt->have_exception in x86_decode_insn() - [x86] KVM: Manually calculate reserved bits when loading PDPTRS - [x86] media: sn9c20x: Add MSI MS-1039 laptop to flip_dmi_table - media: don't drop front-end reference count for ->detach - binfmt_elf: Do not move brk for INTERP-less ET_EXEC - [x86] ASoC: Intel: NHLT: Fix debug print format - [x86] ASoC: Intel: Skylake: Use correct function to access iomem space - [x86] ASoC: Intel: Fix use of potentially uninitialized variable - [arm64] Revert "arm64: Remove unnecessary ISBs from set_{pte,pmd,pud}" - [arm64] tlb: Ensure we execute an ISB following walk cache invalidation - [arm64] dts: rockchip: limit clock rate of MMC controllers for RK3328 - alarmtimer: Use EOPNOTSUPP instead of ENOTSUPP - regulator: Defer init completion for a while after late_initcall - efifb: BGRT: Improve efifb_bgrt_sanity_check - gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps - memcg, oom: don't require __GFP_FS when invoking memcg OOM killer - memcg, kmem: do not fail __GFP_NOFAIL charges - i40e: check __I40E_VF_DISABLE bit in i40e_sync_filters_subtask - block: fix null pointer dereference in blk_mq_rq_timed_out() - smb3: allow disabling requesting leases - ovl: Fix dereferencing possible ERR_PTR() - ovl: filter of trusted xattr results in audit - btrfs: fix allocation of free space cache v1 bitmap pages - Btrfs: fix use-after-free when using the tree modification log - btrfs: Relinquish CPUs in btrfs_compare_trees - btrfs: qgroup: Fix the wrong target io_tree when freeing reserved data space - btrfs: qgroup: Fix reserved data space leak if we have multiple reserve calls - Btrfs: fix race setting up and completing qgroup rescan workers - md/raid6: Set R5_ReadError when there is read failure on parity disk - md: don't report active array_state until after revalidate_disk() completes. - md: only call set_in_sync() when it is expected to succeed. - cfg80211: Purge frame registrations on iftype change - /dev/mem: Bail out upon SIGKILL. - ext4: fix warning inside ext4_convert_unwritten_extents_endio - ext4: fix punch hole for inline_data file systems - quota: fix wrong condition in is_quota_modification() - hwrng: core - don't wait on add_early_randomness() - CIFS: fix max ea value size - CIFS: Fix oplock handling for SMB 2.1+ protocols - md/raid0: avoid RAID0 data corruption due to layout confusion. - fuse: fix deadlock with aio poll and fuse_iqueue::waitq.lock - mm/compaction.c: clear total_{migrate,free}_scanned before scanning a new zone - drm/amd/display: Restore backlight brightness after system resume https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.78 - tpm: use tpm_try_get_ops() in tpm-sysfs.c. - tpm: Fix TPM 1.2 Shutdown sequence to prevent future TPM operations - [armhf,arm64] drm/panel: simple: fix AUO g185han01 horizontal blanking - [armhf,arm64] drm/panel: check failure cases in the probe func - [armhf,arm64] drm/rockchip: Check for fast link training before enabling psr - gpu: drm: radeon: Fix a possible null-pointer dereference in radeon_connector_set_property() - [ppc64el] PCI: rpaphp: Avoid a sometimes-uninitialized warning - ipmi_si: Only schedule continuously in the thread in maintenance mode - [armhf,arm64] clk: sunxi-ng: v3s: add missing clock slices for MMC2 module clocks - drm/amd/display: fix issue where 252-255 values are clipped - drm/amd/display: reprogram VM config when system resume - [ppc64el] powernv/ioda2: Allocate TCE table levels on demand for default DMA window - [ppc64el] xmon: Check for HV mode when dumping XIVE info from OPAL - [ppc64el] rtas: use device model APIs and serialization during LPM - [ppc64el] futex: Fix warning: 'oldval' may be used uninitialized in this function - [ppc64el] pseries/mobility: use cond_resched when updating device tree - [armhf,arm64] pinctrl: tegra: Fix write barrier placement in pmx_writel - [ppc64el] eeh: Clear stale EEH_DEV_NO_HANDLER flag - vfio_pci: Restore original state on release - drm/nouveau/volt: Fix for some cards having 0 maximum voltage - [x86] pinctrl: amd: disable spurious-firing GPIO IRQs - drm/amd/display: support spdif - drm/amdgpu/si: fix ASIC tests - [ppc64el] exception: machine check use correct cfar for late handler - pstore: fs superblock limits - [ppc64el] pseries: correctly track irq state in default idle - [arm64] pinctrl: meson-gxbb: Fix wrong pinning definition for uart_c - [ppc64el] dump kernel log before carrying out fadump or kdump - [arm64] mbox: qcom: add APCS child device for QCS404 - scsi: core: Reduce memory required for SCSI logging - dma-buf/sw_sync: Synchronize signal vs syncpt free - ext4: fix potential use after free after remounting with noblock_validity - [mips*] tlbex: Explicitly cast _PAGE_NO_EXEC to a boolean - [x86] i2c-cht-wc: Fix lockdep warning - [x86] mfd: intel-lpss: Remove D3cold delay - HID: wacom: Fix several minor compiler warnings - [armel,armhf] 8898/1: mm: Don't treat faults reported from cache maintenance as writes - [armhf] rtc: snvs: fix possible race condition - HID: apple: Fix stuck function keys when using FN - [arm64] PCI: rockchip: Propagate errors for optional regulators - [armhf] PCI: imx6: Propagate errors for optional regulators - [armel,armhf] 8903/1: ensure that usable memory in bank 0 starts from a PMD-aligned address - fat: work around race with userspace's read via blockdev while mounting - pktcdvd: remove warning on attempting to register non-passthrough dev - [s390x] hypfs: Fix error number left in struct pointer member - ocfs2: wait for recovering done after direct unlock request - [arm64] consider stack randomization for mmap base only when necessary - [mips*] properly account for stack randomization and stack guard gap - [armel,armhf] properly account for stack randomization and stack guard gap - [armel,armhf] use STACK_TOP when computing mmap base address - block: mq-deadline: Fix queue restart handling - bpf: fix use after free in prog symbol exposure - cxgb4:Fix out-of-bounds MSI-X info array access - erspan: remove the incorrect mtu limit for erspan - hso: fix NULL-deref on tty open - ipv6: drop incoming packets having a v4mapped source address - ipv6: Handle missing host route in __ipv6_ifa_notify - net: ipv4: avoid mixed n_redirects and rate_tokens usage - net: qlogic: Fix memory leak in ql_alloc_large_buffers - net: Unpublish sk from sk_reuseport_cb before call_rcu - nfc: fix memory leak in llcp_sock_bind() - qmi_wwan: add support for Cinterion CLS8 devices - rxrpc: Fix rxrpc_recvmsg tracepoint - sch_dsmark: fix potential NULL deref in dsmark_init() - udp: fix gso_segs calculations - vsock: Fix a lockdep warning in __vsock_release() - udp: only do GSO if # of segs > 1 - net/rds: Fix error handling in rds_ib_add_one() - xen-netfront: do not use ~0U as error return value for xennet_fill_frags() - tipc: fix unlimited bundling of small messages - sch_cbq: validate TCA_CBQ_WRROPT to avoid crash - NFC: fix attrs checks in netlink interface - kexec: bail out upon SIGKILL when allocating memory. - 9p/cache.c: Fix memory leak in v9fs_cache_session_get_cookie https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.79 - [s390x] process: avoid potential reading of freed stack - [s390x] KVM: Test for bad access register and size at the start of S390_MEM_OP - [s390x] topology: avoid firing events before kobjs are created - [s390x] cio: exclude subchannels with no parent from pseudo check - [ppc64el] KVM: Book3S HV: Fix race in re-enabling XIVE escalation interrupts - [ppc64el] KVM: Book3S HV: Check for MMU ready on piggybacked virtual cores - [ppc64el] KVM: Book3S HV: Don't lose pending doorbell request on migration on P9 - [x86] KVM: Fix userspace set invalid CR4 - [x86] KVM: nVMX: handle page fault in vmread fix - nbd: fix max number of supported devs - PM / devfreq: tegra: Fix kHz to Hz conversion - ASoC: Define a set of DAPM pre/post-up events - [armhf] ASoC: sgtl5000: Improve VAG power and mute control - [ppc64el] mce: Fix MCE handling for huge pages - [ppc64el] mce: Schedule work from irq_work - [ppc64el] powernv: Restrict OPAL symbol map to only be readable by root - [ppc64el] powernv/ioda: Fix race in TCE level allocation - [ppc64el] book3s64/mm: Don't do tlbie fixup for some hardware revisions - tools lib traceevent: Fix "robust" test of do_generate_dynamic_list_file - [x86] crypto: qat - Silence smp_processor_id() warning - crypto: skcipher - Unmap pages after an external error - [mips*el/loongson-3] Treat Loongson Extensions as ASEs - power: supply: sbs-battery: use correct flags field - power: supply: sbs-battery: only return health when battery present - tracing: Make sure variable reference alias has correct var_ref_idx - usercopy: Avoid HIGHMEM pfn warning - timer: Read jiffies once when forwarding base clk - [x86] PCI: vmd: Fix shadow offsets to reflect spec changes - PCI: Restore Resizable BAR size bits correctly for 1MB BARs - [armhf] watchdog: imx2_wdt: fix min() calculation in imx2_wdt_set_timeout - perf stat: Fix a segmentation fault when using repeat forever - [armhf] drm/omap: fix max fclk divider for omap36xx - [arm64] drm/msm/dsi: Fix return value check for clk_get_parent - drm/nouveau/kms/nv50-: Don't create MSTMs for eDP connectors - [x86] drm/i915/gvt: update vgpu workload head pointer correctly - mmc: sdhci: improve ADMA error reporting - Revert "locking/pvqspinlock: Don't wait if vCPU is preempted" - xen/xenbus: fix self-deadlock after killing user process - ieee802154: atusb: fix use-after-free at disconnect - [s390x] cio: avoid calling strlen on null pointer - cfg80211: initialize on-stack chandefs - [arm64] cpufeature: Detect SSBS and advertise to userspace - ima: always return negative code for error - ima: fix freeing ongoing ahash_request - fs: nfs: Fix possible null-pointer dereferences in encode_attrs() - 9p: Transport error uninitialized - 9p: avoid attaching writeback_fid on mmap with type PRIVATE - xen/pci: reserve MCFG areas earlier - ceph: fix directories inode i_blkbits initialization - ceph: reconnect connection if session hang in opening state - watchdog: aspeed: Add support for AST2600 - netfilter: nf_tables: allow lookups in dynamic sets - drm/amdgpu: Fix KFD-related kernel oops on Hawaii - drm/amdgpu: Check for valid number of registers to read - pNFS: Ensure we do clear the return-on-close layout stateid on fatal errors - [x86] purgatory: Disable the stackleak GCC plugin for the purgatory - ntb: point to right memory window index - thermal: Fix use-after-free when unregistering thermal zone device - thermal_hwmon: Sanitize thermal_zone type - libnvdimm/region: Initialize bad block for volatile namespaces - fuse: fix memleak in cuse_channel_open - libnvdimm/nfit_test: Fix acpi_handle redefinition - sched/membarrier: Call sync_core only before usermode for same mm - sched/membarrier: Fix private expedited registration check - sched/core: Fix migration to invalid CPU in __set_cpus_allowed_ptr() - kernel/elfcore.c: include proper prototypes - nfp: flower: fix memory leak in nfp_flower_spawn_vnic_reprs - drm/radeon: Bail earlier when radeon.cik_/si_support=0 is passed - [ppc64el] KVM: HV: XIVE: Free escalation interrupts before disabling the VP - [x86] KVM: nVMX: Fix consistency check on injected exception error code - nbd: fix crash when the blksize is zero - [ppc64el] pseries: Fix cpu_hotplug_lock acquisition in resize_hpt() - [ppc64el] radix: Rename CPU_FTR_P9_TLBIE_BUG feature flag - tools lib traceevent: Do not free tep->cmdlines in add_new_comm() on failure - tick: broadcast-hrtimer: Fix a race in bc_set_next - perf tools: Fix segfault in cpu_cache_level__read() - perf stat: Reset previous counts on repeat with interval - [arm64] ssbd: Add support for PSTATE.SSBS rather than trapping to EL3 - [arm64] KVM: Set SCTLR_EL2.DSSBS if SSBD is forcefully disabled and !vhe - [arm64] docs: Document SSBS HWCAP - [arm64] fix SSBS sanitization - [arm64] Add sysfs vulnerability show for spectre-v1 - [arm64] add sysfs vulnerability show for meltdown - [arm64] enable generic CPU vulnerabilites support - [arm64] Always enable ssb vulnerability detection - [arm64] Provide a command line to disable spectre_v2 mitigation - [arm64] Advertise mitigation of Spectre-v2, or lack thereof - [arm64] Always enable spectre-v2 vulnerability detection - [arm64] add sysfs vulnerability show for spectre-v2 - [arm64] add sysfs vulnerability show for speculative store bypass - [arm64] ssbs: Don't treat CPUs with SSBS as unaffected by SSB - [arm64] Force SSBS on context switch - [arm64] Use firmware to detect CPUs that are not affected by Spectre-v2 - [arm64] speculation: Support 'mitigations=' cmdline option - vfs: Fix EOVERFLOW testing in put_compat_statfs64 - cfg80211: add and use strongly typed element iteration macros - cfg80211: Use const more consistently in for_each_element macros - nl80211: validate beacon head (CVE-2019-16746) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.80 - panic: ensure preemption is disabled during panic() - f2fs: use EINVAL for superblock with invalid magic - USB: rio500: Remove Rio 500 kernel driver - USB: yurex: Don't retry on unexpected errors - USB: yurex: fix NULL-derefs on disconnect - USB: usb-skeleton: fix runtime PM after driver unbind - USB: usb-skeleton: fix NULL-deref on disconnect - xhci: Fix false warning message about wrong bounce buffer write length - xhci: Prevent device initiated U1/U2 link pm if exit latency is too long - xhci: Check all endpoints for LPM timeout - xhci: Fix USB 3.1 capability detection on early xHCI 1.1 spec based hosts - usb: xhci: wait for CNR controller not ready bit in xhci resume - xhci: Prevent deadlock when xhci adapter breaks during init - xhci: Increase STS_SAVE timeout in xhci_suspend() - USB: adutux: fix use-after-free on disconnect - USB: adutux: fix NULL-derefs on disconnect - USB: adutux: fix use-after-free on release - USB: iowarrior: fix use-after-free on disconnect - USB: iowarrior: fix use-after-free on release - USB: iowarrior: fix use-after-free after driver unbind - USB: usblp: fix runtime PM after driver unbind - USB: chaoskey: fix use-after-free on release - USB: ldusb: fix NULL-derefs on driver unbind - serial: uartlite: fix exit path null pointer - USB: serial: keyspan: fix NULL-derefs on open() and write() - USB: serial: ftdi_sio: add device IDs for Sienna and Echelon PL-20 - USB: serial: option: add Telit FN980 compositions - USB: serial: option: add support for Cinterion CLS8 devices - USB: serial: fix runtime PM after driver unbind - USB: usblcd: fix I/O after disconnect - USB: microtek: fix info-leak at probe - USB: dummy-hcd: fix power budget for SuperSpeed mode - USB: legousbtower: fix slab info leak at probe - USB: legousbtower: fix deadlock on disconnect - USB: legousbtower: fix potential NULL-deref on disconnect - USB: legousbtower: fix open after failed reset request - USB: legousbtower: fix use-after-free on release - [x86] mei: me: add comet point (lake) LP device ids - [x86] mei: avoid FW version request on Ibex Peak and earlier - [armhf,arm64] iio: adc: axp288: Override TS pin bias current for some models - efivar/ssdt: Don't iterate over EFI vars if no SSDT override was specified - perf llvm: Don't access out-of-scope array - perf inject jit: Fix JIT_CODE_MOVE filename - blk-wbt: fix performance regression in wbt scale_up/scale_down - CIFS: Gracefully handle QueryInfo errors during open - CIFS: Force revalidate inode when dentry is stale - CIFS: Force reval dentry if LOOKUP_REVAL flag is set - kernel/sysctl.c: do not override max_threads provided by userspace - mm/vmpressure.c: fix a signedness bug in vmpressure_register_event() - gpiolib: don't clear FLAG_IS_OUT when emulating open-drain/open-source - cifs: use cifsInodeInfo->open_file_lock while iterating to avoid a panic - btrfs: fix incorrect updating of log root tree - btrfs: fix uninitialized ret in ref-verify - NFS: Fix O_DIRECT accounting of number of bytes read/written - [mips*] elf_hwcap: Export userspace ASEs - ACPICA: ACPI 6.3: PPTT add additional fields in Processor Structure Flags - ACPI/PPTT: Add support for ACPI 6.3 thread flag - [arm64] topology: Use PPTT to determine if PE is a thread - vfs: Fix the locking in dcache_readdir() and friends - media: stkwebcam: fix runtime PM after driver unbind - [arm64] sve: Fix wrong free for task->thread.sve_state - [rt] tracing/hwlat: Report total time spent in all NMIs during the sample - [rt] tracing/hwlat: Don't ignore outer-loop duration when calculating max_latency - ftrace: Get a reference counter for the trace_array on filter files - tracing: Get trace_array reference for available_tracers files - hwmon: Fix HWMON_P_MIN_ALARM mask - [x86] asm: Fix MWAITX C-state hint value - [x86] PCI: vmd: Fix config addressing when using bus offsets - perf/hw_breakpoint: Fix arch_hw_breakpoint use-before-initialization https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.81 - nvme-pci: Fix a race in controller removal - scsi: ufs: skip shutdown if hba is not powered - scsi: megaraid: disable device when probe failed after enabled device - scsi: qla2xxx: Fix unbound sleep in fcport delete path. - [armhf] OMAP2+: Fix missing reset done flag for am3 and am43 - [armhf] OMAP2+: Fix warnings with broken omap2_set_init_voltage() - xen/efi: Set nonblocking callbacks - nl80211: fix null pointer dereference - mac80211: fix txq null pointer dereference - netfilter: nft_connlimit: disable bh on garbage collection - [mips*el/loongson-3] Fix the link time qualifier of 'serial_exit()' - [arm64] net: hisilicon: Fix usage of uninitialized variable in function mdio_sc_cfg_reg_write() - lib: textsearch: fix escapes in example code - r8152: Set macpassthru in reset_resume callback - libata/ahci: Fix PCS quirk application - md/raid0: fix warning message for parameter default_layout - ocfs2: fix panic due to ocfs2_wq is null - ipv4: fix race condition between route lookup and invalidation - net: avoid potential infinite loop in tc_ctl_action() - net: ipv6: fix listify ip6_rcv_finish in case of forwarding - [armhf,arm64] net: stmmac: disable/enable ptp_ref_clk in suspend/resume flow - sctp: change sctp_prot .no_autobind with true - memfd: Fix locking when tagging pins - USB: legousbtower: fix memleak on disconnect - ALSA: hda/realtek - Add support for ALC711 - [x86] ALSA: hda/realtek - Enable headset mic on Asus MJ401TA - ALSA: usb-audio: Disable quirks for BOSS Katana amplifiers - ALSA: hda - Force runtime PM on Nvidia HDMI codecs - USB: serial: ti_usb_3410_5052: fix port-close races - USB: ldusb: fix memleak on disconnect - USB: usblp: fix use-after-free on disconnect - USB: ldusb: fix read info leaks - [mips*] tlbex: Fix build_restore_pagemask KScratch restore - staging: wlan-ng: fix exit return when sme->key_idx >= NUM_WEPKEYS - [s390x] scsi: zfcp: fix reaction on bit error threshold notification - scsi: sd: Ignore a failure to sync cache due to lack of authorization - scsi: core: save/restore command resid for error handling - scsi: core: try to get module before removing device - scsi: ch: Make it possible to open a ch device multiple times again - Input: synaptics-rmi4 - avoid processing unknown IRQs - ACPI: CPPC: Set pcc_data[pcc_ss_id] to NULL in acpi_cppc_processor_exit() - cfg80211: wext: avoid copying malformed SSIDs (CVE-2019-17133) - mac80211: Reject malformed SSID elements - [x86] drm/edid: Add 6 bpc quirk for SDC panel in Lenovo G50 - drm/ttm: Restore ttm prefaulting - drm/amdgpu: Bail earlier when amdgpu.cik_/si_support is not set to 1 - drivers/base/memory.c: don't access uninitialized memmaps in soft_offline_page_store() - fs/proc/page.c: don't access uninitialized memmaps in fs/proc/page.c - mm/memory-failure.c: don't access uninitialized memmaps in memory_failure() - mm/slub: fix a deadlock in show_slab_objects() - mm/page_owner: don't access uninitialized memmaps when reading /proc/pagetypeinfo - hugetlbfs: don't access uninitialized memmaps in pfn_range_valid_gigantic() - mm/memory-failure: poison read receives SIGKILL instead of SIGBUS if mmaped more than once - EDAC/ghes: Fix Use after free in ghes_edac remove path - [arm64] Enable workaround for Cavium TX2 erratum 219 when running SMT - CIFS: avoid using MID 0xFFFF - CIFS: Fix use after free of file info structures - perf/aux: Fix AUX output stopping - tracing: Fix race in perf_trace_buf initialization - dm cache: fix bugs when a GFP_NOWAIT allocation fails - [amd64] boot: Make level2_kernel_pgt pages invalid outside kernel area - [x86] apic/x2apic: Fix a NULL pointer deref when handling a dying cpu - [x86] pinctrl: cherryview: restore Strago DMI workaround for all versions - [arm64] pinctrl: armada-37xx: fix control of pins 32 and up - [arm64] pinctrl: armada-37xx: swap polarity on LED group - btrfs: block-group: Fix a memory leak due to missing btrfs_put_block_group() - Btrfs: add missing extents release on file extent cluster relocation error - Btrfs: check for the full sync flag while holding the inode lock during fsync - btrfs: tracepoints: Fix bad entry members of qgroup events - memstick: jmb38x_ms: Fix an error handling path in 'jmb38x_ms_probe()' - cpufreq: Avoid cpufreq_suspend() deadlock on system shutdown - xen/netback: fix error path of xenvif_connect_data() - PCI: PM: Fix pci_power_up() - blk-rq-qos: fix first node deletion of rq_qos_del() - RDMA/cxgb4: Do not dma memory off of the stack (CVE-2019-17075) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.82 - zram: fix race between backing_dev_show and backing_dev_store - dm snapshot: introduce account_start_copy() and account_end_copy() - dm snapshot: rework COW throttling to fix deadlock - Btrfs: fix inode cache block reserve leak on failure to allocate data space - Btrfs: fix memory leak due to concurrent append writes with fiemap - btrfs: qgroup: Always free PREALLOC META reserve in btrfs_delalloc_release_extents() - btrfs: tracepoints: Fix wrong parameter order for qgroup events - wil6210: fix freeing of rx buffers in EDMA mode - f2fs: flush quota blocks after turnning it off - scsi: lpfc: Fix a duplicate 0711 log message number. - f2fs: fix to recover inode's i_gc_failures during POR - f2fs: fix to recover inode->i_flags of inode block during POR - [x86] HID: i2c-hid: add Direkt-Tek DTLAPY133-1 to descriptor override - [arm64,armel,armhf] usb: dwc2: fix unbalanced use of external vbus-supply - [x86] tools/power turbostat: fix goldmont C-state limit decoding - [x86] cpu: Add Atom Tremont (Jacobsville) - [arm64] drm/msm/dpu: handle failures while initializing displays - bcache: fix input overflow to writeback_rate_minimum - PCI: Fix Switchtec DMA aliasing quirk dmesg noise - Btrfs: fix deadlock on tree root leaf when finding free extent - netfilter: ipset: Make invalid MAC address checks consistent - HID: i2c-hid: Disable runtime PM for LG touchscreen - HID: i2c-hid: Ignore input report if there's no data present on Elan touchpanels - HID: i2c-hid: Add Odys Winbook 13 to descriptor override - [x86] platform/x86: Add the VLV ISP PCI ID to atomisp2_pm - [x86] platform/x86: Fix config space access for intel_atomisp2_pm - ath10k: assign 'n_cipher_suites = 11' for WCN3990 to enable WPA3 - HID: Add ASUS T100CHI keyboard dock battery quirks - NFSv4: Ensure that the state manager exits the loop on SIGKILL - HID: steam: fix boot loop with bluetooth firmware - HID: steam: fix deadlock with input devices. - [arm64,armhf] usb: dwc3: gadget: early giveback if End Transfer already completed - [arm64,armhf] usb: dwc3: gadget: clear DWC3_EP_TRANSFER_STARTED on cmd complete - ALSA: usb-audio: Cleanup DSD whitelist - usb: handle warm-reset port requests on hub resume - [armhf] rtc: pcf8523: set xtal load capacitance from DT - [arm64] Add MIDR encoding for HiSilicon Taishan CPUs - [arm64] kpti: Whitelist HiSilicon Taishan v110 CPUs - scsi: lpfc: Correct localport timeout duration error - CIFS: Respect SMB2 hdr preamble size in read responses - cifs: add credits from unmatched responses/messages - ALSA: hda/realtek - Apply ALC294 hp init also for S4 resume - ext4: disallow files with EXT4_JOURNAL_DATA_FL from EXT4_IOC_SWAP_BOOT - exec: load_script: Do not exec truncated interpreter path - [arm64,armhf] net: dsa: mv88e6xxx: Release lock while requesting IRQ - PCI/PME: Fix possible use-after-free on remove - [arm64,armhf] iio: adc: meson_saradc: Fix memory allocation order - [x86] iio: fix center temperature of bmc150-accel-core - perf map: Fix overlapped map handling - perf script brstackinsn: Fix recovery from LBR/binary mismatch - perf jevents: Fix period for Intel fixed counters - perf tools: Propagate get_cpuid() error - perf annotate: Propagate perf_env__arch() error - perf annotate: Fix the signedness of failure returns - perf annotate: Propagate the symbol__annotate() error return - perf annotate: Return appropriate error code for allocation failures - staging: rtl8188eu: fix null dereference when kzalloc fails - RDMA/hfi1: Prevent memory leak in sdma_init (CVE-2019-19065) - RDMA/iwcm: Fix a lock inversion issue - [x86] HID: hyperv: Use in-place iterator API in the channel callback - nfs: Fix nfsi->nrequests count error on nfs_inode_remove_request - [arm64] ftrace: Ensure synchronisation in PLT setup for Neoverse-N1 - [arm64] gpio: max77620: Use correct unit for debounce times - fs: cifs: mute -Wunused-const-variable message - [armhf] serial: mctrl_gpio: Check for NULL pointer - efi/cper: Fix endianness of PCIe class code - [x86] efi/x86: Do not clean dummy variable in kexec path - [x86] xen: Return from panic notifier - ocfs2: clear zero in unaligned direct IO - fs: ocfs2: fix possible null-pointer dereferences in ocfs2_xa_prepare_entry() - fs: ocfs2: fix a possible null-pointer dereference in ocfs2_write_end_nolock() - fs: ocfs2: fix a possible null-pointer dereference in ocfs2_info_scan_inode_alloc() - [arm64] armv8_deprecated: Checking return value for memory allocation - [x86] cpu: Add Comet Lake to the Intel CPU models header - sched/vtime: Fix guest/system mis-accounting on task switch - [x86] perf/x86/amd: Change/fix NMI latency mitigation to use a timestamp - drm/amdgpu: fix memory leak - iio: imu: adis16400: release allocated memory on failure (CVE-2019-19060) - [x86] virt: vbox: fix memory leak in hgcm_call_preprocess_linaddr (CVE-2019-19048) - NFSv4: Fix leak of clp->cl_acceptor string - tracing: Initialize iter->seq after zeroing in tracing_read_pipe() - ALSA: hda/realtek: Reduce the Headphone static noise on XPS 9350/9360 - iwlwifi: exclude GEO SAR support for 3168 - nbd: verify socket is supported during setup - USB: legousbtower: fix a signedness bug in tower_probe() - [x86] thunderbolt: Use 32-bit writes when writing ring producer/consumer - ath6kl: fix a NULL-ptr-deref bug in ath6kl_usb_alloc_urb_from_pipe() (CVE-2019-15098) - fuse: flush dirty data/metadata before non-truncate setattr - fuse: truncate pending writes on O_TRUNC - ALSA: bebob: Fix prototype of helper function to return negative value - ALSA: hda/realtek - Fix 2 front mics of codec 0x623 - ALSA: hda/realtek - Add support for ALC623 - UAS: Revert commit 3ae62a42090f ("UAS: fix alignment of scatter/gather segments") - USB: gadget: Reject endpoints with 0 maxpacket value - usb-storage: Revert commit 747668dbc061 ("usb-storage: Set virt_boundary_mask to avoid SG overflows") - USB: ldusb: fix ring-buffer locking - USB: ldusb: fix control-message timeout - usb: xhci: fix __le32/__le64 accessors in debugfs code - USB: serial: whiteheat: fix potential slab corruption - USB: serial: whiteheat: fix line-speed endianness - scsi: target: cxgbit: Fix cxgbit_fw4_ack() - HID: i2c-hid: add Trekstor Primebook C11B to descriptor override - HID: Fix assumption that devices have inputs - HID: fix error message in hid_open_report() - nl80211: fix validation of mesh path nexthop - [s390x] cmm: fix information leak in cmm_timeout_handler() - [s390x] idle: fix cpu idle time calculation - [arm64] Ensure VM_WRITE|VM_SHARED ptes are clean by default - rtlwifi: Fix potential overflow on P2P code (CVE-2019-17666) - [arm64] dmaengine: qcom: bam_dma: Fix resource leak - [armhf] dmaengine: cppi41: Fix cppi41_dma_prep_slave_sg() when idle - NFS: Fix an RCU lock leak in nfs4_refresh_delegation_stateid() - batman-adv: Avoid free/alloc race when handling OGM buffer - llc: fix sk_buff leak in llc_sap_state_process() - llc: fix sk_buff leak in llc_conn_service() - rxrpc: Fix call ref leak - rxrpc: rxrpc_peer needs to hold a ref on the rxrpc_local record - rxrpc: Fix trace-after-put looking at the put peer record - NFC: pn533: fix use-after-free and memleaks - bonding: fix potential NULL deref in bond_update_slave_arr - net: usb: sr9800: fix uninitialized local variable - sch_netem: fix rcu splat in netem_enqueue() - ALSA: timer: Simplify error path in snd_timer_open() - ALSA: timer: Fix mutex deadlock at releasing card - ALSA: usb-audio: DSD auto-detection for Playback Designs - ALSA: usb-audio: Update DSD support quirks for Oppo and Rotel - ALSA: usb-audio: Add DSD support for Gustard U16/X26 USB Interface - [ppc64el] powerpc/powernv: Fix CPU idle to be called with IRQs disabled - Revert "ALSA: hda: Flush interrupts on disabling" https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.83 - regulator: of: fix suspend-min/max-voltage parsing - [arm64] dts: allwinner: a64: pine64-plus: Add PHY regulator delay - [arm64] arm64: dts: allwinner: a64: sopine-baseboard: Add PHY regulator delay - [armhf] regulator: ti-abb: Fix timeout in ti_abb_wait_txdone/ti_abb_clear_all_txdone - [x86] ASoC: rt5682: add NULL handler to set_jack function - [armhf] regulator: pfuze100-regulator: Variable "val" in pfuze100_regulator_probe() could be uninitialized - [arm64,armhf] ASoc: rockchip: i2s: Fix RPM imbalance - [armel,armhf] mm: fix alignment handler faults under memory pressure - scsi: qla2xxx: fix a potential NULL pointer dereference - scsi: scsi_dh_alua: handle RTPG sense code correctly during state transitions - drm/amdgpu: fix potential VM faults - scsi: target: core: Do not overwrite CDB byte 1 - tracing: Fix "gfp_t" format for synthetic events - of: unittest: fix memory leak in unittest_data_add (CVE-2019-19049) - [arm64,armhf] irqchip/gic-v3-its: Use the exact ITSList for VMOVP - cifs: Fix cifsInodeInfo lock_sem deadlock when reconnect occurs - nbd: protect cmd->status with cmd->lock - nbd: handle racing with error'ed out commands - cxgb4: fix panic when attaching to ULD fail - dccp: do not leak jiffies on the wire - erspan: fix the tun_info options_len check for erspan - inet: stop leaking jiffies on the wire - net: annotate accesses to sk->sk_incoming_cpu - net: annotate lockless accesses to sk->sk_napi_id - [armhf] net: dsa: bcm_sf2: Fix IMP setup for port different than 8 - net: fix sk_page_frag() recursion from memory reclaim - [arm64] net: hisilicon: Fix ping latency when deal with high throughput - net/mlx4_core: Dynamically set guaranteed amount of counters per VF - netns: fix GFP flags in rtnl_net_notifyid() - net: usb: lan78xx: Disable interrupts before calling generic_handle_irq() - net: Zeroing the structure ethtool_wolinfo in ethtool_get_wol() - udp: fix data-race in udp_set_dev_scratch() - vxlan: check tun_info options_len properly - net: add skb_queue_empty_lockless() - udp: use skb_queue_empty_lockless() - net: use skb_queue_empty_lockless() in poll() handlers - net: use skb_queue_empty_lockless() in busy poll contexts - net: add READ_ONCE() annotation in __skb_wait_for_more_packets() - ipv4: fix route update on metric change. - net/mlx5e: Fix handling of compressed CQEs in case of low NAPI budget - r8169: fix wrong PHY ID issue with RTL8168dp - net/mlx5e: Fix ethtool self test: link speed - [armhf] net: dsa: b53: Do not clear existing mirrored port mask - [armhf] net: phy: bcm7xxx: define soft_reset for 40nm EPHY - net: usb: lan78xx: Connect PHY before registering MAC - [arm64,armhf] net: dsa: fix switch tree list - r8152: add device id for Lenovo ThinkPad USB-C Dock Gen 2 - net/flow_dissector: switch to siphash - wireless: Skip directory when generating certificates - [x86] platform/x86: pmc_atom: Add Siemens SIMATIC IPC227E to critclk_systems DMI table - [ppc64el] powerpc/mm: Fixup tlbie vs mtpidr/mtlpidr ordering issue on POWER9 - usb: gadget: udc: core: Fix segfault if udc_bind_to_driver() for pending driver fails https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.84 - bonding: fix state transition issue in link monitoring - CDC-NCM: handle incomplete transfer of MTU - ipv4: Fix table id reference in fib_sync_down_addr - [mips*] net: ethernet: octeon_mgmt: Account for second possible VLAN header - net: fix data-race in neigh_event_send() - net: usb: qmi_wwan: add support for DW5821e with eSIM support - nfc: netlink: fix double device reference drop - qede: fix NULL pointer deref in __qede_remove() - ipv6: fixes rt6_probe() and fib6_nh->last_probe init - [arm64] net: hns: Fix the stray netpoll locks causing deadlock in NAPI path - ALSA: timer: Fix incorrectly assigned timer instance - ALSA: bebob: fix to detect configured source of sampling clock for Focusrite Saffire Pro i/o series - ALSA: hda/ca0132 - Fix possible workqueue stall - mm: memcontrol: fix network errors from failing __GFP_ATOMIC charges - mm, meminit: recalculate pcpu batch and high limits after init completes - mm: thp: handle page cache THP correctly in PageTransCompoundMap - mm, vmstat: hide /proc/pagetypeinfo from normal users - dump_stack: avoid the livelock of the dump_lock - perf tools: Fix time sorting - drm/radeon: fix si_enable_smc_cac() failed issue - HID: wacom: generic: Treat serial number and related fields as unsigned - [arm64] Do not mask out PTE_RDONLY in pte_same() - ceph: fix use-after-free in __ceph_remove_cap() - ceph: add missing check in d_revalidate snapdir handling - [armhf] sunxi: Fix CPU powerdown on A83T - netfilter: nf_tables: Align nft_expr private data to 64-bit - netfilter: ipset: Fix an error code in ip_set_sockfn_get() - [x86] intel_th: pci: Add Comet Lake PCH support - [x86] intel_th: pci: Add Jasper Lake PCH support - [x86] apic/32: Avoid bogus LDR warnings - SMB3: Fix persistent handles reconnect - can: usb_8dev: fix use-after-free on disconnect - [armhf] can: flexcan: disable completely the ECC mechanism - can: peak_usb: fix a potential out-of-sync while decoding packets - can: rx-offload: can_rx_offload_queue_sorted(): fix error handling, avoid skb mem leak - can: gs_usb: gs_can_open(): prevent memory leak (CVE-2019-19052) - can: dev: add missing of_node_put() after calling of_get_child_by_name() - can: mcba_usb: fix use-after-free on disconnect - can: peak_usb: fix slab info leak - configfs: stash the data we need into configfs_buffer at open time - configfs_register_group() shouldn't be (and isn't) called in rmdirable parts - configfs: new object reprsenting tree fragments - configfs: provide exclusion between IO and removals - configfs: fix a deadlock in configfs_symlink() - ALSA: usb-audio: More validations of descriptor units - ALSA: usb-audio: Simplify parse_audio_unit() - ALSA: usb-audio: Unify the release of usb_mixer_elem_info objects - ALSA: usb-audio: Remove superfluous bLength checks - ALSA: usb-audio: Clean up check_input_term() - ALSA: usb-audio: Fix possible NULL dereference at create_yamaha_midi_quirk() - ALSA: usb-audio: remove some dead code - ALSA: usb-audio: Fix copy&paste error in the validator - sched/fair: Fix low cpu usage with high throttling by removing expiration of cpu-local slices - sched/fair: Fix -Wunused-but-set-variable warnings - usbip: Fix vhci_urb_enqueue() URB null transfer buffer error path - usbip: Implement SG support to vhci-hcd and stub driver - [arm64,armhf] PCI: tegra: Enable Relaxed Ordering only for Tegra20 & Tegra30 - [amd64] HID: intel-ish-hid: fix wrong error handling in ishtp_cl_alloc_tx_ring() - RDMA/mlx5: Clear old rate limit when closing QP - iw_cxgb4: fix ECN check on the passive accept - RDMA/qedr: Fix reported firmware version - net/mlx5e: TX, Fix consumer index of error cqe dump - net/mlx5: prevent memory leak in mlx5_fpga_conn_create_cq (CVE-2019-19045) - scsi: qla2xxx: fixup incorrect usage of host_byte - RDMA/uverbs: Prevent potential underflow - net: openvswitch: free vport unless register_netdevice() succeeds - scsi: lpfc: Honor module parameter lpfc_use_adisc - scsi: qla2xxx: Initialized mailbox to prevent driver load failure - netfilter: nf_flow_table: set timeout before insertion into hashes - ipvs: don't ignore errors in case refcounting ip_vs module fails - ipvs: move old_secure_tcp into struct netns_ipvs - bonding: fix unexpected IFF_BONDING bit unset - macsec: fix refcnt leak in module exit routine - usb: gadget: composite: Fix possible double free memory bug - [arm64] usb: dwc3: pci: prevent memory leak in dwc3_pci_probe (CVE-2019-18813) - usb: gadget: configfs: fix concurrent issue between composite APIs - [arm64,armhf] usb: dwc3: remove the call trace of USBx_GFLADJ - [x86] perf/x86/amd/ibs: Fix reading of the IBS OpData register and thus precise RIP validity - [x86] perf/x86/amd/ibs: Handle erratum #420 only on the affected CPU family (10h) - [x86] perf/x86/uncore: Fix event group support - USB: Skip endpoints with 0 maxpacket length - USB: ldusb: use unsigned size format specifiers - usbip: tools: Fix read_usb_vudc_device() error path handling - RDMA/iw_cxgb4: Avoid freeing skb twice in arp failure case - [arm64] RDMA/hns: Prevent memory leaks of eq->buf_list - scsi: qla2xxx: stop timer in shutdown path - nvme-multipath: fix possible io hang after ctrl reconnect - [amd64] fjes: Handle workqueue allocation failure - [arm64] net: hisilicon: Fix "Trying to free already-free IRQ" - drm/amdgpu: If amdgpu_ib_schedule fails return back the error. - [x86] hv_netvsc: Fix error handling in netvsc_attach() - [arm64,armhf] usb: dwc3: gadget: fix race when disabling ep with cancelled xfers - NFSv4: Don't allow a cached open with a revoked delegation - igb: Fix constant media auto sense switching when no cable is connected - e1000: fix memory leaks - [x86] pinctrl: intel: Avoid potential glitches if pin is in GPIO mode - ocfs2: protect extent tree in ocfs2_prepare_inode_for_write() - [x86] pinctrl: cherryview: Fix irq_valid_mask calculation - blkcg: make blkcg_print_stat() print stats only for online blkgs - [x86] iio: imu: mpu6050: Add support for the ICM 20602 IMU - [x86] iio: imu: inv_mpu6050: fix no data on MPU6050 - mm/filemap.c: don't initiate writeback if mapping has no dirty pages - cgroup,writeback: don't switch wbs immediately on dead wbs if the memcg is dead - usbip: Fix free of unallocated memory in vhci tx - netfilter: ipset: Copy the right MAC address in hash:ip,mac IPv6 sets - net: prevent load/store tearing on sk->sk_stamp - [x86] iio: imu: mpu6050: Fix FIFO layout for ICM20602 - vsock/virtio: fix sock refcnt holding during the shutdown - x86/cpu: Add Tremont to the cpu vulnerability whitelist https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.85 - scsi: core: Handle drivers which set sg_tablesize to zero - ax88172a: fix information leak on short answers - ipmr: Fix skb headroom in ipmr_get_route(). - net: gemini: add missed free_netdev - net: usb: qmi_wwan: add support for Foxconn T77W968 LTE modules - slip: Fix memory leak in slip_open error path - ALSA: usb-audio: Fix missing error check at mixer resolution test - ALSA: usb-audio: not submit urb for stopped endpoint - ALSA: usb-audio: Fix incorrect NULL check in create_yamaha_midi_quirk() - ALSA: usb-audio: Fix incorrect size check for processing/extension units - Btrfs: fix log context list corruption after rename exchange operation - Input: ff-memless - kill timer in destroy() - Input: synaptics-rmi4 - fix video buffer size - Input: synaptics-rmi4 - disable the relative position IRQ in the F12 driver - Input: synaptics-rmi4 - do not consume more data than we have (F11, F12) - Input: synaptics-rmi4 - clear IRQ enables for F54 - Input: synaptics-rmi4 - destroy F54 poller workqueue when removing - IB/hfi1: Ensure full Gen3 speed in a Gen4 system - IB/hfi1: Use a common pad buffer for 9B and 16B packets - i2c: acpi: Force bus speed to 400KHz if a Silead touchscreen is present - ecryptfs_lookup_interpose(): lower_dentry->d_inode is not stable - ecryptfs_lookup_interpose(): lower_dentry->d_parent is not stable either - [armhf] net: ethernet: dwmac-sun8i: Use the correct function in exit path - [x86] iommu/vt-d: Fix QI_DEV_IOTLB_PFSID and QI_DEV_EIOTLB_PFSID macros - mm: mempolicy: fix the wrong return value and potential pages leak of mbind - mm: memcg: switch to css_tryget() in get_mem_cgroup_from_mm() - mm: hugetlb: switch to css_tryget() in hugetlb_cgroup_charge_cgroup() - iio: adc: max9611: explicitly cast gain_selectors - tee: optee: take DT status property into account - ath10k: fix kernel panic by moving pci flush after napi_disable - clk: sunxi-ng: h6: fix PWM gate/reset offset - soundwire: Initialize completion for defer messages - [x86] soundwire: intel: Fix uninitialized adev deref - [arm64] dts: allwinner: a64: Orange Pi Win: Fix SD card node - [arm64] dts: allwinner: a64: Olinuxino: fix DRAM voltage - [arm64] dts: allwinner: a64: NanoPi-A64: Fix DCDC1 voltage - ALSA: pcm: signedness bug in snd_pcm_plug_alloc() - [arm64] soc/tegra: pmc: Fix pad voltage configuration for Tegra186 - [arm64] dts: tegra210-p2180: Correct sdmmc4 vqmmc-supply - y2038: make do_gettimeofday() and get_seconds() inline - rtc: sysfs: fix NULL check in rtc_add_groups() - remoteproc/davinci: Use %zx for formating size_t - extcon: cht-wc: Return from default case to avoid warnings - cfg80211: Avoid regulatory restore when COUNTRY_IE_IGNORE is set - ALSA: seq: Do error checks at creating system ports - ath10k: skip resetting rx filter for WCN3990 - ath9k: fix tx99 with monitor mode interface - wil6210: drop Rx multicast packets that are looped-back to STA - wil6210: set edma variables only for Talyn-MB devices - wil6210: prevent usage of tx ring 0 for eDMA - wil6210: fix invalid memory access for rx_buff_mgmt debugfs - ath10k: limit available channels via DT ieee80211-freq-limit - ice: Update request resource command to latest specification - ice: Prevent control queue operations during reset - gfs2: Don't set GFS2_RDF_UPTODATE when the lvb is updated - ice: Fix and update driver version string - ASoC: dapm: Don't fail creating new DAPM control on NULL pinctrl - ASoC: dpcm: Properly initialise hw->rate_max - ASoC: meson: axg-fifo: report interrupt request failure - ASoC: AMD: Change MCLK to 48Mhz - pinctrl: ingenic: Probe driver at subsys_initcall - [armhf] dts: exynos: Use i2c-gpio for HDMI-DDC on Arndale - [armhf] dts: exynos: Fix HDMI-HPD line handling on Arndale - [armhf] dts: exynos: Fix sound in Snow-rev5 Chromebook - liquidio: fix race condition in instruction completion processing - [arm64] dts: stratix10: i2c clock running out of spec - [armhf] dts: exynos: Fix regulators configuration on Peach Pi/Pit Chromebooks - i40evf: Validate the number of queues a PF sends - i40e: use correct length for strncpy - i40evf: set IFF_UNICAST_FLT flag for the VF - i40e: Check and correct speed values for link on open - i40evf: Don't enable vlan stripping when rx offload is turned on - i40e: hold the rtnl lock on clearing interrupt scheme - i40evf: cancel workqueue sync for adminq when a VF is removed - i40e: Prevent deleting MAC address from VF when set by PF - IB/rxe: avoid back-to-back retries - IB/rxe: fixes for rdma read retry - iwlwifi: drop packets with bad status in CD - iwlwifi: don't WARN on trying to dump dead firmware - iwlwifi: mvm: avoid sending too many BARs - media: vicodec: fix out-of-range values when decoding - media: i2c: Fix pm_runtime_get_if_in_use() usage in sensor drivers - media: ov772x: Disable clk on error path - rtl8187: Fix warning generated when strncpy() destination length matches the sixe argument - mwifiex: do no submit URB in suspended state - mwifex: free rx_cmd skb in suspended state - brcmfmac: fix wrong strnchr usage - mt76: Fix comparisons with invalid hardware key index - soc: imx: gpc: fix PDN delay - ASoC: rsnd: ssi: Fix issue in dma data address assignment - net: hns3: Fix for multicast failure - net: hns3: Fix error of checking used vlan id - net: hns3: Fix for loopback selftest failed problem - net: hns3: Change the dst mac addr of loopback packet - net/mlx5: Fix atomic_mode enum values - net: phy: mscc: read 'vsc8531,vddmac' as an u32 - net: phy: mscc: read 'vsc8531, edge-slowdown' as an u32 - [armhf] dts: meson8: fix the clock controller register size - [armhf] dts: meson8b: fix the clock controller register size - mtd: rawnand: marvell: use regmap_update_bits() for syscon access - mtd: rawnand: fsl_ifc: check result of SRAM initialization - mtd: rawnand: fsl_ifc: fixup SRAM init for newer ctrl versions - mtd: rawnand: qcom: don't include dma-direct.h - IB/mlx5: Change TX affinity assignment in RoCE LAG mode - qxl: fix null-pointer crash during suspend - mac80211: fix saving a few HE values - cfg80211: validate wmm rule when setting - f2fs: avoid wrong decrypted data from disk - net: lan78xx: Bail out if lan78xx_get_endpoints fails - rtnetlink: move type calculation out of loop - ASoC: sgtl5000: avoid division by zero if lo_vag is zero - ath10k: avoid possible memory access violation - [armhf] dts: exynos: Disable pull control for S5M8767 PMIC - ath10k: wmi: disable softirq's while calling ieee80211_rx - i2c: mediatek: Use DMA safe buffers for i2c transactions - IB/mlx5: Don't hold spin lock while checking device state - IB/ipoib: Ensure that MTU isn't less than minimum permitted - RDMA/core: Rate limit MAD error messages - RDMA/core: Follow correct unregister order between sysfs and cgroup - udf: Fix crash during mount - ASoC: dapm: Avoid uninitialised variable warning - [x86] ASoC: Intel: hdac_hdmi: Limit sampling rates at dai creation - ata: Disable AHCI ALPM feature for Ampere Computing eMAG SATA - [powerpc] make PowerMac cache node search conditional on CONFIG_PPC_PMAC - [armhf] dts: omap3-gta04: give spi_lcd node a label so that we can overwrite in other DTS files - [armhf] dts: omap3-gta04: fixes for tvout / venc - [armhf] dts: omap3-gta04: tvout: enable as display1 alias - [armhf] dts: omap3-gta04: fix touchscreen tsc2007 - [armhf] dts: omap3-gta04: make NAND partitions compatible with recent U-Boot - [armhf] dts: omap3-gta04: keep vpll2 always on - f2fs: submit bio after shutdown - failover: Fix error return code in net_failover_create - sched/debug: Explicitly cast sched_feat() to bool - sched/debug: Use symbolic names for task state constants - firmware: arm_scmi: use strlcpy to ensure NULL-terminated strings - [arm64] dts: rockchip: Fix VCC5V0_HOST_EN on rk3399-sapphire - [armhf] dts: exynos: Disable pull control for PMIC IRQ line on Artik5 board - usb: mtu3: disable vbus rise/fall interrupts of ltssm - EDAC, sb_edac: Return early on ADDRV bit and address type test - [armhf] rtc: pl030: fix possible race condition - ath9k: add back support for using active monitor interfaces for tx99 - dmaengine: at_xdmac: remove a stray bottom half unlock - RDMA/hns: Fix an error code in hns_roce_v2_init_eq_table() - IB/hfi1: Missing return value in error path for user sdma - signal: Always ignore SIGKILL and SIGSTOP sent to the global init - signal: Properly deliver SIGILL from uprobes - signal: Properly deliver SIGSEGV from x86 uprobes - f2fs: fix memory leak of write_io in fill_super() - f2fs: fix memory leak of percpu counter in fill_super() - f2fs: fix setattr project check upon fssetxattr ioctl - scsi: qla2xxx: Use correct qpair for ABTS/CMD - scsi: qla2xxx: Fix iIDMA error - scsi: qla2xxx: Defer chip reset until target mode is enabled - scsi: qla2xxx: Terminate Plogi/PRLI if WWN is 0 - scsi: qla2xxx: Fix deadlock between ATIO and HW lock - scsi: qla2xxx: Increase abort timeout value - scsi: qla2xxx: Check for Register disconnect - scsi: qla2xxx: Fix port speed display on chip reset - scsi: qla2xxx: Fix dropped srb resource. - scsi: qla2xxx: Fix duplicate switch's Nport ID entries - scsi: lpfc: Fix GFT_ID and PRLI logic for RSCN - scsi: lpfc: Correct invalid EQ doorbell write on if_type=6 - scsi: lpfc: Fix errors in log messages. - scsi: sym53c8xx: fix NULL pointer dereference panic in sym_int_sir() - [armhf] imx6: register pm_power_off handler if "fsl,pmic-stby-poweroff" is set - scsi: pm80xx: Corrected dma_unmap_sg() parameter - scsi: pm80xx: Fixed system hang issue during kexec boot - kprobes: Don't call BUG_ON() if there is a kprobe in use on free list - net: aquantia: fix hw_atl_utils_fw_upload_dwords - Drivers: hv: vmbus: Fix synic per-cpu context initialization - nvmem: core: return error code instead of NULL from nvmem_device_get - media: dt-bindings: adv748x: Fix decimal unit addresses - [x86] ALSA: hda: Fix implicit definition of pci_iomap() on SH - media: fix: media: pci: meye: validate offset to avoid arbitrary access - media: dvb: fix compat ioctl translation - net: bcmgenet: Fix speed selection for reverse MII - [arm64] dts: meson: libretech: update board model - [arm64] dts: meson-axg: use the proper compatible for ethmac - [x86] ALSA: intel8x0m: Register irq handler after register initializations - [arm64] dts: renesas: salvator-common: adv748x: Override secondary addresses - [arm64] dts: renesas: r8a77965: Attach the SYS-DMAC to the IPMMU - [arm64] dts: renesas: r8a77965: Fix HS-USB compatible - [arm64] dts: renesas: r8a77965: Fix clock/reset for usb2_phy1 - pinctrl: at91-pio4: fix has_config check in atmel_pctl_dt_subnode_to_map() - llc: avoid blocking in llc_sap_close() - [armhf] dts: qcom: ipq4019: fix cpu0's qcom,saw2 reg value - [arm64] soc: qcom: wcnss_ctrl: Avoid string overflow - [arm64] dts: broadcom: Fix I2C and SPI bus warnings - [armhf] dts: bcm: Fix SPI bus warnings - [armhf] dts: aspeed: Fix I2C bus warnings - [ppc64el,powerpc*] powerpc/vdso: Correct call frame information - [armhf] dts: socfpga: Fix I2C bus unit-address error - [armhf] dts: sunxi: Fix I2C bus warnings - [armhf] dts: sun9i: Fix I2C bus warnings - android: binder: no outgoing transaction when thread todo has transaction - cxgb4: Fix endianness issue in t4_fwcache() - [arm64] fix for bad_mode() handler to always result in panic - block, bfq: inject other-queue I/O into seeky idle queues on NCQ flash - blok, bfq: do not plug I/O if all queues are weight-raised - [arm64] dts: meson: Fix erroneous SPI bus warnings - power: supply: ab8500_fg: silence uninitialized variable warnings - component: fix loop condition to call unbind() if bind() fails - kernfs: Fix range checks in kernfs_get_target_path - ip_gre: fix parsing gre header in ipgre_err - scsi: ufshcd: Fix NULL pointer dereference for in ufshcd_init - [armhf] dts: rockchip: Fix erroneous SPI bus dtc warnings on rk3036 - [arm64] dts: rockchip: Fix I2C bus unit-address error on rk3399-puma-haikou - [x86] ACPI / LPSS: Exclude I2C busses shared with PUNIT from pmc_atom_d3_mask - netfilter: nf_tables: avoid BUG_ON usage - ath9k: Fix a locking bug in ath9k_add_interface() - [s390x] qeth: uninstall IRQ handler on device removal - [s390x] qeth: invoke softirqs after napi_schedule() - media: vsp1: Fix vsp1_regs.h license header - media: vsp1: Fix YCbCr planar formats pitch calculation - media: ov2680: don't register the v4l2 subdevice before checking chip ID - PCI/ACPI: Correct error message for ASPM disabling - net: socionext: Fix two sleep-in-atomic-context bugs in ave_rxfifo_reset() - PCI: mediatek: Fix unchecked return value - [armhf] dts: xilinx: Fix I2C and SPI bus warnings - serial: uartps: Fix suspend functionality - serial: samsung: Enable baud clock for UART reset procedure in resume - serial: mxs-auart: Fix potential infinite loop - tty: serial: qcom_geni_serial: Fix serial when not used as console - [arm64] dts: ti: k3-am65: Change #address-cells and #size-cells of interconnect to 2 - samples/bpf: fix a compilation failure - spi: mediatek: Don't modify spi_transfer when transfer. - ASoC: rt5682: Fix the boost volume at the begining of playback - ipmi_si_pci: fix NULL device in ipmi_si error message - ipmi_si: fix potential integer overflow on large shift - ipmi:dmi: Ignore IPMI SMBIOS entries with a zero base address - ipmi: fix return value of ipmi_set_my_LUN - net: hns3: fix return type of ndo_start_xmit function - net: cavium: fix return type of ndo_start_xmit function - net: ibm: fix return type of ndo_start_xmit function - [ppc64el,powerpc*] iommu: Avoid derefence before pointer check - [ppc64el,powerpc*] selftests: Do not fail with reschedule - [ppc64el,powerpc64] hash: Fix stab_rr off by one initialization - [ppc64el,powerpc64] pseries/memory-hotplug: Only update DT once per memory DLPAR request - [ppc64el,powerpc64] pseries: Disable CPU hotplug across migrations - [ppc64el,powerpc*] Fix duplicate const clang warning in user access code - RDMA/i40iw: Fix incorrect iterator type - OPP: Protect dev_list with opp_table lock - of/unittest: Fix I2C bus unit-address error - libfdt: Ensure INT_MAX is defined in libfdt_env.h - power: supply: twl4030_charger: fix charging current out-of-bounds - power: supply: twl4030_charger: disable eoc interrupt on linear charge - net: mvpp2: fix the number of queues per cpu for PPv2.2 - net: marvell: fix return type of ndo_start_xmit function - net: toshiba: fix return type of ndo_start_xmit function - net: xilinx: fix return type of ndo_start_xmit function - net: broadcom: fix return type of ndo_start_xmit function - net: amd: fix return type of ndo_start_xmit function - net: sun: fix return type of ndo_start_xmit function - net: hns3: Fix for setting speed for phy failed problem - net: hns3: Fix cmdq registers initialization issue for vf - net: hns3: Clear client pointer when initialize client failed or unintialize finished - net: hns3: Fix client initialize state issue when roce client initialize failed - net: hns3: Fix parameter type for q_id in hclge_tm_q_to_qs_map_cfg() - nfp: provide a better warning when ring allocation fails - usb: chipidea: imx: enable OTG overcurrent in case USB subsystem is already started - usb: chipidea: Fix otg event handler - usb: usbtmc: Fix ioctl USBTMC_IOCTL_ABORT_BULK_OUT - [s390x] zcrypt: enable AP bus scan without a valid default domain - [s390x] vdso: avoid 64-bit vdso mapping for compat tasks - [s390x] vdso: correct CFI annotations of vDSO functions - brcmfmac: increase buffer for obtaining firmware capabilities - brcmsmac: Use kvmalloc() for ucode allocations - mlxsw: spectrum: Init shaper for TCs 8..15 - PCI: portdrv: Initialize service drivers directly - [armhf] dts: am335x-evm: fix number of cpsw - [armhf] dts: ti: Fix SPI and I2C bus warnings - f2fs: avoid infinite loop in f2fs_alloc_nid - f2fs: fix to recover inode's uid/gid during POR - [armhf] dts: ux500: Correct SCU unit address - [armhf] dts: ux500: Fix LCDA clock line muxing - [armhf] dts: ste: Fix SPI controller node names - spi: pic32: Use proper enum in dmaengine_prep_slave_rg - crypto: chacha20 - Fix chacha20_block() keystream alignment (again) - cpufeature: avoid warning when compiling with clang - [armhf] crypto: crc32 - avoid warning when compiling with Clang - [armel] dts: marvell: Fix SPI and I2C bus warnings - [x86] mce-inject: Reset injection struct after injection - [armhf,arm64] dts: clearfog: fix sdhci supply property name - bnx2x: Ignore bandwidth attention in single function mode - PCI/AER: Take reference on error devices - PCI/AER: Don't read upstream ports below fatal errors - PCI/ERR: Use slot reset if available - samples/bpf: fix compilation failure - net: phy: mdio-bcm-unimac: Allow configuring MDIO clock divider - net: micrel: fix return type of ndo_start_xmit function - net: freescale: fix return type of ndo_start_xmit function - [x86] CPU: Use correct macros for Cyrix calls - [x86] CPU: Change query logic so CPUID is enabled before testing - EDAC: Correct DIMM capacity unit symbol - [mips*] kexec: Relax memory restriction - [arm64] dts: rockchip: Fix microSD in rk3399 sapphire board - mlxsw: Make MLXSW_SP1_FWREV_MINOR a hard requirement - media: imx: work around false-positive warning, again - media: pci: ivtv: Fix a sleep-in-atomic-context bug in ivtv_yuv_init() - media: au0828: Fix incorrect error messages - media: davinci: Fix implicit enum conversion warning - [armhf] dts: rockchip: explicitly set vcc_sd0 pin to gpio on rk3188-radxarock - usb: gadget: uvc: configfs: Drop leaked references to config items - usb: gadget: uvc: configfs: Prevent format changes after linking header - usb: gadget: uvc: configfs: Sort frame intervals upon writing - [armhf] dts: exynos: Correct audio subsystem parent clock on Peach Chromebooks - i2c: aspeed: fix invalid clock parameters for very large divisors - gpiolib: Fix gpio_direction_* for single direction GPIOs - phy: brcm-sata: allow PHY_BRCM_SATA driver to be built for DSL SoCs - phy: renesas: rcar-gen3-usb2: fix vbus_ctrl for role sysfs - phy: phy-twl4030-usb: fix denied runtime access - [armhf] dts: imx6ull: update vdd_soc voltage for 900MHz operating point - usb: gadget: uvc: Factor out video USB request queueing - usb: gadget: uvc: Only halt video streaming endpoint in bulk mode - coresight: Use ERR_CAST instead of ERR_PTR - coresight: Fix handling of sinks - coresight: perf: Fix per cpu path management - coresight: perf: Disable trace path upon source error - coresight: tmc-etr: Handle driver mode specific ETR buffers - coresight: etm4x: Configure EL2 exception level when kernel is running in HYP - coresight: tmc: Fix byte-address alignment for RRP - coresight: dynamic-replicator: Handle multiple connections - slimbus: ngd: register ngd driver only once. - slimbus: ngd: return proper error code instead of zero - silmbus: ngd: register controller after power up. - misc: kgdbts: Fix restrict error - misc: genwqe: should return proper error value. - vmbus: keep pointer to ring buffer page - vfio/pci: Fix potential memory leak in vfio_msi_cap_len - vfio/pci: Mask buggy SR-IOV VF INTx support - iw_cxgb4: Use proper enumerated type in c4iw_bar2_addrs - scsi: libsas: always unregister the old device if going to discover new - f2fs: fix remount problem of option io_bits - phy: lantiq: Fix compile warning - [arm64] dts: fsl: Fix I2C and SPI bus warnings - [armhf] dts: imx51-zii-rdu1: Fix the rtc compatible string - [arm64] tegra: I2C on Tegra194 is not compatible with Tegra114 - [armhf] dts: tegra30: fix xcvr-setup-use-fuses - [armhf] dts: tegra20: restore address order - [armhf] tegra: apalis_t30: fix mmc1 cmd pull-up - [armhf] tegra: apalis_t30: fix mcp2515 can controller interrupt polarity - [armhf] tegra: colibri_t30: fix mcp2515 can controller interrupt polarity - [armhf] dts: paz00: fix wakeup gpio keycode - net: smsc: fix return type of ndo_start_xmit function - net: faraday: fix return type of ndo_start_xmit function - PCI/ERR: Run error recovery callbacks for all affected devices - f2fs: update i_size after DIO completion - f2fs: fix to recover inode's project id during POR - f2fs: mark inode dirty explicitly in recover_inode() - RDMA: Fix dependencies for rdma_user_mmap_io - EDAC: Raise the maximum number of memory controllers - firmware: dell_rbu: Make payload memory uncachable - Bluetooth: hci_serdev: clear HCI_UART_PROTO_READY to avoid closing proto races - Bluetooth: L2CAP: Detect if remote is not able to use the whole MPS - Bluetooth: btrsi: fix bt tx timeout issue - [x86] hyperv: Suppress "PCI: Fatal: No config space access function found" - crypto: s5p-sss: Fix race in error handling - crypto: s5p-sss: Fix Fix argument list alignment - crypto: fix a memory leak in rsa-kcs1pad's encryption mode - iwlwifi: dbg: don't crash if the firmware crashes in the middle of a debug dump - iwlwifi: fix non_shared_ant for 22000 devices - iwlwifi: pcie: read correct prph address for newer devices - iwlwifi: api: annotate compressed BA notif array sizes - iwlwifi: pcie: gen2: build A-MSDU only for GSO - iwlwifi: pcie: fit reclaim msg to MAX_MSG_LEN - iwlwifi: mvm: use correct FIFO length - iwlwifi: mvm: Allow TKIP for AP mode - scsi: NCR5380: Clear all unissued commands on host reset - scsi: NCR5380: Have NCR5380_select() return a bool - scsi: NCR5380: Withhold disconnect privilege for REQUEST SENSE - scsi: NCR5380: Use DRIVER_SENSE to indicate valid sense data - scsi: NCR5380: Check for invalid reselection target - scsi: NCR5380: Don't clear busy flag when abort fails - scsi: NCR5380: Don't call dsprintk() following reselection interrupt - scsi: NCR5380: Handle BUS FREE during reselection - scsi: NCR5380: Check for bus reset - [arm64] dts: amd: Fix SPI bus warnings - [arm64] dts: lg: Fix SPI controller node names - rtc: isl1208: avoid possible sysfs race - rtc: tx4939: fixup nvmem name and register size - rtc: armada38x: fix possible race condition - netfilter: masquerade: don't flush all conntracks if only one address deleted on device - usb: xhci-mtk: fix ISOC error when interval is zero - usb: usbtmc: uninitialized symbol 'actual' in usbtmc_ioctl_clear - fuse: use READ_ONCE on congestion_threshold and max_background - IB/iser: Fix possible NULL deref at iser_inv_desc() - media: ov2680: fix null dereference at power on - [s390x] vdso: correct vdso mapping for compat tasks - net: phy: mdio-bcm-unimac: mark PM functions as __maybe_unused - memfd: Use radix_tree_deref_slot_protected to avoid the warning. - slcan: Fix memory leak in error path https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.86 - spi: mediatek: use correct mata->xfer_len when in fifo transfer - i2c: mediatek: modify threshold passed to i2c_get_dma_safe_msg_buf() - tee: optee: add missing of_node_put after of_device_is_available - Revert "OPP: Protect dev_list with opp_table lock" - net: cdc_ncm: Signedness bug in cdc_ncm_set_dgram_size() - idr: Fix idr_get_next race with idr_remove - mm/memory_hotplug: don't access uninitialized memmaps in shrink_pgdat_span() - mm/memory_hotplug: fix updating the node span - [arm64] uaccess: Ensure PAN is re-enabled after unhandled uaccess fault - fbdev: Ditch fb_edid_add_monspecs - [i386] bpf, x32: Fix bug for BPF_ALU64 | BPF_NEG - [i386] bpf, x32: Fix bug with ALU64 {LSH, RSH, ARSH} BPF_X shift by 0 - [i386] bpf, x32: Fix bug with ALU64 {LSH, RSH, ARSH} BPF_K shift by 0 - [i386] bpf, x32: Fix bug for BPF_JMP | {BPF_JSGT, BPF_JSLE, BPF_JSLT, BPF_JSGE} - net: ovs: fix return type of ndo_start_xmit function - net: xen-netback: fix return type of ndo_start_xmit function - [armhf] dts: dra7: Enable workaround for errata i870 in PCIe host mode - [armhf] dts: omap5: enable OTG role for DWC3 controller - [arm64] net: hns3: Fix for netdev not up problem when setting mtu - [arm64] net: hns3: Fix loss of coal configuration while doing reset - f2fs: return correct errno in f2fs_gc - [armhf] dts: sun8i: h3-h5: ir register size should be the whole memory block - [armhf] dts: sun8i: h3: bpi-m2-plus: Fix address for external RGMII Ethernet PHY - tcp: up initial rmem to 128KB and SYN rwin to around 64KB - SUNRPC: Fix priority queue fairness - ACPI / LPSS: Make acpi_lpss_find_device() also find PCI devices - ACPI / LPSS: Resume BYT/CHT I2C controllers from resume_noirq - f2fs: keep lazytime on remount - IB/hfi1: Error path MAD response size is incorrect - IB/hfi1: Ensure ucast_dlid access doesnt exceed bounds - mt76x2: fix tx power configuration for VHT mcs 9 - mt76x2: disable WLAN core before probe - mt76: fix handling ps-poll frames - [arm64,armhf] iommu/io-pgtable-arm: Fix race handling in split_blk_unmap() - [arm64,armhf] iommu/arm-smmu-v3: Fix unexpected CMD_SYNC timeout - [arm64,armhf] kvm: Fix stage2_flush_memslot for 4 level page table - [arm64] numa: Report correct memblock range for the dummy node - ath10k: fix vdev-start timeout on error - rtlwifi: btcoex: Use proper enumerated types for Wi-Fi only interface - ata: ahci_brcm: Allow using driver or DSL SoCs - PM / devfreq: Fix devfreq_add_device() when drivers are built as modules. - PM / devfreq: Fix handling of min/max_freq == 0 - PM / devfreq: stopping the governor before device_unregister() - ath9k: fix reporting calculated new FFT upper max - selftests/tls: Fix recv(MSG_PEEK) & splice() test cases - usb: gadget: udc: fotg210-udc: Fix a sleep-in-atomic-context bug in fotg210_get_status() - usb: dwc3: gadget: Check ENBLSLPM before sending ep command - nl80211: Fix a GET_KEY reply attribute - [arm64,armhf] irqchip/irq-mvebu-icu: Fix wrong private data retrieval - watchdog: core: fix null pointer dereference when releasing cdev - watchdog: w83627hf_wdt: Support NCT6796D, NCT6797D, NCT6798D - [ppc64el,powerpc64] Inform the userspace about TCE update failures - printk: Do not miss new messages when replaying the log - printk: CON_PRINTBUFFER console registration is a bit racy - dmaengine: ep93xx: Return proper enum in ep93xx_dma_chan_direction - dmaengine: timb_dma: Use proper enum in td_prep_slave_sg - [x86] ALSA: hda: Fix mismatch for register mask and value in ext controller. - ext4: fix build error when DX_DEBUG is defined - clk: keystone: Enable TISCI clocks if K3_ARCH - sunrpc: Fix connect metrics - [x86] PCI: Apply VMD's AERSID fixup generically - mei: samples: fix a signedness bug in amt_host_if_call() - cxgb4: Use proper enum in cxgb4_dcb_handle_fw_update - cxgb4: Use proper enum in IEEE_FAUX_SYNC - [ppc64el,powerpc*] Fix DTL buffer registration - [ppc64el,powerpc*] Fix how we iterate over the DTL entries - [ppc64el,powerpc*] xive: Move a dereference below a NULL test - mtd: rawnand: sh_flctl: Use proper enum for flctl_dma_fifo0_transfer - PM / hibernate: Check the success of generating md5 digest before hibernation - tools: PCI: Fix compilation warnings - ice: Fix forward to queue group logic - md: allow metadata updates while suspending an array - fix - ixgbe: Fix ixgbe TX hangs with XDP_TX beyond queue limit - i40e: Use proper enum in i40e_ndo_set_vf_link_state - ixgbe: Fix crash with VFs and flow director on interface flap - IB/mthca: Fix error return code in __mthca_init_one() - IB/rxe: avoid srq memory leak - RDMA/hns: Bugfix for reserved qp number - RDMA/hns: Submit bad wr when post send wr exception - RDMA/hns: Bugfix for CM test - RDMA/hns: Limit the size of extend sge of sq - IB/mlx4: Avoid implicit enumerated type conversion - rpmsg: glink: smem: Support rx peak for size less than 4 bytes - msm/gpu/a6xx: Force of_dma_configure to setup DMA for GMU - OPP: Return error on error from dev_pm_opp_get_opp_count() - ACPICA: Never run _REG on system_memory and system_IO - cpuidle: menu: Fix wakeup statistics updates for polling state - ASoC: qdsp6: q6asm-dai: checking NULL vs IS_ERR() - [ppc64el,powerpc*] time: Use clockevents_register_device(), fixing an issue with large decrementer - [ppc64el,powerpc64] radix: Explicitly flush ERAT with local LPID invalidation - ata: ep93xx: Use proper enums for directions - qed: Avoid implicit enum conversion in qed_ooo_submit_tx_buffers - media: rc: ir-rc6-decoder: enable toggle bit for Kathrein RCU-676 remote - media: pxa_camera: Fix check for pdev->dev.of_node - media: rcar-vin: fix redeclaration of symbol - media: i2c: adv748x: Support probing a single output - [x86] ALSA: hda/sigmatel - Disable automute for Elo VuPoint - bnxt_en: return proper error when FW returns HWRM_ERR_CODE_RESOURCE_ACCESS_DENIED - [ppc64el,powerpc64] Book3S PR: Exiting split hack mode needs to fixup both PC and LR - USB: serial: cypress_m8: fix interrupt-out transfer length - usb: dwc2: disable power_down on rockchip devices - mtd: physmap_of: Release resources on error - cpu/SMT: State SMT is disabled even with nosmt and without "=force" - brcmfmac: reduce timeout for action frame scan - brcmfmac: fix full timeout waiting for action frame on-channel tx - qtnfmac: request userspace to do OBSS scanning if FW can not - qtnfmac: pass sgi rate info flag to wireless core - qtnfmac: inform wireless core about supported extended capabilities - qtnfmac: drop error reports for out-of-bounds key indexes - [armhf] clk: samsung: Use NOIRQ stage for Exynos5433 clocks suspend/resume - [armhf] clk: samsung: exynos5420: Define CLK_SECKEY gate clock only or Exynos5420 - [armhf] clk: samsung: Use clk_hw API for calling clk framework from clk notifiers - printk: Correct wrong casting - NFSv4.x: fix lock recovery during delegation recall - dmaengine: ioat: fix prototype of ioat_enumerate_channels - media: ov5640: fix framerate update - media: cec-gpio: select correct Signal Free Time - gfs2: slow the deluge of io error messages - i2c: omap: use core to detect 'no zero length' quirk - i2c: qup: use core to detect 'no zero length' quirk - i2c: tegra: use core to detect 'no zero length' quirk - i2c: zx2967: use core to detect 'no zero length' quirk - Input: st1232 - set INPUT_PROP_DIRECT property - Input: silead - try firmware reload after unsuccessful resume - soc: fsl: bman_portals: defer probe after bman's probe - net: hns3: Fix for rx vlan id handle to support Rev 0x21 hardware - tc-testing: fix build of eBPF programs - remoteproc: Check for NULL firmwares in sysfs interface - remoteproc: qcom: q6v5: Fix a race condition on fatal crash - kexec: Allocate decrypted control pages for kdump if SME is enabled - [x86] olpc: Fix build error with CONFIG_MFD_CS5535=m - dmaengine: rcar-dmac: set scatter/gather max segment size - xfrm: use correct size to initialise sp->ovec - ACPI / SBS: Fix rare oops when removing modules - iwlwifi: mvm: don't send keys when entering D3 - xsk: proper AF_XDP socket teardown ordering - [amd64] fsgsbase: Fix ptrace() to read the FS/GS base accurately - mmc: renesas_sdhi_internal_dmac: Whitelist r8a774a1 - mmc: tmio: Fix SCC error detection - mmc: renesas_sdhi_internal_dmac: set scatter/gather max segment size - fbdev: sbuslib: use checked version of put_user() - fbdev: sbuslib: integer overflow in sbusfb_ioctl_helper() - fbdev: fix broken menu dependencies - reset: Fix potential use-after-free in __of_reset_control_get() - bcache: account size of buckets used in uuid write to ca->meta_sectors_written - bcache: recal cached_dev_sectors on detach - [x86] platform: mlx-platform: Properly use mlxplat_mlxcpld_msn201x_items - media: dw9714: Fix error handling in probe function - media: dw9807-vcm: Fix probe error handling - media: cx18: Don't check for address of video_dev - mtd: spi-nor: cadence-quadspi: Use proper enum for dma_[un]map_single - mtd: devices: m25p80: Make sure WRITE_EN is issued before each write - [x86] intel_rdt: Introduce utility to obtain CDP peer - [x86] intel_rdt: CBM overlap should also check for overlap with CDP peer - mmc: mmci: expand startbiterr to irqmask and error check - [s390x] kasan: avoid vdso instrumentation - [s390x] kasan: avoid instrumentation of early C code - [s390x] kasan: avoid user access code instrumentation - [i386] proc/vmcore: Fix i386 build error of missing copy_oldmem_page_encrypted() - backlight: lm3639: Unconditionally call led_classdev_unregister - mfd: ti_am335x_tscadc: Keep ADC interface on if child is wakeup capable - printk: Give error on attempt to set log buffer length to over 2G - media: isif: fix a NULL pointer dereference bug - GFS2: Flush the GFS2 delete workqueue before stopping the kernel threads - media: cx231xx: fix potential sign-extension overflow on large shift - media: venus: vdec: fix decoded data size - [x86] ALSA: hda/ca0132 - Fix input effect controls for desktop cards - lightnvm: pblk: fix rqd.error return value in pblk_blk_erase_sync - lightnvm: pblk: fix incorrect min_write_pgs - lightnvm: pblk: guarantee emeta on line close - lightnvm: pblk: fix write amplificiation calculation - lightnvm: pblk: guarantee mw_cunits on read buffer - lightnvm: do no update csecs and sos on 1.2 - lightnvm: pblk: fix error handling of pblk_lines_init() - lightnvm: pblk: consider max hw sectors supported for max_write_pgs - [x86] kexec: Correct KEXEC_BACKUP_SRC_END off-by-one error - bpf: btf: Fix a missing check bug - net: fix generic XDP to handle if eth header was mangled - gpio: syscon: Fix possible NULL ptr usage - spi: fsl-lpspi: Prevent FIFO under/overrun by default - pinctrl: gemini: Mask and set properly - spi: spidev: Fix OF tree warning logic - [armel,armhf] 8802/1: Call syscall_trace_exit even when system call skipped - [x86] mm: Do not warn about PCI BIOS W+X mappings - orangefs: rate limit the client not running info message - pinctrl: gemini: Fix up TVC clock group - scsi: arcmsr: clean up clang warning on extraneous parentheses - [x86] hwmon: (k10temp) Support all Family 15h Model 6xh and Model 7xh processors - hwmon: (nct6775) Fix names of DIMM temperature sources - hwmon: (pwm-fan) Silence error on probe deferral - hwmon: (ina3221) Fix INA3221_CONFIG_MODE macros - hwmon: (npcm-750-pwm-fan) Change initial pwm target to 255 - selftests: forwarding: Have lldpad_app_wait_set() wait for unknown, too - net: sched: avoid writing on noop_qdisc - netfilter: nft_compat: do not dump private area - misc: cxl: Fix possible null pointer dereference - mac80211: minstrel: fix using short preamble CCK rates on HT clients - mac80211: minstrel: fix CCK rate group streams value - mac80211: minstrel: fix sampling/reporting of CCK rates in HT mode - spi: rockchip: initialize dma_slave_config properly - mlxsw: spectrum_switchdev: Check notification relevance based on upper device - [armhf] dts: omap5: Fix dual-role mode on Super-Speed port - tcp: start receiver buffer autotuning sooner - ACPI / LPSS: Use acpi_lpss_* instead of acpi_subsys_* functions for hibernate - PM / devfreq: Fix static checker warning in try_then_request_governor - tools: PCI: Fix broken pcitest compilation - [ppc64el,powerpc*] time: Fix clockevent_decrementer initalisation for PR KVM - mmc: tmio: fix SCC error handling to avoid false positive CRC error - [x86] resctrl: Fix rdt_find_domain() return value and checks https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.87 - mlxsw: spectrum_router: Fix determining underlay for a GRE tunnel - net/mlx4_en: fix mlx4 ethtool -N insertion - net/mlx4_en: Fix wrong limitation for number of TX rings - net: rtnetlink: prevent underflows in do_setvfinfo() - net/sched: act_pedit: fix WARN() in the traffic path - net: sched: ensure opts_len <= IP_TUNNEL_OPTS_MAX in act_tunnel_key - sfc: Only cancel the PPS workqueue if it exists - net/mlx5e: Fix set vf link state error flow - net/mlxfw: Verify FSM error code translation doesn't exceed array size - net/mlx5: Fix auto group size calculation - vhost/vsock: split packets to send using multiple buffers - gpio: max77620: Fixup debounce delays - tools: gpio: Correctly add make dependencies for gpio_utils - nbd:fix memory leak in nbd_get_socket() - virtio_console: allocate inbufs in add_port() only if it is needed - Revert "fs: ocfs2: fix possible null-pointer dereferences in ocfs2_xa_prepare_entry()" - mm/ksm.c: don't WARN if page is still mapped in remove_stable_node() - [x86] drm/amd/powerplay: issue no PPSMC_MSG_GetCurrPkgPwr on unsupported ASICs - [x86] drm/i915/pmu: "Frequency" is reported as accumulated cycles - [x86] drm/i915/userptr: Try to acquire the page lock around set_page_dirty() - mwifiex: Fix NL80211_TX_POWER_LIMITED - ALSA: isight: fix leak of reference to firewire unit in error path of .probe callback - crypto: testmgr - fix sizeof() on COMP_BUF_SIZE - printk: lock/unlock console only for new logbuf entries - printk: fix integer overflow in setup_log_buf() - pinctrl: madera: Fix uninitialized variable bug in madera_mux_set_mux - PCI: cadence: Write MSI data with 32bits - gfs2: Fix marking bitmaps non-full - pty: fix compat ioctls - synclink_gt(): fix compat_ioctl() - [ppc64] Fix signedness bug in update_flash_db() - [powerpc] boot: Fix opal console in boot wrapper - [ppc64*,powerpc] boot: Disable vector instructions - [ppc64*,powerpc] eeh: Fix null deref for devices removed during EEH - [ppc64*,powerpc] eeh: Fix use of EEH_PE_KEEP on wrong field - EDAC, thunderx: Fix memory leak in thunderx_l2c_threaded_isr() - mt76: do not store aggregation sequence number for null-data frames - mt76x0: phy: fix restore phase in mt76x0_phy_recalibrate_after_assoc - brcmsmac: AP mode: update beacon when TIM changes - ath10k: set probe request oui during driver start - ath10k: allocate small size dma memory in ath10k_pci_diag_write_mem - skd: fixup usage of legacy IO API - cdrom: don't attempt to fiddle with cdo->capability - spi: sh-msiof: fix deferred probing - mmc: mediatek: fill the actual clock for mmc debugfs - mmc: mediatek: fix cannot receive new request when msdc_cmd_is_ready fail - PCI: mediatek: Fix class type for MT7622 to PCI_CLASS_BRIDGE_PCI - btrfs: defrag: use btrfs_mod_outstanding_extents in cluster_pages_for_defrag - btrfs: handle error of get_old_root - gsmi: Fix bug in append_to_eventlog sysfs handler - misc: mic: fix a DMA pool free failure - w1: IAD Register is yet readable trough iad sys file. Fix snprintf (%u for unsigned, count for max size). - [m68k] fix command-line parsing when passed from u-boot - RDMA/bnxt_re: Avoid NULL check after accessing the pointer - RDMA/bnxt_re: Fix qp async event reporting - RDMA/bnxt_re: Avoid resource leak in case the NQ registration fails - pinctrl: sunxi: Fix a memory leak in 'sunxi_pinctrl_build_state()' - pwm: lpss: Only set update bit if we are actually changing the settings - amiflop: clean up on errors during setup - qed: Align local and global PTT to propagate through the APIs. - scsi: ips: fix missing break in switch - nfp: bpf: protect against mis-initializing atomic counters - [x86] KVM: nVMX: reset cache/shadows when switching loaded VMCS - [x86] KVM: nVMX: move check_vmentry_postreqs() call to nested_vmx_enter_non_root_mode() - [x86] KVM: Fix invvpid and invept register operand size in 64-bit mode - clk: tegra: Fixes for MBIST work around - scsi: isci: Use proper enumerated type in atapi_d2h_reg_frame_handler - scsi: isci: Change sci_controller_start_task's return type to sci_status - scsi: bfa: Avoid implicit enum conversion in bfad_im_post_vendor_event - scsi: iscsi_tcp: Explicitly cast param in iscsi_sw_tcp_host_get_param - nvmet: avoid integer overflow in the discard code - nvmet-fcloop: suppress a compiler warning - nvme-pci: fix hot removal during error handling - PCI: mediatek: Fixup MSI enablement logic by enabling MSI before clocks - clk: mmp2: fix the clock id for sdh2_clk and sdh3_clk - ASoC: tegra_sgtl5000: fix device_node refcounting - scsi: dc395x: fix dma API usage in srb_done - scsi: dc395x: fix DMA API usage in sg_update_list - scsi: zorro_esp: Limit DMA transfers to 65535 bytes - net: dsa: mv88e6xxx: Fix 88E6141/6341 2500mbps SERDES speed - net: fix warning in af_unix - xfs: fix use-after-free race in xfs_buf_rele - xfs: clear ail delwri queued bufs on unmount of shutdown fs - kprobes, x86/ptrace.h: Make regs_get_kernel_stack_nth() not fault on bad stack - ACPI / scan: Create platform device for INT33FE ACPI nodes - PM / Domains: Deal with multiple states but no governor in genpd - ALSA: i2c/cs8427: Fix int to char conversion - macintosh/windfarm_smu_sat: Fix debug output - PCI: vmd: Detach resources after stopping root bus - USB: misc: appledisplay: fix backlight update_status return code - usbip: tools: fix atoi() on non-null terminated string - sctp: use sk_wmem_queued to check for writable space - dm raid: avoid bitmap with raid4/5/6 journal device - selftests/bpf: fix file resource leak in load_kallsyms - SUNRPC: Fix a compile warning for cmpxchg64() - sunrpc: safely reallow resvport min/max inversion - atm: zatm: Fix empty body Clang warnings - [s390x] perf: Return error when debug_register fails - swiotlb: do not panic on mapping failures - spi: omap2-mcspi: Set FIFO DMA trigger level to word length - [x86] intel_rdt: Prevent pseudo-locking from using stale pointers - sparc: Fix parport build warnings. - [ppc64*,powerpc] pseries: Export raw per-CPU VPA data via debugfs - [ppc64*,powerpc] mm/radix: Fix off-by-one in split mapping logic - [ppc64*,powerpc] mm/radix: Fix overuse of small pages in splitting logic - [ppc64*,powerpc] mm/radix: Fix small page at boundary when splitting - [ppc64*] radix: Fix radix__flush_tlb_collapsed_pmd double flushing pmd - selftests/bpf: fix return value comparison for tests in test_libbpf.sh - tools: bpftool: fix completion for "bpftool map update" - ceph: fix dentry leak in ceph_readdir_prepopulate - ceph: only allow punch hole mode in fallocate - thermal: armada: fix a test in probe() - f2fs: fix to spread clear_cold_data() - f2fs: spread f2fs_set_inode_flags() - mISDN: Fix type of switch control variable in ctrl_teimanager - qlcnic: fix a return in qlcnic_dcb_get_capability() - net: ethernet: ti: cpsw: unsync mcast entries while switch promisc mode - mfd: arizona: Correct calling of runtime_put_sync - mfd: mc13xxx-core: Fix PMIC shutdown when reading ADC values - [x86] mfd: intel_soc_pmic_bxtwc: Chain power button IRQs as well - mfd: max8997: Enale irq-wakeup unconditionally - net: socionext: Stop PHY before resetting netsec - fs/cifs: fix uninitialised variable warnings - spi: uniphier: fix incorrect property items - selftests/ftrace: Fix to test kprobe $comm arg only if available - selftests: watchdog: fix message when /dev/watchdog open fails - selftests: watchdog: Fix error message. - selftests: kvm: Fix -Wformat warnings - selftests: fix warning: "_GNU_SOURCE" redefined - net: ethernet: cadence: fix socket buffer corruption problem - bpf: devmap: fix wrong interface selection in notifier_call - bpf, btf: fix a missing check bug in btf_parse - [sparc64] Rework xchg() definition to avoid warnings. - [arm64] lib: use C string functions with KASAN enabled - fs/ocfs2/dlm/dlmdebug.c: fix a sleep-in-atomic-context bug in dlm_print_one_mle() - mm/page-writeback.c: fix range_cyclic writeback vs writepages deadlock - tools/testing/selftests/vm/gup_benchmark.c: fix 'write' flag usage - mm: thp: fix MADV_DONTNEED vs migrate_misplaced_transhuge_page race condition - macsec: update operstate when lower device changes - macsec: let the administrator set UP state even if lowerdev is down - block: fix the DISCARD request merge - i2c: uniphier-f: make driver robust against concurrency - i2c: uniphier-f: fix occasional timeout error - i2c: uniphier-f: fix race condition when IRQ is cleared - um: Make line/tty semantics use true write IRQ - vfs: avoid problematic remapping requests into partial EOF block - ipv4/igmp: fix v1/v2 switchback timeout based on rfc3376, 8.12 - [ppc64*,powerpc] xmon: Relax frame size for clang - [ppc64*,powerpc] selftests/ptrace: Fix out-of-tree build - [ppc64*,powerpc] selftests/signal: Fix out-of-tree build - [ppc64*,powerpc] selftests/switch_endian: Fix out-of-tree build - [ppc64*,powerpc] selftests/cache_shape: Fix out-of-tree build - block: call rq_qos_exit() after queue is frozen - mm/gup_benchmark.c: prevent integer overflow in ioctl - linux/bitmap.h: handle constant zero-size bitmaps correctly - linux/bitmap.h: fix type of nbits in bitmap_shift_right() - lib/bitmap.c: fix remaining space computation in bitmap_print_to_pagebuf - hfsplus: fix BUG on bnode parent update - hfs: fix BUG on bnode parent update - hfsplus: prevent btree data loss on ENOSPC - hfs: prevent btree data loss on ENOSPC - hfsplus: fix return value of hfsplus_get_block() - hfs: fix return value of hfs_get_block() - hfsplus: update timestamps on truncate() - hfs: update timestamp on truncate() - fs/hfs/extent.c: fix array out of bounds read of array extent - kernel/panic.c: do not append newline to the stack protector panic string - mm/memory_hotplug: make add_memory() take the device_hotplug_lock - mm/memory_hotplug: fix online/offline_pages called w.o. mem_hotplug_lock - [ppc64*,powerprc] powerpc/powernv: hold device_hotplug_lock when calling device_online() - igb: shorten maximum PHC timecounter update interval - fm10k: ensure completer aborts are marked as non-fatal after a resume - [arm64] net: hns3: bugfix for buffer not free problem during resetting - [arm64] net: hns3: bugfix for reporting unknown vector0 interrupt repeatly problem - [arm64] net: hns3: bugfix for is_valid_csq_clean_head() - [arm64] net: hns3: bugfix for hclge_mdio_write and hclge_mdio_read - ntb_netdev: fix sleep time mismatch - [x86] ntb: intel: fix return value for ndev_vec_mask() - irq/matrix: Fix memory overallocation - nvme-pci: fix conflicting p2p resource adds - [arm64] makefile fix build of .i file in external module case - [x86] tools/power turbosat: fix AMD APIC-id output - mm: handle no memcg case in memcg_kmem_charge() properly - ocfs2: without quota support, avoid calling quota recovery - ocfs2: don't use iocb when EIOCBQUEUED returns - ocfs2: don't put and assigning null to bh allocated outside - ocfs2: fix clusters leak in ocfs2_defrag_extent() - net: do not abort bulk send on BQL status - sched/topology: Fix off by one bug - sched/fair: Don't increase sd->balance_interval on newidle balance - openvswitch: fix linking without CONFIG_NF_CONNTRACK_LABELS - [armhf] dts: imx6sx-sdb: Fix enet phy regulator - [arm64] sunxi-ng: enable so-said LDOs for A64 SoC's pll-mipi clock - soc: bcm: brcmstb: Fix re-entry point with a THUMB2_KERNEL - audit: print empty EXECVE args - sock_diag: fix autoloading of the raw_diag module - net: bpfilter: fix iptables failure if bpfilter_umh is disabled - nds32: Fix bug in bitfield.h - media: ov13858: Check for possible null pointer - btrfs: avoid link error with CONFIG_NO_AUTO_INLINE - wil6210: fix debugfs memory access alignment - wil6210: fix L2 RX status handling - wil6210: fix RGF_CAF_ICR address for Talyn-MB - wil6210: fix locking in wmi_call - ath10k: snoc: fix unbalanced clock error handling - wlcore: Fix the return value in case of error in 'wlcore_vendor_cmd_smart_config_start()' - rtl8xxxu: Fix missing break in switch - brcmsmac: never log "tid x is not agg'able" by default - wireless: airo: potential buffer overflow in sprintf() - rtlwifi: rtl8192de: Fix misleading REG_MCUFWDL information - net: dsa: bcm_sf2: Turn on PHY to allow successful registration - scsi: mpt3sas: Fix Sync cache command failure during driver unload - scsi: mpt3sas: Don't modify EEDPTagMode field setting on SAS3.5 HBA devices - scsi: mpt3sas: Fix driver modifying persistent data in Manufacturing page11 - scsi: megaraid_sas: Fix msleep granularity - scsi: megaraid_sas: Fix goto labels in error handling - scsi: lpfc: fcoe: Fix link down issue after 1000+ link bounces - scsi: lpfc: Fix odd recovery in duplicate FLOGIs in point-to-point - scsi: lpfc: Correct loss of fc4 type on remote port address change - usb: typec: tcpm: charge current handling for sink during hard reset - dlm: fix invalid free - dlm: don't leak kernel pointer to userspace - vrf: mark skb for multicast or link-local as enslaved to VRF - clk: tegra20: Turn EMC clock gate into divider - ACPICA: Use %d for signed int print formatting instead of %u - net: bcmgenet: return correct value 'ret' from bcmgenet_power_down - of: unittest: allow base devicetree to have symbol metadata - of: unittest: initialize args before calling of_*parse_*() - tools: bpftool: pass an argument to silence open_obj_pinned() - cfg80211: Prevent regulatory restore during STA disconnect in concurrent interfaces - pinctrl: qcom: spmi-gpio: fix gpio-hog related boot issues - pinctrl: bcm2835: Use define directive for BCM2835_PINCONF_PARAM_PULL - pinctrl: lpc18xx: Use define directive for PIN_CONFIG_GPIO_PIN_INT - pinctrl: zynq: Use define directive for PIN_CONFIG_IO_STANDARD - PCI: keystone: Use quirk to limit MRRS for K2G - nvme-pci: fix surprise removal - spi: omap2-mcspi: Fix DMA and FIFO event trigger size mismatch - i2c: uniphier-f: fix timeout error after reading 8 bytes - mm/memory_hotplug: Do not unlock when fails to take the device_hotplug_lock - ipv6: Fix handling of LLA with VRF and sockets bound to VRF - cfg80211: call disconnect_wk when AP stops - mm/page_io.c: do not free shared swap slots - Bluetooth: Fix invalid-free in bcsp_close() - KVM: MMU: Do not treat ZONE_DEVICE pages as being reserved - ath10k: Fix a NULL-ptr-deref bug in ath10k_usb_alloc_urb_from_pipe - ath9k_hw: fix uninitialized variable data - md/raid10: prevent access of uninitialized resync_pages offset - mm/memory_hotplug: don't access uninitialized memmaps in shrink_zone_span() - net: phy: dp83867: fix speed 10 in sgmii mode - net: phy: dp83867: increase SGMII autoneg timer duration - ocfs2: remove ocfs2_is_o2cb_active() - [arm*] 8904/1: skip nomap memblocks while finding the lowmem/highmem boundary - ARC: perf: Accommodate big-endian CPU - [x86] insn: Fix awk regexp warnings - [x86] speculation: Fix incorrect MDS/TAA mitigation status - [x86] speculation: Fix redundant MDS mitigation message - nbd: prevent memory leak - y2038: futex: Move compat implementation into futex.c - futex: Prevent robust futex exit race - ALSA: usb-audio: Fix NULL dereference at parsing BADD - nfc: port100: handle command failure cleanly - media: vivid: Set vid_cap_streaming and vid_out_streaming to true - media: vivid: Fix wrong locking that causes race conditions on streaming stop (CVE-2019-18683) - media: usbvision: Fix races among open, close, and disconnect - cpufreq: Add NULL checks to show() and store() methods of cpufreq - media: uvcvideo: Fix error path in control parsing failure - media: b2c2-flexcop-usb: add sanity checking - media: cxusb: detect cxusb_ctrl_msg error in query - media: imon: invalid dereference in imon_touch_event - virtio_ring: fix return code on DMA mapping fails - USBIP: add config dependency for SGL_ALLOC - usbip: tools: fix fd leakage in the function of read_attr_usbip_status - usbip: Fix uninitialized symbol 'nents' in stub_recv_cmd_submit() - usb-serial: cp201x: support Mark-10 digital force gauge - USB: chaoskey: fix error case of a timeout - appledisplay: fix error handling in the scheduled work - USB: serial: mos7840: add USB ID to support Moxa UPort 2210 - USB: serial: mos7720: fix remote wakeup - USB: serial: mos7840: fix remote wakeup - USB: serial: option: add support for DW5821e with eSIM support - USB: serial: option: add support for Foxconn T77W968 LTE modules - staging: comedi: usbduxfast: usbduxfast_ai_cmdtest rounding error - [ppc64*] support nospectre_v2 cmdline option - [ppc64*] book3s: Fix link stack flush on context switch (CVE-2019-18660) - [ppc64*, powerpc] PPC: Book3S HV: Flush link stack on guest exit to host kernel - PM / devfreq: Fix kernel oops on governor module load . [ Romain Perier ] * [armel/rpi] Enable CONFIG_BRCMFMAC_SDIO (Closes: #940530) * [armhf, arm64] Backport devicetree for enabling support for the Raspberry PI 3 A+ . [ Salvatore Bonaccorso ] * ixgbe: Fix secpath usage for IPsec TX offload (Closes: #930443) * ipv4: Return -ENETUNREACH if we can't create route but saddr is valid (Closes: #945023) * [x86] KVM: x86: introduce is_pae_paging (Regression in 4.19.77) * [rt] Refresh 0011-sched-fair-Robustify-CFS-bandwidth-timer-locking.patch (context changes in 4.19.84) . [ Bastian Blank ] * [amd64/cloud-amd64] Re-enable RTC drivers. (closes: #931341) . [ Noah Meyerhans ] * drivers/net/ethernet/amazon: Backport driver fixes from Linux 5.4 (Closes: #941291) * Bump ABI to 7 . [ Ben Hutchings ] * debian/bin/genpatch-rt: Fix series generation from git * [rt] Update to 4.19.82-rt30: - Drop changes in "fs/dcache: disable preemption on i_dir_seq's write side" that conflict with "Fix the locking in dcache_readdir() and friends" - Rewrite "fs/aio: simple simple work" using kthread_work - Rewrite "thermal: Defer thermal wakups to threads" using kthread_work - Rewrite "block: blk-mq: move blk_queue_usage_counter_release() into process context" using kthread_work - workqueue: rework . [ Benjamin Poirier ] * tools/perf: Add python3 support to scripts (Closes: #944641) . [ Aurelien Jarno ] * [rt] Refresh 0025-NFSv4-replace-seqcount_t-with-a-seqlock_t.patch (context changes in 4.19.86) * [rt] Refresh 0202-net-Qdisc-use-a-seqlock-instead-seqcount.patch (context changes in 4.19.86) * [rt] Refresh 0057-printk-Add-a-printk-kill-switch.patch (context changes in 4.19.87) * [rt] Refresh 0207-printk-Make-rt-aware.patch (context changes in 4.19.87) linux-signed-arm64 (4.19.67+2+deb10u2) buster-security; urgency=high . * Sign kernel from linux 4.19.67-2+deb10u2 . * [x86] Add mitigation for TSX Asynchronous Abort (CVE-2019-11135): - KVM: x86: use Intel speculation bugs and features as derived in generic x86 code - x86/msr: Add the IA32_TSX_CTRL MSR - x86/cpu: Add a helper function x86_read_arch_cap_msr() - x86/cpu: Add a "tsx=" cmdline option with TSX disabled by default - x86/speculation/taa: Add mitigation for TSX Async Abort - x86/speculation/taa: Add sysfs reporting for TSX Async Abort - kvm/x86: Export MDS_NO=0 to guests when TSX is enabled - x86/tsx: Add "auto" option to the tsx= cmdline parameter - x86/speculation/taa: Add documentation for TSX Async Abort - x86/tsx: Add config options to set tsx=on|off|auto - x86/speculation/taa: Fix printing of TAA_MSG_SMT on IBRS_ALL CPUs TSX is now disabled by default; see Documentation/admin-guide/hw-vuln/tsx_async_abort.rst * [x86] KVM: Add mitigation for Machine Check Error on Page Size Change (aka iTLB multi-hit, CVE-2018-12207): - kvm: Convert kvm_lock to a mutex - kvm: x86: Do not release the page inside mmu_set_spte() - KVM: x86: make FNAME(fetch) and __direct_map more similar - KVM: x86: remove now unneeded hugepage gfn adjustment - KVM: x86: change kvm_mmu_page_get_gfn BUG_ON to WARN_ON - KVM: x86: add tracepoints around __direct_map and FNAME(fetch) - kvm: x86, powerpc: do not allow clearing largepages debugfs entry - KVM: vmx, svm: always run with EFER.NXE=1 when shadow paging is active - x86/bugs: Add ITLB_MULTIHIT bug infrastructure - cpu/speculation: Uninline and export CPU mitigations helpers - kvm: mmu: ITLB_MULTIHIT mitigation - kvm: Add helper function for creating VM worker threads - kvm: x86: mmu: Recovery of shattered NX large pages - Documentation: Add ITLB_MULTIHIT documentation * [x86] i915: Mitigate local privilege escalation on gen9 (CVE-2019-0155): - drm/i915: Rename gen7 cmdparser tables - drm/i915: Disable Secure Batches for gen6+ - drm/i915: Remove Master tables from cmdparser - drm/i915: Add support for mandatory cmdparsing - drm/i915: Support ro ppgtt mapped cmdparser shadow buffers - drm/i915: Allow parsing of unsized batches - drm/i915: Add gen9 BCS cmdparsing - drm/i915/cmdparser: Use explicit goto for error paths - drm/i915/cmdparser: Add support for backward jumps - drm/i915/cmdparser: Ignore Length operands during command matching - drm/i915/cmdparser: Fix jump whitelist clearing * [x86] i915: Mitigate local denial-of-service on gen8/gen9 (CVE-2019-0154): - drm/i915: Lower RM timeout to avoid DSI hard hangs - drm/i915/gen8+: Add RC6 CTX corruption WA linux-signed-arm64 (4.19.67+2+deb10u2~bpo9+1) stretch-backports; urgency=medium . * Sign kernel from linux 4.19.67-2+deb10u2~bpo9+1 . * Rebuild for stretch-backports; no further changes required linux-signed-i386 (4.19.98+1) buster; urgency=medium . * Sign kernel from linux 4.19.98-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.88 - [arm64] clk: meson: gxbb: let sar_adc_clk_div set the parent clock rate - ASoC: compress: fix unsigned integer overflow check - reset: Fix memory leak in reset_control_array_put() - [armhf] clk: samsung: exynos5433: Fix error paths - [armel/marvell,armhf] ASoC: kirkwood: fix external clock probe defer - [armel/marvell,armhf] ASoC: kirkwood: fix device remove ordering - [armhf] clk: samsung: exynos5420: Preserve PLL configuration during suspend/resume - [x86] pinctrl: cherryview: Allocate IRQ chip dynamic - [armhf] dts: imx6qdl-sabreauto: Fix storm of accelerometer interrupts - reset: fix reset_control_ops kerneldoc comment - [armhf,arm64] clk: sunxi: Fix operator precedence in sunxi_divs_clk_setup - [armhf] clk: sunxi-ng: a80: fix the zero'ing of bits 16 and 18 - [armhf] dts: sun8i-a83t-tbs-a711: Fix WiFi resume from suspend - [ppc64el] bpf: Fix tail call implementation - idr: Fix integer overflow in idr_for_each_entry - idr: Fix idr_alloc_u32 on 32-bit systems - [x86] resctrl: Prevent NULL pointer dereference when reading mondata - [armhf] clk: ti: dra7-atl-clock: Remove ti_clk_add_alias call - [armhf] clk: ti: clkctrl: Fix failed to enable error with double udelay timeout - bridge: ebtables: don't crash when using dnat target in output chains - can: peak_usb: report bus recovery as well - can: rx-offload: can_rx_offload_queue_tail(): fix error handling, avoid skb mem leak - can: rx-offload: can_rx_offload_offload_one(): do not increase the skb_queue beyond skb_queue_len_max - can: rx-offload: can_rx_offload_offload_one(): increment rx_fifo_errors on queue overflow or OOM - can: rx-offload: can_rx_offload_offload_one(): use ERR_PTR() to propagate error value in case of errors - can: rx-offload: can_rx_offload_irq_offload_timestamp(): continue on error - can: rx-offload: can_rx_offload_irq_offload_fifo(): continue on error - [armhf] can: flexcan: increase error counters if skb enqueueing via can_rx_offload_queue_sorted() fails - [arm64] watchdog: meson: Fix the wrong value of left time - ceph: return -EINVAL if given fsc mount option on kernel w/o support - net/fq_impl: Switch to kvmalloc() for memory allocation - mac80211: fix station inactive_time shortly after boot - block: drbd: remove a stray unlock in __drbd_send_protocol() - scsi: target/tcmu: Fix queue_cmd_ring() declaration - scsi: lpfc: Fix kernel Oops due to null pring pointers - scsi: lpfc: Fix dif and first burst use in write commands - tracing: Lock event_mutex before synth_event_mutex - [armhf] dts: imx*: Fix memory node duplication - [armhf] dts: Fix hsi gdd range for omap4 - [arm64] mm: Prevent mismatched 52-bit VA support - [arm64] smp: Handle errors reported by the firmware - [armhf] bus: ti-sysc: Check for no-reset and no-idle flags at the child level - [arm64] RDMA/hns: Fix the bug while use multi-hop of pbl - [x86] RDMA/vmw_pvrdma: Use atomic memory allocation in create AH - [armhf] PM / AVS: SmartReflex: NULL check before some freeing functions is not needed - xfs: zero length symlinks are not valid - ACPI / LPSS: Ignore acpi_device_fix_up_power() return value - scsi: lpfc: Enable Management features for IF_TYPE=6 - scsi: qla2xxx: Fix NPIV handling for FC-NVMe - scsi: qla2xxx: Fix for FC-NVMe discovery for NPIV port - nvme: provide fallback for discard alloc failure - [s390x] zcrypt: make sysfs reset attribute trigger queue reset - crypto: user - support incremental algorithm dumps - mwifiex: fix potential NULL dereference and use after free - mwifiex: debugfs: correct histogram spacing, formatting - brcmfmac: set F2 watermark to 256 for 4373 - brcmfmac: set SDIO F1 MesBusyCtrl for CYW4373 - rtl818x: fix potential use after free - bcache: do not check if debug dentry is ERR or NULL explicitly on remove - bcache: do not mark writeback_running too early - xfs: require both realtime inodes to mount - nvme: fix kernel paging oops - ubifs: Fix default compression selection in ubifs - ubi: Put MTD device after it is not used - ubi: Do not drop UBI device reference before using - iwlwifi: move iwl_nvm_check_version() into dvm - iwlwifi: mvm: force TCM re-evaluation on TCM resume - iwlwifi: pcie: fix erroneous print - iwlwifi: pcie: set cmd_len in the correct place - [armhf,arm64] gpio: pca953x: Fix AI overflow on PCAL6524 - gpiolib: Fix return value of gpio_to_desc() stub if !GPIOLIB - [x86] kvm: vmx: Set IA32_TSC_AUX for legacy mode guests - [x86] Revert "KVM: nVMX: reset cache/shadows when switching loaded VMCS" - [x86] Revert "KVM: nVMX: move check_vmentry_postreqs() call to nested_vmx_enter_non_root_mode()" - VSOCK: bind to random port for VMADDR_PORT_ANY - [amd64] mmc: meson-gx: make sure the descriptor is stopped on errors - [armhf] mtd: rawnand: sunxi: Write pageprog related opcodes to WCMD_SET - [armhf] usb: ehci-omap: Fix deferred probe for phy handling - btrfs: Check for missing device before bio submission in btrfs_map_bio - btrfs: fix ncopies raid_attr for RAID56 - btrfs: dev-replace: set result code of cancel by status of scrub - Btrfs: allow clear_extent_dirty() to receive a cached extent state record - btrfs: only track ref_heads in delayed_ref_updates - [x86] HID: intel-ish-hid: fixes incorrect error handling - serial: 8250: Rate limit serial port rx interrupts during input overruns - [x86] kprobes/xen: blacklist non-attachable xen interrupt functions - xen/pciback: Check dev_data before using it - kprobes: Blacklist symbols in arch-defined prohibited area - [amd64] kprobes: Show x86-64 specific blacklisted symbols correctly - [armhf] memory: omap-gpmc: Get the header of the enum - net/mlx5: Continue driver initialization despite debugfs failure - netfilter: nf_nat_sip: fix RTP/RTCP source port translations - exofs_mount(): fix leaks on failure exits - bnxt_en: Return linux standard errors in bnxt_ethtool.c - bnxt_en: Save ring statistics before reset. - bnxt_en: query force speeds before disabling autoneg mode. - [s390x] KVM: unregister debug feature on failing arch init - dm flakey: Properly corrupt multi-page bios. - gfs2: take jdata unstuff into account in do_grow - dm raid: fix false -EBUSY when handling check/repair message - xfs: Align compat attrlist_by_handle with native implementation. - xfs: Fix bulkstat compat ioctls on x32 userspace. - IB/qib: Fix an error code in qib_sdma_verbs_send() - vxlan: Fix error path in __vxlan_dev_create() - [ppc64el] xmon: fix dump_segments() - drivers/regulator: fix a missing check of return value - Bluetooth: hci_bcm: Handle specific unknown packets after firmware loading - RDMA/srp: Propagate ib_post_send() failures to the SCSI mid-layer - scsi: qla2xxx: deadlock by configfs_depend_item - scsi: csiostor: fix incorrect dma device in case of vport - brcmfmac: Fix access point mode - ath6kl: Only use match sets when firmware supports it - ath6kl: Fix off by one error in scan completion - [ppc64el] perf: Fix unit_sel/cache_sel checks - [ppc64el] prom: fix early DEBUG messages - [ppc64el] mm: Make NULL pointer deferences explicit on bad page faults. - [ppc64el] vfio/spapr_tce: Get rid of possible infinite loop - [ppc64el] powernv/eeh/npu: Fix uninitialized variables in opal_pci_eeh_freeze_status - drbd: ignore "all zero" peer volume sizes in handshake - drbd: reject attach of unsuitable uuids even if connected - drbd: do not block when adjusting "disk-options" while IO is frozen - drbd: fix print_st_err()'s prototype to match the definition - IB/rxe: Make counters thread safe - bpf/cpumap: make sure frame_size for build_skb is aligned if headroom isn't - [armhf] regulator: tps65910: fix a missing check of return value - [ppc64el] powerpc/pseries: Fix node leak in update_lmb_associativity_index() - net/netlink_compat: Fix a missing check of nla_parse_nested - net/net_namespace: Check the return value of register_pernet_subsys() - f2fs: fix block address for __check_sit_bitmap - f2fs: fix to dirty inode synchronously - [armhf] net: dsa: bcm_sf2: Propagate error value from mdio_write - atl1e: checking the status of atl1e_write_phy_reg - tipc: fix a missing check of genlmsg_put - net: marvell: fix a missing check of acpi_match_device - ocfs2: clear journal dirty flag after shutdown journal - vmscan: return NODE_RECLAIM_NOSCAN in node_reclaim() when CONFIG_NUMA is n - mm/page_alloc.c: free order-0 pages through PCP in page_frag_free() - mm/page_alloc.c: use a single function to free page - mm/page_alloc.c: deduplicate __memblock_free_early() and memblock_free() - netfilter: nf_tables: fix a missing check of nla_put_failure - xprtrdma: Prevent leak of rpcrdma_rep objects - infiniband/qedr: Potential null ptr dereference of qp - lib/genalloc.c: fix allocation of aligned buffer from non-aligned chunk - lib/genalloc.c: use vzalloc_node() to allocate the bitmap - drivers/base/platform.c: kmemleak ignore a known leak - lib/genalloc.c: include vmalloc.h - mtd: Check add_mtd_device() ret code - tipc: fix memory leak in tipc_nl_compat_publ_dump - net/core/neighbour: tell kmemleak about hash tables - [armhf,arm64] ata: ahci: mvebu: do Armada 38x configuration only on relevant SoCs - PCI/MSI: Return -ENOSPC from pci_alloc_irq_vectors_affinity() - net/core/neighbour: fix kmemleak minimal reference count for hash tables - serial: 8250: Fix serial8250 initialization crash - [armhf] gpu: ipu-v3: pre: don't trigger update if buffer address doesn't change - sfc: suppress duplicate nvmem partition types in efx_ef10_mtd_probe - ip_tunnel: Make none-tunnel-dst tunnel port work with lwtunnel - decnet: fix DN_IFREQ_SIZE - net/smc: prevent races between smc_lgr_terminate() and smc_conn_free() - net/smc: don't wait for send buffer space when data was already sent - mm/hotplug: invalid PFNs from pfn_to_online_page() - xfs: end sync buffer I/O properly on shutdown error - net/smc: fix sender_free computation - blktrace: Show requests without sector - net/smc: fix byte_order for rx_curs_confirmed - tipc: fix skb may be leaky in tipc_link_input - sfc: initialise found bitmap in efx_ef10_mtd_probe - geneve: change NET_UDP_TUNNEL dependency to select - net: fix possible overflow in __sk_mem_raise_allocated() - net: ip_gre: do not report erspan_ver for gre or gretap - net: ip6_gre: do not report erspan_ver for ip6gre or ip6gretap - sctp: don't compare hb_timer expire date before starting it - bpf: decrease usercnt if bpf_map_new_fd() fails in bpf_map_get_fd_by_id() - mmc: core: align max segment size with logical block size - net: dev: Use unsigned integer as an argument to left-shift - kvm: properly check debugfs dentry before using it - bpf: drop refcount if bpf_map_new_fd() fails in map_create() - [arm64] net: hns3: Change fw error code NOT_EXEC to NOT_SUPPORTED - [arm64] net: hns3: fix PFC not setting problem for DCB module - [arm64] net: hns3: fix an issue for hclgevf_ae_get_hdev - [arm64] net: hns3: fix an issue for hns3_update_new_int_gl - [x86] iommu/amd: Fix NULL dereference bug in match_hid_uid - apparmor: delete the dentry in aafs_remove() to avoid a leak - scsi: libsas: Support SATA PHY connection rate unmatch fixing during discovery - ACPI / APEI: Don't wait to serialise with oops messages when panic()ing - ACPI / APEI: Switch estatus pool to use vmalloc memory - [arm64] scsi: hisi_sas: shutdown axi bus to avoid exception CQ returned - scsi: libsas: Check SMP PHY control function result - [arm64] RDMA/hns: Fix the bug with updating rq head pointer when flush cqe - [arm64] RDMA/hns: Bugfix for the scene without receiver queue - [arm64] RDMA/hns: Fix the state of rereg mr - [arm64] RDMA/hns: Use GFP_ATOMIC in hns_roce_v2_modify_qp - ASoC: rt5645: Headphone Jack sense inverts on the LattePanda board - [ppc64el] pseries/dlpar: Fix a missing check in dlpar_parse_cc_property() (CVE-2019-12614) - xdp: fix cpumap redirect SKB creation bug - mtd: Remove a debug trace in mtdpart.c - [s390x] mm, gup: add missing refcount overflow checks on s390 - [armhf,arm64] usb: dwc2: use a longer core rest timeout in dwc2_core_reset() - staging: rtl8192e: fix potential use after free - staging: rtl8723bs: Drop ACPI device ids - staging: rtl8723bs: Add 024c:0525 to the list of SDIO device-ids - USB: serial: ftdi_sio: add device IDs for U-Blox C099-F9P - [x86] mei: bus: prefix device names on bus with the bus name - [x86] mei: me: add comet point V device id - thunderbolt: Power cycle the router if NVM authentication fails - xfrm: Fix memleak on xfrm state destroy - media: v4l2-ctrl: fix flags for DO_WHITE_BALANCE - [arm64] net: macb: fix error format in dev_err() - pwm: Clear chip_data in pwm_put() - macvlan: schedule bc_work even if error - net: psample: fix skb_over_panic - openvswitch: fix flow command message size - sctp: Fix memory leak in sctp_sf_do_5_2_4_dupcook - slip: Fix use-after-free Read in slip_open - openvswitch: drop unneeded BUG_ON() in ovs_flow_cmd_build_info() - openvswitch: remove another BUG_ON() - tipc: fix link name length check - sctp: cache netns in sctp_ep_common - net: sched: fix `tc -s class show` no bstats on class with nolock subqueues - [arm64] net: macb: add missed tasklet_kill - ext4: add more paranoia checking in ext4_expand_extra_isize handling (CVE-2019-19767) - [arm64] net: macb: Fix SUBNS increment and increase resolution - [arm64] net: macb driver, check for SKBTX_HW_TSTAMP - mtd: spi-nor: cast to u64 to avoid uint overflows - tcp: exit if nothing to retransmit on RTO timeout - HID: core: check whether Usage Page item is after Usage ID items - [x86] platform: hp-wmi: Fix ACPI errors caused by too small buffer - [x86] platform: hp-wmi: Fix ACPI errors caused by passing 0 as input size https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.89 - rsi: release skb if rsi_prepare_beacon fails (CVE-2019-19071) - [arm64] tegra: Fix 'active-low' warning for Jetson TX1 regulator - usb: gadget: u_serial: add missing port entry locking - [arm64] tty: serial: msm_serial: Fix flow control - [armhf,arm64] serial: pl011: Fix DMA ->flush_buffer() - serial: serial_core: Perform NULL checks for break_ctl ops - autofs: fix a leak in autofs_expire_indirect() - [arm64] RDMA/hns: Correct the value of HNS_ROCE_HEM_CHUNK_LEN - iwlwifi: pcie: don't consider IV len in A-MSDU - exportfs_decode_fh(): negative pinned may become positive without the parent locked - audit_get_nd(): don't unlock parent too early - xfrm: release device reference for invalid state - sched/core: Avoid spurious lock dependencies - perf/core: Consistently fail fork on allocation failures - ALSA: pcm: Fix stream lock usage in snd_pcm_period_elapsed() - [armhf,arm64] drm/sun4i: tcon: Set min division of TCON0_DCLK to 1. - rsxx: add missed destroy_workqueue calls in remove - i2c: core: fix use after free in of_i2c_notify - serial: core: Allow processing sysrq at port unlock time - cxgb4vf: fix memleak in mac_hlist initialization - iwlwifi: mvm: synchronize TID queue removal - iwlwifi: trans: Clear persistence bit when starting the FW - iwlwifi: mvm: Send non offchannel traffic via AP sta - [armhf] 8813/1: Make aligned 2-byte getuser()/putuser() atomic on ARMv6+ - audit: Embed key into chunk - netfilter: nf_tables: don't use position attribute on rule replacement - net/mlx5: Release resource on error flow - [arm64] clk: sunxi-ng: a64: Fix gate bit of DSI DPHY - ice: Fix NVM mask defines - dlm: fix possible call to kfree() for non-initialized pointer - [armhf] dts: exynos: Fix LDO13 min values on Odroid XU3/XU4/HC1 - [armhf,arm64] rtc: max77686: Fix the returned value in case of error in 'max77686_rtc_read_time()' - i40e: don't restart nway if autoneg not supported - virtchnl: Fix off by one error - [armhf] clk: rockchip: fix rk3188 sclk_smc gate data - [armhf] clk: rockchip: fix rk3188 sclk_mac_lbtest parameter ordering - [armhf] dts: rockchip: Fix rk3288-rock2 vcc_flash name - dlm: fix missing idr_destroy for recover_idr - [armhf,arm64] net: dsa: mv88e6xxx: Work around mv886e6161 SERDES missing MII_PHYSID2 - [s390x] scsi: zfcp: update kernel message for invalid FCP_CMND length, it's not the CDB - [s390x] scsi: zfcp: drop default switch case which might paper over missing case - [armhf] bus: ti-sysc: Fix getting optional clocks in clock_roles - [armhf] dts: imx6: RDU2: fix eGalax touchscreen node - crypto: ecc - check for invalid values in the key verification test - crypto: bcm - fix normal/non key hash algorithm failure - [arm64] dts: zynqmp: Fix node names which contain "_" - [arm64] pinctrl: qcom: ssbi-gpio: fix gpio-hog related boot issues - [arm*] firmware: raspberrypi: Fix firmware calls with large buffers - mm/vmstat.c: fix NUMA statistics updates - [arm64] clk: rockchip: fix I2S1 clock gate register for rk3328 - [arm64] clk: rockchip: fix ID of 8ch clock of I2S1 for rk3328 - sctp: count sk_wmem_alloc by skb truesize in sctp_packet_transmit - regulator: Fix return value of _set_load() stub - USB: serial: f81534: fix reading old/new IC config - xfs: extent shifting doesn't fully invalidate page cache - net-next/hinic:fix a bug in set mac address - net-next/hinic: fix a bug in rx data flow - ice: Fix return value from NAPI poll - ice: Fix possible NULL pointer de-reference - iomap: FUA is wrong for DIO O_DSYNC writes into unwritten extents - iomap: sub-block dio needs to zeroout beyond EOF - iomap: dio data corruption and spurious errors when pipes fill - iomap: readpages doesn't zero page tail beyond EOF - iw_cxgb4: only reconnect with MPAv1 if the peer aborts - [mips*/octeon] octeon-platform: fix typing - net/smc: use after free fix in smc_wr_tx_put_slot() - [armhf] dts: exynos: Use Samsung SoC specific compatible for DWC2 module - media: pulse8-cec: return 0 when invalidating the logical address - media: cec: report Vendor ID after initialization - iwlwifi: fix cfg structs for 22000 with different RF modules - net/ipv6: re-do dad when interface has IFF_NOARP flag change - [x86] dmaengine: dw-dmac: implement dma protection control setting - [armhf,arm64] usb: dwc3: debugfs: Properly print/set link state for HS - [armhf,arm64] usb: dwc3: don't log probe deferrals; but do log other error codes - ACPI: fix acpi_find_child_device() invocation in acpi_preset_companion() - f2fs: fix to account preflush command for noflush_merge mode - f2fs: fix count of seg_freed to make sec_freed correct - f2fs: change segment to section in f2fs_ioc_gc_range - [armhf] dts: rockchip: Fix the PMU interrupt number for rv1108 - [armhf] dts: rockchip: Assign the proper GPIO clocks for rv1108 - f2fs: fix to allow node segment for GC by ioctl path - nvme: Free ctrl device name on init failure - dma-mapping: fix return type of dma_set_max_seg_size() - [armhf] serial: imx: fix error handling in console_setup - [armhf] i2c: imx: don't print error message on probe defer - [arm64] clk: meson: Fix GXL HDMI PLL fractional bits width - [armhf,arm64] gpu: host1x: Fix syncpoint ID field size on Tegra186 - lockd: fix decoding of TEST results - sctp: increase sk_wmem_alloc when head->truesize is increased - [x86] iommu/amd: Fix line-break in error log reporting - [armhf] dts: sun8i: a23/a33: Fix OPP DTC warnings - [armhf] dts: sun8i: v3s: Change pinctrl nodes to avoid warning - nfsd: fix a warning in __cld_pipe_upcall() - bpf: btf: implement btf_name_valid_identifier() - bpf: btf: check name validity for various types - [armhf] OMAP1/2: fix SoC name printing - [arm64] dts: meson-gxl-libretech-cc: fix GPIO lines names - [arm64] dts: meson-gxbb-nanopi-k2: fix GPIO lines names - [arm64] dts: meson-gxbb-odroidc2: fix GPIO lines names - [arm64] dts: meson-gxl-khadas-vim: fix GPIO lines names - net/x25: fix called/calling length calculation in x25_parse_address_block - net/x25: fix null_x25_address handling - tcp: make tcp_space() aware of socket backlog - tcp: fix off-by-one bug on aborting window-probing socket - tcp: fix SNMP under-estimation on failed retransmission - tcp: fix SNMP TCP timeout under-estimation - kbuild: fix single target build for external module - mtd: fix mtd_oobavail() incoherent returned value - [arm64] clk: meson: meson8b: fix the offset of vid_pll_dco's N value - [armhf,arm64] clk: sunxi-ng: h3/h5: Fix CSI_MCLK parent - [arm64] clk: qcom: Fix MSM8998 resets - dlm: fix invalid cluster name warning - net/mlx4_core: Fix return codes of unsupported operations - pstore/ram: Avoid NULL deref in ftrace merging failure path - [mips*/octeon] cvmx_pko_mem_debug8: use oldest forward compatible definition - nfsd: Return EPERM, not EACCES, in some SETATTR cases - media: uvcvideo: Abstract streaming object lifetime - [armhf] dts: sun8i: h3: Fix the system-control register range - tty: Don't block on IO when ldisc change is pending - media: stkwebcam: Bugfix for wrong return values - sctp: frag_point sanity check - IB/hfi1: Ignore LNI errors before DC8051 transitions to Polling state - IB/hfi1: Close VNIC sdma_progress sleep window - mlx4: Use snprintf instead of complicated strcpy - [armhf] dts: sunxi: Fix PMU compatible strings - [armhf] dts: am335x-pdu001: Fix polarity of card detection input - net: aquantia: fix RSS table and key sizes - sched/fair: Scale bandwidth quota and period without losing quota/period ratio precision - fuse: verify nlink - fuse: verify attributes - [x86] ALSA: hda/realtek - Enable internal speaker of ASUS UX431FLC - [x86] ALSA: hda/realtek - Enable the headset-mic on a Xiaomi's laptop - [x86] ALSA: hda/realtek - Dell headphone has noise on unmute for ALC236 - ALSA: pcm: oss: Avoid potential buffer overflows - [x86] ALSA: hda - Add mute led support for HP ProBook 645 G4 - [x86] Input: synaptics - switch another X1 Carbon 6 to RMI/SMbus - [x86] Input: synaptics-rmi4 - re-enable IRQs in f34v7_do_reflash - [x86] Input: synaptics-rmi4 - don't increment rmiaddr for SMBus transfers - [x86] Input: goodix - add upside-down quirk for Teclast X89 tablet - Input: Fix memory leak in psxpad_spi_probe - [i386] mm: Sync only to VMALLOC_END in vmalloc_sync_all() - [x86] PCI: Avoid AMD FCH XHCI USB PME# from D0 defect - xfrm interface: fix memory leak on creation - xfrm interface: avoid corruption on changelink - xfrm interface: fix list corruption for x-netns - xfrm interface: fix management of phydev - CIFS: Fix NULL-pointer dereference in smb2_push_mandatory_locks - CIFS: Fix SMB2 oplock break processing - tty: vt: keyboard: reject invalid keycodes - can: slcan: Fix use-after-free Read in slcan_open - kernfs: fix ino wrap-around detection - jbd2: Fix possible overflow in jbd2_log_space_left() - [arm64] drm/msm: fix memleak on release - [i386] drm/i810: Prevent underflow in ioctl - [armhf,arm64] KVM: vgic: Don't rely on the wrong pending table - [x86] KVM: do not modify masked bits of shared MSRs - [x86] KVM: fix presentation of TSX feature in ARCH_CAPABILITIES - [x86] KVM: Grab KVM's srcu lock when setting nested state - crypto: af_alg - cast ki_complete ternary op to int - [x86] crypto: ccp - fix uninitialized list head - crypto: ecdh - fix big endian bug in ECC library - crypto: user - fix memory leak in crypto_report (CVE-2019-19062) - mwifiex: update set_mac_address logic - can: ucan: fix non-atomic allocation in completion handler - RDMA/qib: Validate ->show()/store() callbacks before calling them - iomap: Fix pipe page leakage during splicing - thermal: Fix deadlock in thermal thermal_zone_device_check - vcs: prevent write access to vcsu devices (CVE-2019-19252) - binder: Fix race between mmap() and binder_alloc_print_pages() - binder: Handle start==NULL in binder_update_page_range() - ALSA: hda - Fix pending unsol events at shutdown - perf script: Fix invalid LBR/binary mismatch error - splice: don't read more than available pipe space - iomap: partially revert 4721a601099 (simulated directio short read on EFAULT) - xfs: add missing error check in xfs_prepare_shift() - ASoC: rsnd: fixup MIX kctrl registration - [x86] KVM: fix out-of-bounds write in KVM_GET_EMULATED_CPUID (CVE-2019-19332) - net: qrtr: fix memort leak in qrtr_tun_write_iter (CVE-2019-19079) - appletalk: Fix potential NULL pointer dereference in unregister_snap_client (CVE-2019-19227) - appletalk: Set error code if register_snap_client failed https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.90 - usb: gadget: configfs: Fix missing spin_lock_init() - [x86] usb: gadget: pch_udc: fix use after free - scsi: qla2xxx: Fix driver unload hang - [arm64] media: venus: remove invalid compat_ioctl32 handler - USB: uas: honor flag to avoid CAPACITY16 - USB: uas: heed CAPACITY_HEURISTICS - usb: Allow USB device to be warm reset in suspended state - staging: rtl8188eu: fix interface sanity check - staging: rtl8712: fix interface sanity check - staging: gigaset: fix general protection fault on probe - staging: gigaset: fix illegal free on probe errors - staging: gigaset: add endpoint-type sanity check - usb: xhci: only set D3hot for pci device - xhci: Fix memory leak in xhci_add_in_port() - xhci: Increase STS_HALT timeout in xhci_suspend() - xhci: handle some XHCI_TRUST_TX_LENGTH quirks cases as default behaviour. - [armhf] dts: pandora-common: define wl1251 as child node of mmc3 - [x86] iio: imu: inv_mpu6050: fix temperature reporting using bad unit - USB: atm: ueagle-atm: add missing endpoint check - USB: idmouse: fix interface sanity checks - USB: serial: io_edgeport: fix epic endpoint lookup - usb: roles: fix a potential use after free - USB: adutux: fix interface sanity check - usb: core: urb: fix URB structure initialization function - usb: mon: Fix a deadlock in usbmon between mmap and read - tpm: add check after commands attribs tab allocation - virtio-balloon: fix managed page counts when migrating pages between zones - [armhf,arm64] usb: dwc3: gadget: Fix logical condition - [armhf,arm64] usb: dwc3: ep0: Clear started flag on completion - btrfs: check page->mapping when loading free space cache - btrfs: use refcount_inc_not_zero in kill_all_nodes - Btrfs: fix metadata space leak on fixup worker failure to set range as delalloc - Btrfs: fix negative subv_writers counter and data space leak after buffered write - btrfs: Avoid getting stuck during cyclic writebacks - btrfs: Remove btrfs_bio::flags member - Btrfs: send, skip backreference walking for extents with many references - btrfs: record all roots for rename exchange on a subvol - rtlwifi: rtl8192de: Fix missing code to retrieve RX buffer address - rtlwifi: rtl8192de: Fix missing callback that tests for hw release of buffer - rtlwifi: rtl8192de: Fix missing enable interrupt flag - ovl: fix corner case of non-unique st_dev;st_ino - ovl: relax WARN_ON() on rename to self - [armhf] hwrng: omap - Fix RNG wait loop timeout - dm writecache: handle REQ_FUA - dm zoned: reduce overhead of backing device checks - workqueue: Fix spurious sanity check failures in destroy_workqueue() - workqueue: Fix pwq ref leak in rescuer_thread() - ASoC: rt5645: Fixed buddy jack support. - ASoC: rt5645: Fixed typo for buddy jack support. - ASoC: Jack: Fix NULL pointer dereference in snd_soc_jack_report - md: improve handling of bio with REQ_PREFLUSH in md_flush_request() - blk-mq: avoid sysfs buffer overflow with too many CPU cores - cgroup: pids: use atomic64_t for pids->limit - ar5523: check NULL before memcpy() in ar5523_cmd() - [s390x] mm: properly clear _PAGE_NOEXEC bit when it is not supported - media: cec.h: CEC_OP_REC_FLAG_ values were swapped - cpuidle: Do not unset the driver if it is there already - erofs: zero out when listxattr is called with no xattr - [x86] intel_th: Fix a double put_device() in error path - [x86] intel_th: pci: Add Ice Lake CPU support - [x86] intel_th: pci: Add Tiger Lake CPU support - PM / devfreq: Lock devfreq in trans_stat_show - [ppc64el] cpufreq: powernv: fix stack bloat and hard limit on number of CPUs - ACPI / hotplug / PCI: Allocate resources directly under the non-hotplug bridge - ACPI: OSL: only free map once in osl.c - ACPI: bus: Fix NULL pointer check in acpi_bus_get_private_data() - ACPI: PM: Avoid attaching ACPI PM domain to certain devices - [arm64] pinctrl: armada-37xx: Fix irq mask access in armada_37xx_irq_set_type() - [armhf] pinctrl: samsung: Add of_node_put() before return in error path - [armhf] pinctrl: samsung: Fix device node refcount leaks in Exynos wakeup controller init - [armhf] pinctrl: samsung: Fix device node refcount leaks in init code - [armhf] mmc: host: omap_hsmmc: add code for special init of wl1251 to get rid of pandora_wl1251_init_card - [armhf] dts: omap3-tao3530: Fix incorrect MMC card detection GPIO polarity - ppdev: fix PPGETTIME/PPSETTIME ioctls - [ppc64el] Allow 64bit VDSO __kernel_sync_dicache to work across ranges >4GB - [ppc64el] xive: Prevent page fault issues in the machine crash handler - [ppc64el] Allow flush_icache_range to work across ranges >4GB - [ppc64el] xive: Skip ioremap() of ESB pages for LSI interrupts - video/hdmi: Fix AVI bar unpack - quota: Check that quota is not dirty before release - ext2: check err when partial != NULL - quota: fix livelock in dquot_writeback_dquots - ext4: Fix credit estimate for final inode freeing - reiserfs: fix extended attributes on the root directory - block: fix single range discard merge - [s390x] scsi: zfcp: trace channel log even for FCP command responses - scsi: qla2xxx: Fix DMA unmap leak - scsi: qla2xxx: Fix hang in fcport delete path - scsi: qla2xxx: Fix session lookup in qlt_abort_work() - scsi: qla2xxx: Fix qla24xx_process_bidir_cmd() - scsi: qla2xxx: Always check the qla2x00_wait_for_hba_online() return value - scsi: qla2xxx: Fix message indicating vectors used by driver - scsi: qla2xxx: Fix SRB leak on switch command timeout - xhci: make sure interrupts are restored to correct state - usb: typec: fix use after free in typec_register_port() - [armhf] omap: pdata-quirks: remove openpandora quirks for mmc3 and wl1251 - scsi: lpfc: Cap NPIV vports to 256 - scsi: lpfc: Correct code setting non existent bits in sli4 ABORT WQE - scsi: lpfc: Correct topology type reporting on G7 adapters - sch_cake: Correctly update parent qlen when splitting GSO packets - net/smc: do not wait under send_lock - [arm64] net: hns3: clear pci private data when unload hns3 driver - [arm64] net: hns3: change hnae3_register_ae_dev() to int - [arm64] net: hns3: Check variable is valid before assigning it to another - [arm64] scsi: hisi_sas: send primitive NOTIFY to SSP situation only - [arm64] scsi: hisi_sas: Reject setting programmed minimum linkrate > 1.5G - [x86] MCE/AMD: Turn off MC4_MISC thresholding on all family 0x15 models - [x86] MCE/AMD: Carve out the MC4_MISC thresholding quirk - ath10k: fix fw crash by moving chip reset after napi disabled - [ppc64el] Fix vDSO clock_getres() - ext4: work around deleting a file with i_nlink == 0 safely (CVE-2019-19447) - mm/shmem.c: cast the type of unmap_start to u64 - rtc: disable uie before setting time and enable after - splice: only read in as much information as there is pipe buffer space - ext4: fix a bug in ext4_wait_for_tail_page_commit - [armhf,arm64] mfd: rk808: Fix RK818 ID template - mm, thp, proc: report THP eligibility for each vma - [s390x] smp,vdso: fix ASCE handling - blk-mq: make sure that line break can be printed - workqueue: Fix missing kfree(rescuer) in destroy_workqueue() - perf callchain: Fix segfault in thread__resolve_callchain_sample() - gre: refetch erspan header from skb->data after pskb_may_pull() - sunrpc: fix crash when cache_head become valid before update - net/mlx5e: Fix SFF 8472 eeprom length - leds: trigger: netdev: fix handling on interface rename - gfs2: fix glock reference problem in gfs2_trans_remove_revoke - of: overlay: add_changeset_property() memory leak - kernel/module.c: wakeup processes in module_wq on module unload - cifs: Fix potential softlockups while refreshing DFS cache - [x86] gpiolib: acpi: Add Terra Pad 1061 to the run_edge_events_on_boot_blacklist - raid5: need to set STRIPE_HANDLE for batch head - scsi: qla2xxx: Change discovery state before PLOGI - [x86] iio: imu: mpu6050: add missing available scan masks - idr: Fix idr_get_next_ul race with idr_remove - of: unittest: fix memory leak in attach_node_and_children https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.91 - inet: protect against too small mtu values. - mqprio: Fix out-of-bounds access in mqprio_dump - net: bridge: deny dev_set_mac_address() when unregistering - net: dsa: fix flow dissection on Tx path - net: ethernet: ti: cpsw: fix extra rx interrupt - net: sched: fix dump qlen for sch_mq/sch_mqprio with NOLOCK subqueues - [arm64] net: thunderx: start phy before starting autonegotiation - openvswitch: support asymmetric conntrack - tcp: md5: fix potential overestimation of TCP option space - tipc: fix ordering of tipc module init and exit routine - net/mlx5e: Query global pause state before setting prio2buffer - tcp: fix rejected syncookies due to stale timestamps - tcp: tighten acceptance of ACKs not matching a child socket - tcp: Protect accesses to .ts_recent_stamp with {READ,WRITE}_ONCE() - [arm64] Revert "arm64: preempt: Fix big-endian when checking preempt count in assembly" - mmc: block: Make card_busy_detect() a bit more generic - mmc: block: Add CMD13 polling for MMC IOCTLS with R1B response - PCI/PM: Always return devices to D0 when thawing - PCI: pciehp: Avoid returning prematurely from sysfs requests - [x86] PCI: Fix Intel ACS quirk UPDCR register address - PCI/MSI: Fix incorrect MSI-X masking on resume - [arm64] PCI: Apply Cavium ACS quirk to ThunderX2 and ThunderX3 - [arm64] rpmsg: glink: Set tail pointer to 0 at end of FIFO - [arm64] rpmsg: glink: Fix reuse intents memory leak issue - [arm64] rpmsg: glink: Fix use after free in open_ack TIMEOUT case - [arm64] rpmsg: glink: Put an extra reference during cleanup - [arm64] rpmsg: glink: Fix rpmsg_register_device err handling - [arm64] rpmsg: glink: Don't send pending rx_done during remove - [arm64] rpmsg: glink: Free pending deferred work on remove - cifs: smbd: Return -EAGAIN when transport is reconnecting - cifs: smbd: Add messages on RDMA session destroy and reconnection - cifs: smbd: Return -EINVAL when the number of iovs exceeds SMBDIRECT_MAX_SGE - cifs: Don't display RDMA transport on reconnect - CIFS: Respect O_SYNC and O_DIRECT flags during reconnect - CIFS: Close open handle after interrupted close - [armhf] tegra: Fix FLOW_CTLR_HALT register clobbering by tegra_resume() - vfio/pci: call irq_bypass_unregister_producer() before freeing irq - dma-buf: Fix memory leak in sync_file_merge() - [arm64] drm: meson: venc: cvbs: fix CVBS mode matching - dm mpath: remove harmful bio-based optimization - dm btree: increase rebalance threshold in __rebalance2() - scsi: iscsi: Fix a potential deadlock in the timeout handler - scsi: qla2xxx: Change discovery state before PLOGI - drm/radeon: fix r1xx/r2xx register checker for POT textures - xhci: fix USB3 device initiated resume race with roothub autosuspend https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.92 - af_packet: set defaule value for tmo - [amd64] fjes: fix missed check in fjes_acpi_add - [arm64] net: hisilicon: Fix a BUG trigered by wrong bytes_compl - net: qlogic: Fix error paths in ql_alloc_large_buffers() - net: usb: lan78xx: Fix suspend/resume PHY register access error - qede: Disable hardware gro when xdp prog is installed - qede: Fix multicast mac configuration - sctp: fully initialize v4 addr in some functions - btrfs: don't double lock the subvol_sem for rename exchange - btrfs: do not call synchronize_srcu() in inode_tree_del - Btrfs: fix missing data checksums after replaying a log tree - btrfs: send: remove WARN_ON for readonly mount - btrfs: abort transaction after failed inode updates in create_subvol - btrfs: skip log replay on orphaned roots - btrfs: do not leak reloc root if we fail to read the fs root - btrfs: handle ENOENT in btrfs_uuid_tree_iterate - Btrfs: fix removal logic of the tree mod log that leads to use-after-free issues - ALSA: pcm: Avoid possible info leaks from PCM stream buffers - ALSA: hda/ca0132 - Keep power on during processing DSP response - ALSA: hda/ca0132 - Avoid endless loop - ALSA: hda/ca0132 - Fix work handling in delayed HP detection - [arm64,armhf] drm/panel: Add missing drm_panel_init() in panel drivers - drm/amdgpu: grab the id mgr lock while accessing passid_mapping - spi: Add call to spi_slave_abort() function when spidev driver is released - [x86] staging: rtl8192u: fix multiple memory leaks on error path - staging: rtl8188eu: fix possible null dereference - rtlwifi: prevent memory leak in rtl_usb_probe (CVE-2019-19063) - libertas: fix a potential NULL pointer dereference - ath10k: fix backtrace on coredump - IB/iser: bound protection_sg size by data_sg size - [arm64] media: venus: core: Fix msm8996 frequency table - ath10k: fix offchannel tx failure when no ath10k_mac_tx_frm_has_freq - pinctrl: devicetree: Avoid taking direct reference to device name string - [amd64] drm/amdkfd: fix a potential NULL pointer dereference - [arm64] media: venus: Fix occasionally failures to suspend - [armhf] hwrng: omap3-rom - Call clk_disable_unprepare() on exit only if not idled - media: flexcop-usb: fix NULL-ptr deref in flexcop_usb_transfer_init() - [arm64,armhf] drm/bridge: dw-hdmi: Refuse DDC/CI transfers on the internal I2C controller - block: Fix writeback throttling W=1 compiler warnings - mwifiex: pcie: Fix memory leak in mwifiex_pcie_init_evt_ring (CVE-2019-19057) - drm/drm_vblank: Change EINVAL by the correct errno - media: cx88: Fix some error handling path in 'cx8800_initdev()' - [armhf] media: ti-vpe: vpe: Fix Motion Vector vpdma stride - [armhf] media: ti-vpe: vpe: fix a v4l2-compliance warning about invalid pixel format - [armhf] media: ti-vpe: vpe: fix a v4l2-compliance failure about frame sequence number - [armhf] media: ti-vpe: vpe: Make sure YUYV is set as default format - [armhf] media: ti-vpe: vpe: fix a v4l2-compliance failure causing a kernel panic - [armhf] media: ti-vpe: vpe: ensure buffers are cleaned up properly in abort cases - [armhf] media: ti-vpe: vpe: fix a v4l2-compliance failure about invalid sizeimage - [x86] syscalls/x86: Use the correct function type in SYSCALL_DEFINE0 - [x86] mm: Use the correct function type for native_set_fixmap() - ath10k: Correct error handling of dma_map_single() - [arm64,armhf] drm/bridge: dw-hdmi: Restore audio when setting a mode - perf report: Add warning when libunwind not compiled in - usb: usbfs: Suppress problematic bind and unbind uevents. - Bluetooth: missed cpu_to_le16 conversion in hci_init4_req - Bluetooth: Workaround directed advertising bug in Broadcom controllers - Bluetooth: hci_core: fix init for HCI_USER_CHANNEL - [x86] mce: Lower throttling MCE messages' priority to warning - [x86] drm/gma500: fix memory disclosures due to uninitialized bytes - rtl8xxxu: fix RTL8723BU connection failure issue after warm reboot - ipmi: Don't allow device module unload when in use - [x86] ioapic: Prevent inconsistent state when moving an interrupt - md/bitmap: avoid race window between md_bitmap_resize and bitmap_file_clear_bit - [arm64] psci: Reduce the waiting time for cpu_psci_cpu_kill() - i40e: initialize ITRN registers with correct values - net: phy: dp83867: enable robust auto-mdix - [arm64,armhf] drm/tegra: sor: Use correct SOR index on Tegra210 - ACPI: button: Add DMI quirk for Medion Akoya E2215T - RDMA/qedr: Fix memory leak in user qp and mr - [arm64,armhf] gpu: host1x: Allocate gather copy for host1x - [arm64,armhf] net: dsa: LAN9303: select REGMAP when LAN9303 enable - [arm64] phy: qcom-usb-hs: Fix extcon double register after power cycle - [s390x] time: ensure get_clock_monotonic() returns monotonic values - [s390x] mm: add mm_pxd_folded() checks to pxd_free() - [arm64] net: hns3: add struct netdev_queue debug info for TX timeout - libata: Ensure ata_port probe has completed before detach - loop: fix no-unmap write-zeroes request behavior - Bluetooth: Fix advertising duplicated flags - pinctrl: amd: fix __iomem annotation in amd_gpio_irq_handler() - ixgbe: protect TX timestamping from API misuse - media: rcar_drif: fix a memory disclosure (CVE-2019-18786) - media: v4l2-core: fix touch support in v4l_g_fmt - rfkill: allocate static minor - bnx2x: Fix PF-VF communication over multi-cos queues. - ALSA: timer: Limit max amount of slave instances - rtlwifi: fix memory leak in rtl92c_set_fw_rsvdpagepkt() - perf probe: Fix to find range-only function instance - perf probe: Fix to list probe event with correct line number - perf jevents: Fix resource leak in process_mapfile() and main() - perf probe: Walk function lines in lexical blocks - perf probe: Fix to probe an inline function which has no entry pc - perf probe: Fix to show ranges of variables in functions without entry_pc - perf probe: Fix to show inlined function callsite without entry_pc - perf probe: Fix to probe a function which has no entry pc - perf tools: Splice events onto evlist even on error - perf parse: If pmu configuration fails free terms - perf probe: Skip overlapped location on searching variables - perf probe: Return a better scope DIE if there is no best scope - perf probe: Fix to show calling lines of inlined functions - perf probe: Skip end-of-sequence and non statement lines - perf probe: Filter out instances except for inlined subroutine and subprogram - ath10k: fix get invalid tx rate for Mesh metric - media: pvrusb2: Fix oops on tear-down when radio support is not present - ice: delay less - [amd64] spi: pxa2xx: Add missed security checks - ASoC: rt5677: Mark reg RT5677_PWR_ANLG2 as volatile - iio: dac: ad5446: Add support for new AD5600 DAC - [x86] ASoC: Intel: kbl_rt5663_rt5514_max98927: Add dmic format constraint - [s390x] disassembler: don't hide instruction addresses - nvme: Discard workaround for non-conformant devices - parport: load lowlevel driver if ports not found - bcache: fix static checker warning in bcache_device_free() - cpufreq: Register drivers only after CPU devices have been registered - tracing: use kvcalloc for tgid_map array allocation - tracing/kprobe: Check whether the non-suffixed symbol is notrace - bcache: fix deadlock in bcache_allocator - iwlwifi: mvm: fix unaligned read of rx_pkt_status - [arm64] spi: tegra20-slink: add missed clk_unprepare - tun: fix data-race in gro_normal_list() - crypto: virtio - deal with unsupported input sizes - btrfs: don't prematurely free work in end_workqueue_fn() - btrfs: don't prematurely free work in run_ordered_work() - [x86] ASoC: Intel: bytcr_rt5640: Update quirk for Acer Switch 10 SW5-012 2-in-1 - [x86] insn: Add some Intel instructions to the opcode map - brcmfmac: remove monitor interface when detaching - iwlwifi: check kasprintf() return value - [armhf] net: ethernet: ti: ale: clean ale tbl on init and intf restart - [armhf] crypto: sun4i-ss - Fix 64-bit size_t warnings - [armhf] crypto: sun4i-ss - Fix 64-bit size_t warnings on sun4i-ss-hash.c - mac80211: consider QoS Null frames for STA_NULLFUNC_ACKED - net: phy: initialise phydev speed and duplex sanely - btrfs: don't prematurely free work in reada_start_machine_worker() - btrfs: don't prematurely free work in scrub_missing_raid56_worker() - Revert "mmc: sdhci: Fix incorrect switch to HS mode" - can: kvaser_usb: kvaser_usb_leaf: Fix some info-leaks to USB devices (CVE-2019-19947) - usb: xhci: Fix build warning seen with CONFIG_PM=n - [s390x] ftrace: fix endless recursion in function_graph tracer - btrfs: return error pointer from alloc_test_extent_buffer - usbip: Fix receive error in vhci-hcd when using scatter-gather - usbip: Fix error path of vhci_recv_ret_submit() - cpufreq: Avoid leaving stale IRQ work items during CPU offline - [x86] intel_th: pci: Add Comet Lake PCH-V support - [x86] intel_th: pci: Add Elkhart Lake SOC support - [x86] platform/x86: hp-wmi: Make buffer for HPWMI_FEATURE2_QUERY 128 bytes - [x86] staging: comedi: gsc_hpdi: check dma_alloc_coherent() return value - ext4: fix ext4_empty_dir() for directories with holes (CVE-2019-19037) - ext4: check for directory entries too close to block end - ext4: unlock on error in ext4_expand_extra_isize() - [arm64] KVM: Ensure 'params' is initialised when looking up sys register - [x86] MCE/AMD: Do not use rdmsr_safe_on_cpu() in smca_configure() - [x86] MCE/AMD: Allow Reserved types to be overwritten in smca_banks[] - [powerpc*] irq: fix stack overflow verification - [arm64] mmc: sdhci-msm: Correct the offset and value for DDR_CONFIG register - mmc: sdhci: Update the tuning failed messages to pr_debug level - mmc: sdhci: Workaround broken command queuing on Intel GLK - mmc: sdhci: Add a quirk for broken command queuing - nbd: fix shutdown and recv work deadlock - perf probe: Fix to show function entry line as probe-able https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.93 - scsi: lpfc: Fix discovery failures when target device connectivity bounces - scsi: mpt3sas: Fix clear pending bit in ioctl status - scsi: lpfc: Fix locking on mailbox command completion - Input: atmel_mxt_ts - disable IRQ across suspend - f2fs: fix to update time in lazytime mode - [arm64,armhf] iommu: rockchip: Free domain on .domain_free - [arm64,armhf] iommu/tegra-smmu: Fix page tables in > 4 GiB memory - scsi: target: compare full CHAP_A Algorithm strings - scsi: lpfc: Fix SLI3 hba in loop mode not discovering devices - scsi: csiostor: Don't enable IRQs too early - [arm64] scsi: hisi_sas: Replace in_softirq() check in hisi_sas_task_exec() - [ppc64el] pseries: Mark accumulate_stolen_time() as notrace - [ppc64el] pseries: Don't fail hash page table insert for bolted mapping - clocksource/drivers/timer-of: Use unique device name instead of timer - [ppc64el] security/book3s64: Report L1TF status in sysfs - [ppc64el] book3s64/hash: Add cond_resched to avoid soft lockup warning - ext4: update direct I/O read lock pattern for IOCB_NOWAIT - ext4: iomap that extends beyond EOF should be marked dirty - jbd2: Fix statistics for the number of logged blocks - scsi: tracing: Fix handling of TRANSFER LENGTH == 0 for READ(6) and WRITE(6) - scsi: lpfc: Fix duplicate unreg_rpi error in port offline flow - f2fs: fix to update dir's i_pino during cross_rename - [arm64] clk: qcom: Allow constant ratio freq tables for rcg - clk: clk-gpio: propagate rate change to parent - fs/quota: handle overflows of sysctl fs.quota.* and report as unsigned long - scsi: lpfc: fix: Coverity: lpfc_cmpl_els_rsp(): Null pointer dereferences - [ppc64el] PCI: rpaphp: Fix up pointer to first drc-info entry - scsi: ufs: fix potential bug which ends in system hang - [ppc64el] PCI: rpaphp: Don't rely on firmware feature to imply drc-info support - [ppc64el] PCI: rpaphp: Annotate and correctly byte swap DRC properties - [ppc64el] PCI: rpaphp: Correctly match ibm, my-drc-index to drc-name when using drc-info - [ppc64el] powerpc/security: Fix wrong message when RFI Flush is disable - bcache: at least try to shrink 1 node in bch_mca_scan() - HID: quirks: Add quirk for HP MSU1465 PIXART OEM mouse - HID: logitech-hidpp: Silence intermittent get_battery_capacity errors - [armhf] 8937/1: spectre-v2: remove Brahma-B53 from hardening - libnvdimm/btt: fix variable 'rc' set but not used - HID: Improve Windows Precision Touchpad detection. - HID: rmi: Check that the RMI_STARTED bit is set before unregistering the RMI transport device - watchdog: Fix the race between the release of watchdog_core_data and cdev - scsi: pm80xx: Fix for SATA device discovery - scsi: ufs: Fix error handing during hibern8 enter - scsi: scsi_debug: num_tgts must be >= 0 - scsi: iscsi: Don't send data to unbound connection - scsi: target: iscsi: Wait for all commands to finish before freeing a session - apparmor: fix unsigned len comparison with less than zero - scripts/kallsyms: fix definitely-lost memory leak - cdrom: respect device capabilities during opening action - perf script: Fix brstackinsn for AUXTRACE - perf regs: Make perf_reg_name() return "unknown" instead of NULL - [s390x] zcrypt: handle new reply code FILTERED_BY_HYPERVISOR - [s390x] cpum_sf: Check for SDBT and SDB consistency - ocfs2: fix passing zero to 'PTR_ERR' warning - kernel: sysctl: make drop_caches write-only - userfaultfd: require CAP_SYS_PTRACE for UFFD_FEATURE_EVENT_FORK - [x86] mce: Fix possibly incorrect severity calculation on AMD - net, sysctl: Fix compiler warning when only cBPF is present - netfilter: nf_queue: enqueue skbs with NULL dst - ALSA: hda - Downgrade error message for single-cmd fallback - bonding: fix active-backup transition after link failure - perf strbuf: Remove redundant va_end() in strbuf_addv() - Make filldir[64]() verify the directory entry filename is valid (CVE-2019-10220) - filldir[64]: remove WARN_ON_ONCE() for bad directory entries (CVE-2019-10220) - netfilter: ebtables: compat: reject all padding in matches/watchers - 6pack,mkiss: fix possible deadlock - netfilter: bridge: make sure to pull arp header in br_nf_forward_arp() - inetpeer: fix data-race in inet_putpeer / inet_putpeer - net: add a READ_ONCE() in skb_peek_tail() - net: icmp: fix data-race in cmp_global_allow() - hrtimer: Annotate lockless access to timer->state - net: ena: fix napi handler misbehavior when the napi budget is zero - net/mlxfw: Fix out-of-memory error in mfa2 flash burning - [arm64,armhf] net: stmmac: dwmac-meson8b: Fix the RGMII TX delay on Meson8b/8m2 SoCs - ptp: fix the race between the release of ptp_clock and cdev - tcp: Fix highest_sack and highest_sack_seq - udp: fix integer overflow while computing available space in sk_rcvbuf - vhost/vsock: accept only packets with the right dst_cid - net: add bool confirm_neigh parameter for dst_ops.update_pmtu - ip6_gre: do not confirm neighbor when do pmtu update - gtp: do not confirm neighbor when do pmtu update - net/dst: add new function skb_dst_update_pmtu_no_confirm - tunnel: do not confirm neighbor when do pmtu update - vti: do not confirm neighbor when do pmtu update - sit: do not confirm neighbor when do pmtu update - net/dst: do not confirm neighbor for vxlan and geneve pmtu update - gtp: do not allow adding duplicate tid and ms_addr pdp context - [arm64,armhf] net: marvell: mvpp2: phylink requires the link interrupt - tcp/dccp: fix possible race __inet_lookup_established() - tcp: do not send empty skb from tcp_write_xmit() - gtp: fix wrong condition in gtp_genl_dump_pdp() - gtp: fix an use-after-free in ipv4_pdp_find() - gtp: avoid zero size hashtable - [arm64,armhf] pinctrl: baytrail: Really serialize all register accesses https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.94 - nvme_fc: add module to ops template to allow module references - nvme-fc: fix double-free scenarios on hw queues - drm/amdgpu: add check before enabling/disabling broadcast mode - drm/amdgpu: add cache flush workaround to gfx8 emit_fence - PM / devfreq: Fix devfreq_notifier_call returning errno - PM / devfreq: Set scaling_max_freq to max on OPP notifier error - PM / devfreq: Don't fail devfreq_dev_release if not in list - afs: Fix afs_find_server lookups for ipv4 peers - afs: Fix SELinux setting security label on /afs - RDMA/cma: add missed unregister_pernet_subsys in init failure - rxe: correctly calculate iCRC for unaligned payloads - scsi: lpfc: Fix memory leak on lpfc_bsg_write_ebuf_set func - scsi: qla2xxx: Drop superfluous INIT_WORK of del_work - scsi: qla2xxx: Don't call qlt_async_event twice - scsi: qla2xxx: Fix PLOGI payload and ELS IOCB dump length - scsi: qla2xxx: Configure local loop for N2N target - scsi: qla2xxx: Send Notify ACK after N2N PLOGI - scsi: qla2xxx: Ignore PORT UPDATE after N2N PLOGI - scsi: iscsi: qla4xxx: fix double free in probe - scsi: libsas: stop discovering if oob mode is disconnected (CVE-2019-19965) - drm/nouveau: Move the declaration of struct nouveau_conn_atom up a bit - usb: gadget: fix wrong endpoint desc - net: make socket read/write_iter() honor IOCB_NOWAIT - afs: Fix creation calls in the dynamic root to fail with EOPNOTSUPP - md: raid1: check rdev before reference in raid1_sync_request func - [s390x] cpum_sf: Adjust sampling interval to avoid hitting sample limits - [s390x] cpum_sf: Avoid SBD overflow condition in irq handler - IB/mlx4: Follow mirror sequence of device add during device removal - IB/mlx5: Fix steering rule of drop and count - xen-blkback: prevent premature module unload - xen/balloon: fix ballooned page accounting without hotplug enabled - PM / hibernate: memory_bm_find_bit(): Tighten node optimisation - ALSA: hda/realtek - Add Bass Speaker and fixed dac for bass speaker - ALSA: hda/realtek - Enable the bass speaker of ASUS UX431FLC - ALSA: hda - fixup for the bass speaker on Lenovo Carbon X1 7th gen - xfs: fix mount failure crash on invalid iclog memory access - taskstats: fix data-race - drm: limit to INT_MAX in create_blob ioctl - netfilter: nft_tproxy: Fix port selector on Big Endian - ALSA: ice1724: Fix sleep-in-atomic in Infrasonic Quartet support code - ALSA: usb-audio: fix set_format altsetting sanity check - ALSA: usb-audio: set the interface format after resume on Dell WD19 - ALSA: hda/realtek - Add headset Mic no shutup for ALC283 - [arm64,armhf] drm/sun4i: hdmi: Remove duplicate cleanup calls - [mips*] Avoid VDSO ABI breakage due to global register variable - media: pulse8-cec: fix lost cec_transmit_attempt_done() call - media: cec: CEC 2.0-only bcast messages were ignored - media: cec: avoid decrementing transmit_queue_sz if it is 0 - media: cec: check 'transmit_in_progress', not 'transmitting' - mm/zsmalloc.c: fix the migrated zspage statistics. - memcg: account security cred as well to kmemcg - mm: move_pages: return valid node id in status if the page is already on the target node - [x86,arm64] pstore/ram: Write new dumps to start of recycled zones - locks: print unsigned ino in /proc/locks - compat_ioctl: block: handle Persistent Reservations - compat_ioctl: block: handle BLKREPORTZONE/BLKRESETZONE - ata: libahci_platform: Export again ahci_platform_able_phys() - libata: Fix retrieving of active qcs - gpiolib: fix up emulated open drain outputs - tracing: Fix lock inversion in trace_event_enable_tgid_record() - tracing: Avoid memory leak in process_system_preds() - tracing: Have the histogram compare functions convert to u64 first - tracing: Fix endianness bug in histogram trigger - apparmor: fix aa_xattrs_match() may sleep while holding a RCU lock - [i386] ALSA: cs4236: fix error return comparison of an unsigned integer - ALSA: firewire-motu: Correct a typo in the clock proc string - exit: panic before exit_mm() on global init exit - [arm64] Revert support for execute-only user mappings - ftrace: Avoid potential division by zero in function profiler - [arm64] drm/msm: include linux/sched/task.h - PM / devfreq: Check NULL governor in available_governors_show - nfsd4: fix up replay_matches_cache() - [x86,arm64] HID: i2c-hid: Reset ALPS touchpads on resume - ACPI: sysfs: Change ACPI_MASKABLE_GPE_MAX to 0x100 - xfs: don't check for AG deadlock for realtime files in bunmapi - [x86] platform/x86: pmc_atom: Add Siemens CONNECT X300 to critclk_systems DMI table - Bluetooth: btusb: fix PM leak in error case of setup - Bluetooth: delete a stray unlock - Bluetooth: Fix memory leak in hci_connect_le_scan - media: flexcop-usb: ensure -EIO is returned on error condition - media: usb: fix memory leak in af9005_identify_state (CVE-2019-18809) - [arm64] dts: meson: odroid-c2: Disable usb_otg bus to avoid power failed warning - [arm64] tty: serial: msm_serial: Fix lockup for sysrq and oops - fix compat handling of FICLONERANGE, FIDEDUPERANGE and FS_IOC_FIEMAP - bdev: Factor out bdev revalidation into a common helper - bdev: Refresh bdev size for disks without partitioning - scsi: qedf: Do not retry ELS request if qedf_alloc_cmd fails - drm/mst: Fix MST sideband up-reply failure handling - [ppc64el] pseries/hvconsole: Fix stack overread via udbg - [ppc64el] KVM: PPC: Book3S HV: use smp_mb() when setting/clearing host_ipi flag - rxrpc: Fix possible NULL pointer access in ICMP handling - tcp: annotate tp->rcv_nxt lockless reads - net: core: limit nested device depth - ath9k_htc: Modify byte order for an error message - ath9k_htc: Discard undersized packets - xfs: periodically yield scrub threads to the scheduler - net: add annotations on hh->hh_len lockless accesses - ubifs: ubifs_tnc_start_commit: Fix OOB in layout_in_gaps - [s390x] smp: fix physical to logical CPU map for SMT - xen/blkback: Avoid unmapping unmapped grant pages - [x86] perf/x86/intel/bts: Fix the use of page_private() https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.95 - bpf: Fix passing modified ctx to ld/abs/ind instruction - regulator: fix use after free issue - ASoC: max98090: fix possible race conditions - netfilter: ctnetlink: netns exit must wait for callbacks - mwifiex: Fix heap overflow in mmwifiex_process_tdls_action_frame() (CVE-2019-14901) - [x86] efi: Update e820 with reserved EFI boot services data to fix kexec breakage - [x86] ASoC: Intel: bytcr_rt5640: Update quirk for Teclast X89 - efi/gop: Return EFI_NOT_FOUND if there are no usable GOPs - efi/gop: Return EFI_SUCCESS if a usable GOP was found - efi/gop: Fix memory leak in __gop_query32/64() - netfilter: uapi: Avoid undefined left-shift in xt_sctp.h - netfilter: nft_set_rbtree: bogus lookup/get on consecutive elements in named sets - netfilter: nf_tables: validate NFT_SET_ELEM_INTERVAL_END - netfilter: nf_tables: validate NFT_DATA_VALUE after nft_data_init() - [arm64] spi: spi-cavium-thunderx: Add missing pci_release_regions() - ASoC: topology: Check return value for soc_tplg_pcm_create() - bnxt_en: Return error if FW returns more data than dump length - [mips*] bpf, mips: Limit to 33 tail calls - [armhf] spi: spi-ti-qspi: Fix a bug when accessing non default CS - [powerpc*] Ensure that swiotlb buffer is allocated from low memory - btrfs: Fix error messages in qgroup_rescan_init - bpf: Clear skb->tstamp in bpf_redirect when necessary - bnx2x: Do not handle requests from VFs after parity - bnx2x: Fix logic to get total no. of PFs per engine - cxgb4: Fix kernel panic while accessing sge_info - net: usb: lan78xx: Fix error message format specifier - rfkill: Fix incorrect check to avoid NULL pointer dereference - iommu/iova: Init the struct iova to fix the possible memleak - [x86] perf/x86/intel: Fix PT PMI handling - fs: avoid softlockups in s_inodes iterators - [arm64,armhf] net: stmmac: Do not accept invalid MTU values - [arm64,armhf] net: stmmac: xgmac: Clear previous RX buffer size - [arm64,armhf] net: stmmac: RX buffer size must be 16 byte aligned - [arm64,armhf] net: stmmac: Always arm TX Timer at end of transmission start - [s390x] dasd/cio: Interpret ccw_device_get_mdc return value correctly - [s390x] dasd: fix memleak in path handling error case - block: fix memleak when __blk_rq_map_user_iov() is failed - llc2: Fix return statement of llc_stat_ev_rx_null_dsap_xid_c (and _test_c) - [x86] hv_netvsc: Fix unwanted rx_table reset - [powerpc*] vcpu: Assume dedicated processors as non-preempt - [powerpc*] spinlocks: Include correct header for static key - [armhf] cpufreq: imx6q: read OCOTP through nvmem for imx6ul/imx6ull - gtp: fix bad unlock balance in gtp_encap_enable_socket - macvlan: do not assume mac_header is set in macvlan_broadcast() - [arm64,armhf] net: dsa: mv88e6xxx: Preserve priority when setting CPU port. - [arm64,armhf] net: stmmac: dwmac-sun8i: Allow all RGMII modes - [arm64,armhf] net: stmmac: dwmac-sunxi: Allow all RGMII modes - net: usb: lan78xx: fix possible skb leak - pkt_sched: fq: do not accept silly TCA_FQ_QUANTUM - sch_cake: avoid possible divide by zero in cake_enqueue() - sctp: free cmd->obj.chunk for the unprocessed SCTP_CMD_REPLY - tcp: fix "old stuff" D-SACK causing SACK to be treated as D-SACK - vxlan: fix tos value before xmit - vlan: fix memory leak in vlan_dev_set_egress_priority - vlan: vlan_changelink() should propagate errors - net: sch_prio: When ungrafting, replace with FIFO - [arm64,armhf] usb: dwc3: gadget: Fix request complete check - USB: core: fix check for duplicate endpoints - USB: serial: option: add Telit ME910G1 0x110a composition - usb: missing parentheses in USE_NEW_SCHEME https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.96 - chardev: Avoid potential use-after-free in 'chrdev_open()' - i2c: fix bus recovery stop mode timing - [arm64,armhf] usb: chipidea: host: Disable port power only if previously enabled - ALSA: usb-audio: Apply the sample rate quirk for Bose Companion 5 - ALSA: hda/realtek - Add new codec supported for ALCS1200A - ALSA: hda/realtek - Set EAPD control to default for ALC222 - [x86] ALSA: hda/realtek - Add quirk for the bass speaker on Lenovo Yoga X1 7th gen - kernel/trace: Fix do not unregister tracepoints when register sched_migrate_task fail - tracing: Have stack tracer compile when MCOUNT_INSN_SIZE is not defined - tracing: Change offset type to s32 in preempt/irq tracepoints - HID: Fix slab-out-of-bounds read in hid_field_extract - HID: uhid: Fix returning EPOLLOUT from uhid_char_poll - HID: hid-input: clear unmapped usages - Input: add safety guards to input_set_keycode() - [arm64,armhf] drm/sun4i: tcon: Set RGB DCLK min. divider based on hardware model - drm/fb-helper: Round up bits_per_pixel if possible - drm/dp_mst: correct the shifting in DP_REMOTE_I2C_READ - can: kvaser_usb: fix interface sanity check - can: gs_usb: gs_usb_probe(): use descriptors of current altsetting - can: can_dropped_invalid_skb(): ensure an initialized headroom in outgoing CAN sk_buffs - gpiolib: acpi: Turn dmi_system_id table into a generic quirk table - gpiolib: acpi: Add honor_wakeup module-option + quirk mechanism - [x86] staging: vt6656: set usb_set_intfdata on driver fail. - USB: serial: option: add ZLP support for 0x1bc7/0x9010 - [arm64,armhf] usb: musb: fix idling for suspend after disconnect interrupt - [arm64,armhf] usb: musb: Disable pullup at init - [arm64,armhf] usb: musb: dma: Correct parameter passed to IRQ handler - [x86] staging: comedi: adv_pci1710: fix AI channels 16-31 for PCI-1713 - staging: rtl8188eu: Add device code for TP-Link TL-WN727N v5.21 - serdev: Don't claim unsupported ACPI serial devices - tty: link tty and port before configuring it as console - tty: always relink the port - mwifiex: fix possible heap overflow in mwifiex_process_country_ie() (CVE-2019-14895) - mwifiex: pcie: Fix memory leak in mwifiex_pcie_alloc_cmdrsp_buf (CVE-2019-19056) - scsi: bfa: release allocated memory in case of error (CVE-2019-19066) - rtl8xxxu: prevent leaking urb (CVE-2019-19068) - ath10k: fix memory leak (CVE-2019-19078) - HID: hiddev: fix mess in hiddev_open() - USB: Fix: Don't skip endpoint descriptors with maxpacket=0 - netfilter: arp_tables: init netns pointer in xt_tgchk_param struct - netfilter: conntrack: dccp, sctp: handle null timeout argument - netfilter: ipset: avoid null deref when IPSET_ATTR_LINENO is present - [x86] drm/i915/gen9: Clear residual context state on context switch (CVE-2019-14615) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.97 - hidraw: Return EPOLLOUT from hidraw_poll - HID: hidraw: Fix returning EPOLLOUT from hidraw_poll - HID: hidraw, uhid: Always report EPOLLOUT - cfg80211/mac80211: make ieee80211_send_layer2_update a public function - mac80211: Do not send Layer 2 Update frame before authorization (CVE-2019-5108) - f2fs: Move err variable to function scope in f2fs_fill_dentries() - f2fs: check memory boundary by insane namelen - f2fs: check if file namelen exceeds max value (CVE-2019-9445) - media: usb:zr364xx:Fix KASAN:null-ptr-deref Read in zr364xx_vidioc_querycap (CVE-2019-15217) - iwlwifi: dbg_ini: fix memory leak in alloc_sgtable (CVE-2019-19058) - iwlwifi: pcie: fix memory leaks in iwl_pcie_ctxt_info_gen3_init (CVE-2019-19059) - RDMA: Fix goto target to release the allocated memory (CVE-2019-19077) - dccp: Fix memleak in __feat_register_sp (CVE-2019-20096) - [x86] drm/i915: Fix use-after-free when destroying GEM context - ASoC: soc-core: Set dpcm_playback / dpcm_capture - [armhf] mtd: onenand: omap2: Pass correct flags for prep_dma_memcpy - [arm64] gpio: zynq: Fix for bug in zynq_gpio_restore_context API - iommu: Remove device link to group on failure - gpio: Fix error message on out-of-range GPIO in lookup table - [s390x] qeth: fix false reporting of VNIC CHAR config failure - [s390x] qeth: Fix vnicc_is_in_use if rx_bcast not set - cifs: Adjust indentation in smb2_open_file - afs: Fix missing cell comparison in afs_test_super() - drm/ttm: fix start page for huge page check in ttm_put_pages() (CVE-2019-19927) - drm/ttm: fix incrementing the page pointer for huge pages (CVE-2019-19927) - btrfs: simplify inode locking for RWF_NOWAIT - RDMA/mlx5: Return proper error value - RDMA/srpt: Report the SCSI residual to the initiator - scsi: enclosure: Fix stale device oops with hot replug - scsi: sd: Clear sdkp->protection_type if disk is reformatted without PI - [x86] platform/x86: asus-wmi: Fix keyboard brightness cannot be set to 0 - [x86] platform/x86: GPD pocket fan: Use default values when wrong modparams are given - xprtrdma: Fix completion wait during device removal - crypto: virtio - implement missing support for output IVs - NFSv2: Fix a typo in encode_sattr() - NFSv4.x: Drop the slot if nfs4_delegreturn_prepare waits for layoutreturn - mei: fix modalias documentation - [armhf] clk: samsung: exynos5420: Preserve CPU clocks configuration during suspend/resume - [armhf] pinctl: ti: iodelay: fix error checking on pinctrl_count_index_with_args call - [x86] pinctrl: lewisburg: Update pin list according to v1.1v6 - scsi: sd: enable compat ioctls for sed-opal - af_unix: add compat_ioctl support - compat_ioctl: handle SIOCOUTQNSD - [arm64,armhf] PCI: dwc: Fix find_next_bit() usage - PCI/PTM: Remove spurious "d" from granularity message - [powerpc*] powernv: Disable native PCIe port management - [armhf] tty: serial: imx: use the sg count from dma_map_sg - [i386] tty: serial: pch_uart: correct usage of dma_unmap_sg - mtd: spi-nor: fix silent truncation in spi_nor_read() - mtd: spi-nor: fix silent truncation in spi_nor_read_raw() - rtlwifi: Remove unnecessary NULL check in rtl_regd_init - f2fs: fix potential overflow - scsi: libcxgbi: fix NULL pointer dereference in cxgbi_device_destroy() - [mips*] cacheinfo: report shared CPU map - [arm64] drm/arm/mali: make malidp_mw_connector_helper_funcs static - [arm64] dmaengine: k3dma: Avoid null pointer traversal - [amd64] ioat: ioat_alloc_ring() failure handling. - ocfs2: call journal flush to mark journal as empty after journal recovery when mount https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.98 - clk: Don't try to enable critical clocks if prepare failed - iio: buffer: align the size of scan bytes to size of the largest element - USB: serial: simple: Add Motorola Solutions TETRA MTP3xxx and MTP85xx - USB: serial: option: Add support for Quectel RM500Q - USB: serial: opticon: fix control-message timeouts - USB: serial: option: add support for Quectel RM500Q in QDL mode - USB: serial: suppress driver bind attributes - USB: serial: ch341: handle unbound port at reset_resume - USB: serial: io_edgeport: handle unbound ports on URB completion - USB: serial: io_edgeport: add missing active-port sanity check - USB: serial: keyspan: handle unbound ports - USB: serial: quatech2: handle unbound ports - [x86] scsi: fnic: fix invalid stack access - scsi: mptfusion: Fix double fetch bug in ioctl - [armhf] dts: imx6q-dhcom: Fix SGTL5000 VDDIO regulator connection - ALSA: dice: fix fallback from protocol extension into limited functionality - ALSA: seq: Fix racy access for queue timer in proc read - ALSA: usb-audio: fix sync-ep altsetting sanity check - [arm64] dts: allwinner: a64: olinuxino: Fix SDIO supply regulator - block: fix an integer overflow in logical block size - [armhf] dts: am571x-idk: Fix gpios property to have the correct gpio number - LSM: generalize flag passing to security_capable - ptrace: reintroduce usage of subjective credentials in ptrace_has_cap() - usb: core: hub: Improved device recognition on remote wakeup - [x86] resctrl: Fix an imbalance in domain_remove_cpu() - [x86] CPU/AMD: Ensure clearing of SME/SEV features is maintained - [amd64] x86/efistub: Disable paging at mixed mode entry - [x86] resctrl: Fix potential memory leak - perf hists: Fix variable name's inconsistency in hists__for_each() macro - perf report: Fix incorrectly added dimensions as switch perf data file - mm/shmem.c: thp, shmem: fix conflict of above-47bit hint address and PMD alignment - mm: memcg/slab: call flush_memcg_workqueue() only if memcg workqueue is valid - btrfs: rework arguments of btrfs_unlink_subvol - btrfs: fix invalid removal of root ref - btrfs: do not delete mismatched root refs - btrfs: fix memory leak in qgroup accounting - mm/page-writeback.c: avoid potential division by zero in wb_min_max_ratio() - [armhf] dts: imx6qdl: Add Engicam i.Core 1.5 MX6 - [armhf] dts: imx6q-icore-mipi: Use 1.5 version of i.Core MX6DL - [arm64,armhf] net: stmmac: 16KB buffer must be 16 byte aligned - [arm64,armhf] net: stmmac: Enable 16KB buffer size - mm/huge_memory.c: make __thp_get_unmapped_area static - mm/huge_memory.c: thp: fix conflict of above-47bit hint address and PMD alignment - bpf: Fix incorrect verifier simulation of ARSH under ALU32 - cfg80211: fix deadlocks in autodisconnect work - cfg80211: fix memory leak in cfg80211_cqm_rssi_update - cfg80211: fix page refcount issue in A-MSDU decap - netfilter: fix a use-after-free in mtype_destroy() - netfilter: arp_tables: init netns pointer in xt_tgdtor_param struct - netfilter: nft_tunnel: fix null-attribute check - netfilter: nf_tables: remove WARN and add NLA_STRING upper limits - netfilter: nf_tables: store transaction list locally while requesting module - netfilter: nf_tables: fix flowtable list del corruption - NFC: pn533: fix bulk-message timeout - batman-adv: Fix DAT candidate selection on little endian systems - macvlan: use skb_reset_mac_header() in macvlan_queue_xmit() - [x86] hv_netvsc: Fix memory leak when removing rndis device - [arm64] net: hns: fix soft lockup when there is not enough memory - net: usb: lan78xx: limit size of local TSO packets - ptp: free ptp device pin descriptors properly - r8152: add missing endpoint sanity check - tcp: fix marked lost packets not being retransmitted - xen/blkfront: Adjust indentation in xlvbd_alloc_gendisk - tcp: refine rule to allow EPOLLOUT generation under mem pressure - [arm64] dts: meson-gxl-s905x-khadas-vim: fix gpio-keys-polled node - cfg80211: check for set_wiphy_params - tick/sched: Annotate lockless access to last_jiffies_update - drm/nouveau/bar/nv50: check bar1 vmm return value - drm/nouveau/bar/gf100: ensure BAR is mapped - drm/nouveau/mmu: qualify vmm during dtor - reiserfs: fix handling of -EOPNOTSUPP in reiserfs_for_each_xattr - scsi: esas2r: unlock on error in esas2r_nvram_read_direct() - scsi: qla4xxx: fix double free bug - scsi: bnx2i: fix potential use after free - scsi: target: core: Fix a pr_debug() argument - scsi: qla2xxx: Fix qla2x00_request_irqs() for MSI - scsi: qla2xxx: fix rports not being mark as lost in sync fabric scan - scsi: core: scsi_trace: Use get_unaligned_be*() - perf probe: Fix wrong address verification . [ Joe Richey ] * [cloud-amd64] tpm: Enable TPM drivers for Cloud (Closes: #946237) . [ Salvatore Bonaccorso ] * Refresh powerpc-fix-mcpu-options-for-spe-only-compiler.patch (Context changes in 4.19.88) * Drop 0027-RDMA-hns-Fix-the-bug-with-updating-rq-head-pointer-w.patch * Drop 0028-RDMA-hns-Bugfix-for-the-scene-without-receiver-queue.patch * [rt] Refresh 0199-net-move-xmit_recursion-to-per-task-variable-on-RT.patch (Context changes in 4.19.88) * [rt] Update to 4.19.90-rt35: - Update "workqueue: rework" for workqueue changes in 4.19.90 * [rt] Drop 0245-Revert-arm64-preempt-Fix-big-endian-when-checking-pr.patch * Refresh 0013-scsi-hisi_sas-Relocate-some-codes-to-avoid-an-unused.patch for context changes in 4.19.93. * [rt] Refresh 0253-watchdog-prevent-deferral-of-watchdogd-wakeup-on-RT.patch (Context changes in 4.19.93) * [rt] Refresh 0199-net-move-xmit_recursion-to-per-task-variable-on-RT.patch (Context changes in 4.19.97) . [ Ben Hutchings ] * [rt] Update to 4.19.94-rt38: - Refresh "x86/ioapic: Don't let setaffinity unmask threaded EOI interrupt too early" which was partly included in 4.19.92 * aufs: Update support patchset to aufs4.19.63+ 20200113; no functional changes * Bump ABI to 8 * libertas: Fix two buffer overflows at parsing bss descriptor (CVE-2019-14896, CVE-2019-14897) * wimax: i2400: fix memory leak (CVE-2019-19051) * wimax: i2400: Fix memory leak in i2400m_op_rfkill_sw_toggle (CVE-2019-19051) * [amd64/cloud-amd64] hwrandom: Enable HW_RANDOM_VIRTIO (Closes: #914511) . [ Noah Meyerhans ] * random: try to actively add entropy rather than passively wait for it (Closes: #948519) . [ Aurelien Jarno ] * [mips*/malta] Enable POWER_RESET_PIIX4_POWEROFF. linux-signed-i386 (4.19.87+1) buster; urgency=medium . * Sign kernel from linux 4.19.87-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.68 - seq_file: fix problem when seeking mid-record - mm/hmm: fix bad subpage pointer in try_to_unmap_one - mm: mempolicy: make the behavior consistent when MPOL_MF_MOVE* and MPOL_MF_STRICT were specified - mm: mempolicy: handle vma with unmovable pages mapped correctly in mbind - mm/memcontrol.c: fix use after free in mem_cgroup_iter() - mm/usercopy: use memory range to be accessed for wraparound check - Revert "pwm: Set class for exported channels in sysfs" - cpufreq: schedutil: Don't skip freq update when limits change - [x86] ALSA: hda/realtek - Add quirk for HP Envy x360 - ALSA: hda - Apply workaround for another AMD chip 1022:1487 - ALSA: hda - Fix a memory leak bug - ALSA: hda - Add a generic reboot_notify - ALSA: hda - Let all conexant codec enter D3 when rebooting - HID: holtek: test for sanity of intfdata - HID: hiddev: avoid opening a disconnected device - HID: hiddev: do cleanup in failure of opening a device - Input: kbtab - sanity check for endpoint type - Input: iforce - add sanity checks - net: usb: pegasus: fix improper read if get_registers() fail - netfilter: ebtables: also count base chain policies - xen/pciback: remove set but not used variable 'old_state' - [armhf,arm64] irqchip/gic-v3-its: Free unused vpt_page when alloc vpe table fail - perf header: Fix divide by zero error if f_header.attr_size==0 - perf header: Fix use of unitialized value warning - libata: zpodd: Fix small read overflow in zpodd_get_mech_type() - Btrfs: fix deadlock between fiemap and transaction commits - scsi: hpsa: correct scsi command status issue after reset - scsi: qla2xxx: Fix possible fcport null-pointer dereferences - drm/amdgpu: fix a potential information leaking bug - ata: libahci: do not complain in case of deferred probe - kbuild: modpost: handle KBUILD_EXTRA_SYMBOLS only for external modules - [arm64] efi: fix variable 'si' set but not used - [arm64] unwind: Prohibit probing on return_address() - [arm64] mm: fix variable 'pud' set but not used - IB/core: Add mitigation for Spectre V1 - IB/mlx5: Fix MR registration flow to use UMR properly - IB/mad: Fix use-after-free in ib mad completion handling - [arm64] drm: msm: Fix add_gpu_components - [armhf] drm/exynos: fix missing decrement of retry counter - ocfs2: remove set but not used variable 'last_hash' - asm-generic: fix -Wtype-limits compiler warnings - [arm64] KVM: regmap: Fix unexpected switch fall-through - [armhf,arm64] KVM: Sync ICH_VMCR_EL2 back when about to block - [x86] staging: comedi: dt3000: Fix signed integer overflow 'divider * base' - [x86] staging: comedi: dt3000: Fix rounding up of timer divisor - USB: core: Fix races in character device registration and deregistraion - usb: cdc-acm: make sure a refcount is taken early enough - USB: CDC: fix sanity checks in CDC union parser - USB: serial: option: add D-Link DWM-222 device ID - USB: serial: option: Add support for ZTE MF871A - USB: serial: option: add the BroadMobi BM818 card - USB: serial: option: Add Motorola modem UARTs - [x86] drm/i915/cfl: Add a new CFL PCI ID. - [arm64] ftrace: Ensure module ftrace trampoline is coherent with I-side - Input: psmouse - fix build error of multiple definition - bnx2x: Fix VF's VLAN reconfiguration in reload. - bonding: Add vlan tx offload to hw_enc_features - net: dsa: Check existence of .port_mdb_add callback before calling it - net/mlx4_en: fix a memory leak bug - net/packet: fix race in tpacket_snd() - sctp: fix memleak in sctp_send_reset_streams - sctp: fix the transport error_count check - team: Add vlan tx offload to hw_enc_features - tipc: initialise addr_trail_end when setting node addresses - xen/netback: Reset nr_frags before freeing skb - net/mlx5e: Only support tx/rx pause setting for port owner - net/mlx5e: Use flow keys dissector to parse packets for ARFS - [arm64] mmc: sdhci-of-arasan: Do now show error message in case of deffered probe https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.69 - HID: Add 044f:b320 ThrustMaster, Inc. 2 in 1 DT - [mips*] kernel: only use i8253 clocksource with periodic clockevent - [mips*] fix cacheinfo - netfilter: ebtables: fix a memory leak bug in compat - ASoC: dapm: Fix handling of custom_stop_condition on DAPM graph walks - bonding: Force slave speed check after link state recovery for 802.3ad - [armhf,arm64] net: mvpp2: Don't check for 3 consecutive Idle frames for 10G links - can: dev: call netif_carrier_off() in register_candev() - can: gw: Fix error path of cgw_module_init - [armhf,arm64] ASoC: rockchip: Fix mono capture - [armhf] ASoC: ti: davinci-mcasp: Correct slot_width posed constraint - net: usb: qmi_wwan: Add the BroadMobi BM818 card - qed: RDMA - Fix the hw_ver returned in device attributes - isdn: mISDN: hfcsusb: Fix possible null-pointer dereferences in start_isoc_chain() - mac80211_hwsim: Fix possible null-pointer dereferences in hwsim_dump_radio_nl() - netfilter: ipset: Actually allow destination MAC address for hash:ip,mac sets too - netfilter: ipset: Copy the right MAC address in bitmap:ip,mac and hash:ip,mac sets - netfilter: ipset: Fix rename concurrency with listing - rxrpc: Fix potential deadlock - rxrpc: Fix the lack of notification when sendmsg() fails on a DATA packet - isdn: hfcsusb: Fix mISDN driver crash caused by transfer buffer on the stack - net: phy: phy_led_triggers: Fix a possible null-pointer dereference in phy_led_trigger_change_speed() - can: sja1000: force the string buffer NULL-terminated - can: peak_usb: force the string buffer NULL-terminated - net/ethernet/qlogic/qed: force the string buffer NULL-terminated - NFSv4: Fix a potential sleep while atomic in nfs4_do_reclaim() - NFS: Fix regression whereby fscache errors are appearing on 'nofsc' mounts - HID: quirks: Set the INCREMENT_USAGE_ON_DUPLICATE quirk on Saitek X52 - HID: input: fix a4tech horizontal wheel custom usage - [armhf,arm64] drm/rockchip: Suspend DP late - SMB3: Fix potential memory leak when processing compound chain - SMB3: Kernel oops mounting a encryptData share with CONFIG_DEBUG_VIRTUAL - [s390x] put _stext and _etext into .text section - net: cxgb3_main: Fix a resource leak in a error path in 'init_one()' - [armhf,arm64] net: stmmac: Fix issues when number of Queues >= 4 - [armhf,arm64] net: stmmac: tc: Do not return a fragment entry - [arm64] net: hisilicon: make hip04_tx_reclaim non-reentrant - [arm64] net: hisilicon: fix hip04-xmit never return TX_BUSY - [arm64] net: hisilicon: Fix dma_map_single failed on arm64 - libata: have ata_scsi_rw_xlat() fail invalid passthrough requests - libata: add SG safety checks in SFF pio transfers - [x86] lib/cpu: Address missing prototypes warning - [x86] drm/vmwgfx: fix memory leak when too many retries have occurred - block, bfq: handle NULL return value by bfq_init_rq() - perf ftrace: Fix failure to set cpumask when only one cpu is present - perf cpumap: Fix writing to illegal memory in handling cpumap mask - perf pmu-events: Fix missing "cpu_clk_unhalted.core" event - [arm64] KVM: Don't write junk to sysregs on reset - [armhf] KVM: Don't write junk to CP15 registers on reset - HID: wacom: correct misreported EKR ring values - HID: wacom: Correct distance scale for 2nd-gen Intuos devices - Revert "dm bufio: fix deadlock with loop device" (regression in 4.19.61) - ceph: clear page dirty before invalidate page - ceph: don't try fill file_lock on unsuccessful GETFILELOCK reply - libceph: fix PG split vs OSD (re)connect race - drm/nouveau: Don't retry infinitely when receiving no data on i2c over AUX - gpiolib: never report open-drain/source lines as 'input' to user-space - [x86] Drivers: hv: vmbus: Fix virt_to_hvpfn() for X86_PAE - userfaultfd_release: always remove uffd flags and clear vm_userfaultfd_ctx - [i386] retpoline: Don't clobber RFLAGS during CALL_NOSPEC on i386 - [x86] apic: Handle missing global clockevent gracefully - [x86] CPU/AMD: Clear RDRAND CPUID bit on AMD family 15h/16h - [x86] boot: Save fields explicitly, zero out everything else - [x86] boot: Fix boot regression caused by bootparam sanitizing - dm kcopyd: always complete failed jobs - dm btree: fix order of block initialization in btree_split_beneath - dm integrity: fix a crash due to BUG_ON in __journal_read_write() - dm raid: add missing cleanup in raid_ctr() - dm space map metadata: fix missing store of apply_bops() return value - dm table: fix invalid memory accesses with too high sector number - dm zoned: improve error handling in reclaim - dm zoned: improve error handling in i/o map code - dm zoned: properly handle backing device failure - genirq: Properly pair kobject_del() with kobject_add() - mm, page_owner: handle THP splits correctly - mm/zsmalloc.c: migration can leave pages in ZS_EMPTY indefinitely - mm/zsmalloc.c: fix race condition in zs_destroy_pool - xfs: don't trip over uninitialized buffer on extent read of corrupted inode - xfs: Move fs/xfs/xfs_attr.h to fs/xfs/libxfs/xfs_attr.h - xfs: Add helper function xfs_attr_try_sf_addname - xfs: Add attibute set and helper functions - xfs: Add attibute remove and helper functions - xfs: always rejoin held resources during defer roll - dm zoned: fix potential NULL dereference in dmz_do_reclaim() - [ppc64el] Allow flush_(inval_)dcache_range to work across ranges >4GB - rxrpc: Fix local endpoint refcounting - rxrpc: Fix read-after-free in rxrpc_queue_local() - rxrpc: Fix local endpoint replacement - rxrpc: Fix local refcounting https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.70 - nvme-multipath: revalidate nvme_ns_head gendisk in nvme_validate_ns - afs: Fix the CB.ProbeUuid service handler to reply correctly - afs: Fix loop index mixup in afs_deliver_vl_get_entry_by_name_u() - fs: afs: Fix a possible null-pointer dereference in afs_put_read() - afs: Only update d_fsdata if different in afs_d_revalidate() - nvmet-loop: Flush nvme_delete_wq when removing the port - nvme: fix a possible deadlock when passthru commands sent to a multipath device - nvme-pci: Fix async probe remove race - [armhf] omap-dma/omap_vout_vrfb: fix off-by-one fi value - iommu/dma: Handle SG length overflow better - usb: gadget: composite: Clear "suspended" on reset/disconnect - usb: gadget: mass_storage: Fix races between fsg_disable and fsg_set_alt - xen/blkback: fix memory leaks - [arm64] cpufeature: Don't treat granule sizes as strict - drm/ast: Fixed reboot test may cause system hanged - [x86] tools: hv: fix KVP and VSS daemons exit code - [x86] drm/i915: fix broadwell EU computation - [arm*] watchdog: bcm2835_wdt: Fix module autoload - scsi: ufs: Fix RX_TERMINATION_FORCE_ENABLE define value - [armhf] drm/tilcdc: Register cpufreq notifier after we have initialized crtc - ipv6/addrconf: allow adding multicast addr if IFA_F_MCAUTOJOIN is set - ipv6: Default fib6_type to RTN_UNICAST when not set - net/smc: make sure EPOLLOUT is raised - tcp: make sure EPOLLOUT wont be missed - ipv4/icmp: fix rt dst dev null pointer dereference - mm/zsmalloc.c: fix build when CONFIG_COMPACTION=n - ALSA: usb-audio: Check mixer unit bitmap yet more strictly - ALSA: line6: Fix memory leak at line6_init_pcm() error path - ALSA: hda - Fixes inverted Conexant GPIO mic mute led - ALSA: seq: Fix potential concurrent access to the deleted pool - ALSA: usb-audio: Fix invalid NULL check in snd_emuusb_set_samplerate() - ALSA: usb-audio: Add implicit fb quirk for Behringer UFX1604 - [x86] kvm: skip populating logical dest map if apic is not sw enabled - [x86] KVM: Don't update RIP or do single-step on faulting emulation - [amd64] uprobes: Fix detection of 32-bit user mode - [x86] apic: Do not initialize LDR and DFR for bigsmp - ftrace: Fix NULL pointer dereference in t_probe_next() - ftrace: Check for successful allocation of hash - ftrace: Check for empty hash and comment the race with registering probes - usb-storage: Add new JMS567 revision to unusual_devs - USB: cdc-wdm: fix race between write and disconnect due to flag abuse - usb: hcd: use managed device resources - [armhf,arm64] usb: chipidea: udc: don't do hardware access if gadget has stopped - usb: host: ohci: fix a race condition between shutdown and irq - usb: host: xhci: rcar: Fix typo in compatible string matching - USB: storage: ums-realtek: Update module parameter description for auto_delink_en - USB: storage: ums-realtek: Whitelist auto-delink support - [x86] mei: me: add Tiger Lake point LP device ID - mmc: core: Fix init of SD cards reporting an invalid VDD range - stm class: Fix a double free of stm_source_device - [x86] intel_th: pci: Add support for another Lewisburg PCH - [x86] intel_th: pci: Add Tiger Lake support - [x86] typec: tcpm: fix a typo in the comparison of pdo_max_voltage - lib: logic_pio: Fix RCU usage - lib: logic_pio: Avoid possible overlap for unregistering regions - lib: logic_pio: Add logic_pio_unregister_range() - [x86] drm/amdgpu: Add APTX quirk for Dell Latitude 5495 - [x86] drm/i915: Don't deballoon unused ggtt drm_mm_node in linux guest - [x86] drm/i915: Call dma_set_max_seg_size() in i915_driver_hw_probe() - [arm64] bus: hisi_lpc: Unregister logical PIO range to avoid potential use-after-free - [arm64] bus: hisi_lpc: Add .remove method to avoid driver unbind crash - [x86] VMCI: Release resource if the work is already queued - [x86] crypto: ccp - Ignore unconfigured CCP device on suspend/resume - Revert "cfg80211: fix processing world regdomain when non modular" - mac80211: fix possible sta leak - mac80211: Don't memset RXCB prior to PAE intercept - mac80211: Correctly set noencrypt for PAE frames - [ppc64el] KVM: Book3S: Fix incorrect guest-to-user-translation error handling - [armhf,arm64] KVM: vgic: Fix potential deadlock when ap_list is long - [armhf,arm64] KVM: vgic-v2: Handle SGI bits in GICD_I{S,C}PENDR0 as WI - NFS: Clean up list moves of struct nfs_page - NFSv4/pnfs: Fix a page lock leak in nfs_pageio_resend() - NFS: Pass error information to the pgio error cleanup routine - NFS: Ensure O_DIRECT reports an error if the bytes read/written is 0 - [x86] i2c: piix4: Fix port selection for AMD Family 16h Model 30h - mt76: mt76x0u: do not reset radio on resume https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.71 - Revert "Input: elantech - enable SMBus on new (2018+) systems" (regression in 4.19.67) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.72 - mld: fix memory leak in mld_del_delrec() - net: fix skb use after free in netpoll - net: sched: act_sample: fix psample group handling on overwrite - net_sched: fix a NULL pointer deref in ipt action - [armhf,arm64] net: stmmac: dwmac-rk: Don't fail if phy regulator is absent - tcp: inherit timestamp on mtu probe - tcp: remove empty skb from write queue in error cases - net/rds: Fix info leak in rds6_inc_info_copy() (CVE-2019-16714) - [x86] boot: Preserve boot_params.secure_boot from sanitizing - [arm*] spi: bcm2835aux: unifying code between polling and interrupt driven code - [arm*] spi: bcm2835aux: remove dangerous uncontrolled read of fifo - [arm*] spi: bcm2835aux: fix corruptions for longer spi transfers - netfilter: nf_tables: use-after-free in failing rule with bound set - [x86] hv_netvsc: Fix a warning of suspicious RCU usage - Bluetooth: btqca: Add a short delay before downloading the NVM - [ppc64el] ibmveth: Convert multicast list size for little-endian system - gpio: Fix build error of function redefinition - netfilter: nft_flow_offload: skip tcp rst and fin packets - scsi: qla2xxx: Fix gnl.l memory leak on adapter init failure - scsi: target: tcmu: avoid use-after-free after command timeout - cxgb4: fix a memory leak bug - liquidio: add cleanup in octeon_setup_iq() - net: myri10ge: fix memory leaks - lan78xx: Fix memory leaks - vfs: fix page locking deadlocks when deduping files - cx82310_eth: fix a memory leak bug - net: kalmia: fix memory leaks - net: cavium: fix driver name - wimax/i2400m: fix a memory leak bug - kprobes: Fix potential deadlock in kprobe_optimizer() - HID: cp2112: prevent sleeping function called from invalid context - [amd64] boot/compressed: Fix boot on machines with broken E820 table - [x86] Input: hyperv-keyboard: Use in-place iterator API in the channel callback - [x86] Tools: hv: kvp: eliminate 'may be used uninitialized' warning - nvme-multipath: fix possible I/O hang when paths are updated - IB/mlx4: Fix memory leaks - infiniband: hfi1: fix a memory leak bug - infiniband: hfi1: fix memory leaks - ceph: fix buffer free while holding i_ceph_lock in __ceph_setxattr() - ceph: fix buffer free while holding i_ceph_lock in __ceph_build_xattrs_blob() - ceph: fix buffer free while holding i_ceph_lock in fill_inode() - [armhf,arm64] KVM: Only skip MMIO insn once - afs: Fix leak in afs_lookup_cell_rcu() - [armhf,arm64] KVM: VGIC: Properly initialise private IRQ affinity - [amd64] boot/compressed: Fix missing initialization in find_trampoline_placement() - libceph: allow ceph_buffer_put() to receive a NULL ceph_buffer https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.73 - ALSA: hda - Fix potential endless loop at applying quirks - ALSA: hda/realtek - Fix overridden device-specific initialization - [x86] ALSA: hda/realtek - Add quirk for HP Pavilion 15 - [x86] ALSA: hda/realtek - Enable internal speaker & headset mic of ASUS UX431FL - [x86] ALSA: hda/realtek - Fix the problem of two front mics on a ThinkCentre - sched/fair: Don't assign runtime for throttled cfs_rq - [x86] drm/vmwgfx: Fix double free in vmw_recv_msg() - [ppc64el] tm: Fix FP/VMX unavailable exceptions inside a transaction (CVE-2019-15030) - batman-adv: fix uninit-value in batadv_netlink_get_ifindex() - batman-adv: Only read OGM tvlv_len after buffer len check - [x86] hv_sock: Fix hang when a connection is closed - Blk-iolatency: warn on negative inflight IO counter - blk-iolatency: fix STS_AGAIN handling - {nl,mac}80211: fix interface combinations on crypto controlled devices - timekeeping: Use proper ktime_add when adding nsecs in coarse offset - selftests: fib_rule_tests: use pre-defined DEV_ADDR - [x86] ftrace: Fix warning and considate ftrace_jmp_replace() and ftrace_call_replace() - [ppc64el] mark start_here_multiplatform as __ref - [arm64] dts: rockchip: enable usb-host regulators at boot on rk3328-rock64 - nvme-fc: use separate work queue to avoid warning - [armhf] clk: s2mps11: Add used attribute to s2mps11_dt_match - [arm64] remoteproc: qcom: q6v5: shore up resource probe handling - modules: always page-align module section allocations - kernel/module: Fix mem leak in module_add_modinfo_attrs - [x86] drm/i915: Re-apply "Perform link quality check, unconditionally during long pulse" - scsi: qla2xxx: Move log messages before issuing command to firmware - keys: Fix the use of the C++ keyword "private" in uapi/linux/keyctl.h - [x86] Drivers: hv: kvp: Fix two "this statement may fall through" warnings - [x86] hibernate: Fix nosave_regions setup for hibernation - [arm64] remoteproc: qcom: q6v5-mss: add SCM probe dependency - drm/amdgpu/gfx9: Update gfx9 golden settings. - drm/amdgpu: Update gc_9_0 golden settings. - [x86] KVM: hyperv: enforce vp_index < KVM_MAX_VCPUS - [x86] KVM: hyperv: consistently use 'hv_vcpu' for 'struct kvm_vcpu_hv' variables - [x86] KVM: hyperv: keep track of mismatched VP indexes - [x86] KVM: hyperv: define VP assist page helpers - [x86] kvm/lapic: preserve gfn_to_hva_cache len on cache reinit - [x86] drm/i915: Fix intel_dp_mst_best_encoder() - [x86] drm/i915: Rename PLANE_CTL_DECOMPRESSION_ENABLE - [x86] drm/i915/gen9+: Fix initial readout for Y tiled framebuffers - drm/atomic_helper: Disallow new modesets on unregistered connectors - [x86] Drivers: hv: kvp: Fix the recent regression caused by incorrect clean-up - powerplay: Respect units on max dcfclk watermark - drm/amd/pp: Fix truncated clock value when set watermark - drm/amd/dm: Understand why attaching path/tile properties are needed - [s390x] zcrypt: reinit ap queue state machine during device probe - [x86] drm/i915: Restore sane defaults for KMS on GEM error load - [x86] drm/i915: Cleanup gt powerstate from gem - [ppc64el] KVM: Book3S HV: Fix race between kvm_unmap_hva_range and MMU mode switch - Btrfs: clean up scrub is_dev_replace parameter - Btrfs: fix deadlock with memory reclaim during scrub - btrfs: Remove extent_io_ops::fill_delalloc - btrfs: Fix error handling in btrfs_cleanup_ordered_extents - scsi: megaraid_sas: Fix combined reply queue mode detection - scsi: megaraid_sas: Add check for reset adapter bit - scsi: megaraid_sas: Use 63-bit DMA addressing - [ppc64el] pkeys: Fix handling of pkey state across fork() - btrfs: volumes: Make sure no dev extent is beyond device boundary - btrfs: Use real device structure to verify dev extent - IB/uverbs: Fix OOPs upon device disassociation - drm/vblank: Allow dynamic per-crtc max_vblank_count - [x86] drm/i915/ilk: Fix warning when reading emon_status with no output - tpm: Fix some name collisions with drivers/char/tpm.h - bcache: replace hard coded number with BUCKET_GC_GEN_MAX - bcache: treat stale && dirty keys as bad keys - [x86] KVM: VMX: Compare only a single byte for VMCS' "launched" in vCPU-run - [armhf] iio: adc: exynos-adc: Add S5PV210 variant - [armhf] iio: adc: exynos-adc: Use proper number of channels for Exynos4x12 - mt76: fix corrupted software generated tx CCMP PN - drm/nouveau: Don't WARN_ON VCPI allocation failures - iwlwifi: fix devices with PCI Device ID 0x34F0 and 11ac RF modules - iwlwifi: add new card for 9260 series - spi: spi-gpio: fix SPI_CS_HIGH capability - [ppc64el] kvm: Save and restore host AMR/IAMR/UAMOR - btrfs: scrub: pass fs_info to scrub_setup_ctx - btrfs: scrub: move scrub_setup_ctx allocation out of device_list_mutex - btrfs: scrub: fix circular locking dependency warning - btrfs: init csum_list before possible free - [arm64] PCI: qcom: Fix error handling in runtime PM support - [arm64] PCI: qcom: Don't deassert reset GPIO during probe - CIFS: Fix error paths in writeback code - CIFS: Fix leaking locked VFS cache pages in writeback retry - [x86] drm/i915: Handle vm_mmap error during I915_GEM_MMAP ioctl with WC set - [x86] drm/i915: Sanity check mmap length against object size - [x86] usb: typec: tcpm: Try PD-2.0 if sink does not respond to 3.0 source-caps - IB/mlx5: Reset access mask when looping inside page fault handler - kvm: mmu: Fix overflow on kvm mmu page limit calculation - [x86] kvm: move kvm_load/put_guest_xcr0 into atomic context - [x86] KVM: Always use 32-bit SMRAM save state for 32-bit kernels - cifs: Fix lease buffer length error (CVE-2019-15918) - ext4: protect journal inode's blocks using block_validity - [x86] PCI: Reset Lenovo ThinkPad P50 nvgpu at boot if necessary - dm mpath: fix missing call of path selector type->end_io - blk-mq: free hw queue's resource in hctx's release handler - mmc: sdhci-pci: Add support for Intel CML - PCI: dwc: Use devm_pci_alloc_host_bridge() to simplify code - cifs: smbd: take an array of reqeusts when sending upper layer data - dm crypt: move detailed message into debug level - [x86] drm/amdkfd: Add missing Polaris10 ID - kvm: Check irqchip mode before assign irqfd - drm/amdgpu: fix ring test failure issue during s3 in vce 3.0 (V2) - drm/amdgpu/{uvd,vcn}: fetch ring's read_ptr after alloc - Btrfs: fix race between block group removal and block group allocation - cifs: add spinlock for the openFileList to cifsInodeInfo - [arm64] clk: tegra: Fix maximum audio sync clock for Tegra124/210 - [arm64] clk: tegra210: Fix default rates for HDA clocks - IB/hfi1: Avoid hardlockup with flushlist_lock - apparmor: reset pos on failure to unpack for various functions - scsi: target/core: Use the SECTOR_SHIFT constant - scsi: target/iblock: Fix overrun in WRITE SAME emulation - [s390x] scsi: zfcp: fix request object use-after-free in send path causing wrong traces - cifs: Properly handle auto disabling of serverino option - [x86] ALSA: hda - Don't resume forcibly i915 HDMI/DP codec - [x86] KVM: optimize check for valid PAT value - [x86] KVM: VMX: Always signal #GP on WRMSR to MSR_IA32_CR_PAT with bad value - [x86] KVM: VMX: Fix handling of #MC that occurs during VM-Entry - [x86] KVM: VMX: check CPUID before allowing read/write of IA32_XSS - [ppc64el] KVM: Use ccr field in pt_regs struct embedded in vcpu struct - [ppc64el] KVM: Book3S HV: Fix CR0 setting in TM emulation - RDMA/srp: Document srp_parse_in() arguments - RDMA/srp: Accept again source addresses that do not have a port number - btrfs: correctly validate compression type - resource: Include resource end in walk_*() interfaces - resource: Fix find_next_iomem_res() iteration issue - resource: fix locking in find_next_iomem_res() - pstore: Fix double-free in pstore_mkfile() failure path - dm thin metadata: check if in fail_io mode when setting needs_check - [armhf,arm64] drm/panel: Add support for Armadeus ST0700 Adapt - [x86] ALSA: hda - Fix intermittent CORB/RIRB stall on Intel chips - [ppc64el] mm: Limit rma_size to 1TB when running without HV mode - iommu/iova: Remove stale cached32_node - gpio: don't WARN() on NULL descs if gpiolib is disabled - mm/migrate.c: initialize pud_entry in migrate_vma() - NFSv4: Fix delegation state recovery - bcache: only clear BTREE_NODE_dirty bit when it is set - bcache: add comments for mutex_lock(&b->write_lock) - bcache: fix race in btree_flush_write() - [x86] drm/i915: Make sure cdclk is high enough for DP audio on VLV/CHV - [s390x] virtio: fix race on airq_areas[] - drm/atomic_helper: Allow DPMS On<->Off changes for unregistered connectors - ext4: don't perform block validity checks on the journal inode - ext4: fix block validity checks for journal inodes using indirect blocks - ext4: unsigned int compared against zero - [x86] PCI: Reset both NVIDIA GPU and HDA in ThinkPad P50 workaround - [ppc64el] tm: Remove msr_tm_active() - [ppc64el] tm: Fix restoring FP/VMX facility incorrectly on interrupts (CVE-2019-15031) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.74 - bridge/mdb: remove wrong use of NLM_F_MULTI - cdc_ether: fix rndis support for Mediatek based smartphones - ipv6: Fix the link time qualifier of 'ping_v6_proc_exit_net()' - isdn/capi: check message length in capi_write() - net: Fix null de-reference of device refcount - net: gso: Fix skb_segment splat when splitting gso_size mangled skb having linear-headed frag_list - net: phylink: Fix flow control resolution - net: sched: fix reordering issues - sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero - sctp: Fix the link time qualifier of 'sctp_ctrlsock_exit()' - sctp: use transport pf_retrans in sctp_do_8_2_transport_strike - tcp: fix tcp_ecn_withdraw_cwr() to clear TCP_ECN_QUEUE_CWR - tipc: add NULL pointer check before calling kfree_rcu - tun: fix use-after-free when register netdev failed - gpiolib: acpi: Add gpiolib_acpi_run_edge_events_on_boot option and blacklist - gpio: fix line flag validation in linehandle_create - Btrfs: fix assertion failure during fsync and use of stale transaction - ixgbe: Prevent u8 wrapping of ITR value to something less than 10us - genirq: Prevent NULL pointer dereference in resend_irqs() - [s390x] KVM: kvm_s390_vm_start_migration: check dirty_bitmap before using it as target for memset() - [s390x] KVM: Do not leak kernel stack data in the KVM_S390_INTERRUPT ioctl - [x86] KVM: work around leak of uninitialized stack contents - [x86] KVM: nVMX: handle page fault in vmread - [x86] purgatory: Change compiler flags from -mcmodel=kernel to -mcmodel=large to fix kexec relocation errors - [ppc64el] Add barrier_nospec to raw_copy_in_user() - [arm64] drm/meson: Add support for XBGR8888 & ABGR8888 formats - [armhf,arm64] clk: rockchip: Don't yell about bad mmc phases when getting - PCI: Always allow probing with driver_override - gpio: fix line flag validation in lineevent_create - ubifs: Correctly use tnc_next() in search_dh_cookie() - driver core: Fix use-after-free and double free on glue directory - firmware: ti_sci: Always request response from firmware - [x86] drm: panel-orientation-quirks: Add extra quirk table entry for GPD MicroPC - Revert "Bluetooth: btusb: driver to enable the usb-wakeup feature" - modules: fix BUG when load module with rodata=n - rsi: fix a double free bug in rsi_91x_deinit() (CVE-2019-15504) - nvmem: Use the same permissions for eeprom as for nvmem https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.75 - netfilter: nf_flow_table: set default timeout after successful insertion - HID: wacom: generic: read HID_DG_CONTACTMAX from any feature report - RDMA/restrack: Release task struct which was hold by CM_ID object - [x86] Input: elan_i2c - remove Lenovo Legion Y7000 PnpID - [ppc64el] mm/radix: Use the right page size for vmemmap mapping - USB: usbcore: Fix slab-out-of-bounds bug during device reset - media: tm6000: double free if usb disconnect while streaming - ip6_gre: fix a dst leak in ip6erspan_tunnel_xmit - udp: correct reuseport selection with connected sockets - xen-netfront: do not assume sk_buff_head list is empty in error handling - net_sched: let qdisc_put() accept NULL pointer - mwifiex: Fix three heap overflow at parsing element in cfg80211_ap_settings (CVE-2019-14814, CVE-2019-14815, CVE-2019-14816) - nl80211: Fix possible Spectre-v1 for CQM RSSI thresholds - ieee802154: hwsim: Fix error handle path in hwsim_init_module - ieee802154: hwsim: unregister hw while hwsim_subscribe_all_others fails - [armhf] dts: am57xx: Disable voltage switching for SD card - [armhf] OMAP2+: Fix missing SYSC_HAS_RESET_STATUS for dra7 epwmss - [armhf] bus: ti-sysc: Fix using configured sysc mask value - [s390x] bpf: fix lcgr instruction encoding - [armhf] OMAP2+: Fix omap4 errata warning on other SoCs - [armhf] dts: dra74x: Fix iodelay configuration for mmc3 - [armhf] bus: ti-sysc: Simplify cleanup upon failures in sysc_probe() - [s390x] bpf: use 32-bit index for tail calls - netfilter: ebtables: Fix argument order to ADD_COUNTER - netfilter: nft_flow_offload: missing netlink attribute policy - netfilter: xt_nfacct: Fix alignment mismatch in xt_nfacct_match_info - NFSv4: Fix return values for nfs4_file_open() - NFSv4: Fix return value in nfs_finish_open() - NFS: Fix initialisation of I/O result struct in nfs_pgio_rpcsetup - xdp: unpin xdp umem pages in error path - qed: Add cleanup in qed_slowpath_start() - [armel,armhf] 8874/1: mm: only adjust sections of valid mm structures - batman-adv: Only read OGM2 tvlv_len after buffer len check - bpf: allow narrow loads of some sk_reuseport_md fields with offset > 0 - r8152: Set memory to all 0xFFs on failed reg reads - [x86] apic: Fix arch_dynirq_lower_bound() bug for DT enabled machines - netfilter: xt_physdev: Fix spurious error message in physdev_mt_check - netfilter: nf_conntrack_ftp: Fix debug output - NFSv2: Fix eof handling - NFSv2: Fix write regression - kallsyms: Don't let kallsyms_lookup_size_offset() fail on retrieving the first symbol - cifs: set domainName when a domain-key is used in multiuser - cifs: Use kzfree() to zero out the password - [armhf,arm64] usb: host: xhci-tegra: Set DMA mask correctly - [armel,armhf] 8901/1: add a criteria for pfn_valid of arm - sky2: Disable MSI on yet another ASUS boards (P6Xxxx) - i2c: designware: Synchronize IRQs when unregistering slave client - [x86] perf/intel: Restrict period on Nehalem - [x86] perf/amd/ibs: Fix sample bias for dispatched micro-ops - amd-xgbe: Fix error path in xgbe_mod_init() - [x86] tools/power x86_energy_perf_policy: Fix argument parsing - [x86] tools/power turbostat: fix buffer overrun - net: aquantia: fix out of memory condition on rx side - [armhf] dmaengine: ti: omap-dma: Add cleanup in omap_dma_probe() - [x86] uaccess: Don't leak the AC flags into __get_user() argument evaluation - [x86] hyper-v: Fix overflow bug in fill_gva_list() - keys: Fix missing null pointer check in request_key_auth_describe() - [x86] iommu/amd: Flush old domains in kdump kernel - [x86] iommu/amd: Fix race in increase_address_space() - [arm64] PCI: kirin: Fix section mismatch warning - ovl: fix regression caused by overlapping layers detection - floppy: fix usercopy direction - binfmt_elf: move brk out of mmap when doing direct loader exec - [arm64] kpti: Whitelist Cortex-A CPUs that don't implement the CSV3 field - media: technisat-usb2: break out of loop at end of buffer (CVE-2019-15505) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.76 - Revert "Bluetooth: validate BLE connection interval updates" - RDMA/restrack: Protect from reentry to resource return path - [ppc64el] xive: Fix bogus error code returned by OPAL - IB/core: Add an unbound WQ type to the new CQ API - HID: prodikeys: Fix general protection fault during probe - HID: sony: Fix memory corruption issue on cleanup. - HID: logitech: Fix general protection fault caused by Logitech driver - HID: hidraw: Fix invalid read in hidraw_ioctl - HID: Add quirk for HP X500 PIXART OEM mouse - mtd: cfi_cmdset_0002: Use chip_good() to retry in do_write_oneword() - CIFS: fix deadlock in cached root handling - net/mlx5e: Set ECN for received packets using CQE indication - net/mlx5e: don't set CHECKSUM_COMPLETE on SCTP packets - mlx5: fix get_ip_proto() - net/mlx5e: Allow reporting of checksum unnecessary - net/mlx5e: XDP, Avoid checksum complete when XDP prog is loaded - net/mlx5e: Rx, Fixup skb checksum for packets with tail padding - net/mlx5e: Rx, Check ip headers sanity - iwlwifi: mvm: send BCAST management frames to the right station - iwlwifi: mvm: always init rs_fw with 20MHz bandwidth rates - media: tvp5150: fix switch exit in set control handler - [x86] ASoC: Intel: cht_bsw_max98090_ti: Enable codec clock once and keep it enabled - ALSA: usb-audio: Add Hiby device family to quirks for native DSD support - ALSA: usb-audio: Add DSD support for EVGA NU Audio - ALSA: dice: fix wrong packet parameter for Alesis iO26 - [x86] ALSA: hda - Add laptop imic fixup for ASUS M9V laptop - [x86] ALSA: hda - Apply AMD controller workaround for Raven platform - objtool: Clobber user CFLAGS variable - power: supply: sysfs: ratelimit property read error message - scsi: qla2xxx: Turn off IOCB timeout timer on IOCB completion - scsi: qla2xxx: Remove all rports if fabric scan retry fails - scsi: qla2xxx: Return switch command on a timeout - Revert "drm/amd/powerplay: Enable/Disable NBPSTATE on On/OFF of UVD" - bpf: libbpf: retry loading program on EAGAIN - [armhf,arm64] irqchip/gic-v3-its: Fix LPI release for Multi-MSI devices - f2fs: check all the data segments against all node ones - [x86] PCI: hv: Avoid use of hv_pci_dev->pci_slot after freeing it - bcache: remove redundant LIST_HEAD(journal) from run_cache_set() - initramfs: don't free a non-existent initrd - blk-mq: change gfp flags to GFP_NOIO in blk_mq_realloc_hw_ctxs - blk-mq: move cancel of requeue_work to the front of blk_exit_queue - Revert "f2fs: avoid out-of-range memory access" - dm zoned: fix invalid memory access - f2fs: fix to do sanity check on segment bitmap of LFS curseg - drm: Flush output polling on shutdown - net: don't warn in inet diag when IPV6 is disabled - Bluetooth: btrtl: HCI reset on close for Realtek BT chip - [x86] ACPI: video: Add new hw_changes_brightness quirk, set it on PB Easynote MZ35 - drm/nouveau/disp/nv50-: fix center/aspect-corrected scaling - xfs: don't crash on null attr fork xfs_bmapi_read - netfilter: nft_socket: fix erroneous socket assignment - Bluetooth: btrtl: Additional Realtek 8822CE Bluetooth devices - net_sched: check cops->tcf_block in tc_bind_tclass() - net/rds: An rds_sock is added too early to the hash table - net/rds: Check laddr_check before calling it - f2fs: use generic EFSBADCRC/EFSCORRUPTED https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.77 - arcnet: provide a buffer big enough to actually receive packets - cdc_ncm: fix divide-by-zero caused by invalid wMaxPacketSize - macsec: drop skb sk before calling gro_cells_receive - net/phy: fix DP83865 10 Mbps HDX loopback disable function - net/sched: act_sample: don't push mac header on ip6gre ingress - net_sched: add max len check for TCA_KIND - nfp: flower: fix memory leak in nfp_flower_spawn_vnic_reprs (CVE-2019-19081) - openvswitch: change type of UPCALL_PID attribute to NLA_UNSPEC - ppp: Fix memory leak in ppp_write - sch_netem: fix a divide by zero in tabledist() - skge: fix checksum byte order - usbnet: ignore endpoints with invalid wMaxPacketSize - usbnet: sanity checking of packet sizes and device mtu - net: sched: fix possible crash in tcf_action_destroy() - tcp: better handle TCP_USER_TIMEOUT in SYN_SENT state - net/mlx5: Add device ID of upcoming BlueField-2 - mISDN: enforce CAP_NET_RAW for raw sockets (CVE-2019-17055) - appletalk: enforce CAP_NET_RAW for raw sockets (CVE-2019-17054) - ax25: enforce CAP_NET_RAW for raw sockets (CVE-2019-17052) - ieee802154: enforce CAP_NET_RAW for raw sockets (CVE-2019-17053) - nfc: enforce CAP_NET_RAW for raw sockets (CVE-2019-17056) - nfp: flower: prevent memory leak in nfp_flower_spawn_phy_reprs (CVE-2019-19080) - ALSA: hda: Flush interrupts on disabling - [armhf] ASoC: sgtl5000: Fix of unmute outputs on probe - [armhf] ASoC: sgtl5000: Fix charge pump source assignment - [arm*] dmaengine: bcm2835: Print error in case setting DMA mask fails - media: dib0700: fix link error for dibx000_i2c_set_speed - media: hdpvr: Add device num check and handling - time/tick-broadcast: Fix tick_broadcast_offline() lockdep complaint - sched/fair: Fix imbalance due to CPU affinity - sched/core: Fix CPU controller for !RT_GROUP_SCHED - [x86] apic: Make apic_pending_intr_clear() more robust - sched/deadline: Fix bandwidth accounting at all levels after offline migration - [x86] reboot: Always use NMI fallback when shutdown via reboot vector IPI fails - [x86] apic: Soft disable APIC before initializing it - ALSA: hda - Show the fatal CORB/RIRB error more clearly - ALSA: i2c: ak4xxx-adda: Fix a possible null pointer dereference in build_adc_controls() - EDAC/mc: Fix grain_bits calculation - media: iguanair: add sanity checks - base: soc: Export soc_device_register/unregister APIs - ALSA: usb-audio: Skip bSynchAddress endpoint check if it is invalid - [arm64] prefetch: fix a -Wtype-limits warning - md/raid1: end bio when the device faulty - md: don't call spare_active in md_reap_sync_thread if all member devices can't work - md: don't set In_sync if array is frozen - ACPI / processor: don't print errors for processorIDs == 0xff - loop: Add LOOP_SET_DIRECT_IO to compat ioctl - [x86] EDAC, pnd2: Fix ioremap() size in dnv_rd_reg() - efi: cper: print AER info of PCIe fatal error - sched/fair: Use rq_lock/unlock in online_fair_sched_group - idle: Prevent late-arriving interrupts from disrupting offline - media: gspca: zero usb_buf on error - perf config: Honour $PERF_CONFIG env var to specify alternate .perfconfig - perf test vfs_getname: Disable ~/.perfconfig to get default output - media: em28xx: modules workqueue not inited for 2nd device - media: rc: imon: Allow iMON RC protocol for ffdc 7e device - [arm64] perf record: Support aarch64 random socket_id assignment - [armhf] media: omap3isp: Don't set streaming state on random subdevs - media: radio/si470x: kill urb on error - media: hdpvr: add terminating 0 at end of string - led: triggers: Fix a memory leak bug - nbd: add missing config put - media: mceusb: fix (eliminate) TX IR signal length limit - media: dvb-frontends: use ida for pll number - posix-cpu-timers: Sanitize bogus WARNONS - media: dvb-core: fix a memory leak bug - libperf: Fix alignment trap with xyarray contents in 'perf stat' - [amd64] EDAC/amd64: Recognize DRAM device type ECC capability - [amd64] EDAC/amd64: Decode syndrome before translating address - PM / devfreq: passive: Use non-devm notifiers - PM / devfreq: exynos-bus: Correct clock enable sequence - media: cec-notifier: clear cec_adap in cec_notifier_unregister - media: saa7146: add cleanup in hexium_attach() - media: cpia2_usb: fix memory leaks - media: saa7134: fix terminology around saa7134_i2c_eeprom_md7134_gate() - perf trace beauty ioctl: Fix off-by-one error in cmd->string table - [x86] ASoC: es8316: fix headphone mixer volume table - ACPI / CPPC: do not require the _PSD method - sched/cpufreq: Align trace event behavior of fast switching - [x86] apic/vector: Warn when vector space exhaustion breaks affinity - [arm64] kpti: ensure patched kernel text is fetched from PoU - [x86] mm/pti: Do not invoke PTI functions when PTI is disabled - [x86] mm/pti: Handle unaligned address gracefully in pti_clone_pagetable() - nvmet: fix data units read and written counters in SMART log - nvme-multipath: fix ana log nsid lookup when nsid is not found - ALSA: firewire-motu: add support for MOTU 4pre - iommu/amd: Silence warnings under memory pressure - libata/ahci: Drop PCS quirk for Denverton and beyond - iommu/iova: Avoid false sharing on fq_timer_on - libtraceevent: Change users plugin directory - [armhf] dts: exynos: Mark LDO10 as always-on on Peach Pit/Pi Chromebooks - ACPI: custom_method: fix memory leaks - ACPI / PCI: fix acpi_pci_irq_enable() memory leak - closures: fix a race on wakeup from closure_sync - hwmon: (acpi_power_meter) Change log level for 'unsafe software power cap' - md/raid1: fail run raid1 array when active disk less than one - dmaengine: ti: edma: Do not reset reserved paRAM slots - kprobes: Prohibit probing on BUG() and WARN() address - [s390x] crypto: xts-aes-s390 fix extra run-time crypto self tests finding - [x86] cpu: Add Tiger Lake to Intel family - [x86] platform: intel_pmc_core: Do not ioremap RAM - ASoC: dmaengine: Make the pcm->name equal to pcm->id if the name is not set - raid5: don't set STRIPE_HANDLE to stripe which is in batch list - mmc: core: Clarify sdio_irq_pending flag for MMC_CAP2_SDIO_IRQ_NOTHREAD - mmc: sdhci: Fix incorrect switch to HS mode - mmc: core: Add helper function to indicate if SDIO IRQs is enabled - [armhf,arm64] mmc: dw_mmc: Re-store SDIO IRQs mask at system resume - raid5: don't increment read_errors on EILSEQ return - libertas: Add missing sentinel at end of if_usb.c fw_table - e1000e: add workaround for possible stalled packet - ALSA: hda - Drop unsol event handler for Intel HDMI codecs - drm/amd/powerplay/smu7: enforce minimal VBITimeout (v2) - media: ttusb-dec: Fix info-leak in ttusb_dec_send_command() - [x86] ALSA: hda/realtek - Blacklist PC beep for Lenovo ThinkCentre M73/93 - [x86] iommu/amd: Override wrong IVRS IOAPIC on Raven Ridge systems - btrfs: extent-tree: Make sure we only allocate extents from block groups with the same type - [armhf] media: omap3isp: Set device on omap3isp subdevs - PM / devfreq: passive: fix compiler warning - iwlwifi: fw: don't send GEO_TX_POWER_LIMIT command to FW version 36 - ALSA: firewire-tascam: handle error code when getting current source of clock - ALSA: firewire-tascam: check intermediate state of clock status and retry - scsi: scsi_dh_rdac: zero cdb in send_mode_select() - scsi: qla2xxx: Fix Relogin to prevent modifying scan_state flag - printk: Do not lose last line in kmsg buffer dump - IB/mlx5: Free mpi in mp_slave mode - IB/hfi1: Define variables as unsigned long to fix KASAN warning - randstruct: Check member structs in is_pure_ops_struct() - ceph: use ceph_evict_inode to cleanup inode's resource - [x86] ALSA: hda/realtek - PCI quirk for Medion E4254 - blk-mq: add callback of .cleanup_rq - scsi: implement .cleanup_rq callback - [ppc64el] imc: Dont create debugfs files for cpu-less nodes - fuse: fix missing unlock_page in fuse_writepage() - [x86] KVM: always stop emulation on page fault - [x86] KVM: set ctxt->have_exception in x86_decode_insn() - [x86] KVM: Manually calculate reserved bits when loading PDPTRS - [x86] media: sn9c20x: Add MSI MS-1039 laptop to flip_dmi_table - media: don't drop front-end reference count for ->detach - binfmt_elf: Do not move brk for INTERP-less ET_EXEC - [x86] ASoC: Intel: NHLT: Fix debug print format - [x86] ASoC: Intel: Skylake: Use correct function to access iomem space - [x86] ASoC: Intel: Fix use of potentially uninitialized variable - [arm64] Revert "arm64: Remove unnecessary ISBs from set_{pte,pmd,pud}" - [arm64] tlb: Ensure we execute an ISB following walk cache invalidation - [arm64] dts: rockchip: limit clock rate of MMC controllers for RK3328 - alarmtimer: Use EOPNOTSUPP instead of ENOTSUPP - regulator: Defer init completion for a while after late_initcall - efifb: BGRT: Improve efifb_bgrt_sanity_check - gfs2: clear buf_in_tr when ending a transaction in sweep_bh_for_rgrps - memcg, oom: don't require __GFP_FS when invoking memcg OOM killer - memcg, kmem: do not fail __GFP_NOFAIL charges - i40e: check __I40E_VF_DISABLE bit in i40e_sync_filters_subtask - block: fix null pointer dereference in blk_mq_rq_timed_out() - smb3: allow disabling requesting leases - ovl: Fix dereferencing possible ERR_PTR() - ovl: filter of trusted xattr results in audit - btrfs: fix allocation of free space cache v1 bitmap pages - Btrfs: fix use-after-free when using the tree modification log - btrfs: Relinquish CPUs in btrfs_compare_trees - btrfs: qgroup: Fix the wrong target io_tree when freeing reserved data space - btrfs: qgroup: Fix reserved data space leak if we have multiple reserve calls - Btrfs: fix race setting up and completing qgroup rescan workers - md/raid6: Set R5_ReadError when there is read failure on parity disk - md: don't report active array_state until after revalidate_disk() completes. - md: only call set_in_sync() when it is expected to succeed. - cfg80211: Purge frame registrations on iftype change - /dev/mem: Bail out upon SIGKILL. - ext4: fix warning inside ext4_convert_unwritten_extents_endio - ext4: fix punch hole for inline_data file systems - quota: fix wrong condition in is_quota_modification() - hwrng: core - don't wait on add_early_randomness() - CIFS: fix max ea value size - CIFS: Fix oplock handling for SMB 2.1+ protocols - md/raid0: avoid RAID0 data corruption due to layout confusion. - fuse: fix deadlock with aio poll and fuse_iqueue::waitq.lock - mm/compaction.c: clear total_{migrate,free}_scanned before scanning a new zone - drm/amd/display: Restore backlight brightness after system resume https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.78 - tpm: use tpm_try_get_ops() in tpm-sysfs.c. - tpm: Fix TPM 1.2 Shutdown sequence to prevent future TPM operations - [armhf,arm64] drm/panel: simple: fix AUO g185han01 horizontal blanking - [armhf,arm64] drm/panel: check failure cases in the probe func - [armhf,arm64] drm/rockchip: Check for fast link training before enabling psr - gpu: drm: radeon: Fix a possible null-pointer dereference in radeon_connector_set_property() - [ppc64el] PCI: rpaphp: Avoid a sometimes-uninitialized warning - ipmi_si: Only schedule continuously in the thread in maintenance mode - [armhf,arm64] clk: sunxi-ng: v3s: add missing clock slices for MMC2 module clocks - drm/amd/display: fix issue where 252-255 values are clipped - drm/amd/display: reprogram VM config when system resume - [ppc64el] powernv/ioda2: Allocate TCE table levels on demand for default DMA window - [ppc64el] xmon: Check for HV mode when dumping XIVE info from OPAL - [ppc64el] rtas: use device model APIs and serialization during LPM - [ppc64el] futex: Fix warning: 'oldval' may be used uninitialized in this function - [ppc64el] pseries/mobility: use cond_resched when updating device tree - [armhf,arm64] pinctrl: tegra: Fix write barrier placement in pmx_writel - [ppc64el] eeh: Clear stale EEH_DEV_NO_HANDLER flag - vfio_pci: Restore original state on release - drm/nouveau/volt: Fix for some cards having 0 maximum voltage - [x86] pinctrl: amd: disable spurious-firing GPIO IRQs - drm/amd/display: support spdif - drm/amdgpu/si: fix ASIC tests - [ppc64el] exception: machine check use correct cfar for late handler - pstore: fs superblock limits - [ppc64el] pseries: correctly track irq state in default idle - [arm64] pinctrl: meson-gxbb: Fix wrong pinning definition for uart_c - [ppc64el] dump kernel log before carrying out fadump or kdump - [arm64] mbox: qcom: add APCS child device for QCS404 - scsi: core: Reduce memory required for SCSI logging - dma-buf/sw_sync: Synchronize signal vs syncpt free - ext4: fix potential use after free after remounting with noblock_validity - [mips*] tlbex: Explicitly cast _PAGE_NO_EXEC to a boolean - [x86] i2c-cht-wc: Fix lockdep warning - [x86] mfd: intel-lpss: Remove D3cold delay - HID: wacom: Fix several minor compiler warnings - [armel,armhf] 8898/1: mm: Don't treat faults reported from cache maintenance as writes - [armhf] rtc: snvs: fix possible race condition - HID: apple: Fix stuck function keys when using FN - [arm64] PCI: rockchip: Propagate errors for optional regulators - [armhf] PCI: imx6: Propagate errors for optional regulators - [armel,armhf] 8903/1: ensure that usable memory in bank 0 starts from a PMD-aligned address - fat: work around race with userspace's read via blockdev while mounting - pktcdvd: remove warning on attempting to register non-passthrough dev - [s390x] hypfs: Fix error number left in struct pointer member - ocfs2: wait for recovering done after direct unlock request - [arm64] consider stack randomization for mmap base only when necessary - [mips*] properly account for stack randomization and stack guard gap - [armel,armhf] properly account for stack randomization and stack guard gap - [armel,armhf] use STACK_TOP when computing mmap base address - block: mq-deadline: Fix queue restart handling - bpf: fix use after free in prog symbol exposure - cxgb4:Fix out-of-bounds MSI-X info array access - erspan: remove the incorrect mtu limit for erspan - hso: fix NULL-deref on tty open - ipv6: drop incoming packets having a v4mapped source address - ipv6: Handle missing host route in __ipv6_ifa_notify - net: ipv4: avoid mixed n_redirects and rate_tokens usage - net: qlogic: Fix memory leak in ql_alloc_large_buffers - net: Unpublish sk from sk_reuseport_cb before call_rcu - nfc: fix memory leak in llcp_sock_bind() - qmi_wwan: add support for Cinterion CLS8 devices - rxrpc: Fix rxrpc_recvmsg tracepoint - sch_dsmark: fix potential NULL deref in dsmark_init() - udp: fix gso_segs calculations - vsock: Fix a lockdep warning in __vsock_release() - udp: only do GSO if # of segs > 1 - net/rds: Fix error handling in rds_ib_add_one() - xen-netfront: do not use ~0U as error return value for xennet_fill_frags() - tipc: fix unlimited bundling of small messages - sch_cbq: validate TCA_CBQ_WRROPT to avoid crash - NFC: fix attrs checks in netlink interface - kexec: bail out upon SIGKILL when allocating memory. - 9p/cache.c: Fix memory leak in v9fs_cache_session_get_cookie https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.79 - [s390x] process: avoid potential reading of freed stack - [s390x] KVM: Test for bad access register and size at the start of S390_MEM_OP - [s390x] topology: avoid firing events before kobjs are created - [s390x] cio: exclude subchannels with no parent from pseudo check - [ppc64el] KVM: Book3S HV: Fix race in re-enabling XIVE escalation interrupts - [ppc64el] KVM: Book3S HV: Check for MMU ready on piggybacked virtual cores - [ppc64el] KVM: Book3S HV: Don't lose pending doorbell request on migration on P9 - [x86] KVM: Fix userspace set invalid CR4 - [x86] KVM: nVMX: handle page fault in vmread fix - nbd: fix max number of supported devs - PM / devfreq: tegra: Fix kHz to Hz conversion - ASoC: Define a set of DAPM pre/post-up events - [armhf] ASoC: sgtl5000: Improve VAG power and mute control - [ppc64el] mce: Fix MCE handling for huge pages - [ppc64el] mce: Schedule work from irq_work - [ppc64el] powernv: Restrict OPAL symbol map to only be readable by root - [ppc64el] powernv/ioda: Fix race in TCE level allocation - [ppc64el] book3s64/mm: Don't do tlbie fixup for some hardware revisions - tools lib traceevent: Fix "robust" test of do_generate_dynamic_list_file - [x86] crypto: qat - Silence smp_processor_id() warning - crypto: skcipher - Unmap pages after an external error - [mips*el/loongson-3] Treat Loongson Extensions as ASEs - power: supply: sbs-battery: use correct flags field - power: supply: sbs-battery: only return health when battery present - tracing: Make sure variable reference alias has correct var_ref_idx - usercopy: Avoid HIGHMEM pfn warning - timer: Read jiffies once when forwarding base clk - [x86] PCI: vmd: Fix shadow offsets to reflect spec changes - PCI: Restore Resizable BAR size bits correctly for 1MB BARs - [armhf] watchdog: imx2_wdt: fix min() calculation in imx2_wdt_set_timeout - perf stat: Fix a segmentation fault when using repeat forever - [armhf] drm/omap: fix max fclk divider for omap36xx - [arm64] drm/msm/dsi: Fix return value check for clk_get_parent - drm/nouveau/kms/nv50-: Don't create MSTMs for eDP connectors - [x86] drm/i915/gvt: update vgpu workload head pointer correctly - mmc: sdhci: improve ADMA error reporting - Revert "locking/pvqspinlock: Don't wait if vCPU is preempted" - xen/xenbus: fix self-deadlock after killing user process - ieee802154: atusb: fix use-after-free at disconnect - [s390x] cio: avoid calling strlen on null pointer - cfg80211: initialize on-stack chandefs - [arm64] cpufeature: Detect SSBS and advertise to userspace - ima: always return negative code for error - ima: fix freeing ongoing ahash_request - fs: nfs: Fix possible null-pointer dereferences in encode_attrs() - 9p: Transport error uninitialized - 9p: avoid attaching writeback_fid on mmap with type PRIVATE - xen/pci: reserve MCFG areas earlier - ceph: fix directories inode i_blkbits initialization - ceph: reconnect connection if session hang in opening state - watchdog: aspeed: Add support for AST2600 - netfilter: nf_tables: allow lookups in dynamic sets - drm/amdgpu: Fix KFD-related kernel oops on Hawaii - drm/amdgpu: Check for valid number of registers to read - pNFS: Ensure we do clear the return-on-close layout stateid on fatal errors - [x86] purgatory: Disable the stackleak GCC plugin for the purgatory - ntb: point to right memory window index - thermal: Fix use-after-free when unregistering thermal zone device - thermal_hwmon: Sanitize thermal_zone type - libnvdimm/region: Initialize bad block for volatile namespaces - fuse: fix memleak in cuse_channel_open - libnvdimm/nfit_test: Fix acpi_handle redefinition - sched/membarrier: Call sync_core only before usermode for same mm - sched/membarrier: Fix private expedited registration check - sched/core: Fix migration to invalid CPU in __set_cpus_allowed_ptr() - kernel/elfcore.c: include proper prototypes - nfp: flower: fix memory leak in nfp_flower_spawn_vnic_reprs - drm/radeon: Bail earlier when radeon.cik_/si_support=0 is passed - [ppc64el] KVM: HV: XIVE: Free escalation interrupts before disabling the VP - [x86] KVM: nVMX: Fix consistency check on injected exception error code - nbd: fix crash when the blksize is zero - [ppc64el] pseries: Fix cpu_hotplug_lock acquisition in resize_hpt() - [ppc64el] radix: Rename CPU_FTR_P9_TLBIE_BUG feature flag - tools lib traceevent: Do not free tep->cmdlines in add_new_comm() on failure - tick: broadcast-hrtimer: Fix a race in bc_set_next - perf tools: Fix segfault in cpu_cache_level__read() - perf stat: Reset previous counts on repeat with interval - [arm64] ssbd: Add support for PSTATE.SSBS rather than trapping to EL3 - [arm64] KVM: Set SCTLR_EL2.DSSBS if SSBD is forcefully disabled and !vhe - [arm64] docs: Document SSBS HWCAP - [arm64] fix SSBS sanitization - [arm64] Add sysfs vulnerability show for spectre-v1 - [arm64] add sysfs vulnerability show for meltdown - [arm64] enable generic CPU vulnerabilites support - [arm64] Always enable ssb vulnerability detection - [arm64] Provide a command line to disable spectre_v2 mitigation - [arm64] Advertise mitigation of Spectre-v2, or lack thereof - [arm64] Always enable spectre-v2 vulnerability detection - [arm64] add sysfs vulnerability show for spectre-v2 - [arm64] add sysfs vulnerability show for speculative store bypass - [arm64] ssbs: Don't treat CPUs with SSBS as unaffected by SSB - [arm64] Force SSBS on context switch - [arm64] Use firmware to detect CPUs that are not affected by Spectre-v2 - [arm64] speculation: Support 'mitigations=' cmdline option - vfs: Fix EOVERFLOW testing in put_compat_statfs64 - cfg80211: add and use strongly typed element iteration macros - cfg80211: Use const more consistently in for_each_element macros - nl80211: validate beacon head (CVE-2019-16746) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.80 - panic: ensure preemption is disabled during panic() - f2fs: use EINVAL for superblock with invalid magic - USB: rio500: Remove Rio 500 kernel driver - USB: yurex: Don't retry on unexpected errors - USB: yurex: fix NULL-derefs on disconnect - USB: usb-skeleton: fix runtime PM after driver unbind - USB: usb-skeleton: fix NULL-deref on disconnect - xhci: Fix false warning message about wrong bounce buffer write length - xhci: Prevent device initiated U1/U2 link pm if exit latency is too long - xhci: Check all endpoints for LPM timeout - xhci: Fix USB 3.1 capability detection on early xHCI 1.1 spec based hosts - usb: xhci: wait for CNR controller not ready bit in xhci resume - xhci: Prevent deadlock when xhci adapter breaks during init - xhci: Increase STS_SAVE timeout in xhci_suspend() - USB: adutux: fix use-after-free on disconnect - USB: adutux: fix NULL-derefs on disconnect - USB: adutux: fix use-after-free on release - USB: iowarrior: fix use-after-free on disconnect - USB: iowarrior: fix use-after-free on release - USB: iowarrior: fix use-after-free after driver unbind - USB: usblp: fix runtime PM after driver unbind - USB: chaoskey: fix use-after-free on release - USB: ldusb: fix NULL-derefs on driver unbind - serial: uartlite: fix exit path null pointer - USB: serial: keyspan: fix NULL-derefs on open() and write() - USB: serial: ftdi_sio: add device IDs for Sienna and Echelon PL-20 - USB: serial: option: add Telit FN980 compositions - USB: serial: option: add support for Cinterion CLS8 devices - USB: serial: fix runtime PM after driver unbind - USB: usblcd: fix I/O after disconnect - USB: microtek: fix info-leak at probe - USB: dummy-hcd: fix power budget for SuperSpeed mode - USB: legousbtower: fix slab info leak at probe - USB: legousbtower: fix deadlock on disconnect - USB: legousbtower: fix potential NULL-deref on disconnect - USB: legousbtower: fix open after failed reset request - USB: legousbtower: fix use-after-free on release - [x86] mei: me: add comet point (lake) LP device ids - [x86] mei: avoid FW version request on Ibex Peak and earlier - [armhf,arm64] iio: adc: axp288: Override TS pin bias current for some models - efivar/ssdt: Don't iterate over EFI vars if no SSDT override was specified - perf llvm: Don't access out-of-scope array - perf inject jit: Fix JIT_CODE_MOVE filename - blk-wbt: fix performance regression in wbt scale_up/scale_down - CIFS: Gracefully handle QueryInfo errors during open - CIFS: Force revalidate inode when dentry is stale - CIFS: Force reval dentry if LOOKUP_REVAL flag is set - kernel/sysctl.c: do not override max_threads provided by userspace - mm/vmpressure.c: fix a signedness bug in vmpressure_register_event() - gpiolib: don't clear FLAG_IS_OUT when emulating open-drain/open-source - cifs: use cifsInodeInfo->open_file_lock while iterating to avoid a panic - btrfs: fix incorrect updating of log root tree - btrfs: fix uninitialized ret in ref-verify - NFS: Fix O_DIRECT accounting of number of bytes read/written - [mips*] elf_hwcap: Export userspace ASEs - ACPICA: ACPI 6.3: PPTT add additional fields in Processor Structure Flags - ACPI/PPTT: Add support for ACPI 6.3 thread flag - [arm64] topology: Use PPTT to determine if PE is a thread - vfs: Fix the locking in dcache_readdir() and friends - media: stkwebcam: fix runtime PM after driver unbind - [arm64] sve: Fix wrong free for task->thread.sve_state - [rt] tracing/hwlat: Report total time spent in all NMIs during the sample - [rt] tracing/hwlat: Don't ignore outer-loop duration when calculating max_latency - ftrace: Get a reference counter for the trace_array on filter files - tracing: Get trace_array reference for available_tracers files - hwmon: Fix HWMON_P_MIN_ALARM mask - [x86] asm: Fix MWAITX C-state hint value - [x86] PCI: vmd: Fix config addressing when using bus offsets - perf/hw_breakpoint: Fix arch_hw_breakpoint use-before-initialization https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.81 - nvme-pci: Fix a race in controller removal - scsi: ufs: skip shutdown if hba is not powered - scsi: megaraid: disable device when probe failed after enabled device - scsi: qla2xxx: Fix unbound sleep in fcport delete path. - [armhf] OMAP2+: Fix missing reset done flag for am3 and am43 - [armhf] OMAP2+: Fix warnings with broken omap2_set_init_voltage() - xen/efi: Set nonblocking callbacks - nl80211: fix null pointer dereference - mac80211: fix txq null pointer dereference - netfilter: nft_connlimit: disable bh on garbage collection - [mips*el/loongson-3] Fix the link time qualifier of 'serial_exit()' - [arm64] net: hisilicon: Fix usage of uninitialized variable in function mdio_sc_cfg_reg_write() - lib: textsearch: fix escapes in example code - r8152: Set macpassthru in reset_resume callback - libata/ahci: Fix PCS quirk application - md/raid0: fix warning message for parameter default_layout - ocfs2: fix panic due to ocfs2_wq is null - ipv4: fix race condition between route lookup and invalidation - net: avoid potential infinite loop in tc_ctl_action() - net: ipv6: fix listify ip6_rcv_finish in case of forwarding - [armhf,arm64] net: stmmac: disable/enable ptp_ref_clk in suspend/resume flow - sctp: change sctp_prot .no_autobind with true - memfd: Fix locking when tagging pins - USB: legousbtower: fix memleak on disconnect - ALSA: hda/realtek - Add support for ALC711 - [x86] ALSA: hda/realtek - Enable headset mic on Asus MJ401TA - ALSA: usb-audio: Disable quirks for BOSS Katana amplifiers - ALSA: hda - Force runtime PM on Nvidia HDMI codecs - USB: serial: ti_usb_3410_5052: fix port-close races - USB: ldusb: fix memleak on disconnect - USB: usblp: fix use-after-free on disconnect - USB: ldusb: fix read info leaks - [mips*] tlbex: Fix build_restore_pagemask KScratch restore - staging: wlan-ng: fix exit return when sme->key_idx >= NUM_WEPKEYS - [s390x] scsi: zfcp: fix reaction on bit error threshold notification - scsi: sd: Ignore a failure to sync cache due to lack of authorization - scsi: core: save/restore command resid for error handling - scsi: core: try to get module before removing device - scsi: ch: Make it possible to open a ch device multiple times again - Input: synaptics-rmi4 - avoid processing unknown IRQs - ACPI: CPPC: Set pcc_data[pcc_ss_id] to NULL in acpi_cppc_processor_exit() - cfg80211: wext: avoid copying malformed SSIDs (CVE-2019-17133) - mac80211: Reject malformed SSID elements - [x86] drm/edid: Add 6 bpc quirk for SDC panel in Lenovo G50 - drm/ttm: Restore ttm prefaulting - drm/amdgpu: Bail earlier when amdgpu.cik_/si_support is not set to 1 - drivers/base/memory.c: don't access uninitialized memmaps in soft_offline_page_store() - fs/proc/page.c: don't access uninitialized memmaps in fs/proc/page.c - mm/memory-failure.c: don't access uninitialized memmaps in memory_failure() - mm/slub: fix a deadlock in show_slab_objects() - mm/page_owner: don't access uninitialized memmaps when reading /proc/pagetypeinfo - hugetlbfs: don't access uninitialized memmaps in pfn_range_valid_gigantic() - mm/memory-failure: poison read receives SIGKILL instead of SIGBUS if mmaped more than once - EDAC/ghes: Fix Use after free in ghes_edac remove path - [arm64] Enable workaround for Cavium TX2 erratum 219 when running SMT - CIFS: avoid using MID 0xFFFF - CIFS: Fix use after free of file info structures - perf/aux: Fix AUX output stopping - tracing: Fix race in perf_trace_buf initialization - dm cache: fix bugs when a GFP_NOWAIT allocation fails - [amd64] boot: Make level2_kernel_pgt pages invalid outside kernel area - [x86] apic/x2apic: Fix a NULL pointer deref when handling a dying cpu - [x86] pinctrl: cherryview: restore Strago DMI workaround for all versions - [arm64] pinctrl: armada-37xx: fix control of pins 32 and up - [arm64] pinctrl: armada-37xx: swap polarity on LED group - btrfs: block-group: Fix a memory leak due to missing btrfs_put_block_group() - Btrfs: add missing extents release on file extent cluster relocation error - Btrfs: check for the full sync flag while holding the inode lock during fsync - btrfs: tracepoints: Fix bad entry members of qgroup events - memstick: jmb38x_ms: Fix an error handling path in 'jmb38x_ms_probe()' - cpufreq: Avoid cpufreq_suspend() deadlock on system shutdown - xen/netback: fix error path of xenvif_connect_data() - PCI: PM: Fix pci_power_up() - blk-rq-qos: fix first node deletion of rq_qos_del() - RDMA/cxgb4: Do not dma memory off of the stack (CVE-2019-17075) https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.82 - zram: fix race between backing_dev_show and backing_dev_store - dm snapshot: introduce account_start_copy() and account_end_copy() - dm snapshot: rework COW throttling to fix deadlock - Btrfs: fix inode cache block reserve leak on failure to allocate data space - Btrfs: fix memory leak due to concurrent append writes with fiemap - btrfs: qgroup: Always free PREALLOC META reserve in btrfs_delalloc_release_extents() - btrfs: tracepoints: Fix wrong parameter order for qgroup events - wil6210: fix freeing of rx buffers in EDMA mode - f2fs: flush quota blocks after turnning it off - scsi: lpfc: Fix a duplicate 0711 log message number. - f2fs: fix to recover inode's i_gc_failures during POR - f2fs: fix to recover inode->i_flags of inode block during POR - [x86] HID: i2c-hid: add Direkt-Tek DTLAPY133-1 to descriptor override - [arm64,armel,armhf] usb: dwc2: fix unbalanced use of external vbus-supply - [x86] tools/power turbostat: fix goldmont C-state limit decoding - [x86] cpu: Add Atom Tremont (Jacobsville) - [arm64] drm/msm/dpu: handle failures while initializing displays - bcache: fix input overflow to writeback_rate_minimum - PCI: Fix Switchtec DMA aliasing quirk dmesg noise - Btrfs: fix deadlock on tree root leaf when finding free extent - netfilter: ipset: Make invalid MAC address checks consistent - HID: i2c-hid: Disable runtime PM for LG touchscreen - HID: i2c-hid: Ignore input report if there's no data present on Elan touchpanels - HID: i2c-hid: Add Odys Winbook 13 to descriptor override - [x86] platform/x86: Add the VLV ISP PCI ID to atomisp2_pm - [x86] platform/x86: Fix config space access for intel_atomisp2_pm - ath10k: assign 'n_cipher_suites = 11' for WCN3990 to enable WPA3 - HID: Add ASUS T100CHI keyboard dock battery quirks - NFSv4: Ensure that the state manager exits the loop on SIGKILL - HID: steam: fix boot loop with bluetooth firmware - HID: steam: fix deadlock with input devices. - [arm64,armhf] usb: dwc3: gadget: early giveback if End Transfer already completed - [arm64,armhf] usb: dwc3: gadget: clear DWC3_EP_TRANSFER_STARTED on cmd complete - ALSA: usb-audio: Cleanup DSD whitelist - usb: handle warm-reset port requests on hub resume - [armhf] rtc: pcf8523: set xtal load capacitance from DT - [arm64] Add MIDR encoding for HiSilicon Taishan CPUs - [arm64] kpti: Whitelist HiSilicon Taishan v110 CPUs - scsi: lpfc: Correct localport timeout duration error - CIFS: Respect SMB2 hdr preamble size in read responses - cifs: add credits from unmatched responses/messages - ALSA: hda/realtek - Apply ALC294 hp init also for S4 resume - ext4: disallow files with EXT4_JOURNAL_DATA_FL from EXT4_IOC_SWAP_BOOT - exec: load_script: Do not exec truncated interpreter path - [arm64,armhf] net: dsa: mv88e6xxx: Release lock while requesting IRQ - PCI/PME: Fix possible use-after-free on remove - [arm64,armhf] iio: adc: meson_saradc: Fix memory allocation order - [x86] iio: fix center temperature of bmc150-accel-core - perf map: Fix overlapped map handling - perf script brstackinsn: Fix recovery from LBR/binary mismatch - perf jevents: Fix period for Intel fixed counters - perf tools: Propagate get_cpuid() error - perf annotate: Propagate perf_env__arch() error - perf annotate: Fix the signedness of failure returns - perf annotate: Propagate the symbol__annotate() error return - perf annotate: Return appropriate error code for allocation failures - staging: rtl8188eu: fix null dereference when kzalloc fails - RDMA/hfi1: Prevent memory leak in sdma_init (CVE-2019-19065) - RDMA/iwcm: Fix a lock inversion issue - [x86] HID: hyperv: Use in-place iterator API in the channel callback - nfs: Fix nfsi->nrequests count error on nfs_inode_remove_request - [arm64] ftrace: Ensure synchronisation in PLT setup for Neoverse-N1 - [arm64] gpio: max77620: Use correct unit for debounce times - fs: cifs: mute -Wunused-const-variable message - [armhf] serial: mctrl_gpio: Check for NULL pointer - efi/cper: Fix endianness of PCIe class code - [x86] efi/x86: Do not clean dummy variable in kexec path - [x86] xen: Return from panic notifier - ocfs2: clear zero in unaligned direct IO - fs: ocfs2: fix possible null-pointer dereferences in ocfs2_xa_prepare_entry() - fs: ocfs2: fix a possible null-pointer dereference in ocfs2_write_end_nolock() - fs: ocfs2: fix a possible null-pointer dereference in ocfs2_info_scan_inode_alloc() - [arm64] armv8_deprecated: Checking return value for memory allocation - [x86] cpu: Add Comet Lake to the Intel CPU models header - sched/vtime: Fix guest/system mis-accounting on task switch - [x86] perf/x86/amd: Change/fix NMI latency mitigation to use a timestamp - drm/amdgpu: fix memory leak - iio: imu: adis16400: release allocated memory on failure (CVE-2019-19060) - [x86] virt: vbox: fix memory leak in hgcm_call_preprocess_linaddr (CVE-2019-19048) - NFSv4: Fix leak of clp->cl_acceptor string - tracing: Initialize iter->seq after zeroing in tracing_read_pipe() - ALSA: hda/realtek: Reduce the Headphone static noise on XPS 9350/9360 - iwlwifi: exclude GEO SAR support for 3168 - nbd: verify socket is supported during setup - USB: legousbtower: fix a signedness bug in tower_probe() - [x86] thunderbolt: Use 32-bit writes when writing ring producer/consumer - ath6kl: fix a NULL-ptr-deref bug in ath6kl_usb_alloc_urb_from_pipe() (CVE-2019-15098) - fuse: flush dirty data/metadata before non-truncate setattr - fuse: truncate pending writes on O_TRUNC - ALSA: bebob: Fix prototype of helper function to return negative value - ALSA: hda/realtek - Fix 2 front mics of codec 0x623 - ALSA: hda/realtek - Add support for ALC623 - UAS: Revert commit 3ae62a42090f ("UAS: fix alignment of scatter/gather segments") - USB: gadget: Reject endpoints with 0 maxpacket value - usb-storage: Revert commit 747668dbc061 ("usb-storage: Set virt_boundary_mask to avoid SG overflows") - USB: ldusb: fix ring-buffer locking - USB: ldusb: fix control-message timeout - usb: xhci: fix __le32/__le64 accessors in debugfs code - USB: serial: whiteheat: fix potential slab corruption - USB: serial: whiteheat: fix line-speed endianness - scsi: target: cxgbit: Fix cxgbit_fw4_ack() - HID: i2c-hid: add Trekstor Primebook C11B to descriptor override - HID: Fix assumption that devices have inputs - HID: fix error message in hid_open_report() - nl80211: fix validation of mesh path nexthop - [s390x] cmm: fix information leak in cmm_timeout_handler() - [s390x] idle: fix cpu idle time calculation - [arm64] Ensure VM_WRITE|VM_SHARED ptes are clean by default - rtlwifi: Fix potential overflow on P2P code (CVE-2019-17666) - [arm64] dmaengine: qcom: bam_dma: Fix resource leak - [armhf] dmaengine: cppi41: Fix cppi41_dma_prep_slave_sg() when idle - NFS: Fix an RCU lock leak in nfs4_refresh_delegation_stateid() - batman-adv: Avoid free/alloc race when handling OGM buffer - llc: fix sk_buff leak in llc_sap_state_process() - llc: fix sk_buff leak in llc_conn_service() - rxrpc: Fix call ref leak - rxrpc: rxrpc_peer needs to hold a ref on the rxrpc_local record - rxrpc: Fix trace-after-put looking at the put peer record - NFC: pn533: fix use-after-free and memleaks - bonding: fix potential NULL deref in bond_update_slave_arr - net: usb: sr9800: fix uninitialized local variable - sch_netem: fix rcu splat in netem_enqueue() - ALSA: timer: Simplify error path in snd_timer_open() - ALSA: timer: Fix mutex deadlock at releasing card - ALSA: usb-audio: DSD auto-detection for Playback Designs - ALSA: usb-audio: Update DSD support quirks for Oppo and Rotel - ALSA: usb-audio: Add DSD support for Gustard U16/X26 USB Interface - [ppc64el] powerpc/powernv: Fix CPU idle to be called with IRQs disabled - Revert "ALSA: hda: Flush interrupts on disabling" https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.83 - regulator: of: fix suspend-min/max-voltage parsing - [arm64] dts: allwinner: a64: pine64-plus: Add PHY regulator delay - [arm64] arm64: dts: allwinner: a64: sopine-baseboard: Add PHY regulator delay - [armhf] regulator: ti-abb: Fix timeout in ti_abb_wait_txdone/ti_abb_clear_all_txdone - [x86] ASoC: rt5682: add NULL handler to set_jack function - [armhf] regulator: pfuze100-regulator: Variable "val" in pfuze100_regulator_probe() could be uninitialized - [arm64,armhf] ASoc: rockchip: i2s: Fix RPM imbalance - [armel,armhf] mm: fix alignment handler faults under memory pressure - scsi: qla2xxx: fix a potential NULL pointer dereference - scsi: scsi_dh_alua: handle RTPG sense code correctly during state transitions - drm/amdgpu: fix potential VM faults - scsi: target: core: Do not overwrite CDB byte 1 - tracing: Fix "gfp_t" format for synthetic events - of: unittest: fix memory leak in unittest_data_add (CVE-2019-19049) - [arm64,armhf] irqchip/gic-v3-its: Use the exact ITSList for VMOVP - cifs: Fix cifsInodeInfo lock_sem deadlock when reconnect occurs - nbd: protect cmd->status with cmd->lock - nbd: handle racing with error'ed out commands - cxgb4: fix panic when attaching to ULD fail - dccp: do not leak jiffies on the wire - erspan: fix the tun_info options_len check for erspan - inet: stop leaking jiffies on the wire - net: annotate accesses to sk->sk_incoming_cpu - net: annotate lockless accesses to sk->sk_napi_id - [armhf] net: dsa: bcm_sf2: Fix IMP setup for port different than 8 - net: fix sk_page_frag() recursion from memory reclaim - [arm64] net: hisilicon: Fix ping latency when deal with high throughput - net/mlx4_core: Dynamically set guaranteed amount of counters per VF - netns: fix GFP flags in rtnl_net_notifyid() - net: usb: lan78xx: Disable interrupts before calling generic_handle_irq() - net: Zeroing the structure ethtool_wolinfo in ethtool_get_wol() - udp: fix data-race in udp_set_dev_scratch() - vxlan: check tun_info options_len properly - net: add skb_queue_empty_lockless() - udp: use skb_queue_empty_lockless() - net: use skb_queue_empty_lockless() in poll() handlers - net: use skb_queue_empty_lockless() in busy poll contexts - net: add READ_ONCE() annotation in __skb_wait_for_more_packets() - ipv4: fix route update on metric change. - net/mlx5e: Fix handling of compressed CQEs in case of low NAPI budget - r8169: fix wrong PHY ID issue with RTL8168dp - net/mlx5e: Fix ethtool self test: link speed - [armhf] net: dsa: b53: Do not clear existing mirrored port mask - [armhf] net: phy: bcm7xxx: define soft_reset for 40nm EPHY - net: usb: lan78xx: Connect PHY before registering MAC - [arm64,armhf] net: dsa: fix switch tree list - r8152: add device id for Lenovo ThinkPad USB-C Dock Gen 2 - net/flow_dissector: switch to siphash - wireless: Skip directory when generating certificates - [x86] platform/x86: pmc_atom: Add Siemens SIMATIC IPC227E to critclk_systems DMI table - [ppc64el] powerpc/mm: Fixup tlbie vs mtpidr/mtlpidr ordering issue on POWER9 - usb: gadget: udc: core: Fix segfault if udc_bind_to_driver() for pending driver fails https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.84 - bonding: fix state transition issue in link monitoring - CDC-NCM: handle incomplete transfer of MTU - ipv4: Fix table id reference in fib_sync_down_addr - [mips*] net: ethernet: octeon_mgmt: Account for second possible VLAN header - net: fix data-race in neigh_event_send() - net: usb: qmi_wwan: add support for DW5821e with eSIM support - nfc: netlink: fix double device reference drop - qede: fix NULL pointer deref in __qede_remove() - ipv6: fixes rt6_probe() and fib6_nh->last_probe init - [arm64] net: hns: Fix the stray netpoll locks causing deadlock in NAPI path - ALSA: timer: Fix incorrectly assigned timer instance - ALSA: bebob: fix to detect configured source of sampling clock for Focusrite Saffire Pro i/o series - ALSA: hda/ca0132 - Fix possible workqueue stall - mm: memcontrol: fix network errors from failing __GFP_ATOMIC charges - mm, meminit: recalculate pcpu batch and high limits after init completes - mm: thp: handle page cache THP correctly in PageTransCompoundMap - mm, vmstat: hide /proc/pagetypeinfo from normal users - dump_stack: avoid the livelock of the dump_lock - perf tools: Fix time sorting - drm/radeon: fix si_enable_smc_cac() failed issue - HID: wacom: generic: Treat serial number and related fields as unsigned - [arm64] Do not mask out PTE_RDONLY in pte_same() - ceph: fix use-after-free in __ceph_remove_cap() - ceph: add missing check in d_revalidate snapdir handling - [armhf] sunxi: Fix CPU powerdown on A83T - netfilter: nf_tables: Align nft_expr private data to 64-bit - netfilter: ipset: Fix an error code in ip_set_sockfn_get() - [x86] intel_th: pci: Add Comet Lake PCH support - [x86] intel_th: pci: Add Jasper Lake PCH support - [x86] apic/32: Avoid bogus LDR warnings - SMB3: Fix persistent handles reconnect - can: usb_8dev: fix use-after-free on disconnect - [armhf] can: flexcan: disable completely the ECC mechanism - can: peak_usb: fix a potential out-of-sync while decoding packets - can: rx-offload: can_rx_offload_queue_sorted(): fix error handling, avoid skb mem leak - can: gs_usb: gs_can_open(): prevent memory leak (CVE-2019-19052) - can: dev: add missing of_node_put() after calling of_get_child_by_name() - can: mcba_usb: fix use-after-free on disconnect - can: peak_usb: fix slab info leak - configfs: stash the data we need into configfs_buffer at open time - configfs_register_group() shouldn't be (and isn't) called in rmdirable parts - configfs: new object reprsenting tree fragments - configfs: provide exclusion between IO and removals - configfs: fix a deadlock in configfs_symlink() - ALSA: usb-audio: More validations of descriptor units - ALSA: usb-audio: Simplify parse_audio_unit() - ALSA: usb-audio: Unify the release of usb_mixer_elem_info objects - ALSA: usb-audio: Remove superfluous bLength checks - ALSA: usb-audio: Clean up check_input_term() - ALSA: usb-audio: Fix possible NULL dereference at create_yamaha_midi_quirk() - ALSA: usb-audio: remove some dead code - ALSA: usb-audio: Fix copy&paste error in the validator - sched/fair: Fix low cpu usage with high throttling by removing expiration of cpu-local slices - sched/fair: Fix -Wunused-but-set-variable warnings - usbip: Fix vhci_urb_enqueue() URB null transfer buffer error path - usbip: Implement SG support to vhci-hcd and stub driver - [arm64,armhf] PCI: tegra: Enable Relaxed Ordering only for Tegra20 & Tegra30 - [amd64] HID: intel-ish-hid: fix wrong error handling in ishtp_cl_alloc_tx_ring() - RDMA/mlx5: Clear old rate limit when closing QP - iw_cxgb4: fix ECN check on the passive accept - RDMA/qedr: Fix reported firmware version - net/mlx5e: TX, Fix consumer index of error cqe dump - net/mlx5: prevent memory leak in mlx5_fpga_conn_create_cq (CVE-2019-19045) - scsi: qla2xxx: fixup incorrect usage of host_byte - RDMA/uverbs: Prevent potential underflow - net: openvswitch: free vport unless register_netdevice() succeeds - scsi: lpfc: Honor module parameter lpfc_use_adisc - scsi: qla2xxx: Initialized mailbox to prevent driver load failure - netfilter: nf_flow_table: set timeout before insertion into hashes - ipvs: don't ignore errors in case refcounting ip_vs module fails - ipvs: move old_secure_tcp into struct netns_ipvs - bonding: fix unexpected IFF_BONDING bit unset - macsec: fix refcnt leak in module exit routine - usb: gadget: composite: Fix possible double free memory bug - [arm64] usb: dwc3: pci: prevent memory leak in dwc3_pci_probe (CVE-2019-18813) - usb: gadget: configfs: fix concurrent issue between composite APIs - [arm64,armhf] usb: dwc3: remove the call trace of USBx_GFLADJ - [x86] perf/x86/amd/ibs: Fix reading of the IBS OpData register and thus precise RIP validity - [x86] perf/x86/amd/ibs: Handle erratum #420 only on the affected CPU family (10h) - [x86] perf/x86/uncore: Fix event group support - USB: Skip endpoints with 0 maxpacket length - USB: ldusb: use unsigned size format specifiers - usbip: tools: Fix read_usb_vudc_device() error path handling - RDMA/iw_cxgb4: Avoid freeing skb twice in arp failure case - [arm64] RDMA/hns: Prevent memory leaks of eq->buf_list - scsi: qla2xxx: stop timer in shutdown path - nvme-multipath: fix possible io hang after ctrl reconnect - [amd64] fjes: Handle workqueue allocation failure - [arm64] net: hisilicon: Fix "Trying to free already-free IRQ" - drm/amdgpu: If amdgpu_ib_schedule fails return back the error. - [x86] hv_netvsc: Fix error handling in netvsc_attach() - [arm64,armhf] usb: dwc3: gadget: fix race when disabling ep with cancelled xfers - NFSv4: Don't allow a cached open with a revoked delegation - igb: Fix constant media auto sense switching when no cable is connected - e1000: fix memory leaks - [x86] pinctrl: intel: Avoid potential glitches if pin is in GPIO mode - ocfs2: protect extent tree in ocfs2_prepare_inode_for_write() - [x86] pinctrl: cherryview: Fix irq_valid_mask calculation - blkcg: make blkcg_print_stat() print stats only for online blkgs - [x86] iio: imu: mpu6050: Add support for the ICM 20602 IMU - [x86] iio: imu: inv_mpu6050: fix no data on MPU6050 - mm/filemap.c: don't initiate writeback if mapping has no dirty pages - cgroup,writeback: don't switch wbs immediately on dead wbs if the memcg is dead - usbip: Fix free of unallocated memory in vhci tx - netfilter: ipset: Copy the right MAC address in hash:ip,mac IPv6 sets - net: prevent load/store tearing on sk->sk_stamp - [x86] iio: imu: mpu6050: Fix FIFO layout for ICM20602 - vsock/virtio: fix sock refcnt holding during the shutdown - x86/cpu: Add Tremont to the cpu vulnerability whitelist https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.85 - scsi: core: Handle drivers which set sg_tablesize to zero - ax88172a: fix information leak on short answers - ipmr: Fix skb headroom in ipmr_get_route(). - net: gemini: add missed free_netdev - net: usb: qmi_wwan: add support for Foxconn T77W968 LTE modules - slip: Fix memory leak in slip_open error path - ALSA: usb-audio: Fix missing error check at mixer resolution test - ALSA: usb-audio: not submit urb for stopped endpoint - ALSA: usb-audio: Fix incorrect NULL check in create_yamaha_midi_quirk() - ALSA: usb-audio: Fix incorrect size check for processing/extension units - Btrfs: fix log context list corruption after rename exchange operation - Input: ff-memless - kill timer in destroy() - Input: synaptics-rmi4 - fix video buffer size - Input: synaptics-rmi4 - disable the relative position IRQ in the F12 driver - Input: synaptics-rmi4 - do not consume more data than we have (F11, F12) - Input: synaptics-rmi4 - clear IRQ enables for F54 - Input: synaptics-rmi4 - destroy F54 poller workqueue when removing - IB/hfi1: Ensure full Gen3 speed in a Gen4 system - IB/hfi1: Use a common pad buffer for 9B and 16B packets - i2c: acpi: Force bus speed to 400KHz if a Silead touchscreen is present - ecryptfs_lookup_interpose(): lower_dentry->d_inode is not stable - ecryptfs_lookup_interpose(): lower_dentry->d_parent is not stable either - [armhf] net: ethernet: dwmac-sun8i: Use the correct function in exit path - [x86] iommu/vt-d: Fix QI_DEV_IOTLB_PFSID and QI_DEV_EIOTLB_PFSID macros - mm: mempolicy: fix the wrong return value and potential pages leak of mbind - mm: memcg: switch to css_tryget() in get_mem_cgroup_from_mm() - mm: hugetlb: switch to css_tryget() in hugetlb_cgroup_charge_cgroup() - iio: adc: max9611: explicitly cast gain_selectors - tee: optee: take DT status property into account - ath10k: fix kernel panic by moving pci flush after napi_disable - clk: sunxi-ng: h6: fix PWM gate/reset offset - soundwire: Initialize completion for defer messages - [x86] soundwire: intel: Fix uninitialized adev deref - [arm64] dts: allwinner: a64: Orange Pi Win: Fix SD card node - [arm64] dts: allwinner: a64: Olinuxino: fix DRAM voltage - [arm64] dts: allwinner: a64: NanoPi-A64: Fix DCDC1 voltage - ALSA: pcm: signedness bug in snd_pcm_plug_alloc() - [arm64] soc/tegra: pmc: Fix pad voltage configuration for Tegra186 - [arm64] dts: tegra210-p2180: Correct sdmmc4 vqmmc-supply - y2038: make do_gettimeofday() and get_seconds() inline - rtc: sysfs: fix NULL check in rtc_add_groups() - remoteproc/davinci: Use %zx for formating size_t - extcon: cht-wc: Return from default case to avoid warnings - cfg80211: Avoid regulatory restore when COUNTRY_IE_IGNORE is set - ALSA: seq: Do error checks at creating system ports - ath10k: skip resetting rx filter for WCN3990 - ath9k: fix tx99 with monitor mode interface - wil6210: drop Rx multicast packets that are looped-back to STA - wil6210: set edma variables only for Talyn-MB devices - wil6210: prevent usage of tx ring 0 for eDMA - wil6210: fix invalid memory access for rx_buff_mgmt debugfs - ath10k: limit available channels via DT ieee80211-freq-limit - ice: Update request resource command to latest specification - ice: Prevent control queue operations during reset - gfs2: Don't set GFS2_RDF_UPTODATE when the lvb is updated - ice: Fix and update driver version string - ASoC: dapm: Don't fail creating new DAPM control on NULL pinctrl - ASoC: dpcm: Properly initialise hw->rate_max - ASoC: meson: axg-fifo: report interrupt request failure - ASoC: AMD: Change MCLK to 48Mhz - pinctrl: ingenic: Probe driver at subsys_initcall - [armhf] dts: exynos: Use i2c-gpio for HDMI-DDC on Arndale - [armhf] dts: exynos: Fix HDMI-HPD line handling on Arndale - [armhf] dts: exynos: Fix sound in Snow-rev5 Chromebook - liquidio: fix race condition in instruction completion processing - [arm64] dts: stratix10: i2c clock running out of spec - [armhf] dts: exynos: Fix regulators configuration on Peach Pi/Pit Chromebooks - i40evf: Validate the number of queues a PF sends - i40e: use correct length for strncpy - i40evf: set IFF_UNICAST_FLT flag for the VF - i40e: Check and correct speed values for link on open - i40evf: Don't enable vlan stripping when rx offload is turned on - i40e: hold the rtnl lock on clearing interrupt scheme - i40evf: cancel workqueue sync for adminq when a VF is removed - i40e: Prevent deleting MAC address from VF when set by PF - IB/rxe: avoid back-to-back retries - IB/rxe: fixes for rdma read retry - iwlwifi: drop packets with bad status in CD - iwlwifi: don't WARN on trying to dump dead firmware - iwlwifi: mvm: avoid sending too many BARs - media: vicodec: fix out-of-range values when decoding - media: i2c: Fix pm_runtime_get_if_in_use() usage in sensor drivers - media: ov772x: Disable clk on error path - rtl8187: Fix warning generated when strncpy() destination length matches the sixe argument - mwifiex: do no submit URB in suspended state - mwifex: free rx_cmd skb in suspended state - brcmfmac: fix wrong strnchr usage - mt76: Fix comparisons with invalid hardware key index - soc: imx: gpc: fix PDN delay - ASoC: rsnd: ssi: Fix issue in dma data address assignment - net: hns3: Fix for multicast failure - net: hns3: Fix error of checking used vlan id - net: hns3: Fix for loopback selftest failed problem - net: hns3: Change the dst mac addr of loopback packet - net/mlx5: Fix atomic_mode enum values - net: phy: mscc: read 'vsc8531,vddmac' as an u32 - net: phy: mscc: read 'vsc8531, edge-slowdown' as an u32 - [armhf] dts: meson8: fix the clock controller register size - [armhf] dts: meson8b: fix the clock controller register size - mtd: rawnand: marvell: use regmap_update_bits() for syscon access - mtd: rawnand: fsl_ifc: check result of SRAM initialization - mtd: rawnand: fsl_ifc: fixup SRAM init for newer ctrl versions - mtd: rawnand: qcom: don't include dma-direct.h - IB/mlx5: Change TX affinity assignment in RoCE LAG mode - qxl: fix null-pointer crash during suspend - mac80211: fix saving a few HE values - cfg80211: validate wmm rule when setting - f2fs: avoid wrong decrypted data from disk - net: lan78xx: Bail out if lan78xx_get_endpoints fails - rtnetlink: move type calculation out of loop - ASoC: sgtl5000: avoid division by zero if lo_vag is zero - ath10k: avoid possible memory access violation - [armhf] dts: exynos: Disable pull control for S5M8767 PMIC - ath10k: wmi: disable softirq's while calling ieee80211_rx - i2c: mediatek: Use DMA safe buffers for i2c transactions - IB/mlx5: Don't hold spin lock while checking device state - IB/ipoib: Ensure that MTU isn't less than minimum permitted - RDMA/core: Rate limit MAD error messages - RDMA/core: Follow correct unregister order between sysfs and cgroup - udf: Fix crash during mount - ASoC: dapm: Avoid uninitialised variable warning - [x86] ASoC: Intel: hdac_hdmi: Limit sampling rates at dai creation - ata: Disable AHCI ALPM feature for Ampere Computing eMAG SATA - [powerpc] make PowerMac cache node search conditional on CONFIG_PPC_PMAC - [armhf] dts: omap3-gta04: give spi_lcd node a label so that we can overwrite in other DTS files - [armhf] dts: omap3-gta04: fixes for tvout / venc - [armhf] dts: omap3-gta04: tvout: enable as display1 alias - [armhf] dts: omap3-gta04: fix touchscreen tsc2007 - [armhf] dts: omap3-gta04: make NAND partitions compatible with recent U-Boot - [armhf] dts: omap3-gta04: keep vpll2 always on - f2fs: submit bio after shutdown - failover: Fix error return code in net_failover_create - sched/debug: Explicitly cast sched_feat() to bool - sched/debug: Use symbolic names for task state constants - firmware: arm_scmi: use strlcpy to ensure NULL-terminated strings - [arm64] dts: rockchip: Fix VCC5V0_HOST_EN on rk3399-sapphire - [armhf] dts: exynos: Disable pull control for PMIC IRQ line on Artik5 board - usb: mtu3: disable vbus rise/fall interrupts of ltssm - EDAC, sb_edac: Return early on ADDRV bit and address type test - [armhf] rtc: pl030: fix possible race condition - ath9k: add back support for using active monitor interfaces for tx99 - dmaengine: at_xdmac: remove a stray bottom half unlock - RDMA/hns: Fix an error code in hns_roce_v2_init_eq_table() - IB/hfi1: Missing return value in error path for user sdma - signal: Always ignore SIGKILL and SIGSTOP sent to the global init - signal: Properly deliver SIGILL from uprobes - signal: Properly deliver SIGSEGV from x86 uprobes - f2fs: fix memory leak of write_io in fill_super() - f2fs: fix memory leak of percpu counter in fill_super() - f2fs: fix setattr project check upon fssetxattr ioctl - scsi: qla2xxx: Use correct qpair for ABTS/CMD - scsi: qla2xxx: Fix iIDMA error - scsi: qla2xxx: Defer chip reset until target mode is enabled - scsi: qla2xxx: Terminate Plogi/PRLI if WWN is 0 - scsi: qla2xxx: Fix deadlock between ATIO and HW lock - scsi: qla2xxx: Increase abort timeout value - scsi: qla2xxx: Check for Register disconnect - scsi: qla2xxx: Fix port speed display on chip reset - scsi: qla2xxx: Fix dropped srb resource. - scsi: qla2xxx: Fix duplicate switch's Nport ID entries - scsi: lpfc: Fix GFT_ID and PRLI logic for RSCN - scsi: lpfc: Correct invalid EQ doorbell write on if_type=6 - scsi: lpfc: Fix errors in log messages. - scsi: sym53c8xx: fix NULL pointer dereference panic in sym_int_sir() - [armhf] imx6: register pm_power_off handler if "fsl,pmic-stby-poweroff" is set - scsi: pm80xx: Corrected dma_unmap_sg() parameter - scsi: pm80xx: Fixed system hang issue during kexec boot - kprobes: Don't call BUG_ON() if there is a kprobe in use on free list - net: aquantia: fix hw_atl_utils_fw_upload_dwords - Drivers: hv: vmbus: Fix synic per-cpu context initialization - nvmem: core: return error code instead of NULL from nvmem_device_get - media: dt-bindings: adv748x: Fix decimal unit addresses - [x86] ALSA: hda: Fix implicit definition of pci_iomap() on SH - media: fix: media: pci: meye: validate offset to avoid arbitrary access - media: dvb: fix compat ioctl translation - net: bcmgenet: Fix speed selection for reverse MII - [arm64] dts: meson: libretech: update board model - [arm64] dts: meson-axg: use the proper compatible for ethmac - [x86] ALSA: intel8x0m: Register irq handler after register initializations - [arm64] dts: renesas: salvator-common: adv748x: Override secondary addresses - [arm64] dts: renesas: r8a77965: Attach the SYS-DMAC to the IPMMU - [arm64] dts: renesas: r8a77965: Fix HS-USB compatible - [arm64] dts: renesas: r8a77965: Fix clock/reset for usb2_phy1 - pinctrl: at91-pio4: fix has_config check in atmel_pctl_dt_subnode_to_map() - llc: avoid blocking in llc_sap_close() - [armhf] dts: qcom: ipq4019: fix cpu0's qcom,saw2 reg value - [arm64] soc: qcom: wcnss_ctrl: Avoid string overflow - [arm64] dts: broadcom: Fix I2C and SPI bus warnings - [armhf] dts: bcm: Fix SPI bus warnings - [armhf] dts: aspeed: Fix I2C bus warnings - [ppc64el,powerpc*] powerpc/vdso: Correct call frame information - [armhf] dts: socfpga: Fix I2C bus unit-address error - [armhf] dts: sunxi: Fix I2C bus warnings - [armhf] dts: sun9i: Fix I2C bus warnings - android: binder: no outgoing transaction when thread todo has transaction - cxgb4: Fix endianness issue in t4_fwcache() - [arm64] fix for bad_mode() handler to always result in panic - block, bfq: inject other-queue I/O into seeky idle queues on NCQ flash - blok, bfq: do not plug I/O if all queues are weight-raised - [arm64] dts: meson: Fix erroneous SPI bus warnings - power: supply: ab8500_fg: silence uninitialized variable warnings - component: fix loop condition to call unbind() if bind() fails - kernfs: Fix range checks in kernfs_get_target_path - ip_gre: fix parsing gre header in ipgre_err - scsi: ufshcd: Fix NULL pointer dereference for in ufshcd_init - [armhf] dts: rockchip: Fix erroneous SPI bus dtc warnings on rk3036 - [arm64] dts: rockchip: Fix I2C bus unit-address error on rk3399-puma-haikou - [x86] ACPI / LPSS: Exclude I2C busses shared with PUNIT from pmc_atom_d3_mask - netfilter: nf_tables: avoid BUG_ON usage - ath9k: Fix a locking bug in ath9k_add_interface() - [s390x] qeth: uninstall IRQ handler on device removal - [s390x] qeth: invoke softirqs after napi_schedule() - media: vsp1: Fix vsp1_regs.h license header - media: vsp1: Fix YCbCr planar formats pitch calculation - media: ov2680: don't register the v4l2 subdevice before checking chip ID - PCI/ACPI: Correct error message for ASPM disabling - net: socionext: Fix two sleep-in-atomic-context bugs in ave_rxfifo_reset() - PCI: mediatek: Fix unchecked return value - [armhf] dts: xilinx: Fix I2C and SPI bus warnings - serial: uartps: Fix suspend functionality - serial: samsung: Enable baud clock for UART reset procedure in resume - serial: mxs-auart: Fix potential infinite loop - tty: serial: qcom_geni_serial: Fix serial when not used as console - [arm64] dts: ti: k3-am65: Change #address-cells and #size-cells of interconnect to 2 - samples/bpf: fix a compilation failure - spi: mediatek: Don't modify spi_transfer when transfer. - ASoC: rt5682: Fix the boost volume at the begining of playback - ipmi_si_pci: fix NULL device in ipmi_si error message - ipmi_si: fix potential integer overflow on large shift - ipmi:dmi: Ignore IPMI SMBIOS entries with a zero base address - ipmi: fix return value of ipmi_set_my_LUN - net: hns3: fix return type of ndo_start_xmit function - net: cavium: fix return type of ndo_start_xmit function - net: ibm: fix return type of ndo_start_xmit function - [ppc64el,powerpc*] iommu: Avoid derefence before pointer check - [ppc64el,powerpc*] selftests: Do not fail with reschedule - [ppc64el,powerpc64] hash: Fix stab_rr off by one initialization - [ppc64el,powerpc64] pseries/memory-hotplug: Only update DT once per memory DLPAR request - [ppc64el,powerpc64] pseries: Disable CPU hotplug across migrations - [ppc64el,powerpc*] Fix duplicate const clang warning in user access code - RDMA/i40iw: Fix incorrect iterator type - OPP: Protect dev_list with opp_table lock - of/unittest: Fix I2C bus unit-address error - libfdt: Ensure INT_MAX is defined in libfdt_env.h - power: supply: twl4030_charger: fix charging current out-of-bounds - power: supply: twl4030_charger: disable eoc interrupt on linear charge - net: mvpp2: fix the number of queues per cpu for PPv2.2 - net: marvell: fix return type of ndo_start_xmit function - net: toshiba: fix return type of ndo_start_xmit function - net: xilinx: fix return type of ndo_start_xmit function - net: broadcom: fix return type of ndo_start_xmit function - net: amd: fix return type of ndo_start_xmit function - net: sun: fix return type of ndo_start_xmit function - net: hns3: Fix for setting speed for phy failed problem - net: hns3: Fix cmdq registers initialization issue for vf - net: hns3: Clear client pointer when initialize client failed or unintialize finished - net: hns3: Fix client initialize state issue when roce client initialize failed - net: hns3: Fix parameter type for q_id in hclge_tm_q_to_qs_map_cfg() - nfp: provide a better warning when ring allocation fails - usb: chipidea: imx: enable OTG overcurrent in case USB subsystem is already started - usb: chipidea: Fix otg event handler - usb: usbtmc: Fix ioctl USBTMC_IOCTL_ABORT_BULK_OUT - [s390x] zcrypt: enable AP bus scan without a valid default domain - [s390x] vdso: avoid 64-bit vdso mapping for compat tasks - [s390x] vdso: correct CFI annotations of vDSO functions - brcmfmac: increase buffer for obtaining firmware capabilities - brcmsmac: Use kvmalloc() for ucode allocations - mlxsw: spectrum: Init shaper for TCs 8..15 - PCI: portdrv: Initialize service drivers directly - [armhf] dts: am335x-evm: fix number of cpsw - [armhf] dts: ti: Fix SPI and I2C bus warnings - f2fs: avoid infinite loop in f2fs_alloc_nid - f2fs: fix to recover inode's uid/gid during POR - [armhf] dts: ux500: Correct SCU unit address - [armhf] dts: ux500: Fix LCDA clock line muxing - [armhf] dts: ste: Fix SPI controller node names - spi: pic32: Use proper enum in dmaengine_prep_slave_rg - crypto: chacha20 - Fix chacha20_block() keystream alignment (again) - cpufeature: avoid warning when compiling with clang - [armhf] crypto: crc32 - avoid warning when compiling with Clang - [armel] dts: marvell: Fix SPI and I2C bus warnings - [x86] mce-inject: Reset injection struct after injection - [armhf,arm64] dts: clearfog: fix sdhci supply property name - bnx2x: Ignore bandwidth attention in single function mode - PCI/AER: Take reference on error devices - PCI/AER: Don't read upstream ports below fatal errors - PCI/ERR: Use slot reset if available - samples/bpf: fix compilation failure - net: phy: mdio-bcm-unimac: Allow configuring MDIO clock divider - net: micrel: fix return type of ndo_start_xmit function - net: freescale: fix return type of ndo_start_xmit function - [x86] CPU: Use correct macros for Cyrix calls - [x86] CPU: Change query logic so CPUID is enabled before testing - EDAC: Correct DIMM capacity unit symbol - [mips*] kexec: Relax memory restriction - [arm64] dts: rockchip: Fix microSD in rk3399 sapphire board - mlxsw: Make MLXSW_SP1_FWREV_MINOR a hard requirement - media: imx: work around false-positive warning, again - media: pci: ivtv: Fix a sleep-in-atomic-context bug in ivtv_yuv_init() - media: au0828: Fix incorrect error messages - media: davinci: Fix implicit enum conversion warning - [armhf] dts: rockchip: explicitly set vcc_sd0 pin to gpio on rk3188-radxarock - usb: gadget: uvc: configfs: Drop leaked references to config items - usb: gadget: uvc: configfs: Prevent format changes after linking header - usb: gadget: uvc: configfs: Sort frame intervals upon writing - [armhf] dts: exynos: Correct audio subsystem parent clock on Peach Chromebooks - i2c: aspeed: fix invalid clock parameters for very large divisors - gpiolib: Fix gpio_direction_* for single direction GPIOs - phy: brcm-sata: allow PHY_BRCM_SATA driver to be built for DSL SoCs - phy: renesas: rcar-gen3-usb2: fix vbus_ctrl for role sysfs - phy: phy-twl4030-usb: fix denied runtime access - [armhf] dts: imx6ull: update vdd_soc voltage for 900MHz operating point - usb: gadget: uvc: Factor out video USB request queueing - usb: gadget: uvc: Only halt video streaming endpoint in bulk mode - coresight: Use ERR_CAST instead of ERR_PTR - coresight: Fix handling of sinks - coresight: perf: Fix per cpu path management - coresight: perf: Disable trace path upon source error - coresight: tmc-etr: Handle driver mode specific ETR buffers - coresight: etm4x: Configure EL2 exception level when kernel is running in HYP - coresight: tmc: Fix byte-address alignment for RRP - coresight: dynamic-replicator: Handle multiple connections - slimbus: ngd: register ngd driver only once. - slimbus: ngd: return proper error code instead of zero - silmbus: ngd: register controller after power up. - misc: kgdbts: Fix restrict error - misc: genwqe: should return proper error value. - vmbus: keep pointer to ring buffer page - vfio/pci: Fix potential memory leak in vfio_msi_cap_len - vfio/pci: Mask buggy SR-IOV VF INTx support - iw_cxgb4: Use proper enumerated type in c4iw_bar2_addrs - scsi: libsas: always unregister the old device if going to discover new - f2fs: fix remount problem of option io_bits - phy: lantiq: Fix compile warning - [arm64] dts: fsl: Fix I2C and SPI bus warnings - [armhf] dts: imx51-zii-rdu1: Fix the rtc compatible string - [arm64] tegra: I2C on Tegra194 is not compatible with Tegra114 - [armhf] dts: tegra30: fix xcvr-setup-use-fuses - [armhf] dts: tegra20: restore address order - [armhf] tegra: apalis_t30: fix mmc1 cmd pull-up - [armhf] tegra: apalis_t30: fix mcp2515 can controller interrupt polarity - [armhf] tegra: colibri_t30: fix mcp2515 can controller interrupt polarity - [armhf] dts: paz00: fix wakeup gpio keycode - net: smsc: fix return type of ndo_start_xmit function - net: faraday: fix return type of ndo_start_xmit function - PCI/ERR: Run error recovery callbacks for all affected devices - f2fs: update i_size after DIO completion - f2fs: fix to recover inode's project id during POR - f2fs: mark inode dirty explicitly in recover_inode() - RDMA: Fix dependencies for rdma_user_mmap_io - EDAC: Raise the maximum number of memory controllers - firmware: dell_rbu: Make payload memory uncachable - Bluetooth: hci_serdev: clear HCI_UART_PROTO_READY to avoid closing proto races - Bluetooth: L2CAP: Detect if remote is not able to use the whole MPS - Bluetooth: btrsi: fix bt tx timeout issue - [x86] hyperv: Suppress "PCI: Fatal: No config space access function found" - crypto: s5p-sss: Fix race in error handling - crypto: s5p-sss: Fix Fix argument list alignment - crypto: fix a memory leak in rsa-kcs1pad's encryption mode - iwlwifi: dbg: don't crash if the firmware crashes in the middle of a debug dump - iwlwifi: fix non_shared_ant for 22000 devices - iwlwifi: pcie: read correct prph address for newer devices - iwlwifi: api: annotate compressed BA notif array sizes - iwlwifi: pcie: gen2: build A-MSDU only for GSO - iwlwifi: pcie: fit reclaim msg to MAX_MSG_LEN - iwlwifi: mvm: use correct FIFO length - iwlwifi: mvm: Allow TKIP for AP mode - scsi: NCR5380: Clear all unissued commands on host reset - scsi: NCR5380: Have NCR5380_select() return a bool - scsi: NCR5380: Withhold disconnect privilege for REQUEST SENSE - scsi: NCR5380: Use DRIVER_SENSE to indicate valid sense data - scsi: NCR5380: Check for invalid reselection target - scsi: NCR5380: Don't clear busy flag when abort fails - scsi: NCR5380: Don't call dsprintk() following reselection interrupt - scsi: NCR5380: Handle BUS FREE during reselection - scsi: NCR5380: Check for bus reset - [arm64] dts: amd: Fix SPI bus warnings - [arm64] dts: lg: Fix SPI controller node names - rtc: isl1208: avoid possible sysfs race - rtc: tx4939: fixup nvmem name and register size - rtc: armada38x: fix possible race condition - netfilter: masquerade: don't flush all conntracks if only one address deleted on device - usb: xhci-mtk: fix ISOC error when interval is zero - usb: usbtmc: uninitialized symbol 'actual' in usbtmc_ioctl_clear - fuse: use READ_ONCE on congestion_threshold and max_background - IB/iser: Fix possible NULL deref at iser_inv_desc() - media: ov2680: fix null dereference at power on - [s390x] vdso: correct vdso mapping for compat tasks - net: phy: mdio-bcm-unimac: mark PM functions as __maybe_unused - memfd: Use radix_tree_deref_slot_protected to avoid the warning. - slcan: Fix memory leak in error path https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.86 - spi: mediatek: use correct mata->xfer_len when in fifo transfer - i2c: mediatek: modify threshold passed to i2c_get_dma_safe_msg_buf() - tee: optee: add missing of_node_put after of_device_is_available - Revert "OPP: Protect dev_list with opp_table lock" - net: cdc_ncm: Signedness bug in cdc_ncm_set_dgram_size() - idr: Fix idr_get_next race with idr_remove - mm/memory_hotplug: don't access uninitialized memmaps in shrink_pgdat_span() - mm/memory_hotplug: fix updating the node span - [arm64] uaccess: Ensure PAN is re-enabled after unhandled uaccess fault - fbdev: Ditch fb_edid_add_monspecs - [i386] bpf, x32: Fix bug for BPF_ALU64 | BPF_NEG - [i386] bpf, x32: Fix bug with ALU64 {LSH, RSH, ARSH} BPF_X shift by 0 - [i386] bpf, x32: Fix bug with ALU64 {LSH, RSH, ARSH} BPF_K shift by 0 - [i386] bpf, x32: Fix bug for BPF_JMP | {BPF_JSGT, BPF_JSLE, BPF_JSLT, BPF_JSGE} - net: ovs: fix return type of ndo_start_xmit function - net: xen-netback: fix return type of ndo_start_xmit function - [armhf] dts: dra7: Enable workaround for errata i870 in PCIe host mode - [armhf] dts: omap5: enable OTG role for DWC3 controller - [arm64] net: hns3: Fix for netdev not up problem when setting mtu - [arm64] net: hns3: Fix loss of coal configuration while doing reset - f2fs: return correct errno in f2fs_gc - [armhf] dts: sun8i: h3-h5: ir register size should be the whole memory block - [armhf] dts: sun8i: h3: bpi-m2-plus: Fix address for external RGMII Ethernet PHY - tcp: up initial rmem to 128KB and SYN rwin to around 64KB - SUNRPC: Fix priority queue fairness - ACPI / LPSS: Make acpi_lpss_find_device() also find PCI devices - ACPI / LPSS: Resume BYT/CHT I2C controllers from resume_noirq - f2fs: keep lazytime on remount - IB/hfi1: Error path MAD response size is incorrect - IB/hfi1: Ensure ucast_dlid access doesnt exceed bounds - mt76x2: fix tx power configuration for VHT mcs 9 - mt76x2: disable WLAN core before probe - mt76: fix handling ps-poll frames - [arm64,armhf] iommu/io-pgtable-arm: Fix race handling in split_blk_unmap() - [arm64,armhf] iommu/arm-smmu-v3: Fix unexpected CMD_SYNC timeout - [arm64,armhf] kvm: Fix stage2_flush_memslot for 4 level page table - [arm64] numa: Report correct memblock range for the dummy node - ath10k: fix vdev-start timeout on error - rtlwifi: btcoex: Use proper enumerated types for Wi-Fi only interface - ata: ahci_brcm: Allow using driver or DSL SoCs - PM / devfreq: Fix devfreq_add_device() when drivers are built as modules. - PM / devfreq: Fix handling of min/max_freq == 0 - PM / devfreq: stopping the governor before device_unregister() - ath9k: fix reporting calculated new FFT upper max - selftests/tls: Fix recv(MSG_PEEK) & splice() test cases - usb: gadget: udc: fotg210-udc: Fix a sleep-in-atomic-context bug in fotg210_get_status() - usb: dwc3: gadget: Check ENBLSLPM before sending ep command - nl80211: Fix a GET_KEY reply attribute - [arm64,armhf] irqchip/irq-mvebu-icu: Fix wrong private data retrieval - watchdog: core: fix null pointer dereference when releasing cdev - watchdog: w83627hf_wdt: Support NCT6796D, NCT6797D, NCT6798D - [ppc64el,powerpc64] Inform the userspace about TCE update failures - printk: Do not miss new messages when replaying the log - printk: CON_PRINTBUFFER console registration is a bit racy - dmaengine: ep93xx: Return proper enum in ep93xx_dma_chan_direction - dmaengine: timb_dma: Use proper enum in td_prep_slave_sg - [x86] ALSA: hda: Fix mismatch for register mask and value in ext controller. - ext4: fix build error when DX_DEBUG is defined - clk: keystone: Enable TISCI clocks if K3_ARCH - sunrpc: Fix connect metrics - [x86] PCI: Apply VMD's AERSID fixup generically - mei: samples: fix a signedness bug in amt_host_if_call() - cxgb4: Use proper enum in cxgb4_dcb_handle_fw_update - cxgb4: Use proper enum in IEEE_FAUX_SYNC - [ppc64el,powerpc*] Fix DTL buffer registration - [ppc64el,powerpc*] Fix how we iterate over the DTL entries - [ppc64el,powerpc*] xive: Move a dereference below a NULL test - mtd: rawnand: sh_flctl: Use proper enum for flctl_dma_fifo0_transfer - PM / hibernate: Check the success of generating md5 digest before hibernation - tools: PCI: Fix compilation warnings - ice: Fix forward to queue group logic - md: allow metadata updates while suspending an array - fix - ixgbe: Fix ixgbe TX hangs with XDP_TX beyond queue limit - i40e: Use proper enum in i40e_ndo_set_vf_link_state - ixgbe: Fix crash with VFs and flow director on interface flap - IB/mthca: Fix error return code in __mthca_init_one() - IB/rxe: avoid srq memory leak - RDMA/hns: Bugfix for reserved qp number - RDMA/hns: Submit bad wr when post send wr exception - RDMA/hns: Bugfix for CM test - RDMA/hns: Limit the size of extend sge of sq - IB/mlx4: Avoid implicit enumerated type conversion - rpmsg: glink: smem: Support rx peak for size less than 4 bytes - msm/gpu/a6xx: Force of_dma_configure to setup DMA for GMU - OPP: Return error on error from dev_pm_opp_get_opp_count() - ACPICA: Never run _REG on system_memory and system_IO - cpuidle: menu: Fix wakeup statistics updates for polling state - ASoC: qdsp6: q6asm-dai: checking NULL vs IS_ERR() - [ppc64el,powerpc*] time: Use clockevents_register_device(), fixing an issue with large decrementer - [ppc64el,powerpc64] radix: Explicitly flush ERAT with local LPID invalidation - ata: ep93xx: Use proper enums for directions - qed: Avoid implicit enum conversion in qed_ooo_submit_tx_buffers - media: rc: ir-rc6-decoder: enable toggle bit for Kathrein RCU-676 remote - media: pxa_camera: Fix check for pdev->dev.of_node - media: rcar-vin: fix redeclaration of symbol - media: i2c: adv748x: Support probing a single output - [x86] ALSA: hda/sigmatel - Disable automute for Elo VuPoint - bnxt_en: return proper error when FW returns HWRM_ERR_CODE_RESOURCE_ACCESS_DENIED - [ppc64el,powerpc64] Book3S PR: Exiting split hack mode needs to fixup both PC and LR - USB: serial: cypress_m8: fix interrupt-out transfer length - usb: dwc2: disable power_down on rockchip devices - mtd: physmap_of: Release resources on error - cpu/SMT: State SMT is disabled even with nosmt and without "=force" - brcmfmac: reduce timeout for action frame scan - brcmfmac: fix full timeout waiting for action frame on-channel tx - qtnfmac: request userspace to do OBSS scanning if FW can not - qtnfmac: pass sgi rate info flag to wireless core - qtnfmac: inform wireless core about supported extended capabilities - qtnfmac: drop error reports for out-of-bounds key indexes - [armhf] clk: samsung: Use NOIRQ stage for Exynos5433 clocks suspend/resume - [armhf] clk: samsung: exynos5420: Define CLK_SECKEY gate clock only or Exynos5420 - [armhf] clk: samsung: Use clk_hw API for calling clk framework from clk notifiers - printk: Correct wrong casting - NFSv4.x: fix lock recovery during delegation recall - dmaengine: ioat: fix prototype of ioat_enumerate_channels - media: ov5640: fix framerate update - media: cec-gpio: select correct Signal Free Time - gfs2: slow the deluge of io error messages - i2c: omap: use core to detect 'no zero length' quirk - i2c: qup: use core to detect 'no zero length' quirk - i2c: tegra: use core to detect 'no zero length' quirk - i2c: zx2967: use core to detect 'no zero length' quirk - Input: st1232 - set INPUT_PROP_DIRECT property - Input: silead - try firmware reload after unsuccessful resume - soc: fsl: bman_portals: defer probe after bman's probe - net: hns3: Fix for rx vlan id handle to support Rev 0x21 hardware - tc-testing: fix build of eBPF programs - remoteproc: Check for NULL firmwares in sysfs interface - remoteproc: qcom: q6v5: Fix a race condition on fatal crash - kexec: Allocate decrypted control pages for kdump if SME is enabled - [x86] olpc: Fix build error with CONFIG_MFD_CS5535=m - dmaengine: rcar-dmac: set scatter/gather max segment size - xfrm: use correct size to initialise sp->ovec - ACPI / SBS: Fix rare oops when removing modules - iwlwifi: mvm: don't send keys when entering D3 - xsk: proper AF_XDP socket teardown ordering - [amd64] fsgsbase: Fix ptrace() to read the FS/GS base accurately - mmc: renesas_sdhi_internal_dmac: Whitelist r8a774a1 - mmc: tmio: Fix SCC error detection - mmc: renesas_sdhi_internal_dmac: set scatter/gather max segment size - fbdev: sbuslib: use checked version of put_user() - fbdev: sbuslib: integer overflow in sbusfb_ioctl_helper() - fbdev: fix broken menu dependencies - reset: Fix potential use-after-free in __of_reset_control_get() - bcache: account size of buckets used in uuid write to ca->meta_sectors_written - bcache: recal cached_dev_sectors on detach - [x86] platform: mlx-platform: Properly use mlxplat_mlxcpld_msn201x_items - media: dw9714: Fix error handling in probe function - media: dw9807-vcm: Fix probe error handling - media: cx18: Don't check for address of video_dev - mtd: spi-nor: cadence-quadspi: Use proper enum for dma_[un]map_single - mtd: devices: m25p80: Make sure WRITE_EN is issued before each write - [x86] intel_rdt: Introduce utility to obtain CDP peer - [x86] intel_rdt: CBM overlap should also check for overlap with CDP peer - mmc: mmci: expand startbiterr to irqmask and error check - [s390x] kasan: avoid vdso instrumentation - [s390x] kasan: avoid instrumentation of early C code - [s390x] kasan: avoid user access code instrumentation - [i386] proc/vmcore: Fix i386 build error of missing copy_oldmem_page_encrypted() - backlight: lm3639: Unconditionally call led_classdev_unregister - mfd: ti_am335x_tscadc: Keep ADC interface on if child is wakeup capable - printk: Give error on attempt to set log buffer length to over 2G - media: isif: fix a NULL pointer dereference bug - GFS2: Flush the GFS2 delete workqueue before stopping the kernel threads - media: cx231xx: fix potential sign-extension overflow on large shift - media: venus: vdec: fix decoded data size - [x86] ALSA: hda/ca0132 - Fix input effect controls for desktop cards - lightnvm: pblk: fix rqd.error return value in pblk_blk_erase_sync - lightnvm: pblk: fix incorrect min_write_pgs - lightnvm: pblk: guarantee emeta on line close - lightnvm: pblk: fix write amplificiation calculation - lightnvm: pblk: guarantee mw_cunits on read buffer - lightnvm: do no update csecs and sos on 1.2 - lightnvm: pblk: fix error handling of pblk_lines_init() - lightnvm: pblk: consider max hw sectors supported for max_write_pgs - [x86] kexec: Correct KEXEC_BACKUP_SRC_END off-by-one error - bpf: btf: Fix a missing check bug - net: fix generic XDP to handle if eth header was mangled - gpio: syscon: Fix possible NULL ptr usage - spi: fsl-lpspi: Prevent FIFO under/overrun by default - pinctrl: gemini: Mask and set properly - spi: spidev: Fix OF tree warning logic - [armel,armhf] 8802/1: Call syscall_trace_exit even when system call skipped - [x86] mm: Do not warn about PCI BIOS W+X mappings - orangefs: rate limit the client not running info message - pinctrl: gemini: Fix up TVC clock group - scsi: arcmsr: clean up clang warning on extraneous parentheses - [x86] hwmon: (k10temp) Support all Family 15h Model 6xh and Model 7xh processors - hwmon: (nct6775) Fix names of DIMM temperature sources - hwmon: (pwm-fan) Silence error on probe deferral - hwmon: (ina3221) Fix INA3221_CONFIG_MODE macros - hwmon: (npcm-750-pwm-fan) Change initial pwm target to 255 - selftests: forwarding: Have lldpad_app_wait_set() wait for unknown, too - net: sched: avoid writing on noop_qdisc - netfilter: nft_compat: do not dump private area - misc: cxl: Fix possible null pointer dereference - mac80211: minstrel: fix using short preamble CCK rates on HT clients - mac80211: minstrel: fix CCK rate group streams value - mac80211: minstrel: fix sampling/reporting of CCK rates in HT mode - spi: rockchip: initialize dma_slave_config properly - mlxsw: spectrum_switchdev: Check notification relevance based on upper device - [armhf] dts: omap5: Fix dual-role mode on Super-Speed port - tcp: start receiver buffer autotuning sooner - ACPI / LPSS: Use acpi_lpss_* instead of acpi_subsys_* functions for hibernate - PM / devfreq: Fix static checker warning in try_then_request_governor - tools: PCI: Fix broken pcitest compilation - [ppc64el,powerpc*] time: Fix clockevent_decrementer initalisation for PR KVM - mmc: tmio: fix SCC error handling to avoid false positive CRC error - [x86] resctrl: Fix rdt_find_domain() return value and checks https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.87 - mlxsw: spectrum_router: Fix determining underlay for a GRE tunnel - net/mlx4_en: fix mlx4 ethtool -N insertion - net/mlx4_en: Fix wrong limitation for number of TX rings - net: rtnetlink: prevent underflows in do_setvfinfo() - net/sched: act_pedit: fix WARN() in the traffic path - net: sched: ensure opts_len <= IP_TUNNEL_OPTS_MAX in act_tunnel_key - sfc: Only cancel the PPS workqueue if it exists - net/mlx5e: Fix set vf link state error flow - net/mlxfw: Verify FSM error code translation doesn't exceed array size - net/mlx5: Fix auto group size calculation - vhost/vsock: split packets to send using multiple buffers - gpio: max77620: Fixup debounce delays - tools: gpio: Correctly add make dependencies for gpio_utils - nbd:fix memory leak in nbd_get_socket() - virtio_console: allocate inbufs in add_port() only if it is needed - Revert "fs: ocfs2: fix possible null-pointer dereferences in ocfs2_xa_prepare_entry()" - mm/ksm.c: don't WARN if page is still mapped in remove_stable_node() - [x86] drm/amd/powerplay: issue no PPSMC_MSG_GetCurrPkgPwr on unsupported ASICs - [x86] drm/i915/pmu: "Frequency" is reported as accumulated cycles - [x86] drm/i915/userptr: Try to acquire the page lock around set_page_dirty() - mwifiex: Fix NL80211_TX_POWER_LIMITED - ALSA: isight: fix leak of reference to firewire unit in error path of .probe callback - crypto: testmgr - fix sizeof() on COMP_BUF_SIZE - printk: lock/unlock console only for new logbuf entries - printk: fix integer overflow in setup_log_buf() - pinctrl: madera: Fix uninitialized variable bug in madera_mux_set_mux - PCI: cadence: Write MSI data with 32bits - gfs2: Fix marking bitmaps non-full - pty: fix compat ioctls - synclink_gt(): fix compat_ioctl() - [ppc64] Fix signedness bug in update_flash_db() - [powerpc] boot: Fix opal console in boot wrapper - [ppc64*,powerpc] boot: Disable vector instructions - [ppc64*,powerpc] eeh: Fix null deref for devices removed during EEH - [ppc64*,powerpc] eeh: Fix use of EEH_PE_KEEP on wrong field - EDAC, thunderx: Fix memory leak in thunderx_l2c_threaded_isr() - mt76: do not store aggregation sequence number for null-data frames - mt76x0: phy: fix restore phase in mt76x0_phy_recalibrate_after_assoc - brcmsmac: AP mode: update beacon when TIM changes - ath10k: set probe request oui during driver start - ath10k: allocate small size dma memory in ath10k_pci_diag_write_mem - skd: fixup usage of legacy IO API - cdrom: don't attempt to fiddle with cdo->capability - spi: sh-msiof: fix deferred probing - mmc: mediatek: fill the actual clock for mmc debugfs - mmc: mediatek: fix cannot receive new request when msdc_cmd_is_ready fail - PCI: mediatek: Fix class type for MT7622 to PCI_CLASS_BRIDGE_PCI - btrfs: defrag: use btrfs_mod_outstanding_extents in cluster_pages_for_defrag - btrfs: handle error of get_old_root - gsmi: Fix bug in append_to_eventlog sysfs handler - misc: mic: fix a DMA pool free failure - w1: IAD Register is yet readable trough iad sys file. Fix snprintf (%u for unsigned, count for max size). - [m68k] fix command-line parsing when passed from u-boot - RDMA/bnxt_re: Avoid NULL check after accessing the pointer - RDMA/bnxt_re: Fix qp async event reporting - RDMA/bnxt_re: Avoid resource leak in case the NQ registration fails - pinctrl: sunxi: Fix a memory leak in 'sunxi_pinctrl_build_state()' - pwm: lpss: Only set update bit if we are actually changing the settings - amiflop: clean up on errors during setup - qed: Align local and global PTT to propagate through the APIs. - scsi: ips: fix missing break in switch - nfp: bpf: protect against mis-initializing atomic counters - [x86] KVM: nVMX: reset cache/shadows when switching loaded VMCS - [x86] KVM: nVMX: move check_vmentry_postreqs() call to nested_vmx_enter_non_root_mode() - [x86] KVM: Fix invvpid and invept register operand size in 64-bit mode - clk: tegra: Fixes for MBIST work around - scsi: isci: Use proper enumerated type in atapi_d2h_reg_frame_handler - scsi: isci: Change sci_controller_start_task's return type to sci_status - scsi: bfa: Avoid implicit enum conversion in bfad_im_post_vendor_event - scsi: iscsi_tcp: Explicitly cast param in iscsi_sw_tcp_host_get_param - nvmet: avoid integer overflow in the discard code - nvmet-fcloop: suppress a compiler warning - nvme-pci: fix hot removal during error handling - PCI: mediatek: Fixup MSI enablement logic by enabling MSI before clocks - clk: mmp2: fix the clock id for sdh2_clk and sdh3_clk - ASoC: tegra_sgtl5000: fix device_node refcounting - scsi: dc395x: fix dma API usage in srb_done - scsi: dc395x: fix DMA API usage in sg_update_list - scsi: zorro_esp: Limit DMA transfers to 65535 bytes - net: dsa: mv88e6xxx: Fix 88E6141/6341 2500mbps SERDES speed - net: fix warning in af_unix - xfs: fix use-after-free race in xfs_buf_rele - xfs: clear ail delwri queued bufs on unmount of shutdown fs - kprobes, x86/ptrace.h: Make regs_get_kernel_stack_nth() not fault on bad stack - ACPI / scan: Create platform device for INT33FE ACPI nodes - PM / Domains: Deal with multiple states but no governor in genpd - ALSA: i2c/cs8427: Fix int to char conversion - macintosh/windfarm_smu_sat: Fix debug output - PCI: vmd: Detach resources after stopping root bus - USB: misc: appledisplay: fix backlight update_status return code - usbip: tools: fix atoi() on non-null terminated string - sctp: use sk_wmem_queued to check for writable space - dm raid: avoid bitmap with raid4/5/6 journal device - selftests/bpf: fix file resource leak in load_kallsyms - SUNRPC: Fix a compile warning for cmpxchg64() - sunrpc: safely reallow resvport min/max inversion - atm: zatm: Fix empty body Clang warnings - [s390x] perf: Return error when debug_register fails - swiotlb: do not panic on mapping failures - spi: omap2-mcspi: Set FIFO DMA trigger level to word length - [x86] intel_rdt: Prevent pseudo-locking from using stale pointers - sparc: Fix parport build warnings. - [ppc64*,powerpc] pseries: Export raw per-CPU VPA data via debugfs - [ppc64*,powerpc] mm/radix: Fix off-by-one in split mapping logic - [ppc64*,powerpc] mm/radix: Fix overuse of small pages in splitting logic - [ppc64*,powerpc] mm/radix: Fix small page at boundary when splitting - [ppc64*] radix: Fix radix__flush_tlb_collapsed_pmd double flushing pmd - selftests/bpf: fix return value comparison for tests in test_libbpf.sh - tools: bpftool: fix completion for "bpftool map update" - ceph: fix dentry leak in ceph_readdir_prepopulate - ceph: only allow punch hole mode in fallocate - thermal: armada: fix a test in probe() - f2fs: fix to spread clear_cold_data() - f2fs: spread f2fs_set_inode_flags() - mISDN: Fix type of switch control variable in ctrl_teimanager - qlcnic: fix a return in qlcnic_dcb_get_capability() - net: ethernet: ti: cpsw: unsync mcast entries while switch promisc mode - mfd: arizona: Correct calling of runtime_put_sync - mfd: mc13xxx-core: Fix PMIC shutdown when reading ADC values - [x86] mfd: intel_soc_pmic_bxtwc: Chain power button IRQs as well - mfd: max8997: Enale irq-wakeup unconditionally - net: socionext: Stop PHY before resetting netsec - fs/cifs: fix uninitialised variable warnings - spi: uniphier: fix incorrect property items - selftests/ftrace: Fix to test kprobe $comm arg only if available - selftests: watchdog: fix message when /dev/watchdog open fails - selftests: watchdog: Fix error message. - selftests: kvm: Fix -Wformat warnings - selftests: fix warning: "_GNU_SOURCE" redefined - net: ethernet: cadence: fix socket buffer corruption problem - bpf: devmap: fix wrong interface selection in notifier_call - bpf, btf: fix a missing check bug in btf_parse - [sparc64] Rework xchg() definition to avoid warnings. - [arm64] lib: use C string functions with KASAN enabled - fs/ocfs2/dlm/dlmdebug.c: fix a sleep-in-atomic-context bug in dlm_print_one_mle() - mm/page-writeback.c: fix range_cyclic writeback vs writepages deadlock - tools/testing/selftests/vm/gup_benchmark.c: fix 'write' flag usage - mm: thp: fix MADV_DONTNEED vs migrate_misplaced_transhuge_page race condition - macsec: update operstate when lower device changes - macsec: let the administrator set UP state even if lowerdev is down - block: fix the DISCARD request merge - i2c: uniphier-f: make driver robust against concurrency - i2c: uniphier-f: fix occasional timeout error - i2c: uniphier-f: fix race condition when IRQ is cleared - um: Make line/tty semantics use true write IRQ - vfs: avoid problematic remapping requests into partial EOF block - ipv4/igmp: fix v1/v2 switchback timeout based on rfc3376, 8.12 - [ppc64*,powerpc] xmon: Relax frame size for clang - [ppc64*,powerpc] selftests/ptrace: Fix out-of-tree build - [ppc64*,powerpc] selftests/signal: Fix out-of-tree build - [ppc64*,powerpc] selftests/switch_endian: Fix out-of-tree build - [ppc64*,powerpc] selftests/cache_shape: Fix out-of-tree build - block: call rq_qos_exit() after queue is frozen - mm/gup_benchmark.c: prevent integer overflow in ioctl - linux/bitmap.h: handle constant zero-size bitmaps correctly - linux/bitmap.h: fix type of nbits in bitmap_shift_right() - lib/bitmap.c: fix remaining space computation in bitmap_print_to_pagebuf - hfsplus: fix BUG on bnode parent update - hfs: fix BUG on bnode parent update - hfsplus: prevent btree data loss on ENOSPC - hfs: prevent btree data loss on ENOSPC - hfsplus: fix return value of hfsplus_get_block() - hfs: fix return value of hfs_get_block() - hfsplus: update timestamps on truncate() - hfs: update timestamp on truncate() - fs/hfs/extent.c: fix array out of bounds read of array extent - kernel/panic.c: do not append newline to the stack protector panic string - mm/memory_hotplug: make add_memory() take the device_hotplug_lock - mm/memory_hotplug: fix online/offline_pages called w.o. mem_hotplug_lock - [ppc64*,powerprc] powerpc/powernv: hold device_hotplug_lock when calling device_online() - igb: shorten maximum PHC timecounter update interval - fm10k: ensure completer aborts are marked as non-fatal after a resume - [arm64] net: hns3: bugfix for buffer not free problem during resetting - [arm64] net: hns3: bugfix for reporting unknown vector0 interrupt repeatly problem - [arm64] net: hns3: bugfix for is_valid_csq_clean_head() - [arm64] net: hns3: bugfix for hclge_mdio_write and hclge_mdio_read - ntb_netdev: fix sleep time mismatch - [x86] ntb: intel: fix return value for ndev_vec_mask() - irq/matrix: Fix memory overallocation - nvme-pci: fix conflicting p2p resource adds - [arm64] makefile fix build of .i file in external module case - [x86] tools/power turbosat: fix AMD APIC-id output - mm: handle no memcg case in memcg_kmem_charge() properly - ocfs2: without quota support, avoid calling quota recovery - ocfs2: don't use iocb when EIOCBQUEUED returns - ocfs2: don't put and assigning null to bh allocated outside - ocfs2: fix clusters leak in ocfs2_defrag_extent() - net: do not abort bulk send on BQL status - sched/topology: Fix off by one bug - sched/fair: Don't increase sd->balance_interval on newidle balance - openvswitch: fix linking without CONFIG_NF_CONNTRACK_LABELS - [armhf] dts: imx6sx-sdb: Fix enet phy regulator - [arm64] sunxi-ng: enable so-said LDOs for A64 SoC's pll-mipi clock - soc: bcm: brcmstb: Fix re-entry point with a THUMB2_KERNEL - audit: print empty EXECVE args - sock_diag: fix autoloading of the raw_diag module - net: bpfilter: fix iptables failure if bpfilter_umh is disabled - nds32: Fix bug in bitfield.h - media: ov13858: Check for possible null pointer - btrfs: avoid link error with CONFIG_NO_AUTO_INLINE - wil6210: fix debugfs memory access alignment - wil6210: fix L2 RX status handling - wil6210: fix RGF_CAF_ICR address for Talyn-MB - wil6210: fix locking in wmi_call - ath10k: snoc: fix unbalanced clock error handling - wlcore: Fix the return value in case of error in 'wlcore_vendor_cmd_smart_config_start()' - rtl8xxxu: Fix missing break in switch - brcmsmac: never log "tid x is not agg'able" by default - wireless: airo: potential buffer overflow in sprintf() - rtlwifi: rtl8192de: Fix misleading REG_MCUFWDL information - net: dsa: bcm_sf2: Turn on PHY to allow successful registration - scsi: mpt3sas: Fix Sync cache command failure during driver unload - scsi: mpt3sas: Don't modify EEDPTagMode field setting on SAS3.5 HBA devices - scsi: mpt3sas: Fix driver modifying persistent data in Manufacturing page11 - scsi: megaraid_sas: Fix msleep granularity - scsi: megaraid_sas: Fix goto labels in error handling - scsi: lpfc: fcoe: Fix link down issue after 1000+ link bounces - scsi: lpfc: Fix odd recovery in duplicate FLOGIs in point-to-point - scsi: lpfc: Correct loss of fc4 type on remote port address change - usb: typec: tcpm: charge current handling for sink during hard reset - dlm: fix invalid free - dlm: don't leak kernel pointer to userspace - vrf: mark skb for multicast or link-local as enslaved to VRF - clk: tegra20: Turn EMC clock gate into divider - ACPICA: Use %d for signed int print formatting instead of %u - net: bcmgenet: return correct value 'ret' from bcmgenet_power_down - of: unittest: allow base devicetree to have symbol metadata - of: unittest: initialize args before calling of_*parse_*() - tools: bpftool: pass an argument to silence open_obj_pinned() - cfg80211: Prevent regulatory restore during STA disconnect in concurrent interfaces - pinctrl: qcom: spmi-gpio: fix gpio-hog related boot issues - pinctrl: bcm2835: Use define directive for BCM2835_PINCONF_PARAM_PULL - pinctrl: lpc18xx: Use define directive for PIN_CONFIG_GPIO_PIN_INT - pinctrl: zynq: Use define directive for PIN_CONFIG_IO_STANDARD - PCI: keystone: Use quirk to limit MRRS for K2G - nvme-pci: fix surprise removal - spi: omap2-mcspi: Fix DMA and FIFO event trigger size mismatch - i2c: uniphier-f: fix timeout error after reading 8 bytes - mm/memory_hotplug: Do not unlock when fails to take the device_hotplug_lock - ipv6: Fix handling of LLA with VRF and sockets bound to VRF - cfg80211: call disconnect_wk when AP stops - mm/page_io.c: do not free shared swap slots - Bluetooth: Fix invalid-free in bcsp_close() - KVM: MMU: Do not treat ZONE_DEVICE pages as being reserved - ath10k: Fix a NULL-ptr-deref bug in ath10k_usb_alloc_urb_from_pipe - ath9k_hw: fix uninitialized variable data - md/raid10: prevent access of uninitialized resync_pages offset - mm/memory_hotplug: don't access uninitialized memmaps in shrink_zone_span() - net: phy: dp83867: fix speed 10 in sgmii mode - net: phy: dp83867: increase SGMII autoneg timer duration - ocfs2: remove ocfs2_is_o2cb_active() - [arm*] 8904/1: skip nomap memblocks while finding the lowmem/highmem boundary - ARC: perf: Accommodate big-endian CPU - [x86] insn: Fix awk regexp warnings - [x86] speculation: Fix incorrect MDS/TAA mitigation status - [x86] speculation: Fix redundant MDS mitigation message - nbd: prevent memory leak - y2038: futex: Move compat implementation into futex.c - futex: Prevent robust futex exit race - ALSA: usb-audio: Fix NULL dereference at parsing BADD - nfc: port100: handle command failure cleanly - media: vivid: Set vid_cap_streaming and vid_out_streaming to true - media: vivid: Fix wrong locking that causes race conditions on streaming stop (CVE-2019-18683) - media: usbvision: Fix races among open, close, and disconnect - cpufreq: Add NULL checks to show() and store() methods of cpufreq - media: uvcvideo: Fix error path in control parsing failure - media: b2c2-flexcop-usb: add sanity checking - media: cxusb: detect cxusb_ctrl_msg error in query - media: imon: invalid dereference in imon_touch_event - virtio_ring: fix return code on DMA mapping fails - USBIP: add config dependency for SGL_ALLOC - usbip: tools: fix fd leakage in the function of read_attr_usbip_status - usbip: Fix uninitialized symbol 'nents' in stub_recv_cmd_submit() - usb-serial: cp201x: support Mark-10 digital force gauge - USB: chaoskey: fix error case of a timeout - appledisplay: fix error handling in the scheduled work - USB: serial: mos7840: add USB ID to support Moxa UPort 2210 - USB: serial: mos7720: fix remote wakeup - USB: serial: mos7840: fix remote wakeup - USB: serial: option: add support for DW5821e with eSIM support - USB: serial: option: add support for Foxconn T77W968 LTE modules - staging: comedi: usbduxfast: usbduxfast_ai_cmdtest rounding error - [ppc64*] support nospectre_v2 cmdline option - [ppc64*] book3s: Fix link stack flush on context switch (CVE-2019-18660) - [ppc64*, powerpc] PPC: Book3S HV: Flush link stack on guest exit to host kernel - PM / devfreq: Fix kernel oops on governor module load . [ Romain Perier ] * [armel/rpi] Enable CONFIG_BRCMFMAC_SDIO (Closes: #940530) * [armhf, arm64] Backport devicetree for enabling support for the Raspberry PI 3 A+ . [ Salvatore Bonaccorso ] * ixgbe: Fix secpath usage for IPsec TX offload (Closes: #930443) * ipv4: Return -ENETUNREACH if we can't create route but saddr is valid (Closes: #945023) * [x86] KVM: x86: introduce is_pae_paging (Regression in 4.19.77) * [rt] Refresh 0011-sched-fair-Robustify-CFS-bandwidth-timer-locking.patch (context changes in 4.19.84) . [ Bastian Blank ] * [amd64/cloud-amd64] Re-enable RTC drivers. (closes: #931341) . [ Noah Meyerhans ] * drivers/net/ethernet/amazon: Backport driver fixes from Linux 5.4 (Closes: #941291) * Bump ABI to 7 . [ Ben Hutchings ] * debian/bin/genpatch-rt: Fix series generation from git * [rt] Update to 4.19.82-rt30: - Drop changes in "fs/dcache: disable preemption on i_dir_seq's write side" that conflict with "Fix the locking in dcache_readdir() and friends" - Rewrite "fs/aio: simple simple work" using kthread_work - Rewrite "thermal: Defer thermal wakups to threads" using kthread_work - Rewrite "block: blk-mq: move blk_queue_usage_counter_release() into process context" using kthread_work - workqueue: rework . [ Benjamin Poirier ] * tools/perf: Add python3 support to scripts (Closes: #944641) . [ Aurelien Jarno ] * [rt] Refresh 0025-NFSv4-replace-seqcount_t-with-a-seqlock_t.patch (context changes in 4.19.86) * [rt] Refresh 0202-net-Qdisc-use-a-seqlock-instead-seqcount.patch (context changes in 4.19.86) * [rt] Refresh 0057-printk-Add-a-printk-kill-switch.patch (context changes in 4.19.87) * [rt] Refresh 0207-printk-Make-rt-aware.patch (context changes in 4.19.87) linux-signed-i386 (4.19.67+2+deb10u2) buster-security; urgency=high . * Sign kernel from linux 4.19.67-2+deb10u2 . * [x86] Add mitigation for TSX Asynchronous Abort (CVE-2019-11135): - KVM: x86: use Intel speculation bugs and features as derived in generic x86 code - x86/msr: Add the IA32_TSX_CTRL MSR - x86/cpu: Add a helper function x86_read_arch_cap_msr() - x86/cpu: Add a "tsx=" cmdline option with TSX disabled by default - x86/speculation/taa: Add mitigation for TSX Async Abort - x86/speculation/taa: Add sysfs reporting for TSX Async Abort - kvm/x86: Export MDS_NO=0 to guests when TSX is enabled - x86/tsx: Add "auto" option to the tsx= cmdline parameter - x86/speculation/taa: Add documentation for TSX Async Abort - x86/tsx: Add config options to set tsx=on|off|auto - x86/speculation/taa: Fix printing of TAA_MSG_SMT on IBRS_ALL CPUs TSX is now disabled by default; see Documentation/admin-guide/hw-vuln/tsx_async_abort.rst * [x86] KVM: Add mitigation for Machine Check Error on Page Size Change (aka iTLB multi-hit, CVE-2018-12207): - kvm: Convert kvm_lock to a mutex - kvm: x86: Do not release the page inside mmu_set_spte() - KVM: x86: make FNAME(fetch) and __direct_map more similar - KVM: x86: remove now unneeded hugepage gfn adjustment - KVM: x86: change kvm_mmu_page_get_gfn BUG_ON to WARN_ON - KVM: x86: add tracepoints around __direct_map and FNAME(fetch) - kvm: x86, powerpc: do not allow clearing largepages debugfs entry - KVM: vmx, svm: always run with EFER.NXE=1 when shadow paging is active - x86/bugs: Add ITLB_MULTIHIT bug infrastructure - cpu/speculation: Uninline and export CPU mitigations helpers - kvm: mmu: ITLB_MULTIHIT mitigation - kvm: Add helper function for creating VM worker threads - kvm: x86: mmu: Recovery of shattered NX large pages - Documentation: Add ITLB_MULTIHIT documentation * [x86] i915: Mitigate local privilege escalation on gen9 (CVE-2019-0155): - drm/i915: Rename gen7 cmdparser tables - drm/i915: Disable Secure Batches for gen6+ - drm/i915: Remove Master tables from cmdparser - drm/i915: Add support for mandatory cmdparsing - drm/i915: Support ro ppgtt mapped cmdparser shadow buffers - drm/i915: Allow parsing of unsized batches - drm/i915: Add gen9 BCS cmdparsing - drm/i915/cmdparser: Use explicit goto for error paths - drm/i915/cmdparser: Add support for backward jumps - drm/i915/cmdparser: Ignore Length operands during command matching - drm/i915/cmdparser: Fix jump whitelist clearing * [x86] i915: Mitigate local denial-of-service on gen8/gen9 (CVE-2019-0154): - drm/i915: Lower RM timeout to avoid DSI hard hangs - drm/i915/gen8+: Add RC6 CTX corruption WA linux-signed-i386 (4.19.67+2+deb10u2~bpo9+1) stretch-backports; urgency=medium . * Sign kernel from linux 4.19.67-2+deb10u2~bpo9+1 . * Rebuild for stretch-backports; no further changes required mariadb-10.3 (1:10.3.22-0+deb10u1) buster; urgency=high . * SECURITY UPDATE: New upstream version 10.3.22. Includes fixes for the following security vulnerabilities: - CVE-2020-2574 * Includes new upstream version 10.3.21 - Drop systemd service patch applied upstream - Update symbols to match latest libmariadb_3 * Previous release 10.3.20 includes fix for the regression introduced in the 10.3.19 release: - MDEV-20987: InnoDB fails to start when FTS table has FK relation * Previous release 10.3.19 includes fixes for the following security vulnerabilities: - CVE-2019-2938 - CVE-2019-2974 * Prefer salsa-ci.yml naming over gitlab-ci.yml since we inherit Salsa-CI mariadb-10.3 (1:10.3.21-2) unstable; urgency=medium . [ Otto Kekäläinen ] * Update Python dependencies and recommends to Python 3 (Closes: #945697) * Remove deprecated basedir config from debian.cnf (Closes: #947553) . [ James Clarke ] * Fix RocksDB on GNU/kFreeBSD (Closes: #920994) * Use versioned symbols on GNU/kFreeBSD mariadb-10.3 (1:10.3.21-1) unstable; urgency=low . [ Faustin Lammler ] * Remove no more needed lintian overrides . [ Otto Kekäläinen ] * New upstream version 10.3.21 mariadb-10.3 (1:10.3.20-1) unstable; urgency=high . * New upstream version 10.3.20. Includes fix for regression: - MDEV-20987: InnoDB fails to start when FTS table has FK relation * Remove obsolete fields Name, Contact from debian/upstream/metadata * Gitlab-CI: Print artifact sizes to ensure it stays under 100 MB * Gitlab-CI: Adapt CI jobs for Debian Sid work * Update README.Maintainer with current Debian and Ubuntu release statuses mariadb-10.3 (1:10.3.19-1) unstable; urgency=high . [ Otto Kekäläinen ] * New upstream version 10.3.17. Includes security fixes for: - CVE-2019-2938 - CVE-2019-2974 * Update symbols to match latest libmariadb_3 * Drop systemd service patch applied upstream . [ Faustin Lammler ] * Fix typo in Readme mariadb-10.3 (1:10.3.18-1) unstable; urgency=medium . * New upstream version 10.3.18. Fixes regression introduced in 10.3.17 (MDEV-20247: Replication hangs with "preparing" and never starts) (Closes: #939819) * Minort Gitlab-CI improvements mediawiki (1:1.31.6-1~deb10u1) buster-security; urgency=medium . * New upstream version 1.31.6 (security release), fixing CVE-2019-19709. mediawiki (1:1.31.5-3) unstable; urgency=medium . * In autopkgtests, skip testing against mysql-server if it isn't available, such as in Debian testing * Move packaging git repository to Salsa and update relevant documentation * Set up and configure Salsa CI * Sync d/upstream/signing-key.asc with upstream mediawiki (1:1.31.5-2) unstable; urgency=medium . * Add extra debugging information to autopkgtests * Backport patches from upstream for Postgresql 12 compatibility (Closes: #944650) mediawiki (1:1.31.5-1) unstable; urgency=medium . * New upstream version 1.31.5 * Incorporate MySQL autopkgtest improvements from Lars Tangvald and Robie Basak from Ubuntu: * Use a different method besides MySQL 8.0's default authentication because PHP doesn't currently support it. * Explicitly test MySQL and MariaDB regardless of which one is the default. * Standards-Version: 4.4.1, no changes needed mediawiki (1:1.31.4-1) unstable; urgency=medium . * New upstream version 1.31.4 (security release), fixing CVE-2019-16738. mesa (18.3.6-2+deb10u1) buster; urgency=medium . * Call shmget() with permission 0600 instead of 0777 (CVE-2019-5068) (Closes: #944298) mnemosyne (2.6.1+ds-1+deb10u1) buster; urgency=medium . * Non-maintainer upload. . [ Julien Puydt ] * Add depends on PIL (Closes: #947032). modsecurity (3.0.3-1+deb10u1) buster; urgency=medium . * Fixes CVE-2019-19886 (Closes: #949682) mosquitto (1.5.7-1+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Restrict topic hierarchy to 200 levels to prevent possible stack overflow (CVE-2019-11779) (Closes: #940654) netty (1:4.1.33-1+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Correctly handle whitespaces in HTTP header names as defined by RFC7230#section-3.2.4 (CVE-2019-16869) (Closes: #941266) node-kind-of (6.0.2+dfsg-1+deb10u1) buster; urgency=medium . * Team upload * fix type checking vul in ctorName (Closes: #948095, CVE-2019-20149) nss (2:3.42.1-1+deb10u2) buster-security; urgency=medium . * CVE-2019-11745 CVE-2019-17007 ntpsec (1.1.3+dfsg1-2+deb10u1) buster; urgency=medium . * Backport fix for slow DNS retries (Closes: 924192) * ntpdate.8: Remove duplicated -o option * ntpdate.8: Remove -p option (Closes: 926877) * ntpdate.8: Remove -e option * ntpdate.8: Remove inaccurate BUGS section * Update ntpdate-debian.8 to match ntpdate.8 * Fix ntpdate -s (syslog) to fix the if-up hook (Closes: 931414) numix-gtk-theme (2.6.7-4+deb10u1) buster; urgency=medium . * debian/control: + Revert Jeremy Bicha's work-around ("Add Breaks: murrine-themes") for to-be-finally resolved Debian bug #838994 (in gtk2-engines-murrine). (Closes: #891493). nvidia-graphics-drivers-legacy-340xx (340.108-3~deb10u1) buster; urgency=medium . * Rebuild for buster. . nvidia-graphics-drivers-legacy-340xx (340.108-3) unstable; urgency=medium . * Bump Standards-Version to 4.5.0. No changes needed. . nvidia-graphics-drivers-legacy-340xx (340.108-2) unstable; urgency=medium . * Restore kmem_cache_create_usercopy.patch. (Closes: #948032, #948195) * Add NEWS entry w.r.t. EoL state. * Use substitution to keep Standards-Version in sync (430.64-5). . nvidia-graphics-drivers-legacy-340xx (340.108-1) unstable; urgency=medium . * The 340.xx legacy driver series has been declared as End-of-Life by NVIDIA. No further updates fixing security issues, critical bugs, or adding support for new Xorg or Linux releases will be issued. https://nvidia.custhelp.com/app/answers/detail/a_id/3142 . * New upstream legacy 340xx branch release 340.108 (2019-12-23). - Updated the nvidia-drm kernel module for compatibility with the removal of the DRIVER_PRIME flag in recent Linux kernel versions. - Updated nvidia-bug-report.sh to search the systemd journal for gdm-x-session logs. - Fixed a build failure, "too many arguments to function 'get_user_pages'", when building the NVIDIA kernel module for Linux kernel v4.4.168. - Fixed a build failure, "implicit declaration of function do_gettimeofday", when building the NVIDIA kernel module for Linux kernel 5.0 release candidates. * Improved compatibility with recent Linux kernels. . [ Andreas Beckmann ] * Add buildfix_kernel_4.11.patch (replacing vm-fault.patch) and (parts of) buildfix_kernel_5.2.patch from Ubuntu to fix more vm-fault issues during kernel module build for Linux 5.2+. * Refresh patches. * Allow alternative libnvidia-{tesla,legacy-*}-cuda1 packages to substitute libcuda1 in third-party packages (430.64-3). - Add Provides: libcuda.so.1 (= ${nvidia:Version}). - Generate alternative versioned dependency on libcuda.so.1 through the symbols file. . nvidia-graphics-drivers-legacy-340xx (340.107-8) unstable; urgency=medium . * Create and commit tarball symlinks for legacy branches (430.64-1). * Allow alternative libnvidia-{tesla,legacy-*}-ml1 packages to substitute libnvidia-ml1 (430.64-2). - Add Provides: libnvidia-ml.so.1 (= ${nvidia:Version}). - Generate alternative versioned dependency on libnvidia-ml.so.1 through the symbols file. * Add buildfix_kernel_5.4.patch from Ubuntu to fix kernel module build for Linux 5.4. (Closes: #946137) . nvidia-graphics-drivers-legacy-340xx (340.107-7) unstable; urgency=medium . * Add buildfix_kernel_5.3.patch from Ubuntu to fix kernel module build for Linux 5.3. (Closes: #941788) * Bump Standards-Version to 4.4.1. No changes needed. . nvidia-graphics-drivers-legacy-340xx (340.107-6) unstable; urgency=medium . * Add conftest-include-guard.patch to restore compatibility with older kernels. . nvidia-graphics-drivers-legacy-340xx (340.107-5) unstable; urgency=medium . * Add buildfix_kernel_4.11.patch (replacing vm-fault.patch), buildfix_kernel_5.0.patch, buildfix_kernel_5.2.patch from Ubuntu to fix kernel module build for Linux 5.2. (Closes: #934295, #923815) * Bump Standards-Version to 4.4.0. No changes needed. nvidia-graphics-drivers-legacy-340xx (340.108-3~deb9u1) stretch; urgency=medium . * Rebuild for stretch. . nvidia-graphics-drivers-legacy-340xx (340.108-3~deb10u1) buster; urgency=medium . * Rebuild for buster. . nvidia-graphics-drivers-legacy-340xx (340.108-3) unstable; urgency=medium . * Bump Standards-Version to 4.5.0. No changes needed. . nvidia-graphics-drivers-legacy-340xx (340.108-2) unstable; urgency=medium . * Restore kmem_cache_create_usercopy.patch. (Closes: #948032, #948195) * Add NEWS entry w.r.t. EoL state. * Use substitution to keep Standards-Version in sync (430.64-5). . nvidia-graphics-drivers-legacy-340xx (340.108-1) unstable; urgency=medium . * The 340.xx legacy driver series has been declared as End-of-Life by NVIDIA. No further updates fixing security issues, critical bugs, or adding support for new Xorg or Linux releases will be issued. https://nvidia.custhelp.com/app/answers/detail/a_id/3142 . * New upstream legacy 340xx branch release 340.108 (2019-12-23). - Updated the nvidia-drm kernel module for compatibility with the removal of the DRIVER_PRIME flag in recent Linux kernel versions. - Updated nvidia-bug-report.sh to search the systemd journal for gdm-x-session logs. - Fixed a build failure, "too many arguments to function 'get_user_pages'", when building the NVIDIA kernel module for Linux kernel v4.4.168. - Fixed a build failure, "implicit declaration of function do_gettimeofday", when building the NVIDIA kernel module for Linux kernel 5.0 release candidates. * Improved compatibility with recent Linux kernels. . [ Andreas Beckmann ] * Add buildfix_kernel_4.11.patch (replacing vm-fault.patch) and (parts of) buildfix_kernel_5.2.patch from Ubuntu to fix more vm-fault issues during kernel module build for Linux 5.2+. * Refresh patches. * Allow alternative libnvidia-{tesla,legacy-*}-cuda1 packages to substitute libcuda1 in third-party packages (430.64-3). - Add Provides: libcuda.so.1 (= ${nvidia:Version}). - Generate alternative versioned dependency on libcuda.so.1 through the symbols file. . nvidia-graphics-drivers-legacy-340xx (340.107-8) unstable; urgency=medium . * Create and commit tarball symlinks for legacy branches (430.64-1). * Allow alternative libnvidia-{tesla,legacy-*}-ml1 packages to substitute libnvidia-ml1 (430.64-2). - Add Provides: libnvidia-ml.so.1 (= ${nvidia:Version}). - Generate alternative versioned dependency on libnvidia-ml.so.1 through the symbols file. * Add buildfix_kernel_5.4.patch from Ubuntu to fix kernel module build for Linux 5.4. (Closes: #946137) . nvidia-graphics-drivers-legacy-340xx (340.107-7) unstable; urgency=medium . * Add buildfix_kernel_5.3.patch from Ubuntu to fix kernel module build for Linux 5.3. (Closes: #941788) * Bump Standards-Version to 4.4.1. No changes needed. . nvidia-graphics-drivers-legacy-340xx (340.107-6) unstable; urgency=medium . * Add conftest-include-guard.patch to restore compatibility with older kernels. . nvidia-graphics-drivers-legacy-340xx (340.107-5) unstable; urgency=medium . * Add buildfix_kernel_4.11.patch (replacing vm-fault.patch), buildfix_kernel_5.0.patch, buildfix_kernel_5.2.patch from Ubuntu to fix kernel module build for Linux 5.2. (Closes: #934295, #923815) * Bump Standards-Version to 4.4.0. No changes needed. . nvidia-graphics-drivers-legacy-340xx (340.107-4) unstable; urgency=medium . * use-nv-kernel-ARCH.o_shipped.patch: Simplify for better kernel compatibility. (Closes: #922479) * Drop versioned constraints that are satisfied in wheezy (390.87-7). * Bump Standards-Version to 4.3.0. No changes needed. . nvidia-graphics-drivers-legacy-340xx (340.107-3) unstable; urgency=medium . * Synchronize the module build debhelper sequence with debhelper 10 (390.87-1). * Pass the private library directory to dh_shlibdeps using the -l option instead of LD_LIBRARY_PATH, fixing FTBFS with dpkg 1.19.1 (390.87-3). * Add Build-Depends-Package to symbols files where appropriate and override symbols-file-missing-build-depends-package-field elsewhere (390.87-3). * Clean up and unify rule style in debian/rules (390.87-3). * Bump Standards-Version to 4.2.1. No changes needed. * Add debian/rules targets for archiving the tarballs in a separate repository using sparse checkouts and git-lfs as storage backend (390.87-3). * Refresh patches. . nvidia-graphics-drivers-legacy-340xx (340.107-2) unstable; urgency=high . * Backport kmem_cache_create_usercopy.patch from 390.67-2 for the 340.xx series, fixing "Bad or missing usercopy whitelist? Kernel memory exposure attempt detected from SLUB object 'nvidia_stack_cache'" on Linux kernels that have disabled CONFIG_HARDENED_USERCOPY_FALLBACK (i.e. linux-image-4.16.0-2-* or newer). (Closes: #899998) . nvidia-graphics-drivers-legacy-340xx (340.107-1) unstable; urgency=medium . * New upstream legacy 340xx branch release 340.107 (2018-06-06). - Added support for X.Org xserver ABI 24 (xorg-server 1.20). - Improved nvidia-bug-report.sh to check for kern.log which is the default kernel log-file location for many Debian-based Linux distributions. - Fixed a bug which could cause X servers that export a Video Driver ABI earlier than 0.8 to crash when running X11 applications which call XRenderAddTraps(). * Improved compatibility with recent Linux kernels. . [ Andreas Beckmann ] * Convert packaging repository from SVN to GIT. * Bump Standards-Version to 4.1.4. No changes needed. * Add xorg-video-abi-24 (xserver 1.20) as alternative dependency. (Closes: #900789, #900338) * nvidia-drm-outputclass.conf: Prepend (in a backwards-compatible way) ModulePath "/usr/lib/xorg/modules/linux" since xserver 1.20 no longer does that (390.67-1). nvidia-graphics-drivers-legacy-340xx (340.108-2) unstable; urgency=medium . * Restore kmem_cache_create_usercopy.patch. (Closes: #948032, #948195) * Add NEWS entry w.r.t. EoL state. * Use substitution to keep Standards-Version in sync (430.64-5). nvidia-graphics-drivers-legacy-340xx (340.108-2~bpo10+1) buster-backports; urgency=medium . * Rebuild for buster-backports. nvidia-graphics-drivers-legacy-340xx (340.108-1) unstable; urgency=medium . * New upstream legacy 340xx branch release 340.108 (2019-12-23). - Updated the nvidia-drm kernel module for compatibility with the removal of the DRIVER_PRIME flag in recent Linux kernel versions. - Updated nvidia-bug-report.sh to search the systemd journal for gdm-x-session logs. - Fixed a build failure, "too many arguments to function 'get_user_pages'", when building the NVIDIA kernel module for Linux kernel v4.4.168. - Fixed a build failure, "implicit declaration of function do_gettimeofday", when building the NVIDIA kernel module for Linux kernel 5.0 release candidates. * Improved compatibility with recent Linux kernels. . [ Andreas Beckmann ] * Add buildfix_kernel_4.11.patch (replacing vm-fault.patch) and (parts of) buildfix_kernel_5.2.patch from Ubuntu to fix more vm-fault issues during kernel module build for Linux 5.2+. * Refresh patches. * Allow alternative libnvidia-{tesla,legacy-*}-cuda1 packages to substitute libcuda1 in third-party packages (430.64-3). - Add Provides: libcuda.so.1 (= ${nvidia:Version}). - Generate alternative versioned dependency on libcuda.so.1 through the symbols file. nvidia-graphics-drivers-legacy-340xx (340.107-8) unstable; urgency=medium . * Create and commit tarball symlinks for legacy branches (430.64-1). * Allow alternative libnvidia-{tesla,legacy-*}-ml1 packages to substitute libnvidia-ml1 (430.64-2). - Add Provides: libnvidia-ml.so.1 (= ${nvidia:Version}). - Generate alternative versioned dependency on libnvidia-ml.so.1 through the symbols file. * Add buildfix_kernel_5.4.patch from Ubuntu to fix kernel module build for Linux 5.4. (Closes: #946137) nvidia-graphics-drivers-legacy-340xx (340.107-7) unstable; urgency=medium . * Add buildfix_kernel_5.3.patch from Ubuntu to fix kernel module build for Linux 5.3. (Closes: #941788) * Bump Standards-Version to 4.4.1. No changes needed. nvidia-graphics-drivers-legacy-340xx (340.107-6) unstable; urgency=medium . * Add conftest-include-guard.patch to restore compatibility with older kernels. nvidia-graphics-drivers-legacy-340xx (340.107-5) unstable; urgency=medium . * Add buildfix_kernel_4.11.patch (replacing vm-fault.patch), buildfix_kernel_5.0.patch, buildfix_kernel_5.2.patch from Ubuntu to fix kernel module build for Linux 5.2. (Closes: #934295) * Bump Standards-Version to 4.4.0. No changes needed. nyancat (1.5.1-1+build1~deb10u1) buster; urgency=medium . * Non-maintainer upload. * Rebuild for buster. . nyancat (1.5.1-1+build1) unstable; urgency=medium . * Non-maintainer upload. * No-change rebuild in a clean environment to add the systemd unit for nyancat-server. (Closes: #947292) nyancat (1.5.1-1+build1~deb9u1) stretch; urgency=medium . * Non-maintainer upload. * Rebuild for stretch. . nyancat (1.5.1-1+build1) unstable; urgency=medium . * Non-maintainer upload. * No-change rebuild in a clean environment to add the systemd unit for nyancat-server. (Closes: #947292) openconnect (8.02-1+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Close HTTPS connection on failure returns from process_http_response() * Fix buffer overflow with chunked HTTP handling (CVE-2019-16239) (Closes: #940871) openjdk-11 (11.0.6+10-1~deb10u1) buster-security; urgency=medium . * Rebuild for Buster openjdk-11 (11.0.6+10-1~bpo9+1) stretch-backports; urgency=medium . * Rebuild for stretch-backports. openjdk-11 (11.0.6+7-1) unstable; urgency=medium . * OpenJDK 11.0.5+7 build (early access). openjdk-11 (11.0.5+10-2) unstable; urgency=medium . * Fix the jtreg consistency check when building without jtreg. * Don't call dh_strip_nondeterminism when building for older releases. * Fix disabling the zero build on arm64 on trusty. openjdk-11 (11.0.5+10-1) unstable; urgency=high . * OpenJDK 11.0.5+10 build (release). - S8209901: Canonical file handling. - S8213429, CVE-2019-2933: Windows file handling redux. - S8218573, CVE-2019-2945: Better socket support. - S8218877: Help transform transformers. - S8219914: Change the environment variable for Java Access Bridge logging to have a directory. - S8220186: Improve use of font temporary files. - S8220302, CVE-2019-2949: Better Kerberos ccache handling. - S8221497: Optional Panes in Swing. - S8221858, CVE-2019-2958: Build Better Processes. - S8222684, CVE-2019-2964: Better support for patterns. - S8222690, CVE-2019-2962: Better Glyph Images. - S8223163: Better pattern recognition. - S8223505, CVE-2019-2973: Better pattern compilation. - S8223518, CVE-2019-2975: Unexpected exception in jjs. - S8223886: Add in font table referene. - S8223892, CVE-2019-2978: Improved handling of jar files. - S8224025: Fix for JDK-8220302 is not complete. - S8224062, CVE-2019-2977: Improve String index handling. - S8224532, CVE-2019-2981: Better Path supports. - S8224915, CVE-2019-2983: Better serial attributes. - S8225286, CVE-2019-2987: Better rendering of native glyphs. - S8225292, CVE-2019-2988: Better Graphics2D drawing. - S8225298, CVE-2019-2989: Improve TLS connection support. - S8225597, CVE-2019-2992: Enhance font glyph mapping. - S8226765, CVE-2019-2999: Commentary on Javadoc comments. - S8227601: Better collection of references. - S8228825, CVE-2019-2894: Enhance ECDSA operations. openjdk-11 (11.0.5+10-1~deb10u1) buster-security; urgency=medium . * Rebuild for buster-security openjdk-11 (11.0.5+10-1~bpo9+1) stretch-backports; urgency=medium . * Rebuild for stretch-backports. openjdk-11 (11.0.5+9-1) unstable; urgency=medium . * OpenJDK 11.0.5+9 build (early access). * Bump standards version. * Use dh_strip_nondeterminism (Emmanuel Bourg). Closes: #933389. * Fix 8230708, server build on sparc64 (Adrian Glaubitz). Closes: #939565. * Fix FTBFS with DEB_BUILD_PROFILES=nocheck (Helmut Grohne). Closes: #939521. * Add more breaks to the openjdk-11-jre-headless package. Closes: #935624. * Fix debug and src symlinks. Closes: #893134, #910694, #910696. openjdk-11 (11.0.5+6-2) unstable; urgency=medium . * Fix 8230708, build failure on sparc64 (Adrian Glaubitz). * Disable the zero build on armhf. openjdk-11 (11.0.5+6-1) unstable; urgency=medium . * OpenJDK 11.0.5+6 build (early access). . [ Matthias Klose ] * Tighten dependency on jtreg. * Build using GCC 9 on recent development releases. * Refresh patches. . [ Tiago Stürmer Daitx ] * Properly generate Breaks: rules for bionic (fix typo). * Remove libgtk-3-dev from build-deps: libgtk-3-dev is not actually required, package builds fine without it; libgtk2.0-0 or libgtk-3-0 should be explicitly declared instead in bdeps and tests; libxrandr-dev should be explicitly added as it is required and was being included due to libgtk-3-dev dependency. * Set minimum dependency on jtreg based on testsuite requirements. * Fail during pre-build if installed jtreg version is lower then the minimum required version. * Improve and fix build tests and autopkgtests: - Depend on default-jre-headless so jtreg will use the JRE from /usr/default-java; remove JT_JAVA exports as it no longer needs to be set. - Update debian/tests/hotspot,jdk,langtools to ignore jtreg-autopkgtest.sh return code. - Create debian/tests/jtdiff-autopkgtest.in as it depends on debian/rules variables. - debian/tests/jtreg-autopkgtest.sh: + Enable retry of failed tests to trim out flaky tests. + Fix unbound variable. + Keep .jtr files from failed tests only. - debian/tests/jtdiff-autopkgtest.sh: + Fail only if an actual regression is detected. + Add the super-diff comparison from jtdiff. - debian/rules: + Preserve all JTreport directories in the test output directory. + Use JDK_DIR instead of JDK_TO_TEST for autopkgtest generation. + Package all .jtr files from JTwork as jtreg-autopkgtest.sh makes sure it contains only failing tests. openjdk-11 (11.0.4+11-1) unstable; urgency=high . * OpenJDK 11.0.4+11 build (release). - S8212328, CVE-2019-2762: Exceptional throw cases. - S8213431, CVE-2019-2766: Improve file protocol handling. - S8213432, CVE-2019-2769: Better copies of CopiesList. - S8216381, CVE-2019-2786: More limited privilege usage. - S8217563: Improve realm maintenance. - S8218863: Better endpoint checks. - S8218873: Improve JSSE endpoint checking. - S8218876, CVE-2019-7317: Improve PNG support options. - S8219775: Certificate validation improvements. - S8220517: Enhanced GIF support. - S8221345, CVE-2019-2818: Better Poly1305 support. - S8221518, CVE-2019-2816: Normalize normalization. - S8222678, CVE-2019-2821: Improve TLS negotiation. * Fix more build issues for Ubuntu precise builds. * Bump standards version. openjpeg2 (2.3.0-2+deb10u1) buster; urgency=high . * Backport security fixes: * CVE-2018-21010: heap buffer overflow in color_apply_icc_profile (Closes: #939553). * CVE-2018-20847: improper computation of values in the function opj_get_encoding_parameters, leading to an integer overflow (Closes: #931294). opensmtpd (6.0.3p1-5+deb10u3) buster-security; urgency=high . * Fix two major security bugs (Closes: #950121) (CVE-2020-7247) 1. smtpd can crash on opportunistic TLS downgrade, causing a denial of service. OpenBSD 6.6 errata 018: https://ftp.openbsd.org/pub/OpenBSD/patches/6.6/common/018_smtpd_tls.patch.sig 2. Fix privilege escalation vulnerability: An incorrect check allows an attacker to trick mbox delivery into executing arbitrary commands as root and lmtp delivery into executing arbitrary commands as an unprivileged user. OpenBSD 6.6 errata 019: https://ftp.openbsd.org/pub/OpenBSD/patches/6.6/common/019_smtpd_exec.patch.sig opensmtpd (6.0.3p1-5+deb10u2) buster; urgency=medium . * Handle non-zero exit code from hostname during config phase (Closes: #948824) opensmtpd (6.0.3p1-5+deb10u1) buster; urgency=medium . * Warn users of change of smtpd.conf syntax (Closes: #944268) * Install smtpctl setgid opensmtpq (Closes: #945910) openssh (1:7.9p1-10+deb10u2) buster; urgency=medium . * Apply upstream patch to deny (non-fatally) ipc in the seccomp sandbox, fixing failures with OpenSSL 1.1.1d and Linux < 3.19 on some architectures (closes: #946242). Note that this also drops the previous change to allow ipc on s390, since upstream has security concerns with that and it doesn't currently seem to be needed. php-horde (5.2.20+debian0-1+deb10u1) buster; urgency=high . * Fix CVE-2019-12095: Stored XSS vuln in the Horde Cloud Block. php-horde-text-filter (2.3.5-3+deb10u1) buster; urgency=medium . * QA upload. * Mark package as orphaned (See #942282) . [ IOhannes m zmölnig ] * Fixed regular-expressions (used e.g. for displaying plain-text mails) (Closes: #931255, #935816) * Switched upstream branch in the packaging git on salsa to 'debian-buster' postfix (3.4.8-0+10debu1) buster; urgency=medium . [Scott Kitterman] . * Refactor running status detection in sysv init based on upstream postfix-script so it works in docker. Closes: #941293 . [Wietse Venema] . * 3.4.8 - Bugfix (introduced: Postfix 2.8): don't gratuitously enable all after-220 tests when only one such test is enabled. This made selective tests impossible with 'good' clients. File: postscreen/postscreen_smtpd.c. . - Bugfix: the 20180903 postscreen fix for a misleading "PIPELINING after BDAT" warning looked at the wrong variable. The warning now says "BDAT without valid RCPT", and the error is no longer treated as a command PIPELINING error (but sending BDAT is still a client error, because postscreen rejects all RCPT commands and does not announce PIPELINING support). File: postscreen/postscreen_smtpd.c. . - Usability: the parser for key/certificate chain files rejected inputs that contain an EC PARAMETERS object. While this is technically correct (the documentation says what types are allowed) this is surprising behavior because the legacy cert/key parameters will accept such inputs. For now, the parser skips object types that it does not know about for usability, and logs a warning because ignoring inputs is not kosher. Viktor and Wietse. File: tls/tls_certkey.c. postfix (3.4.7-2) unstable; urgency=medium . [Andreas Hasenack] . * Update autopkgtest to use python3. Closes: #943212 LP: #1845334 . [Scott Kitterman] . * Update smtp_tls_CApath to /etc/ssl/certs so it actually works. Closes: #923083 * Refactor running status detection in sysv init based on upstream postfix-script so it works in docker. Closes: #941293 postfix (3.4.7-1) unstable; urgency=medium . [Andreas Hasenack] . * * d/p/80_glibc2.30-ftbfs.diff: fix build with glibc 2.30 (LP: #1842923) . [Scott Kitterman] . * Refresh patches * Modernize default TLS setup: - Drop addition of smtpd_tls_session_cache_database to TLS parameters (no longer needed since TLS session tickets are used now). Closes: #934803 - Replace use of obsolescent smtpd_use_tls=yes with smtpd_tls_security_level=may in default TLS setting. Closes: #520936 - Add smtp_tls_security_level=may to default TLS settings so that both client and server TLS are now enabled be default for new installations. Closes: #163144 - Stop copying smtp_tls_CAfile into chroot, not needed per postfix docs - Also copy smtpd_tls_CApath files into chroot. Closes: #579248 - Add smtp_tls_CApath using /usr/share/ca-certificates/ to default TLS configuration so postfix smtp client can use the system certificate store to verify smtp server certificates, add ca-certificates to postfix Recommends. Closes: #923083 * Bump standards version to 4.4.0 without further change * Fix spelling errors in Debian provided man pages . [Christian Göttsche] . * Fix debian/rules so build flags are applied Closes: #879668 . [Wietse Venema] . * 3.4.6 * 3.4.7 postgresql-11 (11.6-0+deb10u1) buster; urgency=medium . * New upstream version. postgresql-11 (11.5-3sid2) unstable; urgency=medium . * Fix arch-only build. postgresql-11 (11.5-3sid1) unstable; urgency=medium . * Stop building lib packages, postgresql-12 is already in unstable. (Closes: #941845) . postgresql-11 (11.5-3) unstable; urgency=medium . * Use llvm 9. (Closes: #940261) * debian/tests/installcheck: Disable llvm bitcode compilation, not needed. postgresql-11 (11.5-2) unstable; urgency=medium . * Disable building plpython2 by default. (Closes: #937310) postgresql-common (200+deb10u3) buster-security; urgency=medium . * pg_ctlcluster: Drop privileges before creating socket and stats temp directories outside /var/run/postgresql. The default configuration is not affected by this change. Users with directories on volatile storage (tmpfs) in other locations have to make sure the parent directory is writable for the cluster owner. (CVE-2019-3466, discovered by Rich Mirch) print-manager (4:18.12.1-2+deb10u1) buster; urgency=medium . * Team upload. * Backport fix_crash_when_cups_returns_jobs_with_duplicate_id.patch. This fixes a longstanding bug when multiple print job IDs are given the same ID, and so it was not easy to reproduce (Closes: #910879). proftpd-dfsg (1.3.6-4+deb10u3) buster; urgency=medium . * Cherry pick patch from upstream: - for upstream 861 (CVE-2019-19269) (Closes: #946345) - for upstream 859 (CVE-2019-19270) (Closes: #946346) upstream_pull_859_861_CVE-2019-19270_CVE-2019-19269 prosody-modules (0.0~hg20190203.b54e98d5c4a1+dfsg-1+deb10u1) buster-security; urgency=high . * fix for CVE-2020-8086 pykaraoke (0.7.5-1.2+deb10u1) buster; urgency=medium . * Non-maintainer upload. * Fix path to fonts. (Closes: #948385) pykaraoke (0.7.5-1.2+deb9u1) stretch; urgency=medium . * Non-maintainer upload. * Fix path to fonts. (Closes: #948385) python-apt (1.8.4.1) buster-security; urgency=high . * SECURITY UPDATE: Check that repository is trusted before downloading files from it (LP: #1858973) - apt/cache.py: Add checks to fetch_archives() and commit() - apt/package.py: Add checks to fetch_binary() and fetch_source() - CVE-2019-15796 * SECURITY UPDATE: Do not use MD5 for verifying downloadeds (Closes: #944696) (#LP: #1858972) - apt/package.py: Use all hashes when fetching packages, and check that we have trusted hashes when downloading - CVE-2019-15795 * To work around the new checks, the parameter allow_unauthenticated=True can be passed to the functions. It defaults to the value of the APT::Get::AllowUnauthenticated option. * Automatic changes and fixes for external regressions: - Adjustments to test suite and CI to fix CI regressions - testcommon: Avoid reading host apt.conf files - Automatic mirror list update python-django (1:1.11.27-1~deb10u1) buster-security; urgency=high . * New upstream security release. (Closes: #946937) . - CVE-2019-19844: Potential account hijack via password reset form. . By submitting a suitably crafted email address making use of Unicode characters, that compared equal to an existing user email when lower-cased for comparison, an attacker could be sent a password reset token for the matched account. . In order to avoid this vulnerability, password reset requests now compare the submitted email using the stricter, recommended algorithm for case-insensitive comparison of two identifiers from Unicode Technical Report 36, section 2.11.2(B)(2). Upon a match, the email containing the reset token will be sent to the email address on record rather than the submitted address. python-ecdsa (0.13-3+deb10u1) buster-security; urgency=high . * Add patch for strict error checking in DER decoding integers. Fix: - CVE-2019-14853 - CVE-2019-14859 * Add python{3}-pytest as Build Dependency python-evtx (0.6.1-1+deb10u1) buster; urgency=medium . * Non-maintainer upload. . [ Hilko Bengen ] * Fix hexdump import (Closes: #942353) python-internetarchive (1.8.1-1+deb10u1) buster; urgency=medium . * hotfix: close file after getting md5 (Closes: #950289) python3.7 (3.7.3-2+deb10u1) buster; urgency=medium . * CVE-2019-9740 * CVE-2019-9947 * CVE-2019-9948 * CVE-2019-10160 * CVE-2019-16056 * CVE-2019-16935 qemu (1:3.1+dfsg-8+deb10u3) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * target/i386: add PSCHANGE_MC_NO feature qtbase-opensource-src (5.11.3+dfsg1-1+deb10u2) buster; urgency=medium . [ Dmitry Shachnev ] * Backport upstream patch to add support for non-PPD printers and avoid silent fallback to a printer supporting PPD (closes: #911702, #911844). * Backport upstream patch to fix crash in QStyleSheetStyle::repolish() when using QLabels with rich text (closes: #935909). . [ Melvin Vermeeren ] * Backport upstream patch to fix graphics tablet hover events (closes: #935627). qtwebengine-opensource-src (5.11.3+dfsg-2+deb10u1) buster; urgency=medium . * Fix PDF parsing by adding the missing non-const overrides for CPDF_Dictionary::GetDict() and CPDF_Reference::GetDict(). This also fixes QWebEnginePage::print() method (closes: #919504). * Use ui/webui/resources/js/jstemplate_compiled.js provided by upstream instead of an empty file (closes: #882805). * Backport upstream patch to disable executable stack (closes: #887875). quassel (1:0.13.1-1+deb10u2) buster; urgency=medium . * Actually delete quassel-core.NEWS as intended . quassel (1:0.13.1-1+deb10u1) buster; urgency=medium . [ Felix Geyer ] * Fix quasselcore AppArmor denials when the config is saved. (Closes: #940482) . [ Scott Kitterman ] * Correct default channel for Debian quassel (1:0.13.1-1+deb10u1) buster; urgency=medium . [ Felix Geyer ] * Fix quasselcore AppArmor denials when the config is saved. (Closes: #940482) . [ Scott Kitterman ] * Correct default channel for Debian qwinff (0.2.1-1+deb10u1) buster; urgency=medium . * debian/rules: Export DATA_PATH to fix crashing caused by incorrect file detection. (Closes: #945602) raspi3-firmware (1.20190215-1+deb10u2) buster; urgency=medium . * Fix serial console output sent to bluetooth port with kernel 5.x. Thanks to Thorsten Glaser (Closes: #941974) ros-ros-comm (1.14.3+ds1-5+deb10u1) stable; urgency=high . * Add https://github.com/ros/ros_comm/pull/1771 (Fix CVE-2019-13566, CVE-2019-13465) * Add https://github.com/ros/ros_comm/pull/1741 (Fix CVE-2019-13445) roundcube (1.3.10+dfsg.1-1~deb10u1) buster; urgency=medium . * d/control: revert bump of Standards-Version, as we want to release to stable. * d/upstream/signing-key.asc: revert Minimize OpenPGP certificate. * Add patch to Fix "Retry to connect to IMAP server" (Closes: #947320) ruby2.5 (2.5.5-3+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Fix for wrong fnmatch patttern (CVE-2019-15845) * Loop with String#scan without creating substrings (CVE-2019-16201) * WEBrick: prevent response splitting and header injection (CVE-2019-16254) * lib/shell/command-processor.rb (Shell#[]): prevent unknown command (CVE-2019-16255) schleuder (3.4.0-2+deb10u2) buster; urgency=medium . * debian/patches: - Pull in upstream patch to add missing List-Id header to notification mails sent to admins. (Closes: #948980) - Pull in upstream patch to handle decryption problems gracefully: Handle incoming mails encrypted to an absent key, using symmetric encryption or containing PGP-garbage in a more graceful manner: Don't throw an exception, don't notify (and annoy) the admins, instead inform the sender of the mail how to do better. (Closes: #948981) - Pull in upstream patch to default to ASCII-8BIT encoding. This should ensure Schleuder is able to handle mails with different charsets. (Closes: #948982) schleuder (3.4.0-2+deb10u1) buster; urgency=medium . * debian/patches: - Extend existing patch which fixes problems related to the use of "protected headers": Fix recognizing keywords in mails with "protected headers" and empty subject. Previously, if the subject was unset, keywords were not recognized and the original "protected headers" could leak. This approach, extending the existing patch, instead of adding a new one, reduces noise and keeps the diff small, as the same part of the code is targeted. (Closes: #940524) - Add patch to strip non-self-signatures when refreshing or fetching keys. (Closes: #940526) - Add patch to error out if the argument provided to `refresh_keys` is not an existing list. (Closes: #940527) simplesamlphp (1.16.3-1+deb10u2) buster; urgency=medium . * Fix incompatibility with PHP 7.3 (closes: #944820). slurm-llnl (18.08.5.2-1+deb10u1) buster-security; urgency=high . * FIX CVE-2019-12838 by escaping strings in archive files in accounting_storage/mysql sogo-connector (68.0.1-2~deb10u1) buster; urgency=medium . * Rebuild for Buster * [a92f899] d/gbp.conf: adjust to debian/buster sogo-connector (68.0.1-1) unstable; urgency=medium . * [0e43d2d] d/control: move Maintainer to Debian Mozilla Extension Maintainers sogo-connector (68.0.1-1~exp1) unstable; urgency=medium . * [74a8e5f] New upstream version 68.0.1 * [5c78ff2] d/control: add new package webext-sogo-connector - The source of the package is now web-extension based only, no old transitional xul stuff is included. So make this visible by moving the main binary package over to webext-* syntax. * [b292c29] d/control: remove B-D on make and mozilla-devscripts - Drop Build-Depends on make and mozilla-devscripts, they are not needed any more. * [1dadf9c] d/control: adding Rules-Requires-Root: no * [1d3e119] d/rules: updating build targets - Clean up all non needed xul-* helpers, makes the mostly needed target reduced to the quite the minimum. * [ec0863d] webext-sogo-connector adding install sequencer file * [366a931] webext-sogo-connector: adding linking sequencer file * [1c7252f] webext-sogo-connector: adding docs sequencer file * [48e8b6a] d/xul-ext-sogo-connector.lintian-overrides: drop file - xul-ext-sogo-connector is now a transitional package, we don't need this lintian file any more. sogo-connector (68.0.0-1) unstable; urgency=medium . * [63605f6] New upstream version 68.0.0 (Closes: #945061) * [f021239] d/control: bump Standards-Version to 4.4.1 * [cece803] d/control: drop B-D on python-ply (Closes: #939479) * [86ab883] rebuild patch queue from patch-queue branch - removed patches: removing-the-COPYING-file.patch sogo-connector.xpt-prepare-option-for-rebuild-the-.x.patch * [00917e3] remove now obsolete *.idl files - The package build isn't depending on some old files from the non existing package thunderbird-dev any more. The build doesn't uses *.idl files now. * [4b96f9a] d/copyright: update date information * [3efbfa0] d/watch: switch over to git mode * [324d0b8] d/rules: rewrite targets due modified source for TB 68 - Rewrite the control of the package build. There is no local run of some Make targets needed any more. spamassassin (3.4.2-1+deb10u2) buster-security; urgency=medium . * Security update to address - CVE-2020-1930. Arbitrary code execution via malicious rule files. - CVE-2020-1931. Arbitrary code execution via malicious rule files. (Closes: #950258) spamassassin (3.4.2-1+deb10u1) buster-security; urgency=high . * Security update to address CVE-2018-11805. Malicious rule or configuration files, possibly downloaded from an updates server, could execute arbitrary commands under multiple scenarios. (Closes: 946652) * Security update to address CVE-2019-12420. Messages can be crafted in a way to use excessive resources, resulting in a denial of service. (Closes: 946653) spf-engine (2.9.2-0+deb10u1) buster; urgency=medium . * New upstream bugfix release: * Improve documentation based on user feedbacK: Add mention in policyd-spf.conf (5) in the TestOnly entry that to get both TestOnly behavior and no header field appended, Header_Type = None also needs to be set (LP: #1849994) * Fix priviledge managment at startup so Unix sockets work: Milter: Move drop_privileges before Milter.runmilter and delete own_socketfile so that the milter interface runs as the correct user without race conditions about changing ownership of the socket file when it hasn't been created yet (When the milter is started, it will create the socket based on uMask, so we don't need to manually change it) spf-engine (2.9.1-1) unstable; urgency=medium . [ Ondřej Nový ] * Bump Standards-Version to 4.4.0. . [ Scott Kitterman ] * New upstream release * Put upstream provided init file where dh_installinit expects to find it so it is properly registered on install * Update debian/patches/0001-install-conf-fix.patch for missed change needed in sysv init spip (3.2.4-1+deb10u2) buster-security; urgency=medium . * Backport security fix from 3.2.7 - Critical security fix, allowing identified authors to inject content into database - Update security screen to 1.3.13 * Fix PHP 7.3 compatibility issue. The regex were wrong, and started failing with PHP 7.3, causing plugins to be disabled and impossible to be enable back on upgrade. sudo (1.8.27-1+deb10u2) buster; urgency=medium . * Non-maintainer upload. * Fix a buffer overflow when pwfeedback is enabled and input is a not a tty (CVE-2019-18634) (Closes: #950371) symfony (3.4.22+dfsg-2+deb10u1) buster-security; urgency=medium . * Drop failing tests with recent PHP (Closes: #930003) * Backport security fixes from 3.4.35 - [HttpKernel] Use constant time comparison in UriSigner [CVE-2019-18887] - [Cache] forbid serializing AbstractAdapter and TagAwareAdapter instances [CVE-2019-18889] - [HttpFoundation] fix guessing mime-types of files with leading dash [CVE-2019-18888] systemd (241-7~deb10u3) buster; urgency=medium . * core: set fs.file-max sysctl to LONG_MAX rather than ULONG_MAX. Since kernel 5.2 (but also stable kernels like 4.19.53) the kernel thankfully returns proper errors when we write a value out of range to the sysctl. Which however breaks writing ULONG_MAX to request the maximum value. Hence let's write the new maximum value instead, LONG_MAX. (Closes: #945018) * core: change ownership/mode of the execution directories also for static users. This ensures that execution directories like CacheDirectory and StateDirectory are properly chowned to the user specified in User= before launching the service. (Closes: #919231) thunderbird (1:68.4.1-1~deb10u1) stable-security; urgency=medium . * Rebuild for buster-security thunderbird (1:68.4.1-1~deb9u1) stretch-security; urgency=medium . * Rebuild for stretch-security thunderbird (1:68.3.1-1) unstable; urgency=medium . [ Emilio Pozuelo Monfort ] * [6f59313] Fix MOZ_BUILD_DATE to have the expected format . [ Carsten Schoenert ] * [5d0f4b1] d/rules: don't use SOURCE_DATE_EPOCH for MOZ_BUILD_DATE (Closes: #946588) * [1467af5] New upstream version 68.3.1 thunderbird (1:68.3.0-2) unstable; urgency=medium . * [0625d30] rebuild patch queue from patch-queue branch added patches: fixes/Bug-1531309-Don-t-use-__PRETTY_FUNCTION__-or-__FUNCTION__.patch fixes/Update-bindgen-in-ESR68.-r-glandium-a-RyanVM.patch * [ea8d98c] Breaks: add versioned birdtray package thunderbird (1:68.3.0-2~deb10u1) stable-security; urgency=medium . * Rebuild for buster-security [ Emilio Pozuelo Monfort ] * [de88895] Fix MOZ_BUILD_DATE to have the expected format (cherry-picked from debian/sid) . [ Carsten Schoenert ] * [a077b71] d/rules: don't use SOURCE_DATE_EPOCH for MOZ_BUILD_DATE (cherry-picked from debian/sid) (Closes: #946588) thunderbird (1:68.3.0-2~deb9u1) stretch-security; urgency=medium . * Rebuild for stretch-security thunderbird (1:68.3.0-1) unstable; urgency=medium . * [fe289ec] /u/b/thunderbird: export variable DICPATH before start (Closes: #944295) * [a9a48c6] New upstream version 68.3.0 Fixed CVE issues in upstream version 68.3 (MFSA 2019-38): CVE-2019-17008: Use-after-free in worker destruction CVE-2019-13722: Stack corruption due to incorrect number of arguments in WebRTC code CVE-2019-11745: Out of bounds write in NSS when encrypting with a block cipher CVE-2019-17009: Updater temporary files accessible to unprivileged processes CVE-2019-17010: Use-after-free when performing device orientation checks CVE-2019-17005: Buffer overflow in plain text serializer CVE-2019-17011: Use-after-free when retrieving a document in antitracking CVE-2019-17012: Memory safety bugs fixed in Firefox 71, Firefox ESR 68.3, and Thunderbird 68.3 * [fb23473] d/control: increase B-D version on NSS to 3.44.3 * [6f59938] Breaks: adding more non compatible packaged AddOns thunderbird (1:68.2.2-1) unstable; urgency=medium . * [198d539] xul-ext-compactheader: allow also version << 3.0.0 * [0e93753] d/control: add incompatibility with jsunit << 0.2.2 * [87c84cb] New upstream version 68.2.2 This upstream version has removed the source for calendar-google-provider, thus we can't provide the related binary package any more. * [a3cea2a] rebuild patch queue from patch-queue branch rebuild patch queue from patch-queue branch . removed patches (included upstream): debian/patches/fixes/Bug-1470701-Use-run-time-page-size-when-changing-map.patch debian/patches/fixes/Bug-1505608-Try-to-ensure-the-bss-section-of-the-elf.patch debian/patches/fixes/Bug-1526744-find-dupes.py-Calculate-md5-by-chunk.patch debian/patches/fixes/Build-also-gdata-provider-as-xpi-file.patch debian/patches/fixes/rust-ignore-not-available-documentation.patch debian/patches/porting-kfreebsd-hurd/Fix-GNU-non-Linux-failure-to-build-because-of-ipc-ch.patch debian/patches/porting-mips/Bug-1444303-MIPS-Fix-build-failures-after-Bug-1425580-par.patch debian/patches/porting-mips/Bug-1444834-MIPS-Stubout-MacroAssembler-speculationBarrie.patch debian/patches/porting-powerpc/powerpc-Don-t-use-static-page-sizes-on-powerpc.patch debian/patches/porting-sparc64/Bug-1434726-Early-startup-crash-on-Linux-sparc64-in-HashI.patch * [1730f5f] d/control: remove references to calendar-google-provider Don't build calendar-google-provider any more and remove any references from other binary packages. * [1b0bbb8] d/rules: remove any calendar-google-provider stuff * [92f681c] thunderbird.NEWS: Adding hint about removal of gdata Give out an announcement about the removal of a possible previously installed package calendar-google-provider. thunderbird (1:68.2.2-1~deb10u1) stable-security; urgency=medium . * Rebuild for buster-security * [2c1bd00] d/mozconfig.default: use internal version of nspr, nss, sqlite and icu * [94d6ae4] d/control: remove lib{nspr4,nss3,sqlite3}-dev from B-D thunderbird (1:68.2.2-1~deb9u1) stretch-security; urgency=medium . [ Carsten Schoenert ] * Rebuild for stretch-security * [038dcd9] use nodejs-mozilla within stretch-security The package nodejs isn't available for stretch, but nodejs-mozilla is usable. Thanks for backporting! * [4bdcd39] d/mozconfig.default: remove option for hunspell Thunderbird 68 isn't using external (or internal) hunspell features any more. This requires the usage of external dictionaries provided by AddOns. * [e368b15] d/mozconfig.default: remove doubled sqlite option Removed a doubled disabled option for libsqlite3, the merge from buster was bringing already this option as a disabled option. * [8ddc95c] use internal libvpx library within stretch-security Also libvpx is to old on stretch and we switch to the internal version from the Thunderbird source. thunderbird (1:68.2.1-1) unstable; urgency=medium . [ intrigeri ] * [c48e2cb] AppArmor: update profile from upstream at commit a27a1a5 (Closes: #941290) . [ Carsten Schoenert ] * [98497ae] New upstream version 68.2.0 Fixed CVE issues in upstream version 68.2 (MFSA 2019-35): CVE-2019-15903: Heap overflow in expat library in XML_GetCurrentLineNumber CVE-2019-11757: Use-after-free when creating index updates in IndexedDB CVE-2019-11758: Potentially exploitable crash due to 360 Total Security CVE-2019-11759: Stack buffer overflow in HKDF output CVE-2019-11760: Stack buffer overflow in WebRTC networking CVE-2019-11761: Unintended access to a privileged JSONView object CVE-2019-11762: document.domain-based origin isolation has same-origin-property violation CVE-2019-11763: Incorrect HTML parsing results in XSS bypass technique CVE-2019-11764: Memory safety bugs fixed in Thunderbird 68.2 (Closes: #925841) * [a104c51] d/control: increase Standards-Version to 4.4.1 * [6c9d012] xul-ext-dispmua: set current min usable version * [b3bf16f] New upstream version 68.2.1 * [8f89b90] d/control: decrease build architecture list Decreasing the current list of build architectures. Not meant to keep this forever, removed RC architectures needing support and volunteering to get them back. (Closes: #921258) thunderbird (1:68.1.2-1~exp1) experimental; urgency=medium . * [81f4144] xul-ext-compactheader: increase minimal usable version * [a815589] Update the global information about TB in Debian * [bb5f5f7] rebuild patch queue from patch-queue branch * [6fe7d3f] xul-ext-sogo-connector: increase minimal usable version * [2e29af5] New upstream version 68.1.2 thunderbird (1:68.1.1-1~exp1) experimental; urgency=medium . [ intrigeri ] * [3f49653] AppArmor: update profile from upstream at commit ed52e4a . [ Carsten Schoenert ] * [348f476] New upstream version 68.0~b5 * [2a2f101] New upstream version 68.1.1 Fixed CVE issues in upstream version 68.1 (MFSA 2019-20): CVE-2019-11711: Script injection within domain through inner window reuse CVE-2019-11712: Cross-origin POST requests can be made with NPAPI plugins by following 308 redirects CVE-2019-11713: Use-after-free with HTTP/2 cached stream CVE-2019-11714: NeckoChild can trigger crash when accessed off of main thread CVE-2019-11729: Empty or malformed p256-ECDH public keys may trigger a segmentation fault CVE-2019-11715: HTML parsing error can contribute to content XSS CVE-2019-11716: globalThis not enumerable until accessed CVE-2019-11717: Caret character improperly escaped in origins CVE-2019-11719: Out-of-bounds read when importing curve25519 private key CVE-2019-11720: Character encoding XSS vulnerability CVE-2019-11721: Domain spoofing through unicode latin 'kra' character CVE-2019-11730: Same-origin policy treats all files in a directory as having the same-origin CVE-2019-11723: Cookie leakage during add-on fetching across private browsing boundaries CVE-2019-11724: Retired site input.mozilla.org has remote troubleshooting permissions CVE-2019-11725: Websocket resources bypass safebrowsing protections CVE-2019-11727: PKCS#1 v1.5 signatures can be used for TLS 1.3 CVE-2019-11728: Port scanning through Alt-Svc header CVE-2019-11710: Memory safety bugs fixed in Firefox 68 and Thunderbird 68 CVE-2019-11709: Memory safety bugs fixed in Firefox 68, Firefox ESR 60.8, and Thunderbird 68 . Fixed CVE issues in upstream version 68.1 (MFSA 2019-20): CVE-2019-11739: Covert Content Attack on S/MIME encryption using a crafted multipart/alternative message CVE-2019-11746: Use-after-free while manipulating video CVE-2019-11744: XSS by breaking out of title and textarea elements using innerHTML CVE-2019-11742: Same-origin policy violation with SVG filters and canvas to steal cross-origin images CVE-2019-11752: Use-after-free while extracting a key value in IndexedDB CVE-2019-11743: Cross-origin access to unload event attributes CVE-2019-11740: Memory safety bugs fixed in Firefox 69, Firefox ESR 68.1, Firefox ESR 60.9, Thunderbird 68.1, and Thunderbird 60.9 . Fixed CVE issues in upstream version 68.1.1 (MFSA 2019-32): CVE-2019-11755: Spoofing a message author via a crafted S/MIME message . * [9342624] rebuild patch queue from patch-queue branch added patches: debian-hacks/Set-program-name-from-the-remoting-name.patch debian-hacks/Use-remoting-name-for-call-to-gdk_set_program_class.patch debian-hacks/Work-around-Debian-bug-844357.patch fixes/Allow-.js-preference-files-to-set-locked-prefs-with-lockP.patch fixes/Bug-1556197-amend-Bug-1544631-for-fixing-mips32.patch fixes/Bug-1560340-Only-add-confvars.sh-as-a-dependency-to-confi.patch porting-armhf/Bug-1526653-Include-struct-definitions-for-user_vfp-and-u.patch . removed patch (fixed upstream): porting-mips/Fix-CPU_ARCH-test-for-libjpeg-on-mips.patch porting/Work-around-GCC-ICE-on-mips-i386-and-s390x.patch . * [25cb500] d/control: increase various versions in B-D * [ee5b713] d/control: remove B-D on librust-cbindgen-dev Use librust-toml-dev instead, we only need some files from this package, librust-cbindgen-dev is a metapackage which is broken while packaging. * [442a6b1] d/rules: work around cargo needs a HOME dir * [4894a4c] d/control: increase Standards-Version to 4.4.0 No further changes needed. * [bb47b68] d/control: update upstream homepage for Thunderbird Since some time Mozilla Thunderbird has a new homepage placed on URI https://www.thunderbird.net/ * [a3b680e] d/source.filter: update the filter sequences New Thunderbird upstream versions bringing some new unwanted files within the source. * [7290ff4] d/control: remove transitional lightning l10n packages The Lightning l10n packages moved into transitional packages before Buster was released, now after the Buster release removing these transitional packages. All required l10n files are available in the packages thunderbird-$(locale) even for Lightning. * [3d1d27d] enigmail: increase minimal usable version Thunderbird 68.x needs at least Enigmal in version 2.1, but increase the version on Enigmail to the most recent version which is released while packaging. * [66069d9] calendar-exchange-provider: removed from Breaks This package isn't alive in unstable and testing. * [3b9f936] d/control: remove Xb-Xul-AppId field Thunderbird don't has any Xul based AddOns since version 68.0 * [7d8cd7d] lintian-overrides: remove not needed overrides thunderbird (1:68.0~b1-1) experimental; urgency=medium . * [0eabe70] New upstream version 68.0~b1 * [2febf67] rebuild patch queue from patch-queue branch added patch: debian-hacks/Downgrade-SQlite-version-to-3.27.2.patch * [cfa5973] d/s/lintian-overrides: adjust overrides for needed files * [46077e2] d/copyright: update after upstream changes thunderbird (1:67.0~b3-1) experimental; urgency=medium . [ intrigeri ] * [9ad75ad] d/rules: drop useless usage of dpkg-parsechangelog . [ Carsten Schoenert ] * [d6f6747] New upstream version 67.0~b3 * [90f73be] rebuild patch queue from patch-queue branch removed patch: fixes/Bug-1515641-Turn-enable-av1-around.-r-nalexander.patch * [7dd5c54] d/control: increase various B-D versions Increasing the version for the build depending packages of cargo, cbindgen, libnspr4-dev, libnss3-dev, libsqlite3-dev and rustc. thunderbird (1:66.0~b1-1) experimental; urgency=medium . [ Carsten Schoenert ] * [afe31d9] New upstream version 66.0~b1 * [4ec53cc] apparmor: update profile from upstream (commit 7ace41b1) (cherry-picked from debian/sid) * [b3657a0] d/rules: make dh_clean more robust Remove some regenerated files in dh_clean to the build will not fail in case the build needs to be started twice within the same build environment. (cherry-picked from debian/sid) * [dceb027] d/rules: move disable debug option into configure step Adding the option '--disable-debug-symbols' to the file mozconfig.default in case the build is running on a 32bit architecture instead of expanding the variable 'CONFIGURE_FLAGS'. The configuration approach for this option taken from firefox-esr was not working for the thunderbird package. (cherry-picked from debian/sid) * [f7f02a9] d/rules: reorder LDFLAGS for better readability Make the used additional options for LDFLAGS better readable by reordering the various used options. Also adding the option '-Wl, --as-needed' to the list of used options here. (cherry-picked from debian/sid) * [79801fb] d/rules: use 'compress-debug-sections' only on 64bit Do not set 'LDFLAGS += -Wl,--compress-debug-sections=zlib' globally, lets use this option only if we are on a 64bit architecture as otherwise the build is failing on 32bit architectures again. We don't want to build any debug information on 32bit anyway so we don't need this option on these platforms. (cherry-picked from debian/sid) * [11f9e14] d/mozconfig.default: adding option for mipsel We don't have set up any options for the mipsel platform before, but the build needs some additional options too on this platform to succeed. (cherry-picked from debian/sid) * [e46e178] d/mozconfig.default: disable ion on mips and mipsel The build will fail on mips{,el} if we have enabled ION, the JavaScript JIT compiler on these platforms will loose some performance by this. (cherry-picked from debian/sid) . [ Alexander Nitsch ] * [31b87e9] Make the logo SVG square The original SVG source isn't completely square, modifying the SVG file so all generated other files from the input are also exactly square. * [c0f19a3] Add script for generating PNGs from logo SVG * [c153c5f] Update icon PNGs to be properly scaled . [ Carsten Schoenert ] * [c372e1f] d/source.filter: add some configure scripts Filter out some files that are named 'configure', they are rebuild later anyway. The filtering of these files is moved from gbp.conf to source.filter. (cherry-picked from debian/sid) * [a40c5df] d/c-lightning-l10n-t.sh: drop version checking Remove an old check for a version string within the file install.rdf. It's not created any more by upstream since > 60.0. * [05b325e] d/source.filter: don't ignore files in root folder Try to not ignore files which are in the top root folder of the upstream source tarball. * [d2ca267] rebuild patch queue from patch-queue branch added patch: fixes/Bug-1515641-Turn-enable-av1-around.-r-nalexander.patch . modified (refreshed) patches: porting-armel/Avoid-using-vmrs-vmsr-on-armel.patch porting-armel/Bug-1463035-Remove-MOZ_SIGNAL_TRAMPOLINE.-r-darchons.patch porting-kfreebsd-hurd/Allow-ipc-code-to-build-on-GNU-hurd.patch porting-kfreebsd-hurd/Allow-ipc-code-to-build-on-GNU-kfreebsd.patch porting-kfreebsd-hurd/FTBFS-hurd-fixing-unsupported-platform-Hurd.patch porting-kfreebsd-hurd/Fix-GNU-non-Linux-failure-to-build-because-of-ipc-ch.patch porting-kfreebsd-hurd/adding-missed-HURD-adoptions.patch porting-kfreebsd-hurd/ipc-chromium-fix-if-define-for-kFreeBSD-and-Hurd.patch porting-m68k/Add-m68k-support-to-Thunderbird.patch . removed patches (applied upstream): fixes/Fix-big-endian-build-for-SKIA.patch porting-kfreebsd-hurd/Fix-GNU-non-Linux-failure-to-build-because-of-ipc-ch.patch porting-s390x/FTBFS-s390x-Use-jit-none-AtomicOperations-sparc.h-on-s390.patch * [cb1dde9] d/control: increase version in B-D for libsqlite3-dev * [54e8890] d/mozconfig.default: add new configure option We need to disable the usage of libav1 for an successful build. The used configure option was added by the new added patch to the patch queue. * [ecd3ade] d/copyright: update after upstream changes * [af58ed8] d/source.filter: add extra content to ignore thunderbird (1:65.0~b1-1) experimental; urgency=medium . * [e5956ef] Merge tag 'debian/1%60.4.0-1' into debian/experimental * [389748b] d/source.filter: adjust files to filter while repack Rework of the file filter list due new upstream version but also to no filter out files we obviously need later, e.g. for the omni.jar archive. * [4b86a78] New upstream version 65.0~b1 * [3db29ed] rebuild patch queue from patch-queue branch removed patches (fixed upstream): debian-hacks/icu-use-locale.h-instead-of-xlocale.h.patch debian-hacks/shellutil.py-ignore-tilde-as-special-character.patch fixes/Build-also-gdata-provider-as-xpi-file.patch fixes/Use-msse-2-fpmath-C-CXXFLAGS-only-on-x86_64-platforms.patch porting-mips/Bug-1444303-MIPS-Fix-build-failures-after-Bug-1425580-par.patch porting-mips/Bug-1444834-MIPS-Stubout-MacroAssembler-speculationBarrie.patch porting-sparc64/Bug-1434726-Early-startup-crash-on-Linux-sparc64-in-HashI.patch . removed patches (dropped for Debian specific build): debian-hacks/Don-t-build-testing-suites-and-stuff.patch debian-hacks/Don-t-build-testing-suites-and-stuff-part-2.patch adjusted patches: . debian-hacks/Add-another-preferences-directory-for-applications-p.patch debian-hacks/stop-configure-if-with-system-bz2-was-passed-but-no-.patch patches/fixes/Fix-big-endian-build-for-SKIA.patch (but currently disabled) porting-kfreebsd-hurd/FTBFS-hurd-fixing-unsupported-platform-Hurd.patch porting-kfreebsd-hurd/adding-missed-HURD-adoptions.patch porting-kfreebsd-hurd/ipc-chromium-fix-if-define-for-kFreeBSD-and-Hurd.patch porting-s390x/FTBFS-s390x-Use-jit-none-AtomicOperations-sparc.h-on-s390.patch * [e918c6c] d/control: increase versions in B-D New Thunderbirds version typically need other packages available with higher versions like NSS, NSPR, rust ... Also adding cbindgen and nodejs()!!). * [b6c63bf] d/mozconfig.default: remove dead options More old configure option are now not available anymore and we need to drop them. * [0f959ad] remove GCC specific options LLVM's clang is now widely used, and clang isn't knowing the GCC options '-fno-schedule-insns2' and '-fno-lifetime-dse', removing these options from CFLAGS and CXXFLAGS. * [d0b1f4b] d/rules: work around about strong quotings in .mk files After the configuration of the source some Makefiles in the build folder 'obj-thunderbird' have a strong qouting on some entries. This will later provoke a build failure if we don't remove the single quotes before in the Makefiles. * [093053e] copyright: update after upstream changes * [95eaacf] d/s/lintian-overrides: adjust overrides for needed files thunderbird (1:60.9.0-1) unstable; urgency=medium . * [5f7ba31] New upstream version 60.9.0 Fixed CVE issues in upstream version 60.8.0 (MFSA 2019-29) CVE-2019-11746: Use-after-free while manipulating video CVE-2019-11744: XSS by breaking out of title and textarea elements using innerHTML CVE-2019-11742: Same-origin policy violation with SVG filters and canvas to steal cross-origin images CVE-2019-11752: Use-after-free while extracting a key value in IndexedDB CVE-2019-11743: Cross-origin access to unload event attributes CVE-2019-11740: Memory safety bugs fixed in Firefox 69, Firefox ESR 68.1, Firefox ESR 60.9, and Thunderbird 60.9 tiff (4.1.0+git191117-2~deb10u1) buster-security; urgency=high . * Security backport for Buster. * Relax Standards-Version to 4.3.0 . . tiff (4.1.0+git191117-2) unstable; urgency=medium . * Backport upstream fix for rowsperstrip parse regression in OJPEGReadHeaderInfo() (closes: #945402). . tiff (4.1.0+git191117-1) unstable; urgency=medium . * Git snapshot, fixing the following issues: - missing TIFFClose in rgb2ycbcr tool, - missing checks on TIFFGetField in tiffcrop tool, - broken sanity check in OJPEG, - missing generated .sh files for tests. . tiff (4.1.0-1) unstable; urgency=medium . * New upstream release. * Update Standards-Version to 4.4.1 . . tiff (4.0.10+git191003-1) unstable; urgency=high . * Git snapshot, fixing the following security issue: - TIFFReadAndRealloc(): avoid too large memory allocation attempts. . tiff (4.0.10+git190903-1) unstable; urgency=high . * Git snapshot, fixing the following security issues: - setByteArray(): avoid potential signed integer overflow, - EstimateStripByteCounts(): avoid several unsigned integer overflows, - tif_ojpeg: avoid two unsigned integer overflows, - OJPEGWriteHeaderInfo(): avoid unsigned integer overflow on strile dimensions close to UINT32_MAX, - _TIFFPartialReadStripArray(): avoid unsigned integer overflow, - JPEG: avoid use of uninitialized memory on corrupted files, - TIFFFetchDirectory(): fix invalid cast from uint64 to tmsize_t, - allocChoppedUpStripArrays(): avoid unsigned integer overflow, - tif_ojpeg: avoid use of uninitialized memory on edge/broken file, - ByteCountLooksBad and EstimateStripByteCounts: avoid unsigned integer overflows. . tiff (4.0.10+git190818-1) unstable; urgency=high . * Git snapshot, fixing the following security issues: - RGBA interface: fix integer overflow potentially causing write heap buffer overflow, - setByteArray(): avoid potential signed integer overflow. . tiff (4.0.10+git190814-1) unstable; urgency=high . * Git snapshot, fixing the following security issues: - TryChopUpUncompressedBigTiff(): avoid potential division by zero, - fix vulnerability introduced by defer strile loading, - fix vulnerability in 'D' (DeferStrileLoad) mode, - return infinite distance when denominator is zero, - OJPEG: avoid use of uninitialized memory on corrupted files, - OJPEG: fix integer division by zero on corrupted subsampling factors, - OJPEGReadBufferFill(): avoid very long processing time on corrupted files, - TIFFClientOpen(): fix memory leak if one of the required callbacks is not provided, - CVE-2019-14973, fix integer overflow in _TIFFCheckMalloc() and other implementation-defined behaviour (closes: #934780). * Update libtiff5 symbols. * Update Standards-Version to 4.4.0 . tiff (4.1.0+git191117-1) unstable; urgency=medium . * Git snapshot, fixing the following issues: - missing TIFFClose in rgb2ycbcr tool, - missing checks on TIFFGetField in tiffcrop tool, - broken sanity check in OJPEG, - missing generated .sh files for tests. tiff (4.1.0-1) unstable; urgency=medium . * New upstream release. * Update Standards-Version to 4.4.1 . tiff (4.0.10+git191003-1) unstable; urgency=high . * Git snapshot, fixing the following security issue: - TIFFReadAndRealloc(): avoid too large memory allocation attempts. tiff (4.0.10+git190903-1) unstable; urgency=high . * Git snapshot, fixing the following security issues: - setByteArray(): avoid potential signed integer overflow, - EstimateStripByteCounts(): avoid several unsigned integer overflows, - tif_ojpeg: avoid two unsigned integer overflows, - OJPEGWriteHeaderInfo(): avoid unsigned integer overflow on strile dimensions close to UINT32_MAX, - _TIFFPartialReadStripArray(): avoid unsigned integer overflow, - JPEG: avoid use of uninitialized memory on corrupted files, - TIFFFetchDirectory(): fix invalid cast from uint64 to tmsize_t, - allocChoppedUpStripArrays(): avoid unsigned integer overflow, - tif_ojpeg: avoid use of uninitialized memory on edge/broken file, - ByteCountLooksBad and EstimateStripByteCounts: avoid unsigned integer overflows. tiff (4.0.10+git190818-1) unstable; urgency=high . * Git snapshot, fixing the following security issues: - RGBA interface: fix integer overflow potentially causing write heap buffer overflow, - setByteArray(): avoid potential signed integer overflow. tiff (4.0.10+git190814-1) unstable; urgency=high . * Git snapshot, fixing the following security issues: - TryChopUpUncompressedBigTiff(): avoid potential division by zero, - fix vulnerability introduced by defer strile loading, - fix vulnerability in 'D' (DeferStrileLoad) mode, - return infinite distance when denominator is zero, - OJPEG: avoid use of uninitialized memory on corrupted files, - OJPEG: fix integer division by zero on corrupted subsampling factors, - OJPEGReadBufferFill(): avoid very long processing time on corrupted files, - TIFFClientOpen(): fix memory leak if one of the required callbacks is not provided, - CVE-2019-14973, fix integer overflow in _TIFFCheckMalloc() and other implementation-defined behaviour (closes: #934780). * Update libtiff5 symbols. * Update Standards-Version to 4.4.0 . tifffile (20181128-1+deb10u1) buster; urgency=medium . * Non-maintainer upload. . [ Andreas Tille ] * Fix wrapper script Closes: #939511, #938668 tigervnc (1.9.0+dfsg-3+deb10u1) buster; urgency=high . [ Joachim Falk ] * Fix CVE-2019-15691, CVE-2019-15692, CVE-2019-15693, CVE-2019-15694, and CVE-2019-15695 (Closes: #947428) tightvnc (1:1.3.9-9+deb10u1) buster; urgency=medium . * Security upload. (Closes: #945364). * CVE-2014-6053: Check malloc() return value on client->server ClientCutText message. * CVE-2018-20020: Fix heap out-of-bound write vulnerability inside structure in VNC client code. * CVE-2018-20021: CWE-835: Infinite loop vulnerability in VNC client code. * CVE-2018-20022: CWE-665: Improper Initialization vulnerability. * CVE-2018-7225: Uninitialized and potentially sensitive data could be accessed by remote attackers because the msg.cct.length in rfbserver.c was not sanitized. * CVE-2019-15678: LibVNCClient: ignore server-sent cut text longer than 1MB. * Extra patch similar to the fix for CVE-2019-15678: LibVNCClient: ignore server-sent reason strings longer than 1MB (see CVE-2018-20748/ libvncserver). * CVE-2019-15679: rfbproto.c/InitialiseRFBConnection: Check desktop name length received before allocating memory for it and limit it to 1MB. * CVE-2019-15680: Fix null-pointer-deref issue in vncviewer/zlib.c. * CVE-2019-15681: rfbserver: don't leak stack memory to the remote. tightvnc (1:1.3.9-9+deb9u1) stretch; urgency=medium . * Security upload. (Closes: #945364). * CVE-2014-6053: Check malloc() return value on client->server ClientCutText message. * CVE-2019-8287 (aka CVE-2018-20020): Fix heap out-of-bound write vulnerability inside structure in VNC client code. * CVE-2018-20021: CWE-835: Infinite loop vulnerability in VNC client code. * CVE-2018-20022: CWE-665: Improper Initialization vulnerability. * CVE-2018-7225: Uninitialized and potentially sensitive data could be accessed by remote attackers because the msg.cct.length in rfbserver.c was not sanitized. * CVE-2019-15678: LibVNCClient: ignore server-sent cut text longer than 1MB. * Extra patch similar to the fix for CVE-2019-15678: LibVNCClient: ignore server-sent reason strings longer than 1MB (see CVE-2018-20748/ libvncserver). * CVE-2019-15679: rfbproto.c/InitialiseRFBConnection: Check desktop name length received before allocating memory for it and limit it to 1MB. * CVE-2019-15680: Fix null-pointer-deref issue in vncviewer/zlib.c. * CVE-2019-15681: rfbserver: don't leak stack memory to the remote. uif (1.1.9-1+deb10u1) buster; urgency=medium . * debian/patches: + Add 1001_use-iptables-legacy.patch. Work-around iptables->nftables switch in Debian. Full nftables support is being worked on on the upstream side. (Closes: #932265). unhide (20130526-3+deb10u1) buster; urgency=medium . * Team Upload. * debian/patch/allocate-pid-arrays-from-heap.patch: Added to fix a stack exhausting. Thanks to Bernhard Übelacker . (Closes: #945864) webkit2gtk (2.26.3-1~deb10u1) buster-security; urgency=medium . * Rebuild for buster-security. + This fixes CVE-2019-8835, CVE-2019-8844 and CVE-2019-8846. See https://webkitgtk.org/security/WSA-2020-0001.html. * debian/patches/force-single-process.patch: + Force the single-process mode in Evolution and Geary * debian/control: + Remove Breaks for Evolution < 3.34.1. + Remove build dependency on libwpebackend-fdo-1.0-dev. + Switch build dependency from libenchant-2-dev to libenchant-dev. webkit2gtk (2.26.3-1~bpo10+1) buster-backports; urgency=medium . * Rebuild for buster-backports. * debian/patches/force-single-process.patch: + Force the single-process mode in Evolution and Geary * debian/control: + Remove Breaks for Evolution < 3.34.1. + Remove build dependency on libwpebackend-fdo-1.0-dev. + Switch build dependency from libenchant-2-dev to libenchant-dev. webkit2gtk (2.26.3-1~bpo9+1) stretch-backports-sloppy; urgency=medium . * Rebuild for stretch-backports-sloppy. * debian/patches/force-single-process.patch: + Force the single-process mode in Evolution and Geary * debian/control: + Versions of GStreamer < 1.13 had GStreamerGL in the "bad" set, so depend on libgstreamer-plugins-bad1.0-dev and don't require GStreamer 1.13. Don't install libgstreamer-plugins-bad1.0-dev in armel or armhf: the usage of two different GL implementations causes a build failure (see WebKit bug #175127). + Remove build dependencies on libwoff-dev and libopenjp2-7-dev. + Don't recommend gstreamer1.0-gl, that package is not available in this Debian release. + Build depend on clang-7. + Remove Breaks for Evolution < 3.34.1. + Remove build dependency on libwpebackend-fdo-1.0-dev. + Switch build dependency from libenchant-2-dev to libenchant-dev. * debian/rules: + Build with -DENABLE_MEDIA_SOURCE=OFF. This feature requires a more recent version of GStreamer. + Build with -DUSE_OPENJPEG=OFF. This feature requires a more recent version of libopenjp2-7-dev. + Pass CC and CXX to dh_auto_configure so it uses clang instead of gcc. * debian/patches/is-same-v.patch: + Define std::is_same_v and std::is_pod_v. * debian/patches/fix-gtkdoc-generation.patch: + Fix gtk-doc generation. * debian/patches/safe-multiply.patch: + Fix link errors in 32-bit CPUs with clang * debian/libwebkit2gtk-4.0-37.symbols: + Mark webkit_emoji_chooser_get_type as optional, this requires a more recent version of GTK. * debian/patches/fix-atomics-build.patch: + Use libatomic in libWTF. This fixes the armel build. webkit2gtk (2.26.2-1) unstable; urgency=medium . * New upstream release. * debian/rules: + Stop building with -O1 for armhf and friends, the build seems to work just fine with -O2 now. * debian/control: + Require bubblewrap >= 0.3.1. * debian/patches/force-single-process.patch: + Remove this patch, the fixed version of Geary (3.34.1) is now in unstable. * The WebKitGTK security advisory WSA-2019-0005 lists the following security fixes in the latest versions of WebKitGTK: + CVE-2019-8768 (fixed in 2.24.0). + CVE-2019-8735 (fixed in 2.24.2). + CVE-2019-8726 (fixed in 2.24.3). + CVE-2019-8674, CVE-2019-8707, CVE-2019-8719, CVE-2019-8733 and CVE-2019-8763 (fixed in 2.24.4). + CVE-2019-8625, CVE-2019-8720, CVE-2019-8769 and CVE-2019-8771 (fixed in 2.26.0). webkit2gtk (2.26.2-1~deb10+1) buster-security; urgency=high . * Rebuild for buster-security. * debian/patches/force-single-process.patch: + Force the single-process mode in Evolution and Geary * debian/control: + Remove Breaks for Evolution < 3.34.1. * The WebKitGTK security advisory WSA-2019-0006 lists the following security fixes in the latest versions of WebKitGTK: + CVE-2019-8765, CVE-2019-8821, CVE-2019-8822 (fixed in 2.24.4) + CVE-2019-8710, CVE-2019-8743, CVE-2019-8764, CVE-2019-8766, CVE-2019-8782, CVE-2019-8808, CVE-2019-8815 (fixed in 2.26.0) + CVE-2019-8783, CVE-2019-8811, CVE-2019-8813, CVE-2019-8816, CVE-2019-8819, CVE-2019-8820, CVE-2019-8823 (fixed in 2.26.1) + CVE-2019-8812, CVE-2019-8814 (fixed in 2.26.2) webkit2gtk (2.26.2-1~bpo9+1) stretch-backports-sloppy; urgency=medium . * Rebuild for stretch-backports-sloppy. * debian/control: + Versions of GStreamer < 1.13 had GStreamerGL in the "bad" set, so depend on libgstreamer-plugins-bad1.0-dev and don't require GStreamer 1.13. Don't install libgstreamer-plugins-bad1.0-dev in armel or armhf: the usage of two different GL implementations causes a build failure (see WebKit bug #175127). + Remove build dependency on libwoff-dev, this is not available in this Debian release. + Don't recommend gstreamer1.0-gl, that package is not available in this Debian release. + Don't depend on libopenjp2-7-dev. + Build depend on clang-7. + Remove Breaks for Evolution < 3.34.1. * debian/rules: + Build with -DENABLE_MEDIA_SOURCE=OFF. This feature requires a more recent version of GStreamer. + Build with -DUSE_OPENJPEG=OFF. This feature requires a more recent version of libopenjp2-7-dev. + Pass CC and CXX to dh_auto_configure so it uses clang instead of gcc. * debian/patches/force-single-process.patch: + Force the single-process mode in Evolution and Geary * debian/patches/is-same-v.patch: + Define std::is_same_v * debian/patches/fix-gtkdoc-generation.patch: + Fix gtk-doc generation. * debian/patches/safe-multiply.patch: + Fix link errors in 32-bit CPUs with clang * debian/libwebkit2gtk-4.0-37.symbols: + Mark webkit_emoji_chooser_get_type as optional, this requires a more recent version of GTK. * debian/patches/is-same-v.patch: + Define also std::is_pod_v * debian/patches/fix-atomics-build.patch: + Use libatomic in libWTF. This fixes the armel build. * The WebKitGTK security advisory WSA-2019-0006 lists the following security fixes in the latest versions of WebKitGTK: + CVE-2019-8765, CVE-2019-8821, CVE-2019-8822 (fixed in 2.24.4) + CVE-2019-8710, CVE-2019-8743, CVE-2019-8764, CVE-2019-8766, CVE-2019-8782, CVE-2019-8808, CVE-2019-8815 (fixed in 2.26.0) + CVE-2019-8783, CVE-2019-8811, CVE-2019-8813, CVE-2019-8816, CVE-2019-8819, CVE-2019-8820, CVE-2019-8823 (fixed in 2.26.1) + CVE-2019-8812, CVE-2019-8814 (fixed in 2.26.2) webkit2gtk (2.26.1-3) unstable; urgency=medium . * debian/rules: + Use -DWTF_CPU_ARM64_CORTEXA53=OFF to fix the arm64 build. * debian/patches/force-single-process.patch: + Don't use this workaround for Evolution anymore, the fixed version is now in unstable. * debian/control: + Add Breaks for Evolution < 3.34.1. + Update Standards-Version to 4.4.1 (no changes). wordpress (5.0.4+dfsg1-1+deb10u1) buster-security; urgency=medium . * Backport of the 5.3.1 security release Closes: #946905 - CVE-2019-20043 an unprivileged user could make a post sticky via the REST API. - CVE-2019-20042 cross-site scripting (XSS) could be stored in well-crafted links - CVE-2019-20041 hardening wp_kses_bad_protocol() to ensure that it is aware of the named colon attribute. - CVE-2019-16780 and CVE-2019-16781 stored XSS vulnerability using block editor content. * Backport of the 5.2.4 security release Closes: #942459 - CVE-2019-17674 Stored XSS in the Customizer - CVE-2019-17671 Viewing unauthenticated posts - CVE-2019-17672 Stored XSS to inject javascript into style tags - CVE-2019-17673 Poisoning JSON GET requests - CVE-2019-17669 SSRF in URL vaidation - CVE-2019-17675 Referer validation in admin screens * Backport of 5.2.3 security release, Closes: #939543 - CVE-2019-16223 XSS in post previews - CVE-2019-16218 XSS in stored comments - CVE-2019-16220 Open redirect due to validation and sanitization - CVE-2019-16217 XSS in media uploads - CVE-2019-16219 XSS in shortcode previews - CVE-2019-16221 XSS in dashboard - CVE-2019-16222 XSS in URL sanitization x2goclient (4.1.2.1-2+deb10u1) buster; urgency=medium . * debian/patches: + Add libssh-regression-fix-CVE-2019-14889.patch. In src/sshprocess.cpp: strip ~/, ~user{,/}, ${HOME}{,/} and $HOME{,/} from destination paths in scp mode. Fixes: #1428. This was already necessary for pascp (PuTTY- based Windows solution for Kerberos support), but newer libssh versions with the CVE-2019-14889 also interpret paths as literal strings. (Closes: #947129). xen (4.11.3+24-g14b62ab3e5-1~deb10u1) buster-security; urgency=high . * Rebuild for buster-security xmltooling (3.0.4-1+deb10u1) buster; urgency=medium . * [7c6eb12] This branch is for buster updates * [97e580e] New patch: CPPXT-145 - DataSealer is sharing non-thread safe keys. Thanks to Scott Cantor (Closes: #950135) ====================================== Sat, 16 Nov 2019 - Debian 10.2 released ====================================== ========================================================================= [Date: Sat, 16 Nov 2019 08:47:52 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: firefox-esr | 60.8.0esr-1~deb10u1 | armel firefox-esr | 60.9.0esr-1~deb10u1 | armel Closed bugs: 944637 ------------------- Reason ------------------- RoQA; no longer supportable ---------------------------------------------- ========================================================================= ========================================================================= [Date: Sat, 16 Nov 2019 08:56:22 +0000] [ftpmaster: Archive Administrator] Removed the following packages from stable: firefox-esr-l10n-as | 60.9.0esr-1~deb10u1 | all firefox-esr-l10n-bn-bd | 60.9.0esr-1~deb10u1 | all firefox-esr-l10n-bn-in | 60.9.0esr-1~deb10u1 | all firefox-esr-l10n-en-za | 60.9.0esr-1~deb10u1 | all firefox-esr-l10n-mai | 60.9.0esr-1~deb10u1 | all firefox-esr-l10n-ml | 60.9.0esr-1~deb10u1 | all firefox-esr-l10n-or | 60.9.0esr-1~deb10u1 | all ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by firefox-esr - based on source metadata) ---------------------------------------------- ========================================================================= aegisub (3.2.2+dfsg-4+deb10u1) buster; urgency=medium . * Add libhunspell-dev to Build-Depends: fixes SEGV when right-clicking in the subtitles text box. * Apply patch provided in #935724: fixes crash when selecting a language from the bottom of the "Spell checker language" list by defining a maximum languages constant. * Closes: #935724. akonadi (4:18.08.3-7~deb10u1) buster; urgency=medium . * Rebuild for buster. akonadi (4:18.08.3-6) unstable; urgency=medium . * Team upload. . [ Sandro Knauß ] * Fix "Akonadi don't anwser any requests and ends in deadlock" (Closes: #935981) by adding upstream patches. - Akonadi-fix-dangling-transaction-after-itemsync-fail.patch - ItemSync-skip-handling-remote-items-if-local-changes.patch apache2 (2.4.38-3+deb10u3) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Annoatate patch for CVE-2019-10092: Add missing APLOGNO's in modules/proxy/mod_proxy.c and modules/proxy/mod_proxy_ftp.c apache2 (2.4.38-3+deb10u2) buster-security; urgency=medium . * Fix CVE-2019-10092 patch (Closes: #941202) base-files (10.3+deb10u2) buster; urgency=medium . * Change /etc/debian_version to 10.2, for Debian 10.2 point release. bird (1.6.6-1+deb10u1) buster-security; urgency=medium . * [CVE-2019-16159]: Fix stack-based buffer overflow (Closes: #939990) capistrano (3.11.0-3+deb10u1) buster; urgency=medium . * Add upstream patch to fix failure on removal of old releases (when too many old releases). More information at: https://github.com/capistrano/capistrano/pull/2027 . For this patch to be applied, another one also had to be applied, although with very low impact: https://github.com/capistrano/capistrano/pull/1995 . They are, respectively, batch-rm-part2.patch and batch-rm-part1.patch. . This has been fixed upstream on the release 3.11.1 using the same patches. chromium (78.0.3904.97-1~deb10u1) buster-security; urgency=medium . * New upstream stable release. - CVE-2019-5869: Use-after-free in Blink. Reported by Zhe Jin - CVE-2019-5870: Use-after-free in media. Reported by Guang Gong - CVE-2019-5871: Heap overflow in Skia. Reported by Anonymous - CVE-2019-5872: Use-after-free in Mojo. Reported by Zhe Jin - CVE-2019-5874: External URIs may trigger other browsers. Reported by James Lee - CVE-2019-5875: URL bar spoof. Reported by Khalil Zhani - CVE-2019-5876: Use-after-free in media. Reported by Man Yue Mo - CVE-2019-5877: Out-of-bounds access in V8. Reported by Guang Gong - CVE-2019-5878: Use-after-free in V8. Reported by Guang Gong - CVE-2019-5879: Extensions can read some local files. Reported by Jinseo Kim - CVE-2019-5880: SameSite cookie bypass. Reported by Jun Kokatsu - CVE-2019-13659: URL spoof. Reported by Lnyas Zhang - CVE-2019-13660: Full screen notification overlap. Reported by Wenxu Wu - CVE-2019-13661: Full screen notification spoof. Reported by Wenxu Wu - CVE-2019-13662: CSP bypass. Reported by David Erceg - CVE-2019-13663: IDN spoof. Reported by Lnyas Zhang - CVE-2019-13664: CSRF bypass. Reported by thomas "zemnmez" shadwell - CVE-2019-13665: Multiple file download protection bypass. Reported by Jun Kokatsu - CVE-2019-13666: Side channel using storage size estimate. Reported by Tom Van Goethem - CVE-2019-13667: URI bar spoof when using external app URIs. Reported by Khalil Zhani - CVE-2019-13668: Global window leak via console. Reported by David Erceg - CVE-2019-13669: HTTP authentication spoof. Reported by Khalil Zhani - CVE-2019-13670: V8 memory corruption in regex. Reported by Guang Gong - CVE-2019-13671: Dialog box fails to show origin. Reported by xisigr - CVE-2019-13673: Cross-origin information leak using devtools. Reported by David Erceg - CVE-2019-13674: IDN spoofing. Reported by Khalil Zhani - CVE-2019-13675: Extensions can be disabled by trailing slash. Reported by Jun Kokatsu - CVE-2019-13676: Google URI shown for certificate warning. Reported by Wenxu Wu - CVE-2019-13677: Chrome web store origin needs to be isolated. Reported by Jun Kokatsu - CVE-2019-13678: Download dialog spoofing. Reported by Ronni Skansing - CVE-2019-13679: User gesture needed for printing. Reported by Conrad Irwin - CVE-2019-13680: IP address spoofing to servers. Reported by Thijs Alkemade - CVE-2019-13681: Bypass on download restrictions. Reported by David Erceg - CVE-2019-13682: Site isolation bypass. Reported by Jun Kokatsu - CVE-2019-13683: Exceptions leaked by devtools. Reported by David Erceg - CVE-2019-13685: Use-after-free in UI. Reported by Khalil Zhani - CVE-2019-13686: Use-after-free in offline pages. Reported by Brendon - CVE-2019-13687: Use-after-free in media. Reported by Man Yue Mo - CVE-2019-13688: Use-after-free in media. Reported by Man Yue Mo Tiszka - CVE-2019-13691: Omnibox spoof. Reported by David Erceg - CVE-2019-13692: SOP bypass. Reported by Jun Kokatsu - CVE-2019-13693: Use-after-free in IndexedDB. Reported by Guang Gong - CVE-2019-13694: Use-after-free in WebRTC. Reported by banananapenguin - CVE-2019-13695: Use-after-free in audio. Reported by Man Yue Mo - CVE-2019-13696: Use-after-free in V8. Reported by Guang Gong - CVE-2019-13697: Cross-origin size leak. Reported by Luan Herrera - CVE-2019-13699: Use-after-free in media. Reported by Man Yue Mo - CVE-2019-13700: Buffer overrun in Blink. Reported by Man Yue Mo - CVE-2019-13701: URL spoof in navigation. Reported by David Erceg - CVE-2019-13702: Privilege elevation in Installer. Reported by Phillip Langlois and Edward Torkington - CVE-2019-13703: URL bar spoofing. Reported by Khalil Zhani - CVE-2019-13704: CSP bypass. Reported by Jun Kokatsu - CVE-2019-13705: Extension permission bypass. Reported by Luan Herrera - CVE-2019-13706: Out-of-bounds read in PDFium. Reported by pdknsk - CVE-2019-13707: File storage disclosure. Reported by Andrea Palazzo - CVE-2019-13708: HTTP authentication spoof. Reported by Khalil Zhani - CVE-2019-13709: File download protection bypass. Reported by Zhong Zhaochen - CVE-2019-13710: File download protection bypass. Reported by bernardo.mrod - CVE-2019-13711: Cross-context information leak. Reported by David Erceg - CVE-2019-13713: Cross-origin data leak. Reported by David Erceg - CVE-2019-13714: CSS injection. Reported by Jun Kokatsu - CVE-2019-13715: Address bar spoofing. Reported by xisigr - CVE-2019-13716: Service worker state error. Reported by Barron Hagerman - CVE-2019-13717: Notification obscured. Reported by xisigr - CVE-2019-13718: IDN spoof. Reported by Khalil Zhani - CVE-2019-13719: Notification obscured. Reported by Khalil Zhani - CVE-2019-13720: Use-after-free in audio. Reported by Anton Ivanov and Alexey Kulaev - CVE-2019-13721: Use-after-free in PDFium. Reported by banananapenguin chromium (78.0.3904.87-1) unstable; urgency=medium . * New upstream stable release. - CVE-2019-5869: Use-after-free in Blink. Reported by Zhe Jin - CVE-2019-5870: Use-after-free in media. Reported by Guang Gong - CVE-2019-5871: Heap overflow in Skia. Reported by Anonymous - CVE-2019-5872: Use-after-free in Mojo. Reported by Zhe Jin - CVE-2019-5874: External URIs may trigger other browsers. Reported by James Lee - CVE-2019-5875: URL bar spoof. Reported by Khalil Zhani - CVE-2019-5876: Use-after-free in media. Reported by Man Yue Mo - CVE-2019-5877: Out-of-bounds access in V8. Reported by Guang Gong - CVE-2019-5878: Use-after-free in V8. Reported by Guang Gong - CVE-2019-5879: Extensions can read some local files. Reported by Jinseo Kim - CVE-2019-5880: SameSite cookie bypass. Reported by Jun Kokatsu - CVE-2019-13659: URL spoof. Reported by Lnyas Zhang - CVE-2019-13660: Full screen notification overlap. Reported by Wenxu Wu - CVE-2019-13661: Full screen notification spoof. Reported by Wenxu Wu - CVE-2019-13662: CSP bypass. Reported by David Erceg - CVE-2019-13663: IDN spoof. Reported by Lnyas Zhang - CVE-2019-13664: CSRF bypass. Reported by thomas "zemnmez" shadwell - CVE-2019-13665: Multiple file download protection bypass. Reported by Jun Kokatsu - CVE-2019-13666: Side channel using storage size estimate. Reported by Tom Van Goethem - CVE-2019-13667: URI bar spoof when using external app URIs. Reported by Khalil Zhani - CVE-2019-13668: Global window leak via console. Reported by David Erceg - CVE-2019-13669: HTTP authentication spoof. Reported by Khalil Zhani - CVE-2019-13670: V8 memory corruption in regex. Reported by Guang Gong - CVE-2019-13671: Dialog box fails to show origin. Reported by xisigr - CVE-2019-13673: Cross-origin information leak using devtools. Reported by David Erceg - CVE-2019-13674: IDN spoofing. Reported by Khalil Zhani - CVE-2019-13675: Extensions can be disabled by trailing slash. Reported by Jun Kokatsu - CVE-2019-13676: Google URI shown for certificate warning. Reported by Wenxu Wu - CVE-2019-13677: Chrome web store origin needs to be isolated. Reported by Jun Kokatsu - CVE-2019-13678: Download dialog spoofing. Reported by Ronni Skansing - CVE-2019-13679: User gesture needed for printing. Reported by Conrad Irwin - CVE-2019-13680: IP address spoofing to servers. Reported by Thijs Alkemade - CVE-2019-13681: Bypass on download restrictions. Reported by David Erceg - CVE-2019-13682: Site isolation bypass. Reported by Jun Kokatsu - CVE-2019-13683: Exceptions leaked by devtools. Reported by David Erceg - CVE-2019-13685: Use-after-free in UI. Reported by Khalil Zhani - CVE-2019-13686: Use-after-free in offline pages. Reported by Brendon - CVE-2019-13687: Use-after-free in media. Reported by Man Yue Mo - CVE-2019-13688: Use-after-free in media. Reported by Man Yue Mo Tiszka - CVE-2019-13691: Omnibox spoof. Reported by David Erceg - CVE-2019-13692: SOP bypass. Reported by Jun Kokatsu - CVE-2019-13693: Use-after-free in IndexedDB. Reported by Guang Gong - CVE-2019-13694: Use-after-free in WebRTC. Reported by banananapenguin - CVE-2019-13695: Use-after-free in audio. Reported by Man Yue Mo - CVE-2019-13696: Use-after-free in V8. Reported by Guang Gong - CVE-2019-13697: Cross-origin size leak. Reported by Luan Herrera - CVE-2019-13699: Use-after-free in media. Reported by Man Yue Mo - CVE-2019-13700: Buffer overrun in Blink. Reported by Man Yue Mo - CVE-2019-13701: URL spoof in navigation. Reported by David Erceg - CVE-2019-13702: Privilege elevation in Installer. Reported by Phillip Langlois and Edward Torkington - CVE-2019-13703: URL bar spoofing. Reported by Khalil Zhani - CVE-2019-13704: CSP bypass. Reported by Jun Kokatsu - CVE-2019-13705: Extension permission bypass. Reported by Luan Herrera - CVE-2019-13706: Out-of-bounds read in PDFium. Reported by pdknsk - CVE-2019-13707: File storage disclosure. Reported by Andrea Palazzo - CVE-2019-13708: HTTP authentication spoof. Reported by Khalil Zhani - CVE-2019-13709: File download protection bypass. Reported by Zhong Zhaochen - CVE-2019-13710: File download protection bypass. Reported by bernardo.mrod - CVE-2019-13711: Cross-context information leak. Reported by David Erceg - CVE-2019-13713: Cross-origin data leak. Reported by David Erceg - CVE-2019-13714: CSS injection. Reported by Jun Kokatsu - CVE-2019-13715: Address bar spoofing. Reported by xisigr - CVE-2019-13716: Service worker state error. Reported by Barron Hagerman - CVE-2019-13717: Notification obscured. Reported by xisigr - CVE-2019-13718: IDN spoof. Reported by Khalil Zhani - CVE-2019-13719: Notification obscured. Reported by Khalil Zhani - CVE-2019-13720: Use-after-free in audio. Reported by Anton Ivanov and Alexey Kulaev - CVE-2019-13721: Use-after-free in PDFium. Reported by banananapenguin * Drop support for building with gcc 6 and gtk 2. chromium (76.0.3809.100-1) unstable; urgency=medium . * New upstream security release. - CVE-2019-5867: Out-of-bounds read in V8. Reported by Lucas Pinheiro - CVE-2019-5868: Use-after-free in PDFium ExecuteFieldAction. Reported by banananapenguin chromium (76.0.3809.87-2) unstable; urgency=medium . * Fix inverted logic in enum comparison (closes: #933598). chromium (76.0.3809.87-1) unstable; urgency=medium . * New upstream stable release. - CVE-2019-5847: V8 sealed/frozen elements cause crash. Reported by m3plex - CVE-2019-5848: Font sizes may expose sensitive information. Reported by Mark Amery - CVE-2019-5850: Use-after-free in offline page fetcher. Reported by Brendon Tiszka - CVE-2019-5851: Use-after-poison in offline audio context. Reported by Zhe Jin - CVE-2019-5852: Object leak of utility functions. Reported by David Erceg - CVE-2019-5853: Memory corruption in regexp length check. Reported by yngwei and sakura - CVE-2019-5854: Integer overflow in PDFium text rendering. Reported by Zhen Zhou - CVE-2019-5855: Integer overflow in PDFium. Reported by Zhen Zhou - CVE-2019-5856: Insufficient checks on filesystem: URI permissions. Reported by Yongke Wang - CVE-2019-5857: Comparison of -0 and null yields crash. Reported by cloudfuzzer - CVE-2019-5858: Insufficient filtering of Open URL service parameters. Reported by evi1m0 - CVE-2019-5859: res: URIs can load alternative browsers. Reported by James Lee - CVE-2019-5860: Use-after-free in PDFium. Reported by Anonymous - CVE-2019-5861: Click location incorrectly checked. Reported by Robin Linus - CVE-2019-5862: AppCache not robust to compromised renderers. Reported by Jun Kokatsu - CVE-2019-5864: Insufficient port filtering in CORS for extensions. Reported by Devin Grindle - CVE-2019-5865: Site isolation bypass from compromised renderer. Reported by Ivan Fratric * Use legacy call to avoid error in icu 6.3 (closes: #932049). chromium (76.0.3809.71-1) unstable; urgency=medium . * New upstream beta release. * Recommend system-config-printer (closes: #929106). * Add -fno-delete-null-pointer-checks back into the build flags. chromium (76.0.3809.62-1) unstable; urgency=medium . * New upstream beta release. - Fixes error restoring multiple profiles on startup (closes: #930469). * Update standards version to 4.4.0. chromium (75.0.3770.90-1) unstable; urgency=medium . [ Riku Voipio ] * Fix build on armhf (closes: #930348). . [ Michael Gilbert ] * New upstream security release. - CVE-2019-5842: Use-after-free in Blink. Reported by BUGFENSE * Disable hardware accelerated video (closes: #926032). * Fix signedness error when built with gcc (closes: #914886). - Thanks to Maciej S. Szmigiero. chromium (75.0.3770.80-1) unstable; urgency=medium . * New upstream stable release. - CVE-2019-5824: Parameter passing error in media player. Reported by leecraso and Guang Gong - CVE-2019-5825: Out-of-bounds write in V8. Reported by Gengming Liu, Jianyu Chen, Zhen Feng, and Jessica Liu - CVE-2019-5826: Use-after-free in IndexedDB. Reported by Gengming Liu, Jianyu Chen, Zhen Feng, and Jessica Liu - CVE-2019-5827: Out-of-bounds access issue in SQLite. Reported by mlfbrown - CVE-2019-5828: Use after free in ServiceWorker. Reported by leecraso and Guang Gong - CVE-2019-5829: Use after free in Download Manager. Reported by Lucas Pinheiro - CVE-2019-5830: Incorrectly credentialed requests in CORS. Reported by Andrew Krasichkov - CVE-2019-5831: Incorrect map processing in V8. Reported by yngwei - CVE-2019-5832: Incorrect CORS handling in XHR. Reported by Sergey Shekyan - CVE-2019-5833: Inconsistent security UI placement. Reported by Khalil Zhani - CVE-2019-5834: URL spoof in Omnibox on iOS. Reported by Khalil Zhani - CVE-2019-5835: Out of bounds read in Swiftshader. Reported by Wenxiang Qian - CVE-2019-5836: Heap buffer overflow in Angle. Reported by Omair - CVE-2019-5837: Cross-origin resources size disclosure in Appcache. Reported by Adam Iwaniuk - CVE-2019-5838: Overly permissive tab access in Extensions. Reported by David Erceg - CVE-2019-5839: Incorrect handling of certain code points in Blink. Reported by Masato Kinugawa - CVE-2019-5840: Popup blocker bypass. Reported by Eliya Stein and Jerome Dangu chromium (75.0.3770.10-1) experimental; urgency=medium . * New upstream development release. - Fixes crash when launching chromium a second time (closes: #927913). * Document how to use widevine in README.debian (closes: #929026). * Apply vaapi update from the Fedora chromium 73 package (closes: #926032). chromium (74.0.3729.108-1) unstable; urgency=medium . * New upstream stable release. - Eliminates flood of vsync error messages (closes: #901831). - Correctly shuts down when SIGTERM is recieved (closes: #924901). - Fixes regression in hardware accelerated video (closes: #926032). - CVE-2019-5805: Use after free in PDFium. Reported by Anonymous - CVE-2019-5806: Integer overflow in Angle. Reported by Wen Xu - CVE-2019-5807: Memory corruption in V8. Reported by TimGMichaud - CVE-2019-5808: Use after free in Blink. Reported by cloudfuzzer - CVE-2019-5809: Use after free in Blink. Reported by Mark Brand - CVE-2019-5810: User information disclosure in Autofill. Reported by Mark Amery - CVE-2019-5811: CORS bypass in Blink. Reported by Jun Kokatsu - CVE-2019-5813: Out of bounds read in V8. Reported by Aleksandar Nikolic - CVE-2019-5814: CORS bypass in Blink. Reported by @AaylaSecura1138 - CVE-2019-5815: Heap buffer overflow in Blink. Reported by Nicolas Grégoire - CVE-2019-5818: Uninitialized value in media reader. Reported by Adrian Tolbaru - CVE-2019-5819: Incorrect escaping in developer tools. Reported by Svyat Mitin - CVE-2019-5820: Integer overflow in PDFium. Reported by pdknsk - CVE-2019-5821: Integer overflow in PDFium. Reported by pdknsk - CVE-2019-5822: CORS bypass in download manager. Reported by Jun Kokatsu - CVE-2019-5823: Forced navigation from service worker. Reported by David Erceg cron (3.0pl1-134+deb10u1) buster; urgency=medium . [ Laurent Bigonville ] * Stop using obsolete SELinux API (Closes: #924716) cyrus-imapd (3.0.8-6+deb10u1) buster; urgency=medium . * Add patch to fix data loss on upgrade from versions ≤ 3.0.0 (Closes: #933163) debian-edu-config (2.10.65+deb10u2) buster; urgency=medium . [ Wolfgang Schweer ] * Adjust share/debian-edu-config/d-i/finish-install: (Closes: #941574) - Use 'dpkg-reconfigure -u --no-reload debian-edu-config' to add post-up stanza to /etc/network/interfaces eth0 entry conditionally. * Cope with Firefox-ESR ini files that need to be different (as of version 68.2.0esr) to further allow centralized configuration: (Closes: #944013) - Add share/debian-edu-config/profiles.ini.ff (Firefox-ESR profiles.ini). - Add share/debian-edu-config/installs.ini (now needed in addition for users that don't have a Firefox-ESR profile, i.e. new users). - Adjust share/debian-edu-config/tools/gosa-create which is used to copy the related Firefox-ESR ini files. - Ajust Makefile. - Adjust ldap-tools/ldap-debian-edu-install (fix for the first user). debian-installer (20190702+deb10u2) buster; urgency=medium . [ Samuel Thibault ] * build/util/grub-gencfg: Set gfxpayload=keep in submenus too, to fix unreadable fonts on hidpi displays in netboot images booted with EFI. (See: #935546) debian-installer-netboot-images (20190702+deb10u2) buster; urgency=medium . * Update to 20190702+deb10u2, from buster-proposed-updates. dino-im (0.0.git20181129-1+deb10u1) buster-security; urgency=high . * Fix check of source of a carbons message (CVE-2019-16235) * Check roster push authorization (CVE-2019-16236) * Fix check of source of MAM message (CVE-2019-16237) distro-info-data (0.41+deb10u1) buster; urgency=medium . [ Stefano Rivera ] * Add Ubuntu 20.04 LTS, Focal Fossa. dkimpy-milter (1.0.2-1) buster; urgency=medium . * New upstream release * Put upstream init file where dh_installinit expects to find it so it is properly registered * Update debian/watch to point to 1.0 version for stable updates * Update and rename d/p/0001-update-upstream-unit-and-init-file-paths.patch so sysv init paths are correct too docker.io (18.09.1+dfsg1-7.1+deb10u1) buster-security; urgency=medium . [ Arnaud Rebillout ] * Add upstream patch for CVE-2019-13139 (Closes: #933002). * Add upstream patches for CVE-2019-13509 (Closes: #932673). . [ Felix Geyer ] * Add upstream patch for CVE-2019-14271 * Cherry-pick upstream commits to fix test failures with golang >= 1.11.6-1+deb10u1 e2fsprogs (1.44.5-1+deb10u2) buster-security; urgency=high . * Fix CVE-2019-5094: potential buffer overrun in e2fsck (Closes: #941139) emacs (1:26.1+1-3.2+deb10u1) buster; urgency=high . * Update the EPLA packaging key (previous key expires 2019-09-23) via the upstream commit f16785d361097df9fddfcc0b60ae6f0d92e7e911. Add the old and new keyrings to debian/ and debian/source/include-binaries since debian/patches/ can't handle git binary diffs. Thanks to Stefan Monnier for reporting the problem and providing the patch. exim4 (4.92-8+deb10u3) buster-security; urgency=high . * 78_02-Fix-buffer-overflow-in-string_vformat.-Bug-2449.patch: Fix buffer overflow in string_vformat. exim4 (4.92-8+deb10u3~bpo9+1) stretch-backports; urgency=high . * Rebuild for stretch-backports. . exim4 (4.92-8+deb10u3) buster-security; urgency=high . * 78_02-Fix-buffer-overflow-in-string_vformat.-Bug-2449.patch: Fix buffer overflow in string_vformat. exim4 (4.92-8+deb10u2) buster-security; urgency=high . * 78_01-string.c-do-not-interpret-before-0-CVE-2019-15846.patch Fix SNI related buffer overflow. CVE-2019-15846 exim4 (4.92-8+deb10u2~bpo9+1) stretch-backports; urgency=medium . * Rebuild for stretch-backports. . exim4 (4.92-8+deb10u2) buster-security; urgency=high . * 78_01-string.c-do-not-interpret-before-0-CVE-2019-15846.patch Fix SNI related buffer overflow. CVE-2019-15846 expat (2.2.6-2+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * xmlparse.c: Deny internal entities closing the doctype (CVE-2019-15903) (Closes: #939394) fence-agents (4.3.3-2+deb10u1) buster; urgency=medium . * Update patch for removing fence_amt_ws (Closes: #934519) file (1:5.35-4+deb10u1) buster-security; urgency=high . * Cherry-pick commit to restrict the number of CDF_VECTOR elements. Closes: #942830 [CVE-2019-18218] firefox-esr (68.2.0esr-1~deb10u1) buster-security; urgency=medium . * New upstream release. * Fixes for mfsa2019-33, also known as: CVE-2019-15903, CVE-2019-11757, CVE-2019-11758, CVE-2019-11759, CVE-2019-11760, CVE-2019-11761, CVE-2019-11762, CVE-2019-11763, CVE-2019-11764. . firefox-esr (68.1.0esr-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2019-26, also known as CVE-2019-11746, CVE-2019-11744, CVE-2019-11742, CVE-2019-11752, CVE-2019-9812, CVE-2019-11743, CVE-2019-11748, CVE-2019-11749, CVE-2019-11750, CVE-2019-11738, CVE-2019-11747, CVE-2019-11735, CVE-2019-11740. . * debian/upstream.mk: Read source repo and revision from json when getting upstream info. Instead of the .txt file that doesn't exist as of 69. * debian/control*: - Remove unused build dependency against python-ply. - Remove python-minimal build dependency. All supported versions of Debian have a new enough version. * debian/l10n/gen, debian/latest_nightly.py, debian/rules, debian/symbols.mk, debian/upstream.mk, debian/watch: Use explicit python2.7 instead of python. . firefox-esr (68.0.2esr-1) unstable; urgency=medium . * New upstream ESR release. . firefox (68.0.2-3) unstable; urgency=medium . * debian/control.in: Take source package name from preprocessing. . * build/moz.configure/old.configure: Avoid race condition creating old-configure. bz#1574761. * dom/media/systemservices/CamerasChild.cpp, dom/media/systemservices/CamerasParent.cpp, dom/media/systemservices/VideoEngine.cpp, dom/media/webrtc/MediaEngineRemoteVideoSource.cpp: Don't use __PRETTY_FUNCTION__ or __FUNCTION__ as format strings. bz#1531309. Closes: #925680. . firefox (68.0.2-2) unstable; urgency=medium . * debian/rules: Fix MOZ_APP_REMOTINGNAME. Upstream build system changes made the config.status editing trick stop working. Export the variable for configure to pick it instead. Closes: #932256 . firefox (68.0.2-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2019-24, also known as CVE-2019-11733. . * debian/control*, debian/rules: Don't build against system vpx >= 1.8.0. It has API changes that cause FTBFS. . firefox (68.0.1-2) unstable; urgency=medium . * debian/rules: Work around https://github.com/rust-lang/cargo/issues/7147. . firefox (68.0.1-1) unstable; urgency=medium . * New upstream release. . * debian/rules: - Hook stamps/dh_install-l10n to override_dh_install-indep rather than binary-indep. - Pass make job server down through dh_auto_build. * debian/rules, debian/dh: Wrap dh to ensure debian/rules is invoked with parallelism. . firefox (68.0-3) unstable; urgency=medium . * debian/browser.README.Debian.in: Fix a reference to iceweasel in README.Debian. Thanks Edward Betts. * debian/rules: - Only exclude "-g" from dpkg-buildflags output. All the other flags that used to be excluded either already match upstream or add reproducibility. - Don't unexpectedly reset LDFLAGS. - [firefox-esr] Remove iceweasel transitional packages on bullseye. - Disable dh_strip_nondeterminism. Upstream build system already avoids non-determinism it would strip, so there is no need for it further modifying files. - Avoid arch:all builds building arch:any stuff. - Move AUTOCONF_DIRS cleanup after dh_clean. - Add rust flags to improve reproducibility. - Only touch or remove configure when it wasn't there to begin with. - Call configure using its full path. - Factor common configure arguments. - Build langpacks with --disable-compile-environment, and pass less configure arguments. - Build each langpack from a separate build directory. This means time wasted running configure more times, but all locales can now be built in parallel. * debian/symbols.mk, debian/symbols.apt.conf, debian/symbols.sources.list: Miscellaneous changes to symbols download script. * debian/make.mk: Exclude symbols.mk variables from dump output. * debian/browser.mozconfig.in: Remove redundant --prefix=/usr. * debian/control.in, debian/rules, debian/symbols.mk, debian/upstream.mk: Remove packaging scripts compatibility with Wheezy. . * moz.configure: Only add confvars.sh as a dependency to config.status when it exists. bz#1560340. . firefox (68.0-2) unstable; urgency=medium . * debian/rules, debian/upstream.mk: Account for next Debian release. * debian/rules, debian/control: Build against system sqlite again. . * gfx/skia/skia/third_party/skcms/src/Transform_inl.h: Work around GCC ICE on mips*, i386 and s390x. Closes: #931757 * python/mozbuild/mozbuild/action/langpack_manifest.py: Use build id as langpack version for reproducibility. bz#1565504. . firefox (68.0-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2019-21, also known as: CVE-2019-9811, CVE-2019-11711, CVE-2019-11712, CVE-2019-11713, CVE-2019-11714, CVE-2019-11715, CVE-2019-11716, CVE-2019-11717, CVE-2019-11718, CVE-2019-11720, CVE-2019-11721, CVE-2019-11730, CVE-2019-11723, CVE-2019-11724, CVE-2019-11725, CVE-2019-11727, CVE-2019-11728, CVE-2019-11710, CVE-2019-11709. . * debian/control*: Bump nss, sqlite, rustc, cargo and cbindgen build dependencies. Remove Build-Conflicts with nss 3.44-1, since we now build-depend on a more recent version. * debian/rules, debian/control: Don't build against system sqlite, as Debian doesn't have the required version yet. * [firefox-esr] debian/l10n/browser-l10n.control*, debian/l10n/gen: Don't generate iceweasel l10n transition packages for locales that were never offered with iceweasel. * debian/control, debian/l10n/browser-l10n.control.in: Add transition dependencies for Bengali l10n. There is now only one Bengali l10n package instead of two. * debian/rules: Disable JIT at build time on mips because it fails to build. . * build/gyp.mozbuild: Revert patch that disables libyuv assembly on mips64. It apparently compiles, now. . firefox (67.0.4-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2019-19, also known as CVE-2019-11708. . firefox (67.0.3-2) unstable; urgency=medium . * python/mozbuild/mozbuild/action/node.py: Attempt to work around make issue happening on arch: all buildd. . firefox (67.0.3-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2019-18, also known as CVE-2019-11707. . firefox (67.0.2-1) unstable; urgency=medium . * New upstream release. . firefox (67.0.1-1) unstable; urgency=medium . * New upstream release. . firefox (67.0-4) unstable; urgency=medium . * debian/rules: Work around FTBFS on mips* by disabling webrtc Build fails because of missing configurations for mips*. * debian/control*: Build-Conflicts with libnss3-dev 2:3.44-1. Closes: #929846. . * js/src/jit/mips32/MacroAssembler-mips32-inl.h: Fix FTBFS on mips/mipsel. bz#1556197. . firefox (67.0-3) unstable; urgency=medium . * media/webrtc/trunk/webrtc/system_wrappers/source/cpu_features.cc: Remove WebRtc_GetCPUFeaturesARM from cpu_features.cc. It is already in cpu_features_linux.c (and is not in cpu_features.cc in webrtc upstream). Fixes FTBFS on armhf. bz#1523162. . firefox (67.0-2) unstable; urgency=medium . * debian/extra-stuff/addonsInfo.jsm: - Avoid running -dumps-addons-info without a running Firefox counting as a crash. - Support addons in resource:// locations in -dump-addons-info . * js/src/wasm/WasmSignalHandlers.cpp: Include struct definitions for user_vfp and user_vfp_exc. Fixes FTBFS on armhf. bz#1526653. * js/src/jit/mips*/MacroAssembler-mips*-inl.h, js/src/jit/mips*/Trampoline-mips*.cpp: Fix functions: branchTestBigInt, negPtr, generateVMWrapper on MIPS. bz#1544631. * toolkit/modules/sessionstore/PrivacyFilter.jsm: Update and harden form data filtering for privacy to account for no data being passed in. bz#1553413. . firefox (67.0-1) experimental; urgency=medium . * New upstream release. * Fixes for mfsa2019-13, also known as: CVE-2019-9816, CVE-2019-9817, CVE-2019-9819, CVE-2019-9820, CVE-2019-9821, CVE-2019-11691, CVE-2019-11692, CVE-2019-11693, CVE-2019-7317, CVE-2019-11695, CVE-2019-11696, CVE-2019-11697, CVE-2019-11698, CVE-2019-11699, CVE-2019-11701, CVE-2019-9814, CVE-2019-9800. * Upload to experimental because the required cbindgen is not available in unstable. . * debian/control*: Bump nspr, sqlite, rustc, cargo and cbindgen build dependencies. * debian/extra-stuff/addonsInfo.*, debian/extra-stuff/moz.build, debian/installer/package-manifest.browser, debian/rules: Modernize addonsInfo per bz#1431533, bz#1432992, bz#1514594, bz#1524688, etc. . firefox (66.0.5-1) unstable; urgency=medium . * New upstream release. - Additional fixes for addon signature validation. . firefox (66.0.4-1) unstable; urgency=medium . * New upstream release. - Fixes issues with addon signature validation. Closes: #928417. Note: this didn't affect addons installed via Debian packages. . firefox (66.0.1-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2019-09, also known as: CVE-2019-9810, CVE-2019-9813. . * debian/control*: Bump nss, sqlite, rustc, cargo and cbindgen build dependencies. . firefox (66.0-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2019-07, also known as: CVE-2019-9790, CVE-2019-9791, CVE-2019-9792, CVE-2019-9793, CVE-2019-9795, CVE-2019-9796, CVE-2019-9797, CVE-2019-9799, CVE-2019-9802, CVE-2019-9803, CVE-2019-9805, CVE-2019-9806, CVE-2019-9807, CVE-2019-9809, CVE-2019-9808, CVE-2019-9789, CVE-2019-9788. . * debian/browser.mozconfig.in: Adjust to the upstream change wrt Google API key configure options. * debian/control*: Add nasm build dependency on amd64 and i386. . firefox (65.0.1-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2019-04, also known as: CVE-2018-18356, CVE-2019-5795, CVE-2018-18511. . * debian/rules, debian/upstream.mk: Manually set the update channel. Closes: #921381, #921121, #921654. * debian/rules: Build with -mfp32 on mips and mipsel. This should fix the FTBFS. . firefox (65.0-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2019-01, also known as: CVE-2018-18500, CVE-2018-18503, CVE-2018-18504, CVE-2018-18505, CVE-2018-18506, CVE-2018-18502, CVE-2018-18501. . * debian/control*: Bump nss, sqlite, rustc, cargo and cbindgen build dependencies. * debian/browser.install.in: Install libmozwayland.so. . firefox (64.0-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2018-29, also known as: CVE-2018-12407, CVE-2018-17466, CVE-2018-18492, CVE-2018-18493, CVE-2018-18494, CVE-2018-18495, CVE-2018-18496, CVE-2018-18497, CVE-2018-18498, CVE-2018-12406, CVE-2018-12405. . * debian/rules, debian/browser.install.in: Properly copy the watermark to /usr/share/icons/hicolor/symbolic/apps. * debian/rules: Disable debug symbols on 32-bits architectures, that requires too much memory. * debian/browser.mozconfig.in: - Remove --enable-pie option, it's the default, now. - Remove --disable-nodejs now that it's required. * debian/control*: - Bump rustc, cargo, cbindgen, nss and sqlite dependencies. - Add nodejs build dependency. * debian/browser-symbolic.svg.in: Import the watermark used for the symbolic icon in the debian/ directory. . firefox (63.0.3-1) unstable; urgency=medium . * New upstream release. . * debian/control*: Build depend on unversioned clang/llvm. Closes: #912802. * debian/rules: Use embedded libevent in backports. Closes: #910397. * debian/rules: Use GNU gold linker on i386 because BFD ld fails to link libxul.so (memory exhausted). . * build/unix/elfhack/test.c: Try to ensure the bss section of the elfhack testcase stays large enough. bz#1505608. * memory/build/mozjemalloc.cpp: Fix run sizes for size classes >= 16KB on systems with large pages. bz#1507035. Closes: #911898. * media/libaom/moz.build: Use NEON_FLAGS instead of VPX_ASFLAGS for libaom neon code. * gfx/cairo/libpixman/src/pixman-vmx.c: Protect #include in pixman-vmx.c like in other pixman-*.c files . firefox (63.0.1-1) unstable; urgency=medium . * New upstream release. * debian/google.key: Use new Google API key, courtesy of Francois Marier. . firefox (63.0-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2018-26, also known as: CVE-2018-12392, CVE-2018-12393, CVE-2018-12395, CVE-2018-12396, CVE-2018-12397, CVE-2018-12398, CVE-2018-12399, CVE-2018-12401, CVE-2018-12402, CVE-2018-12403, CVE-2018-12388, CVE-2018-12390. . * debian/control*: - Bump nss dependency. - Add build dependency on cbindgen. * debian/browser.mozconfig.in: Disable nodejs until it's actually necessary. * debian/rules: Add -Wl,--compress-debug-sections=zlib to LDFLAGS to work around elfhack failing with unstripped binaries larger than 2GiB. . firefox (62.0.3-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2018-24, also known as: CVE-2018-12386, CVE-2018-12387. . * debian/extra-stuff/addonsInfo.js: Fixes to work with recent versions of Firefox. Closes: #909056. * debian/control*, debian/browser.mozconfig.in: Build ALSA support. Closes: #864987, #900062, #908349 . firefox (62.0.2-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2018-22, also known as CVE-2018-12385. * Ignore locale change events for the search service on shutdown. bz#1489820. Closes: #908932. . * debian/control*: - Remove the sqlite and nss dependencies when not building against the system libraries. - Enforce nss, nspr and sqlite dependencies to the same versions as build dependencies. There are subtle non-ABI differences between versions that Firefox might be relying on (be it features, behavior changes/fixes, etc.) and can cause subtle problems when older versions are used. Closes: #908225, #908520. - Add a suggestion for pulseaudio. * debian/rules, debian/control: Add libavcodec-extra* packages to the list of recommends. Closes: #909130 . * js/src/jit/BaselineJIT.h: Disable baseline JIT when SSE2 is not supported at runtime. bz#1492064. Closes: #908396, #908449. * gfx/2d/Swizzle.cpp: Use Swizzle fallback when SSE2 is not supported. bz#1492065. Closes: #877445. . firefox (62.0-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2018-20, also known as: CVE-2018-12377, CVE-2018-12378, CVE-2018-12383, CVE-2018-12375, CVE-2018-12376. . * debian/control*: - Bump nss and sqlite build dependencies. - Build depend on llvm/clang 6.0 for buster. Closes: #906175. * debian/browser.mozconfig.in, debian/control*, debian/rules: Remove build dependency on libbz2-dev. It's not used anymore. * debian/noinstall.in: Remove the dictionaries directory, not part of the packaged Firefox anymore. * debian/l10n/gen: Use iso-codes json data instead of XML when present. Closes: #907611. . * widget/gtk/nsAppShell.cpp: Use remoting name for call to gdk_set_program_class. Closes: #907574. . firefox (61.0.1-1) unstable; urgency=medium . * New upstream release. . firefox (61.0-2) unstable; urgency=medium . * debian/browser.mozconfig.in, debian/control*, debian/rules: Remove build dependency on system libhunspell. Using system hunspell lacks features required by Firefox. Next version of Firefox doesn't allow to build against system hunspell anyways. Closes: #900469. * debian/browser.links.in, debian/rules, debian/vendor.js: Use the spellchecker.dictionary_path pref to set the hunspell directory. * debian/browser.mozconfig.in: Allow unsigned addons in app and system scopes. * debian/rules: Work around the effect the above has on the --{enable,with}-system-* check. * debian/control*: Remove old conflicts. Thanks Sylvestre Ledru. Closes: #882956. * debian/l10n/recommends, debian/l10n/browser-l10n.control, debian/control: Update dictionary recommendations, following these rules: - Transitional myspell packages are not listed except when stable doesn't have the corresponding hunspell package. - Both hunspell and myspell packages are listed if they are different. Closes: #813832, #825843 * debian/copyright, debian/rules: Refer to /usr/share/common-licenses/MPL* instead of installing our own copy. Closes: #704303. * debian/make.mk: Use the same code as dump target for the dump-% target. * debian/control*, debian/rules: Add Recommends on all supported libavcodec libraries for h264 playback. Closes: #901600. . * toolkit/modules/AppConstants.jsm, toolkit/modules/moz.build, toolkit/moz.configure, toolkit/mozapps/extensions/internal/XPIInstall.jsm, toolkit/mozapps/extensions/content/extensions.js, toolkit/mozapps/extensions/internal/XPIDatabase.jsm: Change how addon signature requirement relaxation is done. Closes: #899390. . firefox (61.0-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2018-15, also known as: CVE-2018-12359, CVE-2018-12360, CVE-2018-12361, CVE-2018-12358, CVE-2018-12362, CVE-2018-5156, CVE-2018-12363, CVE-2018-12364, CVE-2018-12365, CVE-2018-12371, CVE-2018-12366, CVE-2018-12367, CVE-2018-12369, CVE-2018-12370, CVE-2018-5186, CVE-2018-5187, CVE-2018-5188. . * debian/control*: - Bump nss and sqlite build dependencies. - Add a build dependency on python3. * debian/browser.install.in: Adjust to upstream changes. * debian/vendor.js: Relax the addon signature requirements. . * toolkit/mozapps/extensions/content/extensions.js, toolkit/mozapps/extensions/internal/XPIDatabase.jsm: Allow to relax the addon signature requirements. firefox-esr (68.2.0esr-1~deb9u2) stretch-security; urgency=medium . * Don't set the NASM make variable on architectures without nasm, fixes FTBFS on !x86. * Output icu build log to stdout rather than to a file. firefox-esr (68.2.0esr-1~deb9u1) stretch-security; urgency=medium . * New upstream release. * Fixes for mfsa2019-33, also known as: CVE-2019-15903, CVE-2019-11757, CVE-2019-11758, CVE-2019-11759, CVE-2019-11760, CVE-2019-11761, CVE-2019-11762, CVE-2019-11763, CVE-2019-11764. firefox-esr (68.1.0esr-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2019-26, also known as CVE-2019-11746, CVE-2019-11744, CVE-2019-11742, CVE-2019-11752, CVE-2019-9812, CVE-2019-11743, CVE-2019-11748, CVE-2019-11749, CVE-2019-11750, CVE-2019-11738, CVE-2019-11747, CVE-2019-11735, CVE-2019-11740. . * debian/upstream.mk: Read source repo and revision from json when getting upstream info. Instead of the .txt file that doesn't exist as of 69. * debian/control*: - Remove unused build dependency against python-ply. - Remove python-minimal build dependency. All supported versions of Debian have a new enough version. * debian/l10n/gen, debian/latest_nightly.py, debian/rules, debian/symbols.mk, debian/upstream.mk, debian/watch: Use explicit python2.7 instead of python. firefox-esr (68.0.2esr-1) unstable; urgency=medium . * New upstream ESR release. firefox-esr (60.9.0esr-1~deb10u1) buster-security; urgency=medium . * New upstream release. Fixes for mfsa2019-27, also known as: CVE-2019-11746, CVE-2019-11744, CVE-2019-11742, CVE-2019-11752, CVE-2019-9812, CVE-2019-11743, CVE-2019-11740. firefox-esr (60.9.0esr-1~deb9u1) stretch-security; urgency=medium . * New upstream release. Fixes for mfsa2019-27, also known as: CVE-2019-11746, CVE-2019-11744, CVE-2019-11742, CVE-2019-11752, CVE-2019-9812, CVE-2019-11743, CVE-2019-11740. firefox-esr (60.8.0esr-1) unstable; urgency=medium . * New upstream release. * Fixes for mfsa2019-22, also known as: CVE-2019-9811, CVE-2019-11711, CVE-2019-11712, CVE-2019-11713, CVE-2019-11729, CVE-2019-11715, CVE-2019-11717, CVE-2019-11719, CVE-2019-11730, CVE-2019-11709. flatpak (1.2.5-0+deb10u1) buster; urgency=medium . * New upstream stable release - Allow runtimes (not just apps) to use extra_data, which is required by the new org.freedesktop.Platform.openh264 extension - Support apps that specify several required Flatpak versions, such as 1.4.2;1.2.5; for runtimes that require the above feature - Backport some crash bug fixes from 1.4.x - Fix installation of bundles - Set looser permissions on the /run/host/monitor directory, to work better with tools like Fedora Toolbox on the host system - Do not wrongly remove extensions as "unused" if they are referenced by the 'versions' extension key rather than by 'version' * d/gbp.conf: Use debian/buster packaging branch * d/watch: Only look for 1.2.x releases flightcrew (0.7.2+dfsg-13+deb10u1) buster; urgency=high . * Fix CVE-2019-13241 for Buster. * Fix CVE-2019-13032 for Buster. Closes: #931246 fonts-noto-cjk (1:20170601+repack1-3+deb10u1) buster; urgency=medium . * Team upload. * debian/70-fonts-noto-cjk.conf: Use "prepend" instead of "prepend_first". This fixes over-aggressive font selection of Noto CJK fonts in modern web browsers under Chinese locale. (Closes: #907999) fonts-noto-cjk (1:20170601+repack1-3+deb10u1~bpo9+1) stretch-backports; urgency=medium . * Rebuild for stretch-backports. freetype (2.9.1-3+deb10u1) buster; urgency=medium . * debian/control: - Demote Recommends: freetype2-doc to Suggests (Closes: #919284). * debian/patches: - Add an upstream patch to properly handle phantom points for variable hinted fonts (Closes: #932303). fribidi (1.0.5-3.1+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Truncate isolate_level to FRIBIDI_BIDI_MAX_EXPLICIT_LEVEL (CVE-2019-18397) ghostscript (9.27~dfsg-2+deb10u2) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * make .forceput inaccessible (CVE-2019-14811, CVE-2019-14812, CVE-2019-14813) * PDF interpreter - review .forceput security (CVE-2019-14817) glib2.0 (2.58.3-2+deb10u2) buster; urgency=medium . * Team upload * d/p/credentials-Invalid-Linux-struct-ucred-means-no-informati.patch, d/p/GDBus-prefer-getsockopt-style-credentials-passing-APIs.patch: Ensure libdbus clients can authenticate with a GDBusServer like the one in ibus, backported from upstream 2.62.x branch (Closes: #941018) * d/p/Add-a-test-for-GDBusServer-authentication.patch, d/p/gdbus-server-auth-test-Create-temporary-directory-for-Uni.patch, d/p/gdbus-server-auth-test-Include-gcredentialsprivate.h.patch: Backport regression test for #941018 * Build-depend on libdbus-1-dev for better test coverage * d/control.in: Set branch to debian/buster in Vcs-Git gnome-shell (3.30.2-11~deb10u1) buster; urgency=medium . * Team upload * Recompile for Debian 10 * d/gbp.conf: Change packaging branch to debian/buster . gnome-shell (3.30.2-11) unstable; urgency=medium . * Team upload * d/gnome-shell.bug-control: Include related packages in bug reports . gnome-shell (3.30.2-10) unstable; urgency=medium . * Team upload * Update to upstream gnome-3-30 branch, commit 3.30.2-22-gd41669189 - d/p/dialog-Really-set-ellipsize-mode-in-subtitle-and-body.patch: Fix truncation of long messages in Shell-modal dialogs (LP: #1809788) - d/p/osk-layouts-Fix-French-layout.patch: Update metadata to reflect upstream backport (no functional changes) - d/p/boxpointer-Unset-the-sourceActor-on-destruction.patch: Avoid crash on reallocation of dead actors (LP: #1831555) gnome-shell (3.30.2-10) unstable; urgency=medium . * Team upload * Update to upstream gnome-3-30 branch, commit 3.30.2-22-gd41669189 - d/p/dialog-Really-set-ellipsize-mode-in-subtitle-and-body.patch: Fix truncation of long messages in Shell-modal dialogs (LP: #1809788) - d/p/osk-layouts-Fix-French-layout.patch: Update metadata to reflect upstream backport (no functional changes) - d/p/boxpointer-Unset-the-sourceActor-on-destruction.patch: Avoid crash on reallocation of dead actors (LP: #1831555) gnome-sound-recorder (3.28.2-2~deb10u1) buster; urgency=medium . * Team upload * Rebuild for Debian 10 - d/gbp.conf: Set packaging branch to debian/buster gnustep-base (1.26.0-4+deb10u1) buster; urgency=medium . * debian/gnustep-base-runtime.preinst: New file; handle the poor upgrade from stretch to buster which left the gdomap daemon enabled (Closes: #939119). Thanks to Alan Jenkins. * debian/NEWS: Document that the gdomap daemon is disabled forcefully. * debian/patches/gdomap-udp-amplification.patch: New; fix UDP amplification vulnerability. Patch by Alan Jenkins. * debian/patches/series: Update. * debian/gbp.conf: Set debian-branch to buster. golang-1.11 (1.11.6-1+deb10u3) buster-security; urgency=high . * crypto/dsa: prevent bad public keys from causing panic https://github.com/golang/go/issues/34960 CVE-2019-17596 golang-1.11 (1.11.6-1+deb10u2) buster-security; urgency=high . * Fix normalization of headers with spaces before the colon. https://github.com/golang/go/issues/34541 CVE-2019-16276 * Refresh patches * Adapt gbp.conf for security branch graphite-web (1.1.4-3+deb10u1) buster; urgency=high . [ Utkarsh Gupta ] * Add patch to remove the 'send_email' function to avoid SSRF attack. This was insecure, not used in the code, and was undocumented as well. (Fixes: CVE-2017-18638) . [ Thomas Goirand ] * Avoid hourly error in cron with no whisper db (Closes: #940554). Thanks to Alexandre Rossi for the patch. ibus (1.5.19-4+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * bus: Implement GDBusAuthObserver callback (CVE-2019-14822) inn2 (2.6.3-1+deb10u2) buster; urgency=medium . * Backported upstream changeset 10344 to fix negotiation of DHE ciphersuites. (See #931256.) * Backported upstream changeset 10348 to fix upstream changeset 10344. inn2 (2.6.3-1+deb10u1) buster; urgency=medium . * Backported upstream changeset 10344 to fix negotiation of DHE ciphersuites. (See #931256.) jackson-databind (2.9.8-3+deb10u1) buster-security; urgency=high . * Fix CVE-2019-12384, CVE-2019-14439, CVE-2019-14540, CVE-2019-16335, CVE-2019-16942 and CVE-2019-16943. Several deserialization flaws were discovered in jackson-databind which could allow an unauthenticated user to perform code execution. The issue was resolved by extending the blacklist and blocking more classes from polymorphic deserialization. lemonldap-ng (2.0.2+ds-7+deb10u2) buster-security; urgency=high . * Add patch to fix OIDC vulnerabilities (Closes: CVE-2019-15941) libapache-mod-auth-kerb (5.4-2.4~deb10u1) buster; urgency=medium . * Rebuild for buster . libapache-mod-auth-kerb (5.4-2.4) unstable; urgency=medium . * Non-maintainer upload. * Apply patch from upstream issue tracker to fix crash (Closes: #934043) libapreq2 (2.13-7~deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Rebuild for buster-security . libapreq2 (2.13-7) unstable; urgency=high . * Source-only upload. . libapreq2 (2.13-6) unstable; urgency=high . * 05-nested-multipart-null-dereference.patch: New patch by Max Kellermann, fixes a NULL pointer dereference bug with nested multipart form submission. (Closes: #939937) libapreq2 (2.13-7~deb9u1) stretch-security; urgency=high . * Non-maintainer upload by the Security Team. * Rebuild for stretch-security . libapreq2 (2.13-7) unstable; urgency=high . * Source-only upload. . libapreq2 (2.13-6) unstable; urgency=high . * 05-nested-multipart-null-dereference.patch: New patch by Max Kellermann, fixes a NULL pointer dereference bug with nested multipart form submission. (Closes: #939937) libapreq2 (2.13-6) unstable; urgency=high . * 05-nested-multipart-null-dereference.patch: New patch by Max Kellermann, fixes a NULL pointer dereference bug with nested multipart form submission. (Closes: #939937) libarchive (3.3.3-4+deb10u1) buster-security; urgency=medium . * Non-maintainer upload by the LTS team. * CVE-2019-18408 Fix use after free in case parts of the archive are corrupt but the archive contains several headers. libdate-holidays-de-perl (2.00-2+deb10u1) buster; urgency=medium . * Mark International Childrens Day (Sep 20th) as a holiday in Thuringia from 2019 on libdatetime-timezone-perl (1:2.23-1+2019c) buster; urgency=medium . * Update to Olson database version 2019c. This update contains contemporary changes for Fiji and Norfolk Island. libofx (1:0.9.14-1+deb10u1) buster; urgency=medium . * Add upstream patch to fix CVE-2019-9656 (Closes: #924350). libreoffice (1:6.1.5-3+deb10u5) buster; urgency=medium . * debian/patches/Postgresql-12-no-adsrc.diff: add from libreoffice-6-3 branch; fix the postgresql driver with PostgreSQL 12 (closes: #943873) libreoffice (1:6.1.5-3+deb10u4) buster-security; urgency=medium . * debian/patches/expand-pyuno-path-separators.diff. debian/patches/construct-final-url-from-parsed-output.diff, debian/patches/an-absolute-uri-is-invalid-input.diff, debian/patches/Improve-check-for-absolute-URI.diff, debian/patches/Improve-check.diff: add from libreoffice-6-3(-0,-1) branch - more fixes... (CVE-2019-9854/CVE-2019-9855) * debian/patches/allow-link-updates-in-an-intermediate-linked-document.diff: add from libreoffice-6-2 branch - fix regression from CVE-2018-6871 libreoffice (1:6.1.5-3+deb10u4~bpo9+1) stretch-backports; urgency=medium . * Rebuild for stretch-backports. . * debian/patches/apparmor-{cleanups,mesa,opencl}.diff, debian/patches/series, debian/rules: revert this and apparmor >= 2.13.1 recommends; stretch doesn't have apparmor on per default but let's go sure * debian/control.in, debian/patches/series, debian/libreoffice-base-drivers.NEWS, debian/patches/use-mariadb-java-instead-of-mysql-java.diff: revert for stretch-backports... * debian/patches/disableClassPathURLCheck.diff: revert configure check for stretch-backports . * tarballs/*, debian/source/include-binaries: include needed internal stuff . libreoffice (1:6.1.5-3+deb10u4) buster-security; urgency=medium . * debian/patches/expand-pyuno-path-separators.diff. debian/patches/construct-final-url-from-parsed-output.diff, debian/patches/an-absolute-uri-is-invalid-input.diff, debian/patches/Improve-check-for-absolute-URI.diff, debian/patches/Improve-check.diff: add from libreoffice-6-3(-0,-1) branch - more fixes... (CVE-2019-9854/CVE-2019-9855) * debian/patches/allow-link-updates-in-an-intermediate-linked-document.diff: add from libreoffice-6-2 branch - fix regression from CVE-2018-6871 . libreoffice (1:6.1.5-3+deb10u3) buster-security; urgency=high . * debian/patches/expand-LibreLogo-checks-to-global-events.diff, debian/patches/decode-url-escape-codes-and-check-each-path-segment.diff: debian/patches/keep-name-percent-encoded.diff debian/patches/Properly-obtain-location.diff: backport from libreoffice-6-3-0 branch - more fixes for CVE-2019-9848 and CVE-2018-16858 (CVE-2019-9850/CVE-2019-9851/CVE-2019-9852/CVE-2019-9853) libsixel (1.8.2-1+deb10u1) buster; urgency=high . * d/patches/0001-Add-malloc-size-check.patch: fix CVE-2018-19756 * d/patches/0002-assign-default-error-message.patch: fix CVE-2018-19757 * d/patches/0003-add-limitation-to-width-and-height.patch: fix CVE-2018-19759 * d/patches/0004-position-error-check.patch: fix CVE-2018-19761 * d/patches/0005-size-check.patch: fix CVE-2018-19762 * d/patches/0006-prevent-to-access-heap-overflow.patch: fix CVE-2018-19763 * d/patches/0007-check-error-for-jpeg_read_scanlines.patch: fix CVE-2019-3573 * d/patches/0008-check-number-of-repeat_count.patch: fix CVE-2019-3574 * security fix, closes: #931311 libxslt (1.1.32-2.2~deb10u1) buster; urgency=medium . * Rebuild for buster . libxslt (1.1.32-2.2) unstable; urgency=medium . * Non-maintainer upload. * Fix dangling pointer in xsltCopyText (CVE-2019-18197) (Closes: #942646) libxslt (1.1.32-2.1) unstable; urgency=medium . * Non-maintainer upload. * Fix security framework bypass (CVE-2019-11068) (Closes: #926895, #933743) * Fix uninitialized read of xsl:number token (CVE-2019-13117) (Closes: #931321, #933743) * Fix uninitialized read with UTF-8 grouping chars (CVE-2019-13118) (Closes: #931320, #933743) linux (4.19.67-2+deb10u1) buster-security; urgency=high . [ Romain Perier ] * ALSA: usb-audio: Fix an OOB bug in parse_audio_mixer_unit (CVE-2019-15117) * ALSA: usb-audio: Fix a stack buffer overflow bug in check_input_term (CVE-2019-15118) . [ Salvatore Bonaccorso ] * vhost: make sure log_num < in_num (CVE-2019-14835) * [x86] ptrace: fix up botched merge of spectrev1 fix (CVE-2019-15902) * KVM: coalesced_mmio: add bounds checking (CVE-2019-14821) linux (4.19.67-2+deb10u1~bpo9+1) stretch-backports; urgency=medium . * Rebuild for stretch-backports; no further changes required . linux (4.19.67-2+deb10u1) buster-security; urgency=high . [ Romain Perier ] * ALSA: usb-audio: Fix an OOB bug in parse_audio_mixer_unit (CVE-2019-15117) * ALSA: usb-audio: Fix a stack buffer overflow bug in check_input_term (CVE-2019-15118) . [ Salvatore Bonaccorso ] * vhost: make sure log_num < in_num (CVE-2019-14835) * [x86] ptrace: fix up botched merge of spectrev1 fix (CVE-2019-15902) * KVM: coalesced_mmio: add bounds checking (CVE-2019-14821) linux-signed-amd64 (4.19.67+2+deb10u1) buster-security; urgency=high . * Sign kernel from linux 4.19.67-2+deb10u1 . [ Romain Perier ] * ALSA: usb-audio: Fix an OOB bug in parse_audio_mixer_unit (CVE-2019-15117) * ALSA: usb-audio: Fix a stack buffer overflow bug in check_input_term (CVE-2019-15118) . [ Salvatore Bonaccorso ] * vhost: make sure log_num < in_num (CVE-2019-14835) * [x86] ptrace: fix up botched merge of spectrev1 fix (CVE-2019-15902) * KVM: coalesced_mmio: add bounds checking (CVE-2019-14821) linux-signed-amd64 (4.19.67+2+deb10u1~bpo9+1) stretch-backports; urgency=medium . * Sign kernel from linux 4.19.67-2+deb10u1~bpo9+1 . * Rebuild for stretch-backports; no further changes required linux-signed-arm64 (4.19.67+2+deb10u1) buster-security; urgency=high . * Sign kernel from linux 4.19.67-2+deb10u1 . [ Romain Perier ] * ALSA: usb-audio: Fix an OOB bug in parse_audio_mixer_unit (CVE-2019-15117) * ALSA: usb-audio: Fix a stack buffer overflow bug in check_input_term (CVE-2019-15118) . [ Salvatore Bonaccorso ] * vhost: make sure log_num < in_num (CVE-2019-14835) * [x86] ptrace: fix up botched merge of spectrev1 fix (CVE-2019-15902) * KVM: coalesced_mmio: add bounds checking (CVE-2019-14821) linux-signed-arm64 (4.19.67+2+deb10u1~bpo9+1) stretch-backports; urgency=medium . * Sign kernel from linux 4.19.67-2+deb10u1~bpo9+1 . * Rebuild for stretch-backports; no further changes required linux-signed-i386 (4.19.67+2+deb10u1) buster-security; urgency=high . * Sign kernel from linux 4.19.67-2+deb10u1 . [ Romain Perier ] * ALSA: usb-audio: Fix an OOB bug in parse_audio_mixer_unit (CVE-2019-15117) * ALSA: usb-audio: Fix a stack buffer overflow bug in check_input_term (CVE-2019-15118) . [ Salvatore Bonaccorso ] * vhost: make sure log_num < in_num (CVE-2019-14835) * [x86] ptrace: fix up botched merge of spectrev1 fix (CVE-2019-15902) * KVM: coalesced_mmio: add bounds checking (CVE-2019-14821) linux-signed-i386 (4.19.67+2+deb10u1~bpo9+1) stretch-backports; urgency=medium . * Sign kernel from linux 4.19.67-2+deb10u1~bpo9+1 . * Rebuild for stretch-backports; no further changes required lucene-solr (3.6.2+dfsg-20+deb10u1) buster; urgency=medium . * Team upload. * Disable obsolete call to ContextHandler in solr-jetty9.xml. Install solr-permissions.conf into /etc/systemd/system/jetty9.service.d/ and override read-only permissions of Jetty9 which will allow the service to start out-of-the-box again. Thanks to Stephan Beirer for the report. (Closes: #933854, #933857) mariadb-10.3 (1:10.3.18-0+deb10u1) buster; urgency=high . * New upstream version 10.3.18. Fixes regression introduced in 10.3.17 (MDEV-20247: Replication hangs with "preparing" and never starts) (Closes: #939819) mariadb-10.3 (1:10.3.17-1) unstable; urgency=high . * New upstream version 10.3.17. Includes security fixes for: - CVE-2019-2737 - CVE-2019-2739 - CVE-2019-2740 - CVE-2019-2758 - CVE-2019-2805 * Multiple Gitlab-CI/Salsa-CI improvements * Dependency in resolveip is still included (Closes: #910902) * Update libmariadb3 symbols to match MariaDB Connector C 3.1 API * Add Lintian override for new test binary wsrep_check_version * Gitlab-CI: Clean away one excess comment left from b9d633b38 mediawiki (1:1.31.4-1~deb10u1) buster-security; urgency=medium . * New upstream version 1.31.4 (security release), fixing CVE-2019-16738. Add an additional patch, already merged upstream, to fix a fatal error caused by the upstream security patch. modsecurity-crs (3.1.0-1+deb10u1) buster; urgency=medium . * Add upstream patch to fix php script upload rules. CVE-2019-13464 (Closes: #943773) mutter (3.30.2-9~deb10u1) buster; urgency=medium . * Team upload * Rebuild for Debian 10 * d/gbp.conf: Set packaging branch to debian/buster . mutter (3.30.2-9) unstable; urgency=medium . * Team upload * d/libmutter-3-0.bug-control: Include GL drivers in bug reports * d/p/renderer-native-Fix-EGLSurface-destruction-order.patch: Fix attribution * d/p/wayland-output-Set-user-data-of-xdg_output-resource.patch: Add bug references for #932428, #932767 and #932781, and retroactively mark them as closed by this patch in the previous changelog entry, based on feedback from bug reporters . mutter (3.30.2-8) unstable; urgency=medium . * Team upload * Update to upstream gnome-3-30 branch at 3.30.2-42-g2a81dc45e - d/p/clutter-x11-Consider-remapped-keys-when-guessing-the-keyc.patch: Fix repeated inputs from extended characters (long-press) in on-screen keyboard - d/p/compositor-Destroy-window-actors-list-on-destruction.patch, d/p/window-actor-Set-actor-as-compositor-private-in-window-be.patch, d/p/surface-actor-x11-Assign-X11-Display-only-if-we-have-reso.patch, d/p/surface-actor-x11-Bind-the-surface-actor-resources-to-win.patch, Fix intermittent crashes on exit/reload - d/p/compositor-Disconnect-from-stage-signals-on-destruction.patch: Fix stuck windows if an application stops responding and one of its windows gets unmanaged - d/p/clutter-x11-Implement-keycode-remap-to-keysyms-on-virtual.patch: Fix missing inputs from extended characters (long-press) in on-screen keyboard - d/p/cursor-renderer-native-Free-MetaCursorNativePrivate-struc.patch: Fix a small memory leak - d/p/wayland-seat-Use-g_free-to-cleanup-MetaWaylandSeat.patch: Fix an incorrect free-function that could lead to memory corruption - d/p/cogl-pipeline-Don-t-try-to-access-to-free-d-pointer-data.patch: Fix use-after-free - d/p/renderer-native-add-missing-eglTerminate-in-EGLDevice-err.patch: Avoid reusing an amdgpu display connection if EGL is missing the desired extensions - d/p/workspace-Focus-only-ancestors-that-are-focusable.patch, d/p/window-x11-Focus-the-default-window-with-delay-while-wait.patch, d/p/window-x11-Add-lost-definition-for-TAKE_FOCUS_FALLBACK_DE.patch, d/p/window-x11-Focus-a-window-in-the-active-workspace-as-take.patch, d/p/window-x11-Remove-double-definition-of-MetaStack.patch: Fix crashes involving window focus with some applications, notably JetBrains IDE - d/p/window-Emit-an-error-and-return-when-trying-to-activate-a.patch: Fix crashes when an unmanaged window is activated - d/p/window-x11-Don-t-double-check-for-unmanaging-windows.patch, d/p/window-x11-Accept-any-focusable-window-as-fallback-focus.patch, d/p/stack-Add-a-function-to-get-a-sorted-list-of-focus-candid.patch, d/p/window-x11-Use-any-focusable-window-as-fallback-delayed-f.patch: Fix hang when windows take focus but do not accept input - d/p/Updated-Spanish-translation.patch: Update translations - d/p/tests-Add-accept_focus-command-to-runner-and-client.patch, d/p/tests-Add-can_take_focus-command-to-runner-and-client.patch, d/p/tests-stacking-Add-tests-with-no-input-and-no-take-focus-.patch, d/p/test-runner-Add-assert_focused-command.patch, d/p/tests-Verify-focused-window-in-closed-transient-tests.patch, d/p/test-runner-Add-sleep-command.patch, d/p/test-runner-Add-dispatch-command.patch, d/p/Makefile-tests-Fix-paths-for-stacking-metatests.patch, d/p/test-client-Add-x11-events-GSource-handler.patch, d/p/tests-Add-accept_take_focus-command.patch: Improve test coverage related to the above bug fixes * d/p/wayland-output-Set-user-data-of-xdg_output-resource.patch: Backport patch from 3.32.1 to fix use-after-free in Wayland monitor management (Closes: #932428, #932767, #932781) * d/libmutter-3-0.symbols: Add meta_stack_get_default_focus_candidates(), which is added by a patch * d/gbp.conf: Set branch to debian/unstable * d/p/renderer-native-Use-g_set_error-instead-of-_cogl_set_erro.patch, d/p/renderer-native-Make-sure-we-re-not-destroying-an-active-.patch, d/p/renderer-native-Fix-EGLSurface-destruction-order.patch: Backport patches from upstream gnome-3-32 branch to fix another use-after-free crash that can be triggered by suspend/resume mutter (3.30.2-8) unstable; urgency=medium . * Team upload * Update to upstream gnome-3-30 branch at 3.30.2-42-g2a81dc45e - d/p/clutter-x11-Consider-remapped-keys-when-guessing-the-keyc.patch: Fix repeated inputs from extended characters (long-press) in on-screen keyboard - d/p/compositor-Destroy-window-actors-list-on-destruction.patch, d/p/window-actor-Set-actor-as-compositor-private-in-window-be.patch, d/p/surface-actor-x11-Assign-X11-Display-only-if-we-have-reso.patch, d/p/surface-actor-x11-Bind-the-surface-actor-resources-to-win.patch, Fix intermittent crashes on exit/reload - d/p/compositor-Disconnect-from-stage-signals-on-destruction.patch: Fix stuck windows if an application stops responding and one of its windows gets unmanaged - d/p/clutter-x11-Implement-keycode-remap-to-keysyms-on-virtual.patch: Fix missing inputs from extended characters (long-press) in on-screen keyboard - d/p/cursor-renderer-native-Free-MetaCursorNativePrivate-struc.patch: Fix a small memory leak - d/p/wayland-seat-Use-g_free-to-cleanup-MetaWaylandSeat.patch: Fix an incorrect free-function that could lead to memory corruption - d/p/cogl-pipeline-Don-t-try-to-access-to-free-d-pointer-data.patch: Fix use-after-free - d/p/renderer-native-add-missing-eglTerminate-in-EGLDevice-err.patch: Avoid reusing an amdgpu display connection if EGL is missing the desired extensions - d/p/workspace-Focus-only-ancestors-that-are-focusable.patch, d/p/window-x11-Focus-the-default-window-with-delay-while-wait.patch, d/p/window-x11-Add-lost-definition-for-TAKE_FOCUS_FALLBACK_DE.patch, d/p/window-x11-Focus-a-window-in-the-active-workspace-as-take.patch, d/p/window-x11-Remove-double-definition-of-MetaStack.patch: Fix crashes involving window focus with some applications, notably JetBrains IDE - d/p/window-Emit-an-error-and-return-when-trying-to-activate-a.patch: Fix crashes when an unmanaged window is activated - d/p/window-x11-Don-t-double-check-for-unmanaging-windows.patch, d/p/window-x11-Accept-any-focusable-window-as-fallback-focus.patch, d/p/stack-Add-a-function-to-get-a-sorted-list-of-focus-candid.patch, d/p/window-x11-Use-any-focusable-window-as-fallback-delayed-f.patch: Fix hang when windows take focus but do not accept input - d/p/Updated-Spanish-translation.patch: Update translations - d/p/tests-Add-accept_focus-command-to-runner-and-client.patch, d/p/tests-Add-can_take_focus-command-to-runner-and-client.patch, d/p/tests-stacking-Add-tests-with-no-input-and-no-take-focus-.patch, d/p/test-runner-Add-assert_focused-command.patch, d/p/tests-Verify-focused-window-in-closed-transient-tests.patch, d/p/test-runner-Add-sleep-command.patch, d/p/test-runner-Add-dispatch-command.patch, d/p/Makefile-tests-Fix-paths-for-stacking-metatests.patch, d/p/test-client-Add-x11-events-GSource-handler.patch, d/p/tests-Add-accept_take_focus-command.patch: Improve test coverage related to the above bug fixes * d/p/wayland-output-Set-user-data-of-xdg_output-resource.patch: Backport patch from 3.32.1 to fix use-after-free in Wayland monitor management (potentially fixes #932428, #932767, #932781) * d/libmutter-3-0.symbols: Add meta_stack_get_default_focus_candidates(), which is added by a patch * d/gbp.conf: Set branch to debian/unstable * d/p/renderer-native-Use-g_set_error-instead-of-_cogl_set_erro.patch, d/p/renderer-native-Make-sure-we-re-not-destroying-an-active-.patch, d/p/renderer-native-Fix-EGLSurface-destruction-order.patch: Backport patches from upstream gnome-3-32 branch to fix another use-after-free crash that can be triggered by suspend/resume ncurses (6.1+20181013-2+deb10u2) buster; urgency=medium . * Cherry-pick tic fixes from upstream patchlevels 20191012, 20191015 and 20191019 (Closes: #942401). - Check for invalid hashcode in _nc_find_type_entry and nc_find_entry (CVE-2019-17594). - Check for missing character after backslash in fmt_entry (CVE-2019-17595). - Check for acsc with odd length in dump_entry in check for one-one mapping. - Check for missing character after backslash in write_it. - Modify tic to exit if it cannot remove a conflicting name, because treating that as a partial success can cause an infinite loop in use-resolution. ndppd (0.2.5-4+deb10u1) buster; urgency=medium . * Patch to avoid word writable pid file, that was breaking daemon init scripts. (Closes: #942117) * postinst script fixing pid file permissions for pre 0.2.5-4+deb10u1 running daemons. network-manager (1.14.6-2+deb10u1) stable; urgency=medium . * core: fix file permissions for "/var/lib/NetworkManager/secret_key" Patch cherry-picked from upstream. * Fix permissions of /var/lib/NetworkManager/secret_key on upgrades. The file mode is supposed to be 0600. (Closes: #941609) * Install directories as created by upstream build system. Drop network-manager.dirs and instead use the directories created by the upstream build system. Fix permissions of /var/lib/NetworkManager to be 0700 as it contains possibly sensitive data and should not be world-readable. * d/gbp.conf: Set debian-branch to buster nghttp2 (1.36.0-2+deb10u1) buster-security; urgency=high . * Fix CVE-2019-9511 and CVE-2019-9513. node-fstream (1.0.10-1+deb10u1) buster; urgency=medium . * Team upload * Clobber a Link if it's in the way of a File (Closes: #931408, CVE-2019-13173) node-set-value (0.4.0-1+deb10u1) buster; urgency=medium . * Team upload * Fix prototype pollution (Closes: #941189, CVE-2019-10747) * Add test for CVE-2019-10747 node-yarnpkg (1.13.0-1+deb10u1) buster; urgency=medium . * Team upload * Add patch to force using https for the regular registries (Closes: #941354, CVE-2019-5448) nx-libs (2:3.5.99.19-3+deb10u2) buster; urgency=medium . * debian/patches: + Fix 0033_Screen.c-fix-two-memleaks.patch. Was not fully cherry-picked. Fixes double free issue. (Closes: #940103). + Add 0051-Screen.c-initialize-RandR-only-on-startup.patch. Regression fix introduced with +deb10u1 upload (by patch 0014). open-vm-tools (2:10.3.10-1+deb10u2) buster; urgency=medium . * [d512626] Fix memory leaks and error handling. From the upstream stable-10.3.10-vix-memory-leaks branch: commit 26b9edbeb79d1c67b9ae73a0c97c48999c1fb503 Fix leaks in ListAliases and ListMappedAliases commit 7b874f37f970aab2adddb063a8363594f47abf70 End VGAuth impersonation in the case of error. commit 015db4c06a8be65eb96cf62421e8b5366993452f Fix memory leaks in 'vix' tools plugin. Thanks to Oliver Kurth (Closes: #941955) opendmarc (1.3.2-6+deb10u1) buster-security; urgency=high . * CVE-2019-16378: https://github.com/trusteddomainproject/OpenDMARC/pull/48 to address incorrect DMARC pass results with multi-from mail (Closes: #940081) openssh (1:7.9p1-10+deb10u1) buster-security; urgency=high . * Apply upstream patch to deny (non-fatally) shmget/shmat/shmdt in preauth privsep child, coping with changes in OpenSSL 1.1.1d that broke OpenSSH on Linux kernels before 3.19 (closes: #941663). openssl (1.1.1d-0+deb10u2) buster-security; urgency=medium . * Reenable AES-CBC-HMAC-SHA ciphers (Closes: #941987). openssl (1.1.1d-0+deb10u1) buster-security; urgency=medium . * New upstream version - CVE-2019-1549 (Fixed a fork protection issue). - CVE-2019-1547 (Compute ECC cofactors if not provided during EC_GROUP construction). - CVE-2019-1563 (Fixed a padding oracle in PKCS7_dataDecode and CMS_decrypt_set1_pkey). * Update symbol list openvswitch (2.10.0+2018.08.28+git.8ca7c82b7d+ds1-12+deb10u1) buster; urgency=medium . * Some fixups in debian/ifupdown.sh to allow setting-up the MTU. * Document how to do Bond + Bridge + VLAN + MTU. * Correct dependency on python3-six instead of python-six (Closes: #931104). pam-python (1.0.6-1.1+deb10u1) buster-security; urgency=high . * Backport fix CVE-2019-16729 backport from 1.0.7. pam-python (1.0.6-1.1+deb9u1) stretch-security; urgency=high . * Backport fix CVE-2019-16729 backport from 1.0.7. php7.3 (7.3.11-1~deb10u1) buster-security; urgency=medium . * New upstream version 7.3.11 php7.3 (7.3.10-1) unstable; urgency=medium . * New upstream version 7.3.10 php7.3 (7.3.9-1) unstable; urgency=medium . * New upstream version 7.3.9 php7.3 (7.3.9-1~deb10u1) buster-security; urgency=high . * New upstream version 7.3.9 * php7.3-curl: Add Breaks against php7.0-curl for smoother upgrades from stretch. (Closes: #929689) php7.3 (7.3.8-1) unstable; urgency=medium . * New upstream version 7.3.8 * Rebase patches for PHP 7.3.8 php7.3 (7.3.6-1) unstable; urgency=medium . [ Ondřej Surý ] * New upstream version 7.3.6 . [ Andreas Beckmann ] * php7.3-curl: Add Breaks against php7.0-curl for smoother upgrades from stretch. (Closes: #929689) picard (2.1.2-1+deb10u1) buster; urgency=medium . * debian/gbp.conf: Work in buster branch * debian/patches: Update translations to fix crash with Spanish locale (Closes: #941464) plasma-applet-redshift-control (1.0.18-2+deb10u1) buster; urgency=medium . * Import upstream-submitted patch to fix manual mode for redshift >= 1.12 (Closes: #910901) postfix (3.4.7-0+deb10u1) buster; urgency=medium . [Wietse Venema] . * 3.4.6 - Documentation: tlsext_padding is not a tls_ssl_options feature. File: proto/postconf.proto. - Portability: added "#undef sun" to util/unix_dgram_connect.c (documented for completeness - no impact on Debian) - Bugfix (introduced: Postfix 2.3): a censoring filter broke multiline Milter responses for header/body events. Problem report by Andreas Thienemann. Files: util/printable.c, util/stringops.h, smtpd/smtpd.c - Bugfix (introduced: Postfix 3.3): "smtp_mx_address_limit = 0" no longer meant 'unlimited'. Problem report by Luc Pardon. File: smtp/smtp_addr.c. - Documentation: updated the BUGS section in the smtp(8) manpage about TLS connection reuse. File: smtp/smtp.c. - Workaround for implementations that hang Postfix while shutting down a TLS session, until Postfix times out. With "tls_fast_shutdown_enable = yes" (the default), Postfix no longer waits for the TLS peer to respond to a TLS 'close' request. This is recommended with TLSv1.0 and later. Files: global/mail_params.h, tls/tls_session.c, and documentation. - Bugfix (introduced: Postfix 3.0): the code to reset Postfix SMTP server command counts was not called after a HaProxy handshake failure, causing stale numbers to be reported. The command counts are now reset in the function that reports the counts. File: smtpd/smtpd.c. * 3.4.7 - Bugfix: the documentation said tls_fast_shutdown_enable, but the code said tls_fast_shutdown. Viktor Dukhovni. Changed the code because no-one is expected to override the default. File: global/mail_params.h. - Workaround for poor TCP loopback performance on LINUX, where getsockopt(..., TCP_MAXSEG, ..) reports a TCP maximal segment size that is 1/2 to 1/3 of the MTU. For example, with kernel 5.1.16-300.fc30.x86_64 the TCP client and server announce an mss of 65495 in the TCP handshake, but getsockopt() returns 32741 (less than half). As a matter of principle, Postfix won't turn on client-side TCP_NODELAY because that hides application performance bugs, and because that still suffers from server-side delayed ACKs. Instead, Postfix avoids sending "small" writes back-to-back, by choosing a VSTREAM buffer size that is a multiple of the reported MSS. This workaround bumps the multiplier from 2x to 4x. File: util/vstream_tweak.c. - Bugfix (introduced: 20051222): the Dovecot client could segfault (null pointer read) or cause an SMTP server assertion to fail when talking to a fake Dovecot server. The client now logs a proper error instead. Problem reported by Tim Düsterhus. File: xsasl/xsasl_dovecot_server.c. - Bugfix (introduced: Postfix 3.4): don't whitewash OpenSSL error results after a plaintext output error. The code could loop, and with some OpenSSL error results could flood the log with error messages (see below for a specific case). Problem reported by Andreas Schulze. File: tlsproxy/tlsproxy.c. - Bitrot: don't invoke SSL_shutdown() when the SSL engine thinks it is processing a TLS handshake. The commit at https://github.com/openssl/openssl/commit/64193c8218540499984cd63cda41f3cd491f3f59 changed the error status, incompatibly, from SSL_ERROR_NONE into SSL_ERROR_SSL. File: tlsproxy/tlsproxxy.c. proftpd-dfsg (1.3.6-4+deb10u2) buster-security; urgency=medium . * Add patch from upstream to address CVE-2019-18217. (Closes: #942831) python-cryptography (2.6.1-3+deb10u2) buster; urgency=medium . * Cherrypick 92241410b5b0591d849443b3023992334a4be0a2 and 9a22851fab924fd58482fdad3f8dd23dc3987f91 from upstream which addresses a memory leak triggerable when parsing x509 certificate extensions like AIA, thanks to Valentin Gutierrez for the report (Closes: #941413) python-cryptography (2.6.1-3+deb10u1) buster; urgency=medium . * Non-maintainer upload. * Backport two patches to fix the testsute with newer openssl. * Ignore test_load_ecdsa_no_named_curve in the testsuite because it known to break with newer openssl (Closes: #940547). python-flask-rdf (0.2.1-1+deb10u1) buster; urgency=medium . * Non-maintainer upload. * Add Depends on python{3,}-rdflib. (Closes: #896358, #896385) python-oslo.messaging (8.1.4-1+deb10u1) buster; urgency=medium . * New upstream point release, with an important fix: - Fix switch connection destination when a rabbitmq cluster node disappear. python-werkzeug (0.14.1+dfsg1-4+deb10u1) buster; urgency=medium . * Unique debugger PIN in Docker containers (Closes: #940935, CVE-2019-14806) python2.7 (2.7.16-2+deb10u1) buster; urgency=medium . * CVE-2018-20852 * CVE-2019-10160 * CVE-2019-16056 (Closes: #940901) * CVE-2019-16935 * CVE-2019-9740 * CVE-2019-9947 qemu (1:3.1+dfsg-8+deb10u2) buster-security; urgency=medium . * slirp-fix-heap-overflow-in-ip_reass-on-big-packet-input-CVE-2019-14378.patch Closes: #933741, CVE-2019-14378 (slirp heap buffer overflow) * qemu-bridge-helper-restrict-interface-name-to-IFNAMSIZ-CVE-2019-13164.patch Closes: #931351, CVE-2019-13164 (qemu-bridge-helper ifname overflow) * linux-user-sanitize-interp_info-for-mips-only.patch Closes: #933650 (some mips binaries fails to start) qemu (1:3.1+dfsg-8) unstable; urgency=high . * sun4u-add-power_mem_read-routine-CVE-2019-5008.patch fixes a null-pointer dereference in sparc/sun4u emulated hw Closes: #927439, CVE-2019-5008 * enable-md-no.patch & enable-md-clear.patch mitigation for MDS (Microarchitectural Data Sampling) issues Closes: #929067, CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091 * qxl-check-release-info-object-CVE-2019-12155.patch fixes null-pointer deref in qxl cleanup code Closes: #929353, CVE-2019-12155 * aarch32-exception-return-to-switch-from-hyp-mon.patch fixes booting U-Boot in UEFI mode on aarch32 Closes: #927763 * stop qemu-system-common pre-depending on adduser Closes: #929261 qtbase-opensource-src (5.11.3+dfsg1-1+deb10u1) buster-security; urgency=high . * Fix crash when text contains too many directional chars (CVE-2019-18281). quota (4.04-2+deb10u1) buster; urgency=medium . * With permission of maintainer, backport fix to stable to prevent rpc.rquotad spinning at 100% CPU. Closes: #931855. rpcbind (1.2.5-0.3+deb10u1) buster; urgency=medium . * Add 00-rmt-calls.patch (Closes: #939877): + Add command line option to enable remote calls at runtime + Refresh debian/patches * debian/control: Update maintainer information * Add debian/README.debian explaining remote calls activation for Debian systems * Add debian/NEWS ruby-loofah (2.2.3-1+deb10u1) stable-security; urgency=high . * Team upload . * debian/patches - add 0002-Fix-CVE-2019-15587.patch (Closes: #942894) (CVE-2019-15587) shelldap (1.4.0-4+deb10u1) buster; urgency=medium . * Repair SASL authentications, add a 'sasluser' option (Closes: #941411) + Don't provide a password for sasl authentication + Fix sasl for DIGEST-MD5, PLAIN, and LOGIN mechanisms simplesamlphp (1.16.3-1+deb10u1) buster-security; urgency=high . * Fix security issue CVE-2019-3465. sogo (4.0.7-1+deb10u1) buster; urgency=medium . * Omit signedViewer altogether when not using openssl. Thanks Hanno Stock for the patch. (Closes: #889994) * Set debian-branch to buster in gbp.conf. spf-engine (2.9.1-0+deb10u1) buster; urgency=medium . * New upstream bugfix release * Put upstream provided init file where dh_installinit expects to find it so it is properly registered on install * Update debian/watch so limit itself to version 2.9.x updates for buster * Update debian/patches/0001-install-conf-fix.patch for missed change needed in sysv init spip (3.2.4-1+deb10u1) buster-security; urgency=medium . * Backport security fixes from 3.2.5 - Critical security fix, allowing unidentified visitor to modify any published content and execute other modifications in database [CVE-2019-16391] - Other security fixes: + better sanitization on redirections [CVE-2019-16393] + don’t disclose if user exists when resetting password [CVE-2019-16394] + better error message sanitization on login page [CVE-2019-16392] - Update security screen to 1.3.12 * Add d/gbp.conf for buster * Add CVE ID to previous changelog entry * Refresh patch headers standardskriver (0.0.3-2+deb10u1) buster; urgency=medium . * debian/patches: + Add 0001_RawConfigParser-use-new-method-read_file-instead-of-.patch. Fix deprecation warning by config.RawConfigParser. + Add 0002_standardskriver-Use-ip-command-rather-than-deprecate.patch. Use external "ip" command rather than deprecated "ifconfig" command. This fixes (essential) local system's IPv4 detection. (Closes: #944244). sudo (1.8.27-1+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Treat an ID of -1 as invalid since that means "no change" (CVE-2019-14287) * Fix test failure in plugins/sudoers/regress/testsudoers/test5.sh swi-prolog (8.0.2+dfsg-3+deb10u1) buster; urgency=medium . * Add patch to fix pack-server. SWI-Prolog upstream servers were switched from http to https, so pack_install stopped working. This patch changes pack_install to use https. (Closes: #939257) systemd (241-7~deb10u2) buster; urgency=medium . * core: never propagate reload failure to service result. Fixes a regression introduced in v239 where the main process of a service unit gets killed on reload if ExecReload fails. (Closes: #936032) * shared/seccomp: add sync_file_range2. Some architectures need the arguments to be reordered because of alignment issues. Otherwise, it's the same as sync_file_range. Fixes sync_file_range failures in nspawn containers on arm, ppc. (Closes: #935091) * core: factor root_directory application out of apply_working_directory. Fixes RootDirectory not working when used in combination with User. (Closes: #939408) * shared/bus-util: drop trusted annotation from bus_open_system_watch_bind_with_description(). This ensures that access controls on systemd-resolved's D-Bus interface are enforced properly. (CVE-2019-15718, Closes: #939353) * login: add a missing error check for session_set_leader() Fixes assertion due to insufficient function return check. (Closes: #939998) * d/e/r/73-usb-net-by-mac.rules: import net.ifnames only for network devices (Closes: #934589) * d/e/r/73-usb-net-by-mac.rules: skip if iface name was provided by user-space * namespace: make MountFlags=shared work again (Closes: #939551) * mount/generators: do not make unit wanted by its device unit. Among other things, this fixes StopWhenUnneeded=true being broken for mount units. (Closes: #941758) tcpdump (4.9.3-1~deb10u1) buster-security; urgency=high . * New upstream release, with fixes for 24 different CVEs (closes: #941698). This is an upstream update on top of the 4.9.2-3 package and does not include other changes from the 4.9.3 package in bullseye. * Disable tests that require a newer libpcap version. tcpdump (4.9.3-1~deb9u1) stretch-security; urgency=high . * New upstream release, with fixes for 24 different CVEs (closes: #941698). This is an upstream update on top of the 4.9.2-1~deb9u1 package. * Disable tests that require a newer libpcap version. tcpdump (4.9.3~git20190901-2) unstable; urgency=medium . * Disable failing IKEv2 test again to fix build on ppc64el. tcpdump (4.9.3~git20190901-1) unstable; urgency=low . * New upstream snapshot from the tcpdump-4.9 branch: + Includes fix for CVE-2017-16808 (closes: #881862). + Fixes ESP decryption on ppc64el (and others), re-enable tests. * Drop root privileges by default (closes: #935112): + debian/rules: Configure --with-user=tcpdump. + debian/tcpdump.post{inst,rm}: Create/delete a 'tcpdump' system group and user. + debian/control: Add dependency on adduser. + debian/patches/drop-privs-after-opening-savefile.diff: New patch (from Fedora) to drop root privileges *after* opening the savefile when possible, to alleviate possible inconvenience if the target directory is not writable by user tcpdump. + debian/patches/drop-privs-silently.diff: New patch (from Fedora) to drop root privileges silently. + debian/usr.sbin.tcpdump: Add chown capability, and update rules about device discovery. + debian/NEWS: Mention how to run tcpdump as root. * Bump Standards-Version to 4.4.0. thunderbird (1:60.9.0-1~deb10u1) buster-security; urgency=medium . * Rebuild for buster-security * [9802e1d] Revert "Use gcc-8 and g++-8 due broken build with GCC-9" thunderbird (1:60.9.0-1~deb9u1) stretch-security; urgency=medium . [ Carsten Schoenert ] * Rebuild for stretch-security thunderbird (1:60.8.0-2) unstable; urgency=medium . * [41e9047] d/rules: work around carge needs a HOME dir * [c67707c] Use gcc-8 and g++-8 due broken build with GCC-9 thunderbird (1:60.8.0-1) unstable; urgency=medium . * [49f4e91] New upstream version 60.8.0 Fixed CVE issues in upstream version 60.8.0 (MFSA 2019-23) CVE-2019-9811: Sandbox escape via installation of malicious language pack CVE-2019-11711: Script injection within domain through inner window reuse CVE-2019-11712: Cross-origin POST requests can be made with NPAPI plugins by following 308 redirects CVE-2019-11713: Use-after-free with HTTP/2 cached stream CVE-2019-11729: Empty or malformed p256-ECDH public keys may trigger a segmentation fault CVE-2019-11715: HTML parsing error can contribute to content XSS CVE-2019-11717: Caret character improperly escaped in origins CVE-2019-11719: Out-of-bounds read when importing curve25519 private key CVE-2019-11730: Same-origin policy treats all files in a directory as having the same-origin CVE-2019-11709: Memory safety bugs fixed in Firefox 68, Firefox ESR 60.8, and Thunderbird 60.8 tmpreaper (1.6.14+deb10u1) buster; urgency=medium . * Non-maintainer upload with maintainer approval. * Add `--protect '/tmp/systemd-private*/*'` to cron job to prevent breaking systemd services that have PrivateTmp=true (closes: #881725). trafficserver (8.0.2+ds-1+deb10u1) buster-security; urgency=high . * Add patch for security backport from 8.0.4 for CVE-2019-9512, CVE-2019-9514, and CVE-2019-9515. (Closes: #934887) * Add patch for security backport from 8.0.5 for fixes CVE-2019-9518 (Closes: #935314) trapperkeeper-webserver-jetty9-clojure (1.7.0-2+deb10u1) buster; urgency=medium . [ Manfred Stock ] * Add patch for SSL compatibility with newer Jetty (closes: #930562). tzdata (2019c-0+deb10u1) buster; urgency=medium . * New upstream version, affecting the following future timestamps: - Fiji's next DST transitions will be 2019-11-10 and 2020-01-12 instead of 2019-11-03 and 2020-01-19. - Norfolk Island will observe Australian-style DST starting in spring 2019. The first transition is on 2019-10-06. tzdata (2019c-0+deb9u1) stretch; urgency=medium . * New upstream version, affecting the following future timestamps: - Fiji's next DST transitions will be 2019-11-10 and 2020-01-12 instead of 2019-11-03 and 2020-01-19. - Norfolk Island will observe Australian-style DST starting in spring 2019. The first transition is on 2019-10-06. tzdata (2019b-2) unstable; urgency=medium . * Change provides to tzdata-bullseye from tzdata-buster. tzdata (2019b-1) unstable; urgency=medium . * New upstream version, affecting the following past and future timestamps: - Brazil has canceled DST and will stay on standard time indefinitely. - Predictions for Morocco now go through 2087 instead of 2037. - Palestine's 2019 spring transition was 03-29 at 00:00, not 03-30 at 01:00. Guess future transitions to be March's last Friday at 00:00. - Many corrections to historical Hong Kong transitions from 1941 to 1947. ublock-origin (1.22.2+dfsg-1~deb10u1) buster; urgency=medium . * Backport of 1.22.2+dfsg-1 to Buster. (Closes: #943470, #925337) ublock-origin (1.22.2+dfsg-1~deb9u1) stretch; urgency=medium . * Backport of 1.22.2+dfsg-1 to Stretch. (Closes: #943470, #925337) ublock-origin (1.19.0+dfsg-2) unstable; urgency=medium . * Upload to unstable. * Declare compliance with Debian Policy 4.4.0. ublock-origin (1.19.0+dfsg-1) experimental; urgency=medium . [ Michael Meskes ] * Change package layout to allow for different file for each browser while at the same time keeping firefox working despite its dislike for symlinks. (Closes: #926586) . [ Markus Koschany ] * New upstream version 1.19.0+dfsg. ublock-origin (1.18.10+dfsg-1) experimental; urgency=medium . * New upstream version 1.18.10+dfsg. * Fix ublock-origin being disabled with Firefox 66. (Closes: #925337) * Switch to compat level 12. uim (1:1.8.8-4+deb10u2) buster; urgency=medium . [ HIGUCHI Daisuke (VDR dai) ] * resurrect libuim-data as a transitional package (Closes: #939588). After upgrading from stretch to buster, if purging libuim-data, its postrm script deletes /var/lib/uim/*.scm files required by uim. This libuim-data transitional package can be removed safely. . [ NOKUBI Takatsugu ] * d/control: uim-data depends libuim-data dummy package, change the description. * d/libuim-data.postint: re-register all modules, fix #939588 unbound (1.9.0-2+deb10u1) buster-security; urgency=high . * Apply NLnet Labs patch for CVE-2019-16866 (Closes: #941692) vanguards (0.3.1-2~deb10u1) buster; urgency=medium . * Rebuild for buster stable updates * Includes important security fix to prevent a reload of tor's configuration via SIGHUP causing a denial-of-service for vanguards protections. Details on this issue can be seen at: - https://github.com/mikeperry-tor/vanguards/issues/40 vanguards (0.3.1-2~bpo10+1) buster-backports; urgency=medium . * Rebuild for buster-backports. vanguards (0.3.1-1) unstable; urgency=medium . * New upstream version 0.3.1 varnish (6.1.1-1+deb10u1) buster-security; urgency=medium . * CVE-2019-15892, thanks to sesse for the backport webkit2gtk (2.26.1-3~deb10u1) buster-security; urgency=high . * Rebuild for buster-security. * debian/patches/force-single-process.patch: + Force the single-process mode in Evolution and Geary * debian/control: + Remove Breaks for Evolution < 3.34.1. * The WebKitGTK security advisory WSA-2019-0005 lists the following security fixes in the latest versions of WebKitGTK: + CVE-2019-8768 (fixed in 2.24.0). + CVE-2019-8735 (fixed in 2.24.2). + CVE-2019-8726 (fixed in 2.24.3). + CVE-2019-8674, CVE-2019-8707, CVE-2019-8719, CVE-2019-8733 and CVE-2019-8763 (fixed in 2.24.4). + CVE-2019-8625, CVE-2019-8720, CVE-2019-8769 and CVE-2019-8771 (fixed in 2.26.0). webkit2gtk (2.26.1-3~bpo10+1) buster-backports; urgency=medium . * Rebuild for buster-backports. * debian/patches/force-single-process.patch: + Force the single-process mode in Evolution and Geary * debian/control: + Remove Breaks for Evolution < 3.34.1. webkit2gtk (2.26.1-3~bpo9+2) stretch-backports-sloppy; urgency=medium . * debian/patches/is-same-v.patch: + Define also std::is_pod_v * debian/patches/fix-atomics-build.patch: + Use libatomic in libWTF. This fixes the armel build. webkit2gtk (2.26.1-3~bpo9+1) stretch-backports-sloppy; urgency=medium . * Rebuild for stretch-backports-sloppy. * debian/control: + Versions of GStreamer < 1.13 had GStreamerGL in the "bad" set, so depend on libgstreamer-plugins-bad1.0-dev and don't require GStreamer 1.13. Don't install libgstreamer-plugins-bad1.0-dev in armel or armhf: the usage of two different GL implementations causes a build failure (see WebKit bug #175127). + Remove build dependency on libwoff-dev, this is not available in this Debian release. + Don't recommend gstreamer1.0-gl, that package is not available in this Debian release. + Don't depend on libopenjp2-7-dev. + Build depend on clang-7. + Remove Breaks for Evolution < 3.34.1. + Require Bubblewrap 0.3.1. * debian/rules: + Build with -DENABLE_MEDIA_SOURCE=OFF. This feature requires a more recent version of GStreamer. + Build with -DUSE_OPENJPEG=OFF. This feature requires a more recent version of libopenjp2-7-dev. + Pass CC and CXX to dh_auto_configure so it uses clang instead of gcc. * debian/patches/force-single-process.patch: + Force the single-process mode in Evolution and Geary * debian/patches/is-same-v.patch: + Define std::is_same_v * debian/patches/fix-gtkdoc-generation.patch: + Fix gtk-doc generation. * debian/patches/safe-multiply.patch: + Fix link errors in 32-bit CPUs with clang * debian/libwebkit2gtk-4.0-37.symbols: + Mark webkit_emoji_chooser_get_type as optional, this requires a more recent version of GTK. webkit2gtk (2.26.1-2) unstable; urgency=medium . * debian/patches/force-single-process.patch: + Force the single-process mode in Evolution and Geary. * debian/gbp.conf: + Update upstream branch name. webkit2gtk (2.26.1-1) experimental; urgency=medium . [ Jeremy Bicha ] * Suggest instead of Recommend gstreamer1.0-libav on Ubuntu . [ Alberto Garcia ] * New upstream release. webkit2gtk (2.26.0-1) experimental; urgency=medium . * New upstream release. * debian/watch: + Scan stable releases only. * debian/copyright: + Remove nonexistent files. * Add a dummy libwebkit2gtk-4.0-37-gtk2 with a transition plan for people who still need to use Flash. + debian/control: - Add the package, suggest browser-plugin-freshplayer-pepperflash. + debian/libwebkit2gtk-4.0-37-gtk2.NEWS: - Add news item about the Flash transition plan. webkit2gtk (2.25.92-1) experimental; urgency=medium . * New upstream development release. * Refresh all patches. * debian/source/lintian-overrides: + Update source-is-missing override. * debian/libwebkit2gtk-4.0-37.symbols: + Update symbols. webkit2gtk (2.25.4-1) experimental; urgency=medium . * New upstream development release. * Refresh all patches. * debian/source/lintian-overrides: + Update source-is-missing override. * Use the CLoop Javascript interpreter in i386 and stop telling gcc to use SSE2 instructions (Closes: #930935). + debian/rules: - Build with -DENABLE_JIT=OFF -DENABLE_C_LOOP=ON and stop using -msse2 -mfpmath=sse. + debian/patches/dont-detect-sse2.patch: - Don't check for SSE2 support. + debian/NEWS: - Remove item about the requirement to have an SSE2-capable CPU. * WebKitGTK 2.25.3 no longer ships the GTK 2 plugin process: + debian/control: - Drop build dependency on libgtk2.0-dev. - Remove the libwebkit2gtk-4.0-37-gtk2 package. + debian/NEWS: - Add item explaining the removal of the GTK 2 plugin process. + debian/libwebkit2gtk-4.0-37-gtk2.install: - Drop this file. * debian/control: + Recommend gstreamer1.0-libav. This package allows the user to play most internet videos (Closes: #870814). + Update Standards-Version to 4.4.0 (no changes). * debian/libwebkit2gtk-4.0-37.symbols: + Update symbols. webkit2gtk (2.25.2-1) experimental; urgency=medium . * New upstream development release. * debian/patches/webdriver-path.patch, debian/patches/fix-ftbfs-hurd.patch: + Remove. * debian/patches/detect-woff.patch + Refresh. * debian/rules: + Build with -DUSE_WPE_RENDERER=OFF. webkit2gtk (2.25.1-1) experimental; urgency=medium . * New upstream development release. * Refresh all patches. * debian/rules: + Don't add -msse2 manually to CFLAGS, WebKitGTK does this automatically now. * debian/control: + Add build and runtime dependencies on bubblewrap, xdg-dbus-proxy and libseccomp-dev (ENABLE_BUBBLEWRAP_SANDBOX is now on by default). * debian/patches/webdriver-path.patch: + Fix name of the WebKitWebDriver executable. * debian/watch, debian/gbp.conf: + Update for 2.25.x packages in experimental. * debian/libwebkit2gtk-4.0-37.symbols: + Update symbols. webkit2gtk (2.24.4-1) unstable; urgency=medium . * New upstream release (Closes: #931807). * debian/libwebkit2gtk-4.0-37.symbols: + Update symbols. webkit2gtk (2.24.4-1~deb10u1) buster-security; urgency=high . * Rebuild for buster-security. * The WebKitGTK security advisory WSA-2019-0004 lists the following security fixes in the latest versions of WebKitGTK: + CVE-2019-8671, CVE-2019-8672, CVE-2019-8677, CVE-2019-8679 and CVE-2019-8686 (fixed in 2.24.2) + CVE-2019-8666, CVE-2019-8673, CVE-2019-8676, CVE-2019-8681, CVE-2019-8687, CVE-2019-8689, and CVE-2019-8690 (fixed in 2.24.3) + CVE-2019-8644, CVE-2019-8649, CVE-2019-8658, CVE-2019-8669, CVE-2019-8678, CVE-2019-8680, CVE-2019-8683, CVE-2019-8684 and CVE-2019-8688 (fixed in 2.24.4) . webkit2gtk (2.24.4-1) unstable; urgency=medium . * New upstream release (Closes: #931807). * debian/libwebkit2gtk-4.0-37.symbols: + Update symbols. webkit2gtk (2.24.4-1~bpo10+1) buster-backports; urgency=medium . * Rebuild for buster-backports. webkit2gtk (2.24.4-1~bpo9+1) stretch-backports-sloppy; urgency=medium . * Rebuild for stretch-backports-sloppy. * debian/control: + Versions of GStreamer < 1.13 had GStreamerGL in the "bad" set, so depend on libgstreamer-plugins-bad1.0-dev and don't require GStreamer 1.13. Don't install libgstreamer-plugins-bad1.0-dev in armel or armhf: the usage of two different GL implementations causes a build failure (see WebKit bug #175127). + Remove build dependency on libwoff-dev, this is not available in this Debian release. + Don't recommend gstreamer1.0-gl, that package is not available in this Debian release. + Don't depend on libopenjp2-7-dev. * debian/rules: + Build with -DENABLE_MEDIA_SOURCE=OFF. This feature requires a more recent version of GStreamer. + Build with -DUSE_OPENJPEG=OFF. This feature requires a more recent version of libopenjp2-7-dev. webkit2gtk (2.24.3-1) unstable; urgency=medium . * New upstream release (Closes: #929749). * debian/control: + Recommend gstreamer1.0-libav. This package allows the user to play most internet videos (Closes: #870814). wpa (2:2.7+git20190128+0c1e29f-6+deb10u1) buster-security; urgency=medium . * SECURITY UPDATE: - AP mode PMF disconnection protection bypass. More details: + https://w1.fi/security/2019-7/ Closes: #940080 (CVE-2019-16275) - Timing-based side-channel attack against WPA3's Dragonfly handshake when using Brainpool curves. More details: + https://w1.fi/security/2019-6/ + https://wpa3.mathyvanhoef.com/ Closes: #934180 (CVE-2019-13377) ====================================== Sat, 07 Sep 2019 - Debian 10.1 released ====================================== ========================================================================= [Date: Sat 7 Sep 07:51:55 UTC 2019] [ftpmaster: Stable point release] Removed the following packages from stable: pump | 0.8.24-7.1 | source, amd64, arm64, armel, armhf, i386, mips, mipsel, ppc64el, s390x pump | 0.8.24-7.1+b1 | mips64el ------------------- Reason ------------------- RoST; unmaintained; security issues ---------------------------------------------- ========================================================================= [Date: Sat 7 Sep 07:51:55 UTC 2019] [ftpmaster: Stable point release] Removed the following packages from stable: All binary and D-I packages related to linux-4.19.0-5 ------------------- Reason ------------------- [auto-cruft] NBS (no longer built by linux) ---------------------------------------------- ========================================================================= acme-tiny (1:4.0.4-1+deb10u1) buster; urgency=medium . * Add upstream patch to fix ACME protocol change effective on November 1st 2019, https://github.com/diafygi/acme-tiny/issues/226 android-sdk-meta (25.0.0+11+deb10u1) buster; urgency=medium . * fix version: this adds on top of package from sid android-sdk-meta (25.0.0+11) unstable; urgency=medium . [ Jeff Muizelaar ] * Add some more Amazon devices . [ Hans-Christoph Steiner ] * fix DEB_REVISION parsing to work with more than one digit * remove broken screenshot2 symlink (Closes: #924175) * Suggests: proguard-gui for symlinks (Closes: #923935) * document udev rule for providing device access to the console user * update udev rules to latest upstream version (Closes: #931215) * sync new devices in 51-android.rules from upstream * Standards-Version 4.3.0 no changes * sync whitespace in 51-android.rules with upstream * sync comments in 51-android.rules with upstream * sync manufacturer order in 51-android.rules from upstream android-sdk-meta (25.0.0+11~deb10u2) buster; urgency=medium . * fix regex for adding Debian version to binary packages (Closes: #935938) android-sdk-meta (25.0.0+11~deb10u1) buster; urgency=medium . [ Jeff Muizelaar ] * Add some more Amazon devices . [ Hans-Christoph Steiner ] * fix DEB_REVISION parsing to work with more than one digit * remove broken screenshot2 symlink (Closes: #924175) * Suggests: proguard-gui for symlinks (Closes: #923935) * document udev rule for providing device access to the console user * update udev rules to latest upstream version (Closes: #931215) * sync new devices in 51-android.rules from upstream * Standards-Version 4.3.0 no changes * sync whitespace in 51-android.rules with upstream * sync comments in 51-android.rules with upstream * sync manufacturer order in 51-android.rules from upstream apache2 (2.4.38-3+deb10u1) buster-security; urgency=high . * Add patch to limit cross-site scripting in mod_proxy (Closes: CVE-2019-10092) * Add patch to fix stack buffer overflow and NULL pointer dereference in mod_remoteip (Closes: CVE-2019-10097) * Import http2 modules from 2.4.41 (Closes: CVE-2019-9517, CVE-2019-10082 and CVE-2019-10081 * Add patch to set PCRE_DOTALL by default (Closes: CVE-2019-10098) apt-setup (1:0.151~deb10u1) buster; urgency=medium . * Rebuild for buster. asterisk (1:16.2.1~dfsg-1+deb10u1) buster; urgency=medium . * AST-2019-002 / CVE-2019-12827 Buffer overflow in res_pjsip_messaging (Closes: #931980) * AST-2019-003 / CVE-2019-13161 Remote Crash Vulnerability in chan_sip (Closes: #931981) * d/gbp.conf: Update for Buster branch babeltrace (1.5.6-2+deb10u1) buster; urgency=medium . [ Andreas Beckmann ] * Non-maintainer upload. * Backport symbols fix from 1.5.7-1. . [ Michael Jeanson ] * Bump ctf symbols depends to post merge version (Closes: #931147) backup-manager (0.7.14-1+deb10u1) buster; urgency=medium . * Non-maintainer upload. * Fix purging of remote archives via FTP or SSH. Thanks to Thomas Parmelan (Closes: #895901) base-files (10.3+deb10u1) buster; urgency=medium . * Change /etc/debian_version to 10.1, for Debian 10.1 point release. basez (1.6-3+deb10u1) buster; urgency=medium . * Properly decode base64url encoded strings (closes: #931041) basez (1.6-3+deb9u1) stretch; urgency=medium . * Properly decode base64url encoded strings (closes: #931041) bro (2.5.5-1+deb10u1) buster-security; urgency=medium . * Add patches for CVE-2018-16807, CVE-2018-17019 (Closes: #908614, #908779) bzip2 (1.0.6-9.2~deb10u1) buster; urgency=medium . * Rebuild for buster . bzip2 (1.0.6-9.2) unstable; urgency=medium . * Non-maintainer upload. * Accept as many selectors as the file format allows (Closes: #931278) cacti (1.2.2+ds1-2+deb10u1) buster; urgency=medium . * Depends i.s.o. Recommends on php-gmp as this is now a requirement of the upstream code (Closes: #930252) * Fix reading of snmp gauges (0001-Resolving-issue-2474.patch) (Closes: #930254) * Fix upgrade from stretch (0001-Resolving-issue-2482.patch); the upgrade code attempted to drop a non-existing primary key (Closes: #931702) calamares-settings-debian (10.0.20-1+deb10u1) buster; urgency=medium . * Fix permissions for initramfs image when full-desk encryption is enabled. (CVE-2019-13179) (Closes: #931373) clamav (0.101.4+dfsg-0+deb10u1) buster; urgency=medium . * Import 0.101.4 - CVE-2019-12625 (Add scan time limit to limit the processing zip-bombs) (Closes:934359) - CVE-2019-12900 (An out of bounds write was possible within ClamAV's NSIS bzip) - update symbols file (bump to 101.4 and drop unused cli_strnstr). clamav (0.101.4+dfsg-0+deb9u1) stretch; urgency=medium . * Import 0.101.4 (Closes: 921190) - CVE-2019-12625 (Add scan time limit to limit the processing zip-bombs) (Closes:934359) - CVE-2019-12900 (An out of bounds write was possible within ClamAV's NSIS bzip) - update symbols file (bump to 101.4 and drop unused cli_strnstr). clamav (0.101.2+dfsg-3) unstable; urgency=medium . * Cherry-pick a fix from 0.101.3 to address a vulnerability to non-recursive zip bombs. clamav (0.101.2+dfsg-2) unstable; urgency=medium . * Remove python from build-depends: - Only needed for llvm, which is currently (and probably permanently) disabled - Support python2 removal, if this comes back, it will need to be python3 clamav (0.101.2+dfsg-1+deb10u1) buster; urgency=medium . * Cherry-pick a fix from 0.101.3 to address a vulnerability to non-recursive zip bombs. cloudkitty (8.0.0-4+deb10u1) buster; urgency=medium . * Add upstream patch to fix FTBFS after we updated SQLAlchemy to fix CVE-2019-7164 CVE-2019-7548 (SQL injection) (see debian bug 922669 and 929321 for more info) (Closes: #930996). console-setup (1.193~deb10u1) buster; urgency=medium . * Rebuild for buster. console-setup (1.192) unstable; urgency=medium . * Remove Christian Perrier from Uploaders, with many thanks for all his contributions over the years! (Closes: #927511) * Merge patch by Iain Lane to fix internationalization issues when switching locales with Perl >= 5.28 (Closes: #924657, LP: #1817453). cryptsetup (2:2.1.0-5+deb10u2) buster; urgency=medium . * Cherry pick upstream commit 8f8f0b32: Fix mapped segments overflow on 32bit architectures. Regression since 2:2.1.0-1. (Closes: #935702) cryptsetup (2:2.1.0-5+deb10u1) buster; urgency=high . * Backport upstream commits c03e3fe8, 725720df and fe4e1de5 to fix support for LUKS2 headers without any bound keyslot. Adding a new key slot using the volume key was failing, both via the crypt_keyslot_add_by_volume_key() API call and with `luksAddKey --master-key`. The former in particular might yield data loss if, in order to change a passphrase, an application destroys the keyslot before adding a new one (using the volume key), cf. #928893. Note that doing so is *unsafe*: applications should instead use crypt_keyslot_change_by_passphrase() from libcryptsetup >=1.6.0. Trying to open LUKS2 volume by supplying the volume key on the command line was also failing if there were no bound keyslot on the header. (Closes: #934715) cups (2.2.10-6+deb10u1) buster; urgency=medium . * Fix multiple security/disclosure issues (Closes: #934957) - CVE-2019-8696 and CVE-2019-8675: Fixed SNMP buffer overflows - Fixed IPP buffer overflow - Fixed memory disclosure issue in the scheduler - Fixed DoS issues in the scheduler dbconfig-common (2.0.11+deb10u1) buster; urgency=medium . [ Marius Burkard ] * Fix regression with /bin/sh pointing to bash due to changes in its POSIX behaviour (Closes: #934027) . [ Paul Gevers ] * tests: use sh instead of hardcoded *sh to catch issues like the above debian-edu-config (2.10.65+deb10u1) buster; urgency=medium . [ Wolfgang Schweer ] * Adjust ltsp-build-client/Debian-custom/001-ltsp-setting. (Closes: #928756) - Use PXE option 'ipappend 2' for LTSP client boot. This option makes sure that all DHCP server information is getting through to LTSP clients. (LTSP used this option before, but switched to 'ipappend 3' during the Buster development cycle to ease setups with ProxyDHCP.) * Adjust share/debian-edu-config/sudo-ldap.conf. (Closes: #929964) - Fix sudo-ldap configuration. (The LDAP URI is needed on LDAP clients.) * Set environment variable to deal with Firefox profile. (Closes: #930122) This is a workaround for bug #930125, preventing firefox-esr startup issues if the mozilla profile is on an NFS share). - Ship share/debian-edu-config/edu-firefox-nfs with NSS_SDB_USE_CACHE="yes" as content. Thanks to Mike Gabriel for spotting the issue and providing this information. - Add instructions to cf3/cf.workarounds to link the 'edu-firefox-nfs' file to appropriate files below '/etc/X11/Xsession.d' and '/etc/profile.d'. * Adjust cf3/cf.homes: Set correct LTSP chroot path. (Closes: #931680) - While the reported arch is i686, LTSP uses i386. Set arch accordingly. * Adjust share/debian-edu-config/tools/kerberos-kdc-init. (Closes: #931366) - Remove outdated (and now wrong) logging section. * Fix loss of dynamically allocated v4 IP address. (Closes: #933580) - Drop etc/network/if-up.d/hostname. This script doesn't work anymore due to changed behaviour of the ifupdown/dhclient/systemd combination and now also causes the loss of a dynamically allocated ipv4 IP address after 20 to 30 minutes after booting. - Add code to d/debian-edu-config.postinstall to implement the intended hostname update just after rebooting the system after a change. - Adjust Makefile. * Provide Debian Edu RootCA certificate for download. (Closes: #933183) - Adjust share/debian-edu-config/tools/create-debian-edu-certs to copy the rootCA file to the web server directory at certificate generation time. - Adjust cf3/cf.finalize to care for the rootCA file as well. - Adjust cf3/cf.workarounds to copy the rootCA file to the web server directory upon main server upgrade. * Add LDAP server certificate to the initial LTSP NBD image. (Closes: #932828) - etc/ltsp/ltsp-build-client.conf: Don't create the image by default. - cf3/edu.cf: Define new class 'ltspimages'. - cf3/cf.finalize: Add code to include the LDAP server certificate for all possible use cases, to generate the image and to adjust various rights. * Changes to debian-edu-config.fetch-ldap-cert from 2.10.67). - Use independent conditions to make sure that the LDAP server certificate is only downloaded once for both host and LTSP chroot. (Closes: #934380) - Add code to validate the LDAP server certificate in case the Debian Edu RootCA certificate is available for download. . [ Mike Gabriel ] * Changes to debian-edu-config.fetch-ldap-cert (from 2.10.66): - Make the script (and with it Debian Edu buster workstations) work in a Debian Edu environment where the main server (TJENER) is still on Debian Edu 8 or 9. (Closes: #926933) - Retrieve TJENER's PKI server certificate only once per host to improve security. This re-introduces the behaviour of fetch-ldap-cert in stretch and earlier. (Closes: #931413). * Changes to debian-edu-config.fetch-ldap-cert (from 2.10.67): - White-space-only change: Fix broken and inconsistent indentations. - Fully inline-document fetch-ldap-cert script. - Add "-f" option to all curl calls that don't have it set so far. This assures that curl bails out with a non-zero exit code, if anything goes wrong while retrieving certificate files. - Also report a successful certificate verification if we verified the LDAP server certificate using the Debian Edu RootCA. - Really check that the LDAP server uses a certificate issued by the "Debian Edu RootCA", not just by (some) "RootCA". - Add 2x FIXME about BUNDLECRT file removal from host and from LTSP chroots. - LTSP chroot certificate copying: only log those actions, if they are actually about to happen.. - Silence curl stderr and gnutls-cli stdout+stderr. - Certificate retrieval: Fix upgrade path for RootCA deployment. Re-run CERTFILE (and ROOTCACRT retrieval) until we have both on the client. This will lead to repetitive downloads of the CERTFILE on system boot. To get rid of this, people must upgrade their TJENERs from Debian Edu 10.0 to 10.1. Then it will stop. This hack is necessary to assure distribution of the RootCA to all clients that don't have it, yet. - Detach dependency of ROOTCACRT chroot copying and BUNDLECRT chroot copying from chroot copying of the CERTFILE. The chroot may have the CERTFILE, but not the ROOTCACRT, yet. This assures a smooth upgrade path from Debian Edu 10.0 to Debian Edu 10.1. - Do a simple validity check if a directory under /opt/ltsp really is a chroot (and e.g. not the SquashFS images' directory). debian-edu-doc (2.10.19~deb10u1) buster; urgency=medium . * Upload to buster. . debian-edu-doc (2.10.19) unstable; urgency=medium . * Update Debian Edu Buster manual from the wiki. * Update Debian Edu ITIL manual from the wiki. * Bump standards version to 4.4.0, no changes needed. . [ Translation updates ] * Buster manual: - Japanese: hoxp18 - German: Wolfgang Schweer - Italian: Claudio Carboncini - Chinese (Simplified): Ma Yong - French: Jean-Pierre Giraud debian-installer (20190702+deb10u1) buster; urgency=medium . [ Samuel Thibault ] * build/boot/x86: Restore 'd' shortcut for the dark theme. 'c' can obviously not work in grub (Closes: #935545). . [ Cyril Brulebois ] * Enable proposed-updates for the buster stable branch. . [ Julien Cristau ] * Bump linux ABI to 4.19.0-6. debian-installer-netboot-images (20190702+deb10u1) buster; urgency=medium . * Update to 20190702+deb10u1 images, from buster-proposed-updates * Set DISTRIBUTION_FALLBACK to buster in debian/rules, and attempt a build against this distribution instead of buster-proposed-updates if the first build against the latter doesn't succeed. This should fix the FTBFS within buster once the point release has happened, as d-i disappears from s-p-u (Closes: #902226). With thanks to Santiago Vila for the initial report. * Make get-images.sh clean up temporary files on error and not only on exit, to make sure they don't interfere with a later attempt against a different distribution (see above). dehydrated (0.6.2-2+deb10u1) buster; urgency=medium . * Add three more patches from upstream. Fixing the following bug: + Fixed fetching of account information. + Followup fixes for account ID handling, and APIv1 compatibility. devscripts (2.19.5+deb10u1) buster; urgency=medium . [ Thomas Goirand ] * debchange: + Target buster-backports with --bpo. Closes: #931614 devscripts (2.19.5+deb10u1~bpo9+2) stretch-backports; urgency=medium . * Source only upload for stretch-backports. devscripts (2.19.5+deb10u1~bpo9+1) stretch-backports; urgency=medium . * Rebuild for stretch-backports. dma (0.11-1+deb10u1) buster; urgency=medium . * d/p/0002-crypto-Don-t-limit-to-TLSv1-only.patch: Do not limit SSL connection to TLSv1 (Closes: #871429) * d/p/0003-properly-deal-with-SSL_connect-return-value.patch: Properly check the return code of SSL_connect() dosbox (0.74-2-3+deb10u1) buster-security; urgency=medium . * Apply upstream fixes for two security issues: - CVE-2019-7165: long lines in batch files would overflow the parsing buffer; - CVE-2019-12594: programs running inside DOSBox could access /proc. along with a number of buffer overrun fixes. Closes: #931222. dovecot (1:2.3.4.1-5+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Fix CVE-2019-11500 - lib-imap: Don't accept strings with NULs - lib-imap: Make sure str_unescape() won't be writing past allocated memory - lib-managesieve: Don't accept strings with NULs - lib-managesieve: Make sure str_unescape() won't be writing past allocated memory dovecot (1:2.3.4.1-5+deb10u1~bpo9+1) stretch-backports; urgency=medium . * Rebuild for stretch-backports. . dovecot (1:2.3.4.1-5+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Fix CVE-2019-11500 - lib-imap: Don't accept strings with NULs - lib-imap: Make sure str_unescape() won't be writing past allocated memory - lib-managesieve: Don't accept strings with NULs - lib-managesieve: Make sure str_unescape() won't be writing past allocated memory . dovecot (1:2.3.4.1-5) unstable; urgency=medium . * [bd00402] Fix CVE-2019-11494 and CVE-2019-11499 (Closes: #928235) - submission-login: fix null pointer dereference when client disconnects during authentication (CVE-2019-11494) - submission-login: fix assert-crash when receiving an invalid authentication message over TLS (CVE-2019-11499) dpdk (18.11.2-2+deb10u1) buster; urgency=medium . * Rebuild for buster. . dpdk (18.11.2-2) unstable; urgency=medium . [ Christian Ehrhardt ] * d/control: set VCS to be Salsa based * d/README.source: add info about salsa git usage . dpdk (18.11.2-1) experimental; urgency=medium . [ Christian Ehrhardt ] * Merge stable update to 18.11.2; For a list of changes see http://doc.dpdk.org/guides-18.11/rel_notes/release_18_11.html#id1 - refresh 0004-build-bump-minimum-Meson-version-to-0.47.1.patch for 18.11.2 - drop changes upstream in 18.11.2 0002-build-use-generic-march-on-arm64-when-using-default.patch lp-1827102-kni-fix-build-with-Linux-5.1.patch . [ Santiago Ruano Rincón ] * debian/rules: clean doc files . dpdk (18.11.1-3) experimental; urgency=medium . * d/control: add dependencies to libdpdk-dev: libelf-dev and libjansson-dev to avoid pkg-config issues * d/control: drop unused build dependency to libcap-dev . dpdk (18.11.1-2) experimental; urgency=medium . [ Christian Ehrhardt ] * d/control: drop shlibs:Depends from dpdk as it has no binaries anymore * d/p/lp-1827102-kni-fix-build-with-Linux-5.1.patch fix kni DKMS build with Linux 5.1 kernels (LP: #1827102) . [ Luca Boccassi ] * Bump Standards-Version to 4.3.0, no changes. . dpdk (18.11.1-1) experimental; urgency=medium . [ Christian Ehrhardt ] * Merge stable update to 18.11.1; For a list of changes see https://doc.dpdk.org/guides-18.11/rel_notes/release_18_11.html - refresh 0004-build-bump-minimum-Meson-version-to-0.47.1.patch for 18.11.1 - drop changes upstream in 18.11.1 0001-doc-fix-garbage-text-in-generated-HTML-guides.patch 0003-build-mention-march-in-pkg-config-description.patch 0001-kni-fix-build-for-dev_open-in-Linux-5.0.patch 0002-kni-fix-build-for-igb_ndo_bridge_setlink-in-Linux-5..patch * d/control: fix usability issue with mlx PMDs which might need rdma-core to be installed. In most cases users will want this, to be able to drop rdma-core if unwanted in some cases this is only a recommends added to librte-pmd-mlx4-18.11 and librte-pmd-mlx5-18.11 (Closes: #925141) dpdk (18.11.2-2) unstable; urgency=medium . [ Christian Ehrhardt ] * d/control: set VCS to be Salsa based * d/README.source: add info about salsa git usage . dpdk (18.11.2-1) experimental; urgency=medium . [ Christian Ehrhardt ] * Merge stable update to 18.11.2; For a list of changes see http://doc.dpdk.org/guides-18.11/rel_notes/release_18_11.html#id1 - refresh 0004-build-bump-minimum-Meson-version-to-0.47.1.patch for 18.11.2 - drop changes upstream in 18.11.2 0002-build-use-generic-march-on-arm64-when-using-default.patch lp-1827102-kni-fix-build-with-Linux-5.1.patch . [ Santiago Ruano Rincón ] * debian/rules: clean doc files . dpdk (18.11.1-3) experimental; urgency=medium . * d/control: add dependencies to libdpdk-dev: libelf-dev and libjansson-dev to avoid pkg-config issues * d/control: drop unused build dependency to libcap-dev . dpdk (18.11.1-2) experimental; urgency=medium . [ Christian Ehrhardt ] * d/control: drop shlibs:Depends from dpdk as it has no binaries anymore * d/p/lp-1827102-kni-fix-build-with-Linux-5.1.patch fix kni DKMS build with Linux 5.1 kernels (LP: #1827102) . [ Luca Boccassi ] * Bump Standards-Version to 4.3.0, no changes. . dpdk (18.11.1-1) experimental; urgency=medium . [ Christian Ehrhardt ] * Merge stable update to 18.11.1; For a list of changes see https://doc.dpdk.org/guides-18.11/rel_notes/release_18_11.html - refresh 0004-build-bump-minimum-Meson-version-to-0.47.1.patch for 18.11.1 - drop changes upstream in 18.11.1 0001-doc-fix-garbage-text-in-generated-HTML-guides.patch 0003-build-mention-march-in-pkg-config-description.patch 0001-kni-fix-build-for-dev_open-in-Linux-5.0.patch 0002-kni-fix-build-for-igb_ndo_bridge_setlink-in-Linux-5..patch * d/control: fix usability issue with mlx PMDs which might need rdma-core to be installed. In most cases users will want this, to be able to drop rdma-core if unwanted in some cases this is only a recommends added to librte-pmd-mlx4-18.11 and librte-pmd-mlx5-18.11 (Closes: #925141) dpdk (18.11.2-1) experimental; urgency=medium . [ Christian Ehrhardt ] * Merge stable update to 18.11.2; For a list of changes see http://doc.dpdk.org/guides-18.11/rel_notes/release_18_11.html#id1 - refresh 0004-build-bump-minimum-Meson-version-to-0.47.1.patch for 18.11.2 - drop changes upstream in 18.11.2 0002-build-use-generic-march-on-arm64-when-using-default.patch lp-1827102-kni-fix-build-with-Linux-5.1.patch . [ Santiago Ruano Rincón ] * debian/rules: clean doc files dpdk (18.11.1-3) experimental; urgency=medium . * d/control: add dependencies to libdpdk-dev: libelf-dev and libjansson-dev to avoid pkg-config issues * d/control: drop unused build dependency to libcap-dev dpdk (18.11.1-2) experimental; urgency=medium . [ Christian Ehrhardt ] * d/control: drop shlibs:Depends from dpdk as it has no binaries anymore * d/p/lp-1827102-kni-fix-build-with-Linux-5.1.patch fix kni DKMS build with Linux 5.1 kernels (LP: #1827102) . [ Luca Boccassi ] * Bump Standards-Version to 4.3.0, no changes. dpdk (18.11.1-1) experimental; urgency=medium . [ Christian Ehrhardt ] * Merge stable update to 18.11.1; For a list of changes see https://doc.dpdk.org/guides-18.11/rel_notes/release_18_11.html - refresh 0004-build-bump-minimum-Meson-version-to-0.47.1.patch for 18.11.1 - drop changes upstream in 18.11.1 0001-doc-fix-garbage-text-in-generated-HTML-guides.patch 0003-build-mention-march-in-pkg-config-description.patch 0001-kni-fix-build-for-dev_open-in-Linux-5.0.patch 0002-kni-fix-build-for-igb_ndo_bridge_setlink-in-Linux-5..patch * d/control: fix usability issue with mlx PMDs which might need rdma-core to be installed. In most cases users will want this, to be able to drop rdma-core if unwanted in some cases this is only a recommends added to librte-pmd-mlx4-18.11 and librte-pmd-mlx5-18.11 (Closes: #925141) . [ Luca Boccassi ] * Bump Standards-Version to 4.3.0, no changes. dput-ng (1.25+deb10u1) buster; urgency=medium . [ Kunal Mehta ] * Add buster-backports and stretch-backports-sloppy codenames. MR: !7 . [ Mattia Rizzolo ] * autopkgtest: add missing test dependencies and restrictions. e2fsprogs (1.44.5-1+deb10u1) buster; urgency=medium . * Fix e4defrag crashes on 32-bit architectures (Closes: #920767) enigmail (2:2.0.12+ds1-1~deb10u1) buster; urgency=medium . * upload upstream version to Debian stable - addresses CVE-2019-12269 (Closes: #929363) - uses "advanced" version of WKD - switches to using keys.openpgp.org as the default keyserver - avoid decrypting/verifying quoted inline-PGP - un-mangling MS Exchange: ensure that message structure is as expected to avoid data loss - only include Subject: line in legacy-display part for protected headers * move Vcs-Git fields to DEP-14 branch debian/buster * refresh patches enigmail (2:2.0.11+ds1-2) unstable; urgency=medium . * minimize legacy-display protected headers for encrypted mails enigmail (2:2.0.11+ds1-1) unstable; urgency=medium . * new upstream release * refresh patches * use the older import-show with --dry-run instead of show-only epiphany-browser (3.32.1.2-3~deb10u1) buster; urgency=medium . * Team upload * Rebuild for Debian 10 - d/gbp.conf: Set packaging branch to debian/buster . epiphany-browser (3.32.1.2-3) unstable; urgency=medium . * Team upload * d/gbp.conf: Set packaging branch to debian/unstable and upstream branch to upstream/3.32.x * d/p/lib-Give-libephymisc-a-RUNPATH-pointing-for-our-private-l.patch: Ensure that the web extension loads our bundled copy of libdazzle, even though it only depends on libdazzle transitively via libephymisc. Thanks to Carlos Alberto Lopez Perez for clarifying precisely which component was failing to load. (Closes: #927731) erlang-p1-pkix (1.0.0-3+deb10u1) buster; urgency=medium . * Added upstream patch to fix handling of GnuTLS certificates (Closes: #933040) exim4 (4.92-8+deb10u1) buster-security; urgency=high . * Fix remote command execution vulnerability related to "${sort}"-expansion. CVE-2019-13917 OVE-20190718-0006 exim4 (4.92-8+deb10u1~bpo9+1) stretch-backports; urgency=medium . * Rebuild for stretch-backports. . exim4 (4.92-8+deb10u1) buster-security; urgency=high . * Fix remote command execution vulnerability related to "${sort}"-expansion. CVE-2019-13917 OVE-20190718-0006 facter (3.11.0-2+deb10u1) buster; urgency=medium . * Fix parsing of Linux route non-kv flags (e.g. onlink) (Closes: #918250) fdroidserver (1.1.4-1~deb10u1) buster; urgency=medium . * New upstream release targeted for Debian/buster * remove upstreamed patches fdroidserver (1.1.4-1~deb10u1~bpo9+1) stretch-backports; urgency=medium . * rebuild for stretch-backports fdroidserver (1.1.3-3) unstable; urgency=medium . * conditionally disable tests that can't work with apksigner fdroidserver (1.1.3-2) unstable; urgency=medium . * fix Recommends test, MD5 test fails with apksigner present fdroidserver (1.1.3-1) unstable; urgency=medium . * New upstream version 1.1.3 to fix test suite fdroidserver (1.1.2-1) unstable; urgency=medium . * New upstream version 1.1.2 (Closes: #929905) ffmpeg (7:4.1.4-1~deb10u1) buster-security; urgency=medium . * New upstream release fig2dev (1:3.2.7a-5+deb10u1) buster; urgency=medium . * 40_circle_arrowhead: Do not segfault on circle/half circle arrowheads with a magnification larger 42. This fixes CVE-2019-14275. (Closes: #933075). * Adapt salsa CI pipeline to buster release. firefox-esr (60.8.0esr-1~deb10u1) buster-security; urgency=medium . * New upstream release. * Fixes for mfsa2019-22, also known as: CVE-2019-9811, CVE-2019-11711, CVE-2019-11712, CVE-2019-11713, CVE-2019-11729, CVE-2019-11715, CVE-2019-11717, CVE-2019-11719, CVE-2019-11730, CVE-2019-11709. firefox-esr (60.8.0esr-1~deb9u1) stretch-security; urgency=medium . * New upstream release. * Fixes for mfsa2019-22, also known as: CVE-2019-9811, CVE-2019-11711, CVE-2019-11712, CVE-2019-11713, CVE-2019-11729, CVE-2019-11715, CVE-2019-11717, CVE-2019-11719, CVE-2019-11730, CVE-2019-11709. firmware-nonfree (20190114-2) buster; urgency=medium . [ Ben Hutchings ] * Update to linux-support 4.19.0-5 * amd-graphics: Trigger update-initramfs when installed (Closes: #928510) * cavium, netronome: Trigger update-initramfs when installed * atheros: Add Qualcomm Atheros QCA9377 rev 1.0 firmware version WLAN.TF.2.1-00021-QCARMSWP-1 (Closes: #903437, #919632, #927917) * realtek: Add Realtek RTL8822CU Bluetooth firmware * atheros: Revert change of QCA9377 rev 1.0 firmware in 20180518-1 (Closes: #919632) . [ Raphaël Hertzog ] * misc-nonfree: Add firmware for MediaTek MT76x0/MT76x2u wireless chips (Closes: #919452) * misc-nonfree: Add firmware for MediaTek MT7622/MT7668 bluetooth chips . [ Romain Perier ] * misc-nonfree: Add GV100 signed firmware (Closes: #928672) freeorion (0.4.8-1+deb10u1) buster; urgency=medium . * Backport "Fix save or load game crash" patch to Buster. fuse-emulator (1.5.7+dfsg1-2~deb10u1) buster; urgency=medium . * Rebuild for buster. . fuse-emulator (1.5.7+dfsg1-2) unstable; urgency=medium . * debian/patches/prefer-x11-over-wayland.patch: - Prefer the X11 GDK backend over the Wayland one, as the latter is known to have problems (see upstream bug #367) (Closes: #872994). * debian/patches/show-fuse-icon.patch: - Show the Fuse icon on the GTK window and About dialog. fusiondirectory (1.2.3-4+deb10u1) buster; urgency=medium . * debian/patches: + Add 0001_CVE-2019-11187_stricter-ldap-error-check.patch. Perform stricter check on LDAP success/failure (CVE-2019-11187). * debian/control: + Add to D (fusiondirectory): php-xml. (Closes: #931959). gcab (1.2-3~deb10u1) buster; urgency=medium . * Rebuild for Buster. ghostscript (9.27~dfsg-2+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * protect use of .forceput with executeonly (CVE-2019-10216) glib2.0 (2.58.3-2+deb10u1) buster; urgency=medium . * Team upload * d/p/keyfile-settings-Use-tighter-permissions.patch: Backport patch from upstream 2.60.0 so that the GKeyFile settings backend creates ~/.config and configuration files with restrictive permissions (Closes: #931234, CVE-2019-13012) * d/gbp.conf: Swap branch to debian/buster gnome-bluetooth (3.28.2-4~deb10u1) buster; urgency=medium . * Team upload * d/p/client-Disconnect-all-signal-handlers-when-client-is-disp.patch: Mark as applied upstream for 3.33.91 * d/gbp.conf: Set packaging branch to debian/buster * Rebuild for buster . gnome-bluetooth (3.28.2-4) unstable; urgency=medium . * Team upload * d/p/client-Disconnect-all-signal-handlers-when-client-is-disp.patch: Add proposed patch to avoid GNOME Shell crashes when gnome-shell-extension-bluetooth-quick-connect is used (Closes: #932405) * d/gbp.conf: Set Debian branch to debian/unstable gnome-control-center (1:3.30.3-2~deb10u1) buster; urgency=medium . * Team upload * Rebuild for Debian 10 * d/gbp.conf: Set packaging branch to debian/buster . gnome-control-center (1:3.30.3-2) unstable; urgency=medium . * Team upload * d/patches: Mark more patches as forwarded upstream * d/patches: Sort non-upstreamable patches to end of patch series * d/patches: Update to upstream gnome-3-30 commit 3.30.3-7-gf41ae4269 - d/p/info-Fix-crashes-when-retrieving-disk-size.patch: Fix crash when the Details -> Overview (info-overview) panel is selected (Closes: #933529) - d/p/universal-access-Fix-duplicate-settings-call.patch, d/p/universal-access-Fix-leaks-checking-settings.patch: Fix memory leaks in Universal Access panel - d/p/universal-access-Don-t-use-widget-names-for-GSettings-key.patch: Fix a regression that caused the Universal Access -> Zoom mouse tracking options to have no effect - Update translations: is, ja * d/gbp.conf: Set branch to debian/unstable gnupg2 (2.2.12-1+deb10u1) buster; urgency=medium . * drop unneeded patch for printing revocation certificates * backport bugfix and stability patches from upstream 2.2.13 * backport bugfix and stability patches from upstream 2.2.14 * backport documentation, stability, ssh, and WKD patches from upstream 2.2.15 * backport documentation and bugfix patches from upstream 2.2.16 * import bugfixes and cleanup around secret key handling from 2.2.14 * backport bugfixes, documentation, WKD, and keyserver fixes from 2.2.17 * import efficiency and security fixes from upstream STABLE-BRANCH-2-2 * avoid using SKS pool CA unless the keyserver is hkps.pool.sks-keyservers.net * drop import-clean from default keyserver options, to avoid data loss * use keys.openpgp.org as the default keyserver * enable merging certificate updates even if update has no user ID * update Vcs-Git: to point to debian/buster branch * Adopt migrate-pubring-from-classic-gpg robustness fixes (Closes: #931385) * add new CI test: debian/tests/simple-tests * debian/tests/gpgv-win32: make arch-specific (Closes: #905563) gnupg2 (2.2.12-1+deb10u1~bpo9+1) stretch-backports; urgency=medium . * Rebuild for stretch-backports. * debian/control: - Update Build-Depends: libgpg-error-dev (>= 1.35), due to the following patches depends on it, which introduces gpgrt.h: debian/patches/from-2.2.13/Silence-compiler-warnings-new-with-gcc-8.patch gnuplot (5.2.6+dfsg1-1+deb10u1) buster; urgency=medium . * [7b7626a] Fix incomplete/unsafe initialization of ARGV array. (Closes: #926658) golang-1.11 (1.11.6-1+deb10u1) buster-security; urgency=high . * Fix Denial of Service vulnerabilities in the HTTP/2 implementation. https://github.com/golang/go/issues/33631 CVE-2019-9512, CVE-2019-9514 * Fix multiple Parsing Issues in URL.Parse https://github.com/golang/go/issues/29098 CVE-2019-14809 gosa (2.7.4+reloaded3-8+deb10u1) buster; urgency=medium . * debian/changelog: + post-upload fix of patch-1045 explanation... * debian/patches: + Add 1046_CVE-2019-11187_stricter-ldap-error-check.patch. Perform stricter check on LDAP success/failure (CVE-2019-11187). h2o (2.2.5+dfsg2-2+deb10u1) buster-security; urgency=high . * [d9b7843] Fix HTTP/2 DoS attack vulnerabilities. CVE-2019-9512 CVE-2019-9514 CVE-2019-9515. (Closes: #934886) hfst (3.15.0-1.1~deb10u1) buster; urgency=medium . * Non-maintainer upload. * Rebuild for buster. . hfst (3.15.0-1.1) unstable; urgency=medium . * Non-maintainer upload. * hfst: Add Breaks: libhfst45-dev for smoother upgrades from stretch. (Closes: #931169) initramfs-tools (0.133+deb10u1) buster; urgency=medium . [ Ben Hutchings ] * [998371a] hooks/resume: Disable resume when there are no suitable swap devices. Thanks to Trek (Closes: #916696) * [d653197] hook-functions: Include all keyboard driver modules when MODULES=most. Thanks to Alper Nebi Yasak * [5681ccb] hook-functions: Include cros_ec_spi and SPI drivers when MODULES=most. Thanks to Alper Nebi Yasak * [8d62542] resume: Set plymouth status only if there is a suspend image (Closes: #928736) * [073586a] hook-functions: Fix copy_file with target of "/bin" (Closes: #928689) * [a78d9a5] unmkinitramfs: Work around lz4cat filename check. Thanks to Dimitri John Ledkov (Closes: #930366) * [48a35de] update-initramfs(8): Update description of "-k all" option . [ Alper Nebi Yasak ] * [1abb6f6] hook-functions: Include extcon-usbc-cros-ec when MODULES=most * [db6d4e2] hook-functions: Include extcon drivers when MODULES=dep . [ Uwe Kleine-König ] * [360fb48] mkinitramfs: suppress warning when using bzip2 or lzma (Closes: #930754) jython (2.7.1+repack1-4~deb10u1) buster; urgency=medium . * Non-maintainer upload. * Rebuild for buster. . jython (2.7.1+repack1-4) unstable; urgency=medium . * Team upload. * Preserve the backward compatibility with Java 7 (Closes: #934111) * Adjusted the Vcs-* fields kconfig (5.54.0-1+deb10u1) buster-security; urgency=medium . * CVE-2019-14744 lacme (0.5-1+deb10u1) buster; urgency=medium . * Link to RFC 8555 instead of the ACME I-D URL. * Issue GET and POST-as-GET requests (RFC 8555 sec. 6.3) for the authorizations, order and certificate URLs. Let's Encrypt will remove support of unauthenticated GETs from the V2 API on 01 Nov 2019. Closes: #935799. libblockdev (2.20-7+deb10u1) buster; urgency=medium . [ intrigeri ] * Use existing cryptsetup API for changing keyslot passphrase. Cherry-pick upstream fix to use existing cryptsetup API for atomically changing a keyslot passphrase, instead of deleting the old keyslot before adding the new one. This avoids data loss when attempting to change the passphrase of a LUKS2 device via udisks2, e.g. from GNOME Disks. Deleting a keyslot and then adding one is risky: if anything goes wrong before the new keyslot is successfully added, no usable keyslot is left and the device cannot be unlocked anymore. There's little chances this causes actual problems with LUKS1, but LUKS2 defaults to the memory-hard Argon2 key derivation algorithm, which is implemented in cryptsetup with the assumption that it runs as root with no MEMLOCK ulimit; this assumption is wrong when run by udisks2.service under LimitMEMLOCK=65536, which breaks adding the new keyslot, and makes us hit the problematic situation (user data loss) every time. With this change, changing a LUKS2 passphrase via udisks2 will still fail in some cases, until the MEMLOCK ulimit problem is solved in cryptsetup or workaround'ed in udisks2. But at least, if it fails, it will fail _atomically_ and the original passphrase will still work. (Closes: #928893) libdatetime-timezone-perl (1:2.23-1+2019b) buster; urgency=medium . * Update to Olson database version 2019b. This update contains contemporary changes for Brazil and Palestine. libjavascript-beautifier-perl (0.25-1+deb10u1) buster; urgency=medium . * Team upload * Add missing "=>" operator (ES6) (Closes: #931379) libreoffice (1:6.1.5-3+deb10u3) buster-security; urgency=high . * debian/patches/expand-LibreLogo-checks-to-global-events.diff, debian/patches/decode-url-escape-codes-and-check-each-path-segment.diff: debian/patches/keep-name-percent-encoded.diff debian/patches/Properly-obtain-location.diff: backport from libreoffice-6-3-0 branch - more fixes for CVE-2019-9848 and CVE-2018-16858 (CVE-2019-9850/CVE-2019-9851) libreoffice (1:6.1.5-3+deb10u2) buster-security; urgency=high . * debian/patches/More-uses-of-referer-URL-with-SvxBrushItem.diff: add patch from libreoffice-6-2 branch to fix CVE-2019-9849 libreoffice (1:6.1.5-3+deb10u2~bpo9+1) stretch-backports; urgency=high . * Rebuild for stretch-backports. . * debian/patches/apparmor-{cleanups,mesa,opencl}.diff, debian/patches/series, debian/rules: revert this and apparmor >= 2.13.1 recommends; stretch doesn't have apparmor on per default but let's go sure * debian/control.in, debian/patches/series, debian/libreoffice-base-drivers.NEWS, debian/patches/use-mariadb-java-instead-of-mysql-java.diff: revert for stretch-backports... * debian/patches/disableClassPathURLCheck.diff: revert configure check for stretch-backports . * tarballs/*, debian/source/include-binaries: include needed internal stuff . libreoffice (1:6.1.5-3+deb10u2) buster-security; urgency=high . * debian/patches/More-uses-of-referer-URL-with-SvxBrushItem.diff: add patch from libreoffice-6-2 branch to fix CVE-2019-9849 . libreoffice (1:6.1.5-3+deb10u1) buster-security; urgency=high . * debian/patches/sanitize-LibreLogo-calls.diff, debian/patches/explictly-exclude-LibreLogo-from-XScript-usage.diff: add from git; fixing CVE-2019-9848 libreoffice (1:6.1.5-3+deb10u1) buster-security; urgency=high . * debian/patches/sanitize-LibreLogo-calls.diff, debian/patches/explictly-exclude-LibreLogo-from-XScript-usage.diff: add from git; fixing CVE-2019-9848 libsdl2-image (2.0.4+dfsg1-1+deb10u1) buster; urgency=medium . * Non-maintainer upload. * Multiple security issues (Closes: #932754): - CVE-2019-5058: buffer overflow in do_layer_surface (IMG_xcf.c). - CVE-2019-5052: integer overflow and subsequent buffer overflow in IMG_pcx.c. - CVE-2019-7635: heap buffer overflow in Blit1to4 (IMG_bmp.c). - CVE-2019-12216, CVE-2019-12217, CVE-2019-12218, CVE-2019-12219, CVE-2019-12220, CVE-2019-12221, CVE-2019-12222, CVE-2019-5051: OOB R/W in IMG_LoadPCX_RW (IMG_pcx.c). libtk-img (1:1.4.8+dfsg-1+deb10u1) buster; urgency=medium . * Switch from the internal copies of Jpeg, Zlib and PixarLog codecs to the libtiff ones (closes: #931422). libxslt (1.1.32-2.1~deb10u1) buster; urgency=medium . * Rebuild for buster . libxslt (1.1.32-2.1) unstable; urgency=medium . * Non-maintainer upload. * Fix security framework bypass (CVE-2019-11068) (Closes: #926895, #933743) * Fix uninitialized read of xsl:number token (CVE-2019-13117) (Closes: #931321, #933743) * Fix uninitialized read with UTF-8 grouping chars (CVE-2019-13118) (Closes: #931320, #933743) linux (4.19.67-2) buster; urgency=medium . [ Salvatore Bonaccorso ] * dm: disable DISCARD if the underlying storage no longer supports it (Closes: #934331) * xfs: fix missing ILOCK unlock when xfs_setattr_nonsize fails due to EDQUOT (CVE-2019-15538) . [ Ben Hutchings ] * KVM: Ignore ABI changes * [ppc64el] Disable PPC_TRANSACTIONAL_MEM (Closes: #866122) * [ppc64el] Avoid ABI change for disabling TM * netfilter: conntrack: Use consistent ct id hash calculation (fixes regression in 4.19.44) . [ Cyril Brulebois ] * [arm] Backport DTB support for Rasperry Pi Compute Module 3. * [arm64] Backport DTB support for Rasperry Pi Compute Module 3. linux (4.19.67-1) buster; urgency=medium . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.38 - netfilter: nft_compat: use refcnt_t type for nft_xt reference count - netfilter: nft_compat: make lists per netns - netfilter: nf_tables: split set destruction in deactivate and destroy phase - netfilter: nft_compat: destroy function must not have side effects - netfilter: nf_tables: warn when expr implements only one of activate/deactivate - netfilter: nf_tables: unbind set in rule from commit path - netfilter: nft_compat: don't use refcount_inc on newly allocated entry - netfilter: nft_compat: use .release_ops and remove list of extension - netfilter: nf_tables: fix set double-free in abort path - netfilter: nf_tables: bogus EBUSY when deleting set after flush - netfilter: nf_tables: bogus EBUSY in helper removal from transaction - net/ibmvnic: Fix RTNL deadlock during device reset - net: mvpp2: fix validate for PPv2.1 - ext4: fix some error pointer dereferences - tipc: handle the err returned from cmd header function - loop: do not print warn message if partition scan is successful - [armhf,arm64] drm/rockchip: fix for mailbox read validation. - vsock/virtio: fix kernel panic from virtio_transport_reset_no_sock - ipvs: fix warning on unused variable - [ppc64el] vdso32: fix CLOCK_MONOTONIC on PPC64 - [armhf,arm64] net: dsa: mv88e6xxx: add call to mv88e6xxx_ports_cmode_init to probe for new DSA framework - cifs: fix memory leak in SMB2_read - cifs: do not attempt cifs operation on smb2+ rename error - tracing: Fix a memory leak by early error exit in trace_pid_write() - zram: pass down the bvec we need to read into in the work struct - trace: Fix preempt_enable_no_resched() abuse - IB/rdmavt: Fix frwr memory registration - RDMA/mlx5: Do not allow the user to write to the clock page - sched/numa: Fix a possible divide-by-zero - ceph: only use d_name directly when parent is locked - ceph: ensure d_name stability in ceph_dentry_hash() - ceph: fix ci->i_head_snapc leak - nfsd: Don't release the callback slot unless it was actually held - sunrpc: don't mark uninitialised items as VALID. - [x86] perf/intel: Update KBL Package C-state events to also include PC8/PC9/PC10 counters - Input: synaptics-rmi4 - write config register values to the right offset - [armhf] 8857/1: efi: enable CP15 DMB instructions before cleaning the cache - [ppc64el] mm/radix: Make Radix require HUGETLB_PAGE - [arm*] drm/vc4: Fix memory leak during gpu reset. - [x86] Revert "drm/i915/fbdev: Actually configure untiled displays" - USB: Add new USB LPM helpers - USB: Consolidate LPM checks to avoid enabling LPM twice - slip: make slhc_free() silently accept an error pointer - [x86] intel_th: gth: Fix an off-by-one in output unassigning - fs/proc/proc_sysctl.c: Fix a NULL pointer dereference - workqueue: Try to catch flush_work() without INIT_WORK(). - sched/deadline: Correctly handle active 0-lag timers - NFS: Forbid setting AF_INET6 to "struct sockaddr_in"->sin_family. - netfilter: ebtables: CONFIG_COMPAT: drop a bogus WARN_ON - fm10k: Fix a potential NULL pointer dereference - tipc: check bearer name with right length in tipc_nl_compat_bearer_enable - tipc: check link name with right length in tipc_nl_compat_link_set - net: netrom: Fix error cleanup path of nr_proto_init - net/rds: Check address length before reading address family - rxrpc: fix race condition in rxrpc_input_packet() - [x86] retpolines: Raise limit for generating indirect calls from switch-case - [x86] retpolines: Disable switch jump tables when retpolines are enabled - mm: Fix warning in insert_pfn() - [x86] fpu: Don't export __kernel_fpu_{begin,end}() - ipv4: add sanity checks in ipv4_link_failure() - ipv4: set the tcp_min_rtt_wlen range from 0 to one day - net/mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query - net: rds: exchange of 8K and 1M pool - net/rose: fix unbound loop in rose_loopback_timer() - [armhf,arm64] net: stmmac: move stmmac_check_ether_addr() to driver probe - team: fix possible recursive locking when add slaves - [arm64] net: hns: Fix WARNING when hns modules installed - net/mlx5e: Fix the max MTU check in case of XDP - net/mlx5e: Fix use-after-free after xdp_return_frame https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.39 - selinux: use kernel linux/socket.h for genheaders and mdp - Revert "ACPICA: Clear status of GPEs before enabling them" - [arm*] dts: bcm283x: Fix hdmi hpd gpio pull - [s390x] limit brk randomization to 32MB - net: ieee802154: fix a potential NULL pointer dereference - ieee802154: hwsim: propagate genlmsg_reply return code - [armhf,arm64] net: stmmac: don't set own bit too early for jumbo frames - qlcnic: Avoid potential NULL pointer dereference - xsk: fix umem memory leak on cleanup - netfilter: nft_set_rbtree: check for inactive element after flag mismatch - netfilter: bridge: set skb transport_header before entering NF_INET_PRE_ROUTING - netfilter: fix NETFILTER_XT_TARGET_TEE dependencies - netfilter: ip6t_srh: fix NULL pointer dereferences - [s390x] qeth: fix race when initializing the IP address table - [armhf] imx51: fix a leaked reference by adding missing of_node_put - [arm64] KVM: Reset the PMU in preemptible context - [armhf,arm64] KVM: vgic-its: Take the srcu lock when writing to guest memory - [armhf,arm64] KVM: vgic-its: Take the srcu lock when parsing the memslots - [x86] usb: dwc3: pci: add support for Comet Lake PCH ID - usb: gadget: net2280: Fix overrun of OUT messages - usb: gadget: net2280: Fix net2280_dequeue() - [x86] i2c: i801: Add support for Intel Comet Lake - staging: rtl8188eu: Fix potential NULL pointer dereference of kcalloc - staging: rtlwifi: rtl8822b: fix to avoid potential NULL pointer dereference - staging: rtl8712: uninitialized memory in read_bbreg_hdl() - staging: rtlwifi: Fix potential NULL pointer dereference of kzalloc - [arm64] net: macb: Add null check for PCLK and HCLK - net/sched: don't dereference a->goto_chain to read the chain index - [armhf] dts: imx6qdl: Fix typo in imx6qdl-icore-rqs.dtsi - [armhf,arm64] drm/tegra: hub: Fix dereference before check - NFS: Fix a typo in nfs_init_timeout_values() - drm: Fix drm_release() and device unplug - [arm64] drm/meson: Fix invalid pointer in meson_drv_unbind() - [arm64] drm/meson: Uninstall IRQ handler - scsi: mpt3sas: Fix kernel panic during expander reset - scsi: aacraid: Insure we don't access PCIe space during AER/EEH - scsi: qla4xxx: fix a potential NULL pointer dereference - leds: trigger: netdev: fix refcnt leak on interface rename - [x86] realmode: Don't leak the trampoline kernel address - usb: u132-hcd: fix resource leak - ceph: fix use-after-free on symlink traversal - [s390x] scsi: zfcp: reduce flood of fcrscn1 trace records on multi- element RSCN - [x86] mm: Don't exceed the valid physical address space - libata: fix using DMA buffers on stack - gpio: of: Fix of_gpiochip_add() error path - nvme-multipath: relax ANA state check - perf machine: Update kernel map address and re-order properly - [x86] iommu/amd: Reserve exclusion range in iova-domain - ptrace: take into account saved_sigmask in PTRACE{GET,SET}SIGMASK - leds: trigger: netdev: use memcpy in device_name_store https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.40 - ipv4: ip_do_fragment: Preserve skb_iif during fragmentation - ipv6: A few fixes on dereferencing rt->from - ipv6: fix races in ip6_dst_destroy() - ipv6/flowlabel: wait rcu grace period before put_pid() - ipv6: invert flowlabel sharing check in process and user mode - l2ip: fix possible use-after-free - l2tp: use rcu_dereference_sk_user_data() in l2tp_udp_encap_recv() - [armhf] net: dsa: bcm_sf2: fix buffer overflow doing set_rxnfc - net: phy: marvell: Fix buffer overrun with stats counters - rxrpc: Fix net namespace cleanup - sctp: avoid running the sctp state machine recursively - packet: validate msg_namelen in send directly - bnxt_en: Improve multicast address setup logic. - bnxt_en: Free short FW command HWRM memory in error path in bnxt_init_one() - bnxt_en: Fix uninitialized variable usage in bnxt_rx_pkt(). - [x86] KVM: Whitelist port 0x7e for pre-incrementing %rip - [x86] KVM: nVMX: Fix size checks in vmx_set_nested_state - ALSA: line6: use dynamic buffers - ath10k: Drop WARN_ON()s that always trigger during system resume https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.41 - iwlwifi: fix driver operation for 5350 - mwifiex: Make resume actually do something useful again on SDIO cards - mac80211: don't attempt to rename ERR_PTR() debugfs dirs - [armhf] i2c: imx: correct the method of getting private data in notifier_call - i2c: Remove unnecessary call to irq_find_mapping - i2c: Clear client->irq in i2c_device_remove - i2c: Allow recovery of the initial IRQ by an I2C client device. - i2c: Prevent runtime suspend of adapter when Host Notify is required - [x86] ALSA: hda/realtek - Add new Dell platform for headset mode - [x86] ALSA: hda/realtek - Fixed Dell AIO speaker noise - [x86] ALSA: hda/realtek - Apply the fixup for ASUS Q325UAR - USB: yurex: Fix protection fault after device removal - USB: w1 ds2490: Fix bug caused by improper use of altsetting array - USB: dummy-hcd: Fix failure to give back unlinked URBs - usb: usbip: fix isoc packet num validation in get_pipe - USB: core: Fix unterminated string returned by usb_string() - USB: core: Fix bug caused by duplicate interface PM usage counter - nvme-loop: init nvmet_ctrl fatal_err_work when allocate - [arm64] dts: rockchip: fix rk3328-roc-cc gmac2io tx/rx_delay - HID: logitech: check the return value of create_singlethread_workqueue - HID: debug: fix race condition with between rdesc_show() and device removal - rtc: cros-ec: Fail suspend/resume if wake IRQ can't be configured - batman-adv: Reduce claim hash refcnt only for removed entry - batman-adv: Reduce tt_local hash refcnt only for removed entry - batman-adv: Reduce tt_global hash refcnt only for removed entry - batman-adv: fix warning in function batadv_v_elp_get_throughput - [armhf] dts: rockchip: Fix gpu opp node names for rk3288 - [arm64] reset: meson-audio-arb: Fix missing .owner setting of reset_controller_dev - igb: Fix WARN_ONCE on runtime suspend - HID: quirks: Fix keyboard + touchpad on Lenovo Miix 630 - net/mlx5: E-Switch, Fix esw manager vport indication for more vport commands - bonding: show full hw address in sysfs for slave entries - [armhf,arm64] net: stmmac: use correct DMA buffer size in the RX descriptor - [armhf,arm64] net: stmmac: ratelimit RX error logs - [armhf,arm64] net: stmmac: don't stop NAPI processing when dropping a packet - [armhf,arm64] net: stmmac: don't overwrite discard_frame status - [armhf,arm64] net: stmmac: fix dropping of multi-descriptor RX frames - [armhf,arm64] net: stmmac: don't log oversized frames - jffs2: fix use-after-free on symlink traversal - debugfs: fix use-after-free on symlink traversal - [armhf] mfd: twl-core: Disable IRQ while suspended - block: use blk_free_flush_queue() to free hctx->fq in blk_mq_init_hctx - HID: input: add mapping for Assistant key - vfio/pci: use correct format characters - scsi: core: add new RDAC LENOVO/DE_Series device - [x86] scsi: storvsc: Fix calculation of sub-channel count - [arm64] fix wrong check of on_sdei_stack in nmi context - [arm64] net: hns: fix KASAN: use-after-free in hns_nic_net_xmit_hw() - [arm64] net: hns: Use NAPI_POLL_WEIGHT for hns driver - [arm64] net: hns: Fix probabilistic memory overwrite when HNS driver initialized - [arm64] net: hns: fix ICMP6 neighbor solicitation messages discard problem - [arm64] net: hns: Fix WARNING when remove HNS driver with SMMU enabled - libcxgb: fix incorrect ppmax calculation - [x86] KVM: SVM: prevent DBG_DECRYPT and DBG_ENCRYPT overflow - hugetlbfs: fix memory leak for resv_map - fs: stream_open - opener for stream-like files so that read and write can run simultaneously without deadlock - [armel] orion: don't use using 64-bit DMA masks - block: pass no-op callback to INIT_WORK(). - [x86] perf/amd: Update generic hardware cache events for Family 17h - Bluetooth: btusb: request wake pin with NOAUTOEN - Bluetooth: mediatek: fix up an error path to restore bdev->tx_state - [arm64] clk: qcom: Add missing freq for usb30_master_clk on 8998 - scsi: RDMA/srpt: Fix a credit leak for aborted commands - [x86] ASoC: Intel: bytcr_rt5651: Revert "Fix DMIC map headsetmic mapping" - [x86] platform: intel_pmc_core: Fix PCH IP name - [x86] platform: intel_pmc_core: Handle CFL regmap properly - IB/core: Unregister notifier before freeing MAD security - IB/core: Fix potential memory leak while creating MAD agents - IB/core: Destroy QP if XRC QP fails - selinux: avoid silent denials in permissive mode under RCU walk - selinux: never allow relabeling on context mounts - mac80211: Honor SW_CRYPTO_CONTROL for unicast keys in AP VLAN mode - [ppc64el] mm/hash: Handle mmap_min_addr correctly in get_unmapped_area topdown search - [x86] mce: Improve error message when kernel cannot recover, p2 - [x86] clk: Add system specific quirk to mark clocks as critical - [x86] mm/KASLR: Fix the size of the direct mapping section - [x86] mm: Fix a crash with kmemleak_scan() - [x86] mm/tlb: Revert "x86/mm: Align TLB invalidation info" - media: v4l2: i2c: ov7670: Fix PLL bypass register values https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.42 - [armhf,arm64] net: stmmac: Use bfsize1 in ndesc_init_rx_desc - [x86] Drivers: hv: vmbus: Remove the undesired put_cpu_ptr() in hv_synic_cleanup() - ASoC: hdmi-codec: fix S/PDIF DAI - ASoC:soc-pcm:fix a codec fixup issue in TDM case - [x86] ASoC:intel:skl:fix a simultaneous playback & capture issue on hda platform - [arm64] clk: meson-gxbb: round the vdec dividers to closest - ASoC: dapm: Fix NULL pointer dereference in snd_soc_dapm_free_kcontrol - [armhf] drm/omap: hdmi4_cec: Fix CEC clock handling for PM - IB/hfi1: Eliminate opcode tests on mr deref - IB/hfi1: Fix the allocation of RSM table - [x86] perf/intel: Fix handling of wakeup_events for multi-entry PEBS - [x86] perf/intel: Initialize TFA MSR - linux/kernel.h: Use parentheses around argument in u64_to_user_ptr() - drm/amd/display: fix cursor black issue - objtool: Add rewind_stack_do_exit() to the noreturn list - slab: fix a crash by reading /proc/slab_allocators - [armhf,arm64] drm/sun4i: tcon top: Fix NULL/invalid pointer dereference in sun8i_tcon_top_un/bind - virtio_pci: fix a NULL pointer reference in vp_del_vqs - [x86] RDMA/vmw_pvrdma: Fix memory leak on pvrdma_pci_remove - [arm64] RDMA/hns: Fix bug that caused srq creation to fail - scsi: csiostor: fix missing data copy in csio_scsi_err_handler() - [x86] ASoC: Intel: kbl: fix wrong number of channels - virtio-blk: limit number of hw queues by nr_cpu_ids - nvme-fc: correct csn initialization and increments on error - [x86] platform: pmc_atom: Drop __initconst on dmi table - perf/core: Fix perf_event_disable_inatomic() race - [x86] iommu/amd: Set exclusion range correctly - genirq: Prevent use-after-free and work list corruption - usb: dwc3: Fix default lpm_nyet_threshold value - USB: serial: f81232: fix interrupt worker not stop - USB: cdc-acm: fix unthrottle races - usb-storage: Set virt_boundary_mask to avoid SG overflows - [x86] intel_th: pci: Add Comet Lake support - [arm64] cpufreq: armada-37xx: fix frequency calculation for opp - scsi: lpfc: change snprintf to scnprintf for possible overflow - scsi: qla2xxx: Fix incorrect region-size setting in optrom SYSFS routines - scsi: qla2xxx: Fix device staying in blocked state - UAS: fix alignment of scatter/gather segments - [x86] ASoC: Intel: avoid Oops if DMA setup fails - locking/futex: Allow low-level atomic operations to return -EAGAIN - [arm64] futex: Bound number of LDXR/STXR loops in FUTEX_WAKE_OP https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.43 https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.44 - bfq: update internal depth state when queue depth changes - [x86] platform: sony-laptop: Fix unintentional fall-through - [x86] platform: thinkpad_acpi: Disable Bluetooth for some machines - [x86] platform: dell-laptop: fix rfkill functionality - hwmon: (pwm-fan) Disable PWM if fetching cooling data fails - kernfs: fix barrier usage in __kernfs_new_node() - [x86] virt: vbox: Sanity-check parameter types for hgcm-calls coming from userspace - USB: serial: fix unthrottle races - acpi/nfit: Always dump _DSM output payload - libnvdimm/namespace: Fix a potential NULL pointer dereference - HID: input: add mapping for Expose/Overview key - HID: input: add mapping for keyboard Brightness Up/Down/Toggle keys - HID: input: add mapping for "Toggle Display" key - libnvdimm/btt: Fix a kmemdup failure check - [s390x] dasd: Fix capacity calculation for large volumes - mac80211: fix unaligned access in mesh table hash function - mac80211: Increase MAX_MSG_LEN - cfg80211: Handle WMM rules in regulatory domain intersection - mac80211: fix memory accounting with A-MSDU aggregation - nl80211: Add NL80211_FLAG_CLEAR_SKB flag for other NL commands - libnvdimm/pmem: fix a possible OOB access when read and write pmem - [s390x] 3270: fix lockdep false positive on view->lock - drm/amd/display: extending AUX SW Timeout - mISDN: Check address length before reading address family - vxge: fix return of a free'd memblock on a failed dma mapping - qede: fix write to free'd pointer error and double free of ptp - afs: Unlock pages for __pagevec_release() - drm/amd/display: If one stream full updates, full update all planes - [s390x] pkey: add one more argument space for debug feature entry - [x86] reboot, efi: Use EFI reboot for Acer TravelMate X514-51T - [x86] KVM: fix spectrev1 gadgets - [x86] KVM: avoid misreporting level-triggered irqs as edge-triggered in tracing - tools lib traceevent: Fix missing equality check for strcmp - ipmi: ipmi_si_hardcode.c: init si_type array to fix a crash - scsi: aic7xxx: fix EISA support - mm: fix inactive list balancing between NUMA nodes and cgroups - init: initialize jump labels before command line option parsing - ipvs: do not schedule icmp errors from tunnels - netfilter: ctnetlink: don't use conntrack/expect object addresses as id - netfilter: nf_tables: prevent shift wrap in nft_chain_parse_hook() - [s390x] ctcm: fix ctcm_new_device error return code - [armhf,arm64] drm/sun4i: Set device driver data at bind time for use in unbind - [armhf,arm64] drm/sun4i: Fix component unbinding and component master deletion - netfilter: fix nf_l4proto_log_invalid to log invalid packets - [armhf] gpu: ipu-v3: dp: fix CSC handling - [armhf] drm/imx: don't skip DP channel disable for background plane - [armhf,arm64] drm/sun4i: Unbind components before releasing DRM and memory - Input: synaptics-rmi4 - fix possible double free - [arm64] RDMA/hns: Bugfix for mapping user db - mm/memory_hotplug.c: drop memory device reference after find_memory_block() - [ppc64el] smp: Fix NMI IPI timeout - [ppc64el] smp: Fix NMI IPI xmon timeout - [armhf,arm64] net: dsa: mv88e6xxx: fix few issues in mv88e6390x_port_set_cmode - mm/memory.c: fix modifying of page protection by insert_pfn() - usb: typec: Fix unchecked return value - netfilter: nf_tables: use-after-free in dynamic operations - netfilter: nf_tables: add missing ->release_ops() in error path of newrule() (Closes: #934168) - net: fec: manage ahb clock in runtime pm - net: strparser: partially revert "strparser: Call skb_unclone conditionally" - NFC: nci: Add some bounds checking in nci_hci_cmd_received() - nfc: nci: Potential off by one in ->pipes[] array - [x86] kprobes: Avoid kretprobe recursion bug - mwl8k: Fix rate_idx underflow - rtlwifi: rtl8723ae: Fix missing break in switch statement - bonding: fix arp_validate toggling in active-backup mode - bridge: Fix error path for kobject_init_and_add() - ipv4: Fix raw socket lookup for local traffic - net: dsa: Fix error cleanup path in dsa_init_module - [armhf] net: ethernet: stmmac: dwmac-sun8i: enable support of unicast filtering - [arm64] net: macb: Change interrupt and napi enable order in open - packet: Fix error path in packet_init - selinux: do not report error on connect(AF_UNSPEC) - vlan: disable SIOCSHWTSTAMP in container - vrf: sit mtu should not be updated when vrf netdev is the link - tuntap: fix dividing by zero in ebpf queue selection - tuntap: synchronize through tfiles array instead of tun->numqueues - isdn: bas_gigaset: use usb_fill_int_urb() properly - tipc: fix hanging clients using poll with EPOLLOUT flag - [ppc64el] book3s/64: check for NULL pointer in pgd_alloc() - [ppc64el] powernv/idle: Restore IAMR after idle - [x86] PCI: hv: Fix a memory leak in hv_eject_device_work() - [x86] PCI: hv: Add hv_pci_remove_slots() when we unload the driver - [x86] PCI: hv: Add pci_destroy_slot() in pci_devices_present_work(), if necessary https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.45 - locking/rwsem: Prevent decrement of reader count before increment - [x86] speculation/mds: Revert CPU buffer clear on double fault exit - [x86] speculation/mds: Improve CPU buffer clear documentation - objtool: Fix function fallthrough detection - [arm64] dts: rockchip: Disable DCMDs on RK3399's eMMC controller. - [armhf] dts: exynos: Fix interrupt for shared EINTs on Exynos5260 - [armhf] dts: exynos: Fix audio (microphone) routing on Odroid XU3 - [arm64] mmc: sdhci-of-arasan: Add DTS property to disable DCMDs. - [armhf] exynos: Fix a leaked reference by adding missing of_node_put - [armhf] power: supply: axp288_charger: Fix unchecked return value - [armhf,arm64] power: supply: axp288_fuel_gauge: Add ACEPC T8 and T11 mini PCs to the blacklist - [arm64] mmap: Ensure file offset is treated as unsigned - [arm64] arch_timer: Ensure counter register reads occur with seqlock held - [arm64] compat: Reduce address limit - [arm64] Clear OSDLR_EL1 on CPU boot - [arm64] Save and restore OSDLR_EL1 across suspend/resume - [x96] sched: Save [ER]FLAGS on context switch - crypto: salsa20 - don't access already-freed walk.iv - crypto: chacha20poly1305 - set cra_name correctly - [x86] crypto: ccp - Do not free psp_master when PLATFORM_INIT fails - [ppc64el] crypto: vmx - fix copy-paste error in CTR mode - crypto: skcipher - don't WARN on unprocessed data after slow walk step - crypto: crct10dif-generic - fix use via crypto_shash_digest() - [x86] crypto: crct10dif-pcl - fix use via crypto_shash_digest() - [arm64] crypto: gcm-aes-ce - fix no-NEON fallback code - crypto: gcm - fix incompatibility between "gcm" and "gcm_base" - [armhf,arm64] crypto: aes-neonbs - don't access already-freed walk.iv - mmc: core: Fix tag set memory leak - ALSA: line6: toneport: Fix broken usage of timer for delayed execution - ALSA: usb-audio: Fix a memory leak bug - ALSA: hda/hdmi - Read the pin sense from register when repolling - ALSA: hda/hdmi - Consider eld_valid when reporting jack event - ALSA: hda/realtek - EAPD turn on later - ALSA: hdea/realtek - Headset fixup for System76 Gazelle (gaze14) - [armhf,arm64] ASoC: max98090: Fix restore of DAPM Muxes - ASoC: codec: hdac_hdmi add device_link to card device - [arm64] bpf: remove prefetch insn in xadd mapping - mm/huge_memory: fix vmf_insert_pfn_{pmd, pud}() crash, handle unaligned addresses - mm/hugetlb.c: don't put_page in lock of hugetlb_lock - hugetlb: use same fault hash key for shared and private mappings - ocfs2: fix ocfs2 read inode data panic in ocfs2_iget - userfaultfd: use RCU to free the task struct when fork fails - ACPI: PM: Set enable_for_wake for wakeup GPEs during suspend-to-idle - [arm64] mfd: max77620: Fix swapped FPS_PERIOD_MAX_US values - mtd: spi-nor: intel-spi: Avoid crossing 4K address boundary on read/write - tty: vt.c: Fix TIOCL_BLANKSCREEN console blanking if blankinterval == 0 - tty/vt: fix write/write race in ioctl(KDSKBSENT) handler - jbd2: check superblock mapped prior to committing - ext4: make sanity check in mballoc more strict - ext4: ignore e_value_offs for xattrs with value-in-ea-inode - ext4: avoid drop reference to iloc.bh twice - ext4: fix use-after-free race with debug_want_extra_isize - ext4: actually request zeroing of inode table after grow - ext4: fix ext4_show_options for file systems w/o journal - btrfs: Check the first key and level for cached extent buffer - btrfs: Correctly free extent buffer in case btree_read_extent_buffer_pages fails - Btrfs: send, flush dellaloc in order to avoid data loss - Btrfs: do not start a transaction during fiemap - Btrfs: do not start a transaction at iterate_extent_inodes() - bcache: fix a race between cache register and cacheset unregister - bcache: never set KEY_PTRS of journal key to 0 in journal_reclaim() - ipmi:ssif: compare block number correctly for multi-part return messages - crypto: ccm - fix incompatibility between "ccm" and "ccm_base" - fs/writeback.c: use rcu_barrier() to wait for inflight wb switches going into workqueue when umount - ext4: fix data corruption caused by overlapping unaligned and aligned IO - ext4: fix use-after-free in dx_release() - ext4: avoid panic during forced reboot due to aborted journal - [x86] ALSA: hda/realtek - Corrected fixup for System76 Gazelle (gaze14) - ALSA: hda/realtek - Fixup headphone noise via runtime suspend - [x86] ALSA: hda/realtek - Fix for Lenovo B50-70 inverted internal microphone bug - jbd2: fix potential double free - [x86] KVM: Skip EFER vs. guest CPUID checks for host-initiated writes - [x86] KVM: lapic: Busy wait for timer to expire when using hv_timer - xen/pvh: set xen_domain_type to HVM in xen_pvh_init - libnvdimm/namespace: Fix label tracking error - iov_iter: optimize page_copy_sane() - pstore: Centralize init/exit routines - pstore: Allocate compression during late_initcall() - pstore: Refactor compression initialization - ext4: don't update s_rev_level if not required https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.46 - ipv6: fix src addr routing with the exception table - ipv6: prevent possible fib6 leaks - net: Always descend into dsa/ - net: avoid weird emergency message - net/mlx4_core: Change the error print to info print - net: test nouarg before dereferencing zerocopy pointers - net: usb: qmi_wwan: add Telit 0x1260 and 0x1261 compositions - nfp: flower: add rcu locks when accessing netdev for tunnels - ppp: deflate: Fix possible crash in deflate_init - rtnetlink: always put IFLA_LINK for links with a link-netnsid - tipc: switch order of device registration to fix a crash - vsock/virtio: free packets during the socket release - vsock/virtio: Initialize core virtio vsock before registering the driver - net/mlx5: Imply MLXFW in mlx5_core - net/mlx5e: Fix ethtool rxfh commands when CONFIG_MLX5_EN_RXNFC is disabled - stm class: Fix channel free in stm output free path - stm class: Fix channel bitmap on 32-bit systems - brd: re-enable __GFP_HIGHMEM in brd_insert_page() - proc: prevent changes to overridden credentials - Revert "MD: fix lock contention for flush bios" - md: batch flush requests. - md: add mddev->pers to avoid potential NULL pointer dereference - dcache: sort the freeing-without-RCU-delay mess for good. - [x86] intel_th: msu: Fix single mode with IOMMU - p54: drop device reference count if fails to enable device - of: fix clang -Wunsequenced for be32_to_cpu() - cifs: fix strcat buffer overflow and reduce raciness in smb21_set_oplock_level() - [armhf] phy: ti-pipe3: fix missing bit-wise or operator when assigning val - NFS4: Fix v4.0 client state corruption when mount - PNFS fallback to MDS if no deviceid found - [arm64] clk: hi3660: Mark clk_gate_ufs_subsys as critical - [armhf,arm64] clk: tegra: Fix PLLM programming on Tegra124+ when PMC overrides divider - [arm64] clk: rockchip: fix wrong clock definitions for rk3328 - udlfb: delete the unused parameter for dlfb_handle_damage - udlfb: fix sleeping inside spinlock - udlfb: introduce a rendering mutex - fuse: fix writepages on 32bit - fuse: honor RLIMIT_FSIZE in fuse_file_fallocate - ovl: fix missing upper fs freeze protection on copy up for ioctl - [armhf] iommu/tegra-smmu: Fix invalid ASID bits on Tegra30/114 - ceph: flush dirty inodes before proceeding with remount - [amd64] Add gap to int3 to allow for call emulation - [amd64] Allow breakpoints to emulate call instructions - [amd64] ftrace: Emulate call function while updating in breakpoint handler - tracing: Fix partial reading of trace event's id file - [armhf,arm64] memory: tegra: Fix integer overflow on tick value calculation - [x86] perf intel-pt: Fix instructions sampling rate - [x86] perf intel-pt: Fix improved sample timestamp - [x86] perf intel-pt: Fix sample timestamp wrt non-taken branches - fbdev/efifb: Ignore framebuffer memmap entries that lack any memory types - PCI: Mark AMD Stoney Radeon R7 GPU ATS as broken - PCI: Mark Atheros AR9462 to avoid bus reset - PCI: Init PCIe feature bits for managed host bridge alloc - PCI/AER: Change pci_aer_init() stub to return void - PCI: Factor out pcie_retrain_link() function - PCI: Work around Pericom PCIe-to-PCI bridge Retrain Link erratum - dm cache metadata: Fix loading discard bitset - dm zoned: Fix zone report handling - dm delay: fix a crash when invalid device is specified - dm integrity: correctly calculate the size of metadata area - dm mpath: always free attached_handler_name in parse_path() - fuse: Add FOPEN_STREAM to use stream_open() - xfrm: policy: Fix out-of-bound array accesses in __xfrm_policy_unlink - xfrm6_tunnel: Fix potential panic when unloading xfrm6_tunnel module - vti4: ipip tunnel deregistration fixes. - xfrm: clean up xfrm protocol checks - esp4: add length check for UDP encapsulation - xfrm: Honor original L3 slave device in xfrmi policy lookup - xfrm4: Fix uninitialized memory read in _decode_session4 - [armhf,arm64] clk: sunxi-ng: nkmp: Avoid GENMASK(-1, 0) - securityfs: fix use-after-free on symlink traversal - apparmorfs: fix use-after-free on symlink traversal - PCI: Fix issue with "pci=disable_acs_redir" parameter being ignored - [x86] kvm: hyper-v: deal with buggy TLB flush requests from WS2012 - mac80211: Fix kernel panic due to use of txq after free - net: ieee802154: fix missing checks for regmap_update_bits - [armhf,arm64] KVM: Ensure vcpu target is unset on reset failure - bpf: Fix preempt_enable_no_resched() abuse - qmi_wwan: new Wistron, ZTE and D-Link devices - iwlwifi: mvm: check for length correctness in iwl_mvm_create_skb() - sched/cpufreq: Fix kobject memleak - [x86] mm/mem_encrypt: Disable all instrumentation for early SME setup - ufs: fix braino in ufs_get_inode_gid() for solaris UFS flavour - perf bench numa: Add define for RUSAGE_THREAD if not present - [x86] perf/intel: Fix race in intel_pmu_disable_event() - md/raid: raid5 preserve the writeback action after the parity check - driver core: Postpone DMA tear-down until after devres release for probe failure - bpf: relax inode permission check for retrieving bpf program - bpf: add map_lookup_elem_sys_only for lookups from syscall side - bpf, lru: avoid messing with eviction heuristics upon syscall lookup https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.47 - [x86] Hide the int3_emulate_call/jmp functions from UML - ext4: do not delete unlinked inode from orphan list on failed truncate - ext4: wait for outstanding dio during truncate in nojournal mode - f2fs: Fix use of number of devices - [x86] KVM: fix return value for reserved EFER - bio: fix improper use of smp_mb__before_atomic() - sbitmap: fix improper use of smp_mb__before_atomic() - Revert "scsi: sd: Keep disk read-only when re-reading partition" - [ppc64el] crypto: vmx - CTR: always increment IV as quadword - [arm*] mmc: sdhci-iproc: cygnus: Set NO_HISPD bit to fix HS50 data hold time problem - [arm*] mmc: sdhci-iproc: Set NO_HISPD bit to fix HS50 data hold time problem - [x86] kvm: svm/avic: fix off-by-one in checking host APIC ID - libnvdimm/pmem: Bypass CONFIG_HARDENED_USERCOPY overhead - [arm64] kernel: kaslr: reduce module randomization range to 2 GB - [arm64] iommu: handle non-remapped addresses in ->mmap and ->get_sgtable - gfs2: Fix sign extension bug in gfs2_update_stats - btrfs: don't double unlock on error in btrfs_punch_hole - Btrfs: do not abort transaction at btrfs_update_root() after failure to COW path - Btrfs: avoid fallback to transaction commit during fsync of files with holes - Btrfs: fix race between ranged fsync and writeback of adjacent ranges - btrfs: sysfs: Fix error path kobject memory leak - btrfs: sysfs: don't leak memory when failing add fsid - udlfb: fix some inconsistent NULL checking - fbdev: fix divide error in fb_var_to_videomode - NFSv4.2 fix unnecessary retry in nfs4_copy_file_range - NFSv4.1 fix incorrect return value in copy_file_range - bpf: add bpf_jit_limit knob to restrict unpriv allocations - [arm64] errata: Add workaround for Cortex-A76 erratum #1463225 - btrfs: honor path->skip_locking in backref code - ovl: relax WARN_ON() for overlapping layers use case - fbdev: fix WARNING in __alloc_pages_nodemask bug - media: cpia2: Fix use-after-free in cpia2_exit - media: serial_ir: Fix use-after-free in serial_ir_init_module - media: vb2: add waiting_in_dqbuf flag - media: vivid: use vfree() instead of kfree() for dev->bitmap_cap - ssb: Fix possible NULL pointer dereference in ssb_host_pcmcia_exit - bpf: devmap: fix use-after-free Read in __dev_map_entry_free - batman-adv: mcast: fix multicast tt/tvlv worker locking - at76c50x-usb: Don't register led_trigger if usb_register_driver failed - acct_on(): don't mess with freeze protection - gfs2: Fix lru_count going negative - cxgb4: Fix error path in cxgb4_init_module - NFS: make nfs_match_client killable - IB/hfi1: Fix WQ_MEM_RECLAIM warning - gfs2: Fix occasional glock use-after-free - mmc: core: Verify SD bus width - [arm64] dmaengine: tegra210-dma: free dma controller in remove() - net: ena: gcc 8: fix compilation warning - [x86] hv_netvsc: fix race that may miss tx queue wakeup - Bluetooth: Ignore CC events not matching the last HCI command - [x86] ASoC: Intel: kbl_da7219_max98357a: Map BTN_0 to KEY_PLAYPAUSE - [armhf,arm64] usb: dwc2: gadget: Increase descriptors count for ISOC's - [armhf,arm64] usb: dwc3: move synchronize_irq() out of the spinlock protected block - ASoC: hdmi-codec: unlock the device on startup errors - [ppc64el] perf: Return accordingly on invalid chip-id in - [ppc64el] boot: Fix missing check of lseek() return value - [ppc64el] perf: Fix loop exit condition in nest_imc_event_init - [armhf] ASoC: imx: fix fiq dependencies - [amd64] spi: pxa2xx: fix SCR (divisor) calculation - brcm80211: potential NULL dereference in brcmf_cfg80211_vndr_cmds_dcmd_handler() - ACPI / property: fix handling of data_nodes in acpi_get_next_subnode() - drm/nouveau/bar/nv50: ensure BAR is mapped - [armel,armhf] vdso: Remove dependency with the arch_timer driver internals - [ppc64el] watchdog: Use hrtimers for per-CPU heartbeat - sched/cpufreq: Fix kobject memleak - scsi: qla2xxx: Fix a qla24xx_enable_msix() error path - scsi: qla2xxx: Fix abort handling in tcm_qla2xxx_write_pending() - scsi: qla2xxx: Avoid that lockdep complains about unsafe locking in tcm_qla2xxx_close_session() - scsi: qla2xxx: Fix hardirq-unsafe locking - [x86] modules: Avoid breaking W^X while loading modules - Btrfs: fix data bytes_may_use underflow with fallocate due to failed quota reserve - btrfs: fix panic during relocation after ENOSPC before writeback happens - btrfs: Don't panic when we can't find a root key - iwlwifi: pcie: don't crash on invalid RX interrupt - scsi: qedi: Abort ep termination if offload not scheduled - [s390x] kexec_file: Fix detection of text segment in ELF loader - sched/nohz: Run NOHZ idle load balancer on HK_FLAG_MISC CPUs - w1: fix the resume command API - [s390x] qeth: address type mismatch warning - [armhf,arm64] dmaengine: pl330: _stop: clear interrupt status - mac80211/cfg80211: update bss channel on channel switch - mwifiex: prevent an array overflow - rsi: Fix NULL pointer dereference in kmalloc - nvme: set 0 capacity if namespace block size exceeds PAGE_SIZE - nvme-rdma: fix a NULL deref when an admin connect times out - [armhf,arm64] crypto: sun4i-ss - Fix invalid calculation of hash end - bcache: avoid potential memleak of list of journal_replay(s) in the CACHE_SYNC branch of run_cache_set - bcache: return error immediately in bch_journal_replay() - bcache: fix failure in journal relplay - bcache: add failure check to run_cache_set() for journal replay - bcache: avoid clang -Wunintialized warning - RDMA/cma: Consider scope_id while binding to ipv6 ll address - vfio-ccw: Do not call flush_workqueue while holding the spinlock - vfio-ccw: Release any channel program when releasing/removing vfio-ccw mdev - [x86] mm: Remove in_nmi() warning from 64-bit implementation of vmalloc_fault() - mm/uaccess: Use 'unsigned long' to placate UBSAN warnings on older GCC versions - Bluetooth: hci_qca: Give enough time to ROME controller to bootup. - HID: logitech-hidpp: use RAP instead of FAP to get the protocol version - [armhf] pinctrl: samsung: fix leaked of_node references - [armhf] clk: rockchip: undo several noc and special clocks as critical on rk3288 - [arm64] perf/arm-cci: Remove broken race mitigation - media: au0828: stop video streaming only when last user stops - audit: fix a memory leak bug - media: au0828: Fix NULL pointer dereference in au0828_analog_stream_enable() - media: pvrusb2: Prevent a buffer overflow - block: fix use-after-free on gendisk - [ppc64el] numa: improve control of topology updates - [ppc64el] Fix booting large kernels with STRICT_KERNEL_RWX - random: fix CRNG initialization when random.trust_cpu=1 - random: add a spinlock_t to struct batched_entropy - cgroup: protect cgroup->nr_(dying_)descendants by css_set_lock - sched/core: Check quota and period overflow at usec to nsec conversion - sched/rt: Check integer overflow at usec to nsec conversion - sched/core: Handle overflow in cpu_shares_write_u64 - [arm*] staging: vc04_services: handle kzalloc failure - [arm64] drm/msm: a5xx: fix possible object reference leak - irq_work: Do not raise an IPI when queueing work on the local CPU - [x86] thunderbolt: Take domain lock in switch sysfs attribute callbacks - [s390x] qeth: handle error from qeth_update_from_chp_desc() - USB: core: Don't unbind interfaces following device reset failure - [amd64] irq: Limit IST stack overflow check to #DB stack - [armhf] drm: etnaviv: avoid DMA API warning when importing buffers - [armhf,arm64] phy: sun4i-usb: Make sure to disable PHY0 passby for peripheral mode - i40e: Able to add up to 16 MAC filters on an untrusted VF - i40e: don't allow changes to HW VLAN stripping on active port VLANs - ACPI/IORT: Reject platform device creation on NUMA node mapping failure - [arm64] vdso: Fix clock_getres() for CLOCK_REALTIME - RDMA/cxgb4: Fix null pointer dereference on alloc_skb failure - [x86] perf/msr: Add Icelake support - [x86] perf/intel/rapl: Add Icelake support - [x86] perf/intel/cstate: Add Icelake support - hwmon: (vt1211) Use request_muxed_region for Super-IO accesses - hwmon: (smsc47m1) Use request_muxed_region for Super-IO accesses - hwmon: (smsc47b397) Use request_muxed_region for Super-IO accesses - hwmon: (pc87427) Use request_muxed_region for Super-IO accesses - hwmon: (f71805f) Use request_muxed_region for Super-IO accesses - scsi: libsas: Do discovery on empty PHY to update PHY info - mmc: core: make pwrseq_emmc (partially) support sleepy GPIO controllers - [armhf,arm64] mmc_spi: add a status check for spi_sync_locked - drm/amdgpu: fix old fence check in amdgpu_fence_emit - PM / core: Propagate dev->power.wakeup_path when no callbacks - [armhf] clk: rockchip: Fix video codec clocks on rk3288 - [armhf] clk: rockchip: Make rkpwm a critical clock on rk3288 - [s390x] zcrypt: initialize variables before_use - [x86] microcode: Fix the ancient deprecated microcode loading method - [s390x] mm: silence compiler warning when compiling without CONFIG_PGSTE - [s390x] cio: fix cio_irb declaration - qmi_wwan: Add quirk for Quectel dynamic config - block: sed-opal: fix IOC_OPAL_ENABLE_DISABLE_MBR - rtlwifi: fix a potential NULL pointer dereference - mwifiex: Fix mem leak in mwifiex_tm_cmd - brcmfmac: fix missing checks for kmemdup - b43: shut up clang -Wuninitialized variable warning - brcmfmac: convert dev_init_lock mutex to completion - brcmfmac: fix WARNING during USB disconnect in case of unempty psq - brcmfmac: fix race during disconnect when USB completion is in progress - brcmfmac: fix Oops when bringing up interface during USB disconnect - [arm64] rtc: xgene: fix possible race condition - rtlwifi: fix potential NULL pointer dereference - scsi: ufs: Fix regulator load and icc-level configuration - scsi: ufs: Avoid configuring regulator with undefined voltage range - [arm64] cpu_ops: fix a leaked reference by adding missing of_node_put - wil6210: fix return code of wmi_mgmt_tx and wmi_mgmt_tx_ext - [x86] uaccess, signal: Fix AC=1 bloat - [amd64] ia32: Fix ia32_restore_sigcontext() AC leak - [x86] uaccess: Fix up the fixup - chardev: add additional check for minor range overlap - [arm64] RDMA/hns: Fix bad endianess of port_pd variable - HID: core: move Usage Page concatenation to Main item - [armhf] ASoC: eukrea-tlv320: fix a leaked reference by adding missing of_node_put - cxgb3/l2t: Fix undefined behaviour - HID: logitech-hidpp: change low battery level threshold from 31 to 30 percent - [armhf] spi: tegra114: reset controller on probe - kobject: Don't trigger kobject_uevent(KOBJ_REMOVE) twice. - [armhf] media: wl128x: prevent two potential buffer overflows - media: gspca: Kill URBs on USB device disconnect - efifb: Omit memory map check on legacy boot - [x86] thunderbolt: property: Fix a missing check of kzalloc - [x86] thunderbolt: Fix to check the return value of kmemdup - timekeeping: Force upper bound for setting CLOCK_REALTIME - scsi: qedf: Add missing return in qedf_post_io_req() in the fcport offload check - virtio_console: initialize vtermno value for ports - tty: ipwireless: fix missing checks for ioremap - overflow: Fix -Wtype-limits compilation warnings - [x86] mce: Fix machine_check_poll() tests for error types - rcutorture: Fix cleanup path for invalid torture_type strings - [x86] mce: Handle varying MCA bank counts - rcuperf: Fix cleanup path for invalid perf_type strings - usb: core: Add PM runtime calls to usb_hcd_platform_shutdown - scsi: qla4xxx: avoid freeing unallocated dma memory - scsi: lpfc: avoid uninitialized variable warning - selinux: avoid uninitialized variable warning - batman-adv: allow updating DAT entry timeouts on incoming ARP Replies - dmaengine: tegra210-adma: use devm_clk_*() helpers - [armhf] hwrng: omap - Set default quality - [x86] thunderbolt: Fix to check return value of ida_simple_get - [x86] thunderbolt: Fix to check for kmemdup failure - drm/amd/display: fix releasing planes when exiting odm - [x86] thunderbolt: property: Fix a NULL pointer dereference - e1000e: Disable runtime PM on CNP+ - igb: Exclude device from suspend direct complete optimization - media: dvbsky: Avoid leaking dvb frontend - drm/amd/display: Fix Divide by 0 in memory calculations - drm/amd/display: Set stream->mode_changed when connectors change - scsi: ufs: fix a missing check of devm_reset_control_get - media: gspca: do not resubmit URBs when streaming has stopped - media: go7007: avoid clang frame overflow warning with KASAN - scsi: lpfc: Fix FDMI manufacturer attribute value - scsi: lpfc: Fix fc4type information for FDMI - media: saa7146: avoid high stack usage with clang - scsi: lpfc: Fix SLI3 commands being issued on SLI4 devices - [i386] spi : spi-topcliff-pch: Fix to handle empty DMA buffers - [armhf] drm/omap: dsi: Fix PM for display blank with paired dss_pll calls - [armhf] spi: imx: stop buffer overflow in RX FIFO flush - spi: Fix zero length xfer bug - [armhf] ASoC: davinci-mcasp: Fix clang warning without CONFIG_PM - drm/drv: Hold ref on parent device during drm_device lifetime - drm: Wake up next in drm_read() chain if we are forced to putback the event - [s390x] vfio-ccw: Prevent quiesce function going into an infinite loop - NFS: Fix a double unlock from nfs_match,get_client https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.48 - bonding/802.3ad: fix slave link initialization transition states - cxgb4: offload VLAN flows regardless of VLAN ethtype - ipv4/igmp: fix another memory leak in igmpv3_del_delrec() - ipv4/igmp: fix build error if !CONFIG_IP_MULTICAST - ipv6: Consider sk_bound_dev_if when binding a raw socket to an address - ipv6: Fix redirect with VRF - llc: fix skb leak in llc_build_and_send_ui_pkt() - [armhf,arm64] net: dsa: mv88e6xxx: fix handling of upper half of STATS_TYPE_PORT - net-gro: fix use-after-free read in napi_gro_frags() - [armhf,arm64] net: mvneta: Fix err code path of probe - [armhf,arm64] net: mvpp2: fix bad MVPP2_TXQ_SCHED_TOKEN_CNTR_REG queue value - net: phy: marvell10g: report if the PHY fails to boot firmware - net: sched: don't use tc_action->order during action dump - [armhf,arm64] net: stmmac: fix reset gpio free missing - usbnet: fix kernel crash after disconnect - net/mlx5: Avoid double free in fs init error unwinding path - tipc: Avoid copying bytes beyond the supplied data - net/mlx5: Allocate root ns memory using kzalloc to match kfree - net/mlx5e: Disable rxhash when CQE compress is enabled - [armhf,arm64] net: stmmac: dma channel control register need to be init first - bnxt_en: Fix aggregation buffer leak under OOM condition. - [ppc64el] crypto: vmx - ghash: do nosimd fallback manually - include/linux/compiler*.h: define asm_volatile_goto - compiler.h: give up __compiletime_assert_fallback() - jump_label: move 'asm goto' support test to Kconfig - tipc: fix modprobe tipc failed after switch order of device registration https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.49 - include/linux/bitops.h: sanitize rotate primitives - xhci: update bounce buffer with correct sg num - xhci: Use %zu for printing size_t type - xhci: Convert xhci_handshake() to use readl_poll_timeout_atomic() - usb: xhci: avoid null pointer deref when bos field is NULL - usbip: usbip_host: fix BUG: sleeping function called from invalid context - usbip: usbip_host: fix stub_dev lock context imbalance regression - USB: Fix slab-out-of-bounds write in usb_get_bos_descriptor - USB: sisusbvga: fix oops in error path of sisusb_probe - USB: Add LPM quirk for Surface Dock GigE adapter - USB: rio500: refuse more than one device at a time - USB: rio500: fix memory leak in close after disconnect - media: usb: siano: Fix general protection fault in smsusb - media: usb: siano: Fix false-positive "uninitialized variable" warning - media: smsusb: better handle optional alignment - brcmfmac: fix NULL pointer derefence during USB disconnect - [s390x] scsi: zfcp: fix missing zfcp_port reference put on -EBUSY from port_remove - [s390x] scsi: zfcp: fix to prevent port_remove with pure auto scan LUNs (only sdevs) - tracing: Avoid memory leak in predicate_parse() - Btrfs: fix wrong ctime and mtime of a directory after log replay - Btrfs: fix race updating log root item during fsync - Btrfs: fix fsync not persisting changed attributes of a directory - Btrfs: incremental send, fix file corruption when no-holes feature is enabled - [s390x] crypto: fix gcm-aes-s390 selftest failures - [s390x] crypto: fix possible sleep during spinlock aquired - [ppc64el] KVM: Book3S HV: XIVE: Do not clear IRQ data of passthrough interrupts - [ppc64el] perf: Fix MMCRA corruption by bhrb_filter - ALSA: line6: Assure canceling delayed work at disconnection - ALSA: hda/realtek - Set default power save node to 0 - [s390x] KVM: Do not report unusabled IDs via KVM_CAP_MAX_VCPU_ID - drm/nouveau/i2c: Disable i2c bus access after ->fini() - [arm64] tty: serial: msm_serial: Fix XON/XOFF - memcg: make it work on sparse non-0-node systems - kernel/signal.c: trace_signal_deliver when signal_group_exit - [arm64] Fix the arm64_personality() syscall wrapper redirection - vt/fbcon: deinitialize resources in visual_init() after failed memory allocation - [arm*] staging: vc04_services: prevent integer overflow in create_pagelist() - [x86] staging: wlan-ng: fix adapter initialization failure - cifs: fix memory leak of pneg_inbuf on -EOPNOTSUPP ioctl case - CIFS: cifs_read_allocate_pages: don't iterate through whole page array on ENOMEM - Revert "lockd: Show pid of lockd for remote locks" - [armhf,arm64] drm/tegra: gem: Fix CPU-cache maintenance for BO's allocated using get_pages() - [x86] drm/vmwgfx: Don't send drm sysfs hotplug events on initial master set - [armhf,arm64] drm/sun4i: Fix sun8i HDMI PHY clock initialization - [armhf,arm64] drm/sun4i: Fix sun8i HDMI PHY configuration for > 148.5 MHz - [armhf,arm64] drm/rockchip: shutdown drm subsystem on shutdown - drm/lease: Make sure implicit planes are leased - [x86] ftrace: Do not call function graph from dynamic trampolines - [x86] ftrace: Set trampoline pages as executable - [x86] kprobes: Set instruction page as executable - scsi: lpfc: Fix backport of faf5a744f4f8 ("scsi: lpfc: avoid uninitialized variable warning") - media: uvcvideo: Fix uvc_alloc_entity() allocation alignment https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.50 - ethtool: fix potential userspace buffer overflow - Fix memory leak in sctp_process_init - ipv4: not do cache for local delivery if bc_forwarding is enabled - ipv6: fix the check before getting the cookie in rt6_get_cookie - neighbor: Call __ipv4_neigh_lookup_noref in neigh_xmit - [armhf] net: ethernet: ti: cpsw_ethtool: fix ethtool ring param set - net/mlx4_en: ethtool, Remove unsupported SFP EEPROM high pages query - [armhf,arm64] net: mvpp2: Use strscpy to handle stat strings - net: rds: fix memory leak in rds_ib_flush_mr_pool - net: sfp: read eeprom in maximum 16 byte increments - packet: unconditionally free po->rollover - pktgen: do not sleep with the thread lock held. - ipv6: use READ_ONCE() for inet->hdrincl as in ipv4 - ipv6: fix EFAULT on sendto with icmpv6 and hdrincl - rcu: locking and unlocking need to always be at least barriers - NFSv4.1: Again fix a race where CB_NOTIFY_LOCK fails to wake a waiter - NFSv4.1: Fix bug only first CB_NOTIFY_LOCK is handled - fuse: fallocate: fix return with locked inode - pstore: Remove needless lock during console writes - pstore: Convert buf_lock to semaphore - pstore: Set tfm to NULL on free_buf_for_compression - pstore/ram: Run without kernel crash dump region - [x86] power: Fix 'nosmt' vs hibernation triple fault during resume - [s390x] mm: fix address space detection in exception handling - xen-blkfront: switch kcalloc to kvcalloc for large array allocation - [ppc64el] genwqe: Prevent an integer overflow in the ioctl - test_firmware: Use correct snprintf() limit - [x86] drm/gma500/cdv: Check vbt config bits when detecting lvds panels - [arm64] drm/msm: fix fb references in async update - drm: add non-desktop quirk for Valve HMDs - drm: add non-desktop quirks to Sensics and OSVR headsets. - drm/amdgpu/psp: move psp version specific function pointers to early_init - drm/radeon: prefer lower reference dividers - drm/amdgpu: remove ATPX_DGPU_REQ_POWER_FOR_DISPLAYS check when hotplug-in - [x86] drm/i915: Fix I915_EXEC_RING_MASK - [x86] drm/i915/fbc: disable framebuffer compression on GeminiLake - [x86] drm/i915: Maintain consistent documentation subsection ordering - drm: don't block fb changes for async plane updates - [x86] drm/i915/gvt: Initialize intel_gvt_gtt_entry in stack - TTY: serial_core, add ->install - ipv4: Define __ipv4_neigh_lookup_noref when CONFIG_INET is disabled - ethtool: check the return value of get_regs_len https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.51 - fs/fat/file.c: issue flush after the writeback of FAT - sysctl: return -EINVAL if val violates minmax - ipc: prevent lockup on alloc_msg and free_msg - [armhf] prevent tracing IPI_CPU_BACKTRACE - hugetlbfs: on restore reserve error path retain subpool reservation - mem-hotplug: fix node spanned pages when we have a node with only ZONE_MOVABLE - mm/cma.c: fix crash on CMA allocation if bitmap allocation fails - initramfs: free initrd memory if opening /initrd.image fails - mm/cma.c: fix the bitmap status to show failed allocation reason - mm: page_mkclean vs MADV_DONTNEED race - mm/cma_debug.c: fix the break condition in cma_maxchunk_get() - mm/slab.c: fix an infinite loop in leaks_show() - kernel/sys.c: prctl: fix false positive in validate_prctl_map() - drivers: thermal: tsens: Don't print error message on -EPROBE_DEFER - [x86] mfd: intel-lpss: Set the device in reset state when init - drm/nouveau/disp/dp: respect sink limits when selecting failsafe link configuration - [armhf] mfd: twl6040: Fix device init errors for ACCCTL register - [x86] perf/intel: Allow PEBS multi-entry in watermark mode - drm/nouveau/kms/gf119-gp10x: push HeadSetControlOutputResource() mthd when encoders change - [arm64] drm/bridge: adv7511: Fix low refresh rate selection - objtool: Don't use ignore flag for fake jumps - drm/nouveau/kms/gv100-: fix spurious window immediate interlocks - bpf: fix undefined behavior in narrow load handling - [arm64] pwm: meson: Use the spin-lock only to protect register modifications - ntp: Allow TAI-UTC offset to be set to zero - f2fs: fix to avoid panic in do_recover_data() - f2fs: fix to avoid panic in f2fs_inplace_write_data() - f2fs: fix to avoid panic in f2fs_remove_inode_page() - f2fs: fix to do sanity check on free nid - f2fs: fix to clear dirty inode in error path of f2fs_iget() - f2fs: fix to avoid panic in dec_valid_block_count() - f2fs: fix to use inline space only if inline_xattr is enable - f2fs: fix to do sanity check on valid block count of segment - f2fs: fix to do checksum even if inode page is uptodate - percpu: remove spurious lock dependency between percpu and sched - configfs: fix possible use-after-free in configfs_register_group - [armhf,arm64] PCI: dwc: Free MSI in dw_pcie_host_init() error path - [armhf,arm64] PCI: dwc: Free MSI IRQ page in dw_pcie_free_msi() - ovl: do not generate duplicate fsnotify events for "fake" path - mmc: mmci: Prevent polling for busy detection in IRQ context - netfilter: nf_flow_table: fix missing error check for rhashtable_insert_fast - netfilter: nf_conntrack_h323: restore boundary check correctness - [mips*] Make sure dt memory regions are valid - netfilter: nf_tables: fix base chain stat rcu_dereference usage - [armhf] watchdog: imx2_wdt: Fix set_timeout for big timeout values - watchdog: fix compile time error of pretimeout governors - blk-mq: move cancel of requeue_work into blk_mq_release - [x86] iommu/vt-d: Set intel_iommu_gfx_mapped correctly - nvme-pci: unquiesce admin queue on shutdown - nvme-pci: shutdown on timeout during deletion - netfilter: nf_flow_table: check ttl value in flow offload data path - netfilter: nf_flow_table: fix netdev refcnt leak - ALSA: hda - Register irq handler after the chip initialization - nvmem: core: fix read buffer in place - [armhf,arm64] nvmem: sunxi_sid: Support SID on A83T and H5 - fuse: retrieve: cap requested size to negotiated max_write - nfsd: allow fh_want_write to be called twice - nfsd: avoid uninitialized variable warning - vfio: Fix WARNING "do not call blocking ops when !TASK_RUNNING" - [armhf,arm64] iommu/arm-smmu-v3: Don't disable SMMU in kdump kernel - [x86] net: thunderbolt: Unregister ThunderboltIP protocol handler when suspending - [x86] PCI: Fix PCI IRQ routing table memory leak - i40e: Queues are reserved despite "Invalid argument" error - platform/chrome: cros_ec_proto: check for NULL transfer function - [armhf] clk: rockchip: Turn on "aclk_dmac1" for suspend on rk3288 - [armhf] soc: rockchip: Set the proper PWM for rk3288 - [armhf] dts: imx51: Specify IMX5_CLK_IPG as "ahb" clock to SDMA - [armhf] dts: imx50: Specify IMX5_CLK_IPG as "ahb" clock to SDMA - [armhf] dts: imx53: Specify IMX5_CLK_IPG as "ahb" clock to SDMA - [armhf] dts: imx6sx: Specify IMX6SX_CLK_IPG as "ahb" clock to SDMA - [armhf] dts: imx6sll: Specify IMX6SLL_CLK_IPG as "ipg" clock to SDMA - [armhf] dts: imx6ul: Specify IMX6UL_CLK_IPG as "ipg" clock to SDMA - [armhf] dts: imx6sx: Specify IMX6SX_CLK_IPG as "ipg" clock to SDMA - [armhf] dts: imx6qdl: Specify IMX6QDL_CLK_IPG as "ipg" clock to SDMA - [ppc64el] PCI: rpadlpar: Fix leaked device_node references in add/remove paths - drm/amd/display: Use plane->color_space for dpp if specified - [armhf] OMAP2+: pm33xx-core: Do not Turn OFF CEFUSE as PPA may be using it - [x86] platform: intel_pmc_ipc: adding error handling - [arm64] net: hns3: return 0 and print warning when hit duplicate MAC - scsi: qla2xxx: Reset the FCF_ASYNC_{SENT|ACTIVE} flags - [x86] video: hgafb: fix potential NULL pointer dereference - block, bfq: increase idling for weight-raised queues - [arm64] PCI: xilinx: Check for __get_free_pages() failure - ice: Add missing case in print_link_msg for printing flow control - [x86] dmaengine: idma64: Use actual device for DMA transfers - [armhf] pwm: tiehrpwm: Update shadow register for disabling PWMs - [armhf] dts: exynos: Always enable necessary APIO_1V8 and ABB_1V8 regulators on Arndale Octa - pwm: Fix deadlock warning when removing PWM device - [armhf] exynos: Fix undefined instruction during Exynos5422 resume - [x86] usb: typec: fusb302: Check vconn is off when we start toggling - soc: renesas: Identify R-Car M3-W ES1.3 - percpu: do not search past bitmap when allocating an area - ovl: check the capability before cred overridden - ovl: support stacked SEEK_HOLE/SEEK_DATA - [arm*] drm/vc4: fix fb references in async update - ALSA: seq: Cover unsubscribe_port() in list_mutex https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.52 https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.53 - drm/nouveau: add kconfig option to turn off nouveau legacy contexts. (v3) - nouveau: Fix build with CONFIG_NOUVEAU_LEGACY_CTX_SUPPORT disabled - HID: multitouch: handle faulty Elo touch device - HID: wacom: Don't set tool type until we're in range - HID: wacom: Don't report anything prior to the tool entering range - HID: wacom: Send BTN_TOUCH in response to INTUOSP2_BT eraser contact - HID: wacom: Correct button numbering 2nd-gen Intuos Pro over Bluetooth - HID: wacom: Sync INTUOSP2_BT touch state after each frame if necessary - ALSA: oxfw: allow PCM capture for Stanton SCS.1m - ALSA: hda/realtek - Update headset mode for ALC256 - ALSA: firewire-motu: fix destruction of data for isochronous resources - libata: Extend quirks for the ST1000LM024 drives with NOLPM quirk - mm/list_lru.c: fix memory leak in __memcg_init_list_lru_node - fs/ocfs2: fix race in ocfs2_dentry_attach_lock() - mm/vmscan.c: fix trying to reclaim unevictable LRU page - signal/ptrace: Don't leak unitialized kernel memory with PTRACE_PEEK_SIGINFO - ptrace: restore smp_rmb() in __ptrace_may_access() - [armhf,arm64] iommu/arm-smmu: Avoid constant zero in TLBI writes - bcache: fix stack corruption by PRECEDING_KEY() - bcache: only set BCACHE_DEV_WB_RUNNING when cached device attached - cgroup: Use css_tryget() instead of css_tryget_online() in task_get_css() - [x86] drm/i915/sdvo: Implement proper HDMI audio support for SDVO - ALSA: seq: Fix race of get-subscription call vs port-delete ioctls - Drivers: misc: fix out-of-bounds access in function param_set_kgdbts_var - f2fs: fix to avoid accessing xattr across the boundary - scsi: qedi: remove memset/memcpy to nfunc and use func instead (CVE-2019-15090) - scsi: qedi: remove set but not used variables 'cdev' and 'udev' - scsi: lpfc: correct rcu unlock issue in lpfc_nvme_info_show - scsi: lpfc: add check for loss of ndlp when sending RRQ - [arm64] mm: Inhibit huge-vmap with ptdump - nvme: fix srcu locking on error return in nvme_get_ns_from_disk - nvme: remove the ifdef around nvme_nvm_ioctl - nvme: merge nvme_ns_ioctl into nvme_ioctl - nvme: release namespace SRCU protection before performing controller ioctls - nvme: fix memory leak for power latency tolerance - [x86] platform: pmc_atom: Add Lex 3I380D industrial PC to critclk_systems DMI table - [x86] platform: pmc_atom: Add several Beckhoff Automation boards to critclk_systems DMI table - scsi: bnx2fc: fix incorrect cast to u64 on shift operation - libnvdimm: Fix compilation warnings with W=1 - tracing: Prevent hist_field_var_ref() from accessing NULL tracing_map_elts - usbnet: ipheth: fix racing condition - [armhf,arm64] KVM: Move cc/it checks under hyp's Makefile to avoid instrumentation - [x86] KVM: pmu: mask the result of rdpmc according to the width of the counters - [x86] KVM: pmu: do not mask the value that is written to fixed PMUs - [s390x] KVM: fix memory slot handling for KVM_SET_USER_MEMORY_REGION - [x86] drm/vmwgfx: integer underflow in vmw_cmd_dx_set_shader() leading to an invalid read - [x86] drm/vmwgfx: NULL pointer dereference from vmw_cmd_dx_view_define() - [armhf,arm64] usb: dwc2: Fix DMA cache alignment issues - [armhf,arm64] usb: dwc2: host: Fix wMaxPacketSize handling (fix webcam regression) - USB: Fix chipmunk-like voice when using Logitech C270 for recording audio. - USB: usb-storage: Add new ID to ums-realtek - USB: serial: pl2303: add Allied Telesis VT-Kit3 - USB: serial: option: add support for Simcom SIM7500/SIM7600 RNDIS mode - USB: serial: option: add Telit 0x1260 and 0x1261 compositions - timekeeping: Repair ktime_get_coarse*() granularity - [x86] microcode, cpuhotplug: Add a microcode loader CPU hotplug callback - [x86] mm/KASLR: Compute the size of the vmemmap section properly - [x86] resctrl: Prevent NULL pointer dereference when local MBM is disabled - drm/edid: abstract override/firmware EDID retrieval - drm: add fallback override/firmware EDID modes workaround - [armhf] rtc: pcf8523: don't return invalid date when battery is low https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.54 - ax25: fix inconsistent lock state in ax25_destroy_timer - be2net: Fix number of Rx queues used for flow hashing - [x86] hv_netvsc: Set probe mode to sync - ipv6: flowlabel: fl6_sock_lookup() must use atomic_inc_not_zero - lapb: fixed leak of control-blocks. - neigh: fix use-after-free read in pneigh_get_next - net: openvswitch: do not free vport if register_netdevice() is failed. - sctp: Free cookie before we memdup a new one - tipc: purge deferredq list for each grp member in tipc_group_delete - vsock/virtio: set SOCK_DONE on peer shutdown - net/mlx5: Avoid reloading already removed devices - [armhf,arm64] net: mvpp2: prs: Fix parser range for VID filtering - [armhf,arm64] net: mvpp2: prs: Use the correct helpers when removing all VID filters - [arm*] Staging: vc04_services: Fix a couple error codes - [x86] perf/intel/ds: Fix EVENT vs. UEVENT PEBS constraints - netfilter: nf_queue: fix reinject verdict handling - ipvs: Fix use-after-free in ip_vs_in - [armhf] clk: ti: clkctrl: Fix clkdm_clk handling - [ppc64el] powernv: Return for invalid IMC domain - usb: xhci: Fix a potential null pointer dereference in xhci_debugfs_create_endpoint() - mISDN: make sure device name is NUL terminated - [x86] CPU/AMD: Don't force the CPB cap when running under a hypervisor - perf/ring_buffer: Fix exposing a temporarily decreased data_head - perf/ring_buffer: Add ordering to rb->nest increment - perf/ring-buffer: Always use {READ,WRITE}_ONCE() for rb->user_page data - [armhf,arm64] net: stmmac: update rx tail pointer register to fix rx dma hang issue. - ACPI/PCI: PM: Add missing wakeup.flags.valid checks - [armhf] drm/etnaviv: lock MMU while dumping core - net: aquantia: tx clean budget logic error - net: aquantia: fix LRO with FCS error - i2c: dev: fix potential memory leak in i2cdev_ioctl_rdwr - ALSA: hda - Force polling mode on CNL for fixing codec communication - configfs: Fix use-after-free when accessing sd->s_dentry - perf data: Fix 'strncat may truncate' build failure with recent gcc - perf namespace: Protect reading thread's namespace - [s390x] perf record: Fix s390 missing module symbol and warning for non-root users - xenbus: Avoid deadlock during suspend due to open transactions - [ppc64el] KVM: Book3S: Use new mutex to synchronize access to rtas token list - [ppc64el] KVM: Book3S HV: Don't take kvm->lock around kvm_for_each_vcpu - [arm64] fix syscall_fn_t type - [arm64] use the correct function type in SYSCALL_DEFINE0 - [arm64] use the correct function type for __arm64_sys_ni_syscall - net: phylink: ensure consistent phy interface mode - net: phy: dp83867: Set up RGMII TX delay - scsi: libcxgbi: add a check for NULL pointer in cxgbi_check_route() - scsi: smartpqi: properly set both the DMA mask and the coherent DMA mask - scsi: scsi_dh_alua: Fix possible null-ptr-deref - scsi: libsas: delete sas port if expander discover failed - ocfs2: fix error path kobject memory leak - coredump: fix race condition between collapse_huge_page() and core dumping - Abort file_remove_privs() for non-reg. files https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.55 https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.56 - tracing: Silence GCC 9 array bounds warning - objtool: Support per-function rodata sections - ovl: support the FS_IOC_FS[SG]ETXATTR ioctls - ovl: fix wrong flags check in FS_IOC_FS[SG]ETXATTR ioctls - ovl: make i_ino consistent with st_ino in more cases - ovl: detect overlapping layers - ovl: don't fail with disconnected lower NFS - ovl: fix bogus -Wmaybe-unitialized warning - [s390x] jump_label: Use "jdd" constraint on gcc9 - [s390x] ap: rework assembler functions to use unions for in/out register variables - mmc: sdhci: sdhci-pci-o2micro: Correctly set bus width when tuning - mmc: core: API to temporarily disable retuning for SDIO CRC errors - mmc: core: Add sdio_retune_hold_now() and sdio_retune_release() - mmc: core: Prevent processing SDIO IRQs when the card is suspended - scsi: ufs: Avoid runtime suspend possibly being blocked forever - [armhf,arm64] usb: chipidea: udc: workaround for endpoint conflict issue - xhci: detect USB 3.2 capable host controllers correctly - usb: xhci: Don't try to recover an endpoint if port is in error state. - IB/hfi1: Validate fault injection opcode user input - IB/hfi1: Silence txreq allocation warnings - [x86] Input: synaptics - enable SMBus on ThinkPad E480 and E580 - Input: uinput - add compat ioctl number translation for UI_*_FF_UPLOAD - [x86] Input: silead - add MSSL0017 to acpi_device_id - apparmor: fix PROFILE_MEDIATES for untrusted input - apparmor: enforce nullbyte at end of tag string - brcmfmac: sdio: Disable auto-tuning around commands expected to fail - brcmfmac: sdio: Don't tune while the card is off - parport: Fix mem leak in parport_register_dev_model - IB/rdmavt: Fix alloc_qpn() WARN_ON() - IB/hfi1: Insure freeze_work work_struct is canceled on shutdown - IB/{qib, hfi1, rdmavt}: Correct ibv_devinfo max_mr value - IB/hfi1: Validate page aligned for a given virtual address - [mips*] uprobes: remove set but not used variable 'epc' - [armhf,arm64] net: dsa: mv88e6xxx: avoid error message on remove from VLAN 0 - [arm64] net: hns: Fix loopback test failed at copper ports - mdesc: fix a missing-check bug in get_vdev_port_node_info() - [arm64] drm/arm/mali-dp: Add a loop around the second set CVAL and try 5 times - [arm64] drm/arm/hdlcd: Actually validate CRTC modes - [arm64] drm/arm/hdlcd: Allow a bit of clock tolerance - nvmet: fix data_len to 0 for bdev-backed write_zeroes - scsi: ufs: Check that space was properly alloced in copy_query_response - scsi: smartpqi: unlock on error in pqi_submit_raid_request_synchronous() - net: ipvlan: Fix ipvlan device tso disabled while NETIF_F_IP_CSUM is set - [s390x] qeth: fix VLAN attribute in bridge_hostnotify udev event - hwmon: (core) add thermal sensors only if dev->of_node is present - hwmon: (pmbus/core) Treat parameters as paged if on multiple pages - nvme: Fix u32 overflow in the number of namespace list calculation - btrfs: start readahead also in seed devices - [armhf] can: flexcan: fix timeout when set small bitrate - can: purge socket error queue on sock destruct - [ppc64el] bpf: use unsigned division instruction for 64-bit operations - [armhf] imx: cpuidle-imx6sx: Restrict the SW2ISO increase to i.MX6SX - [armhf] dts: dra76x: Update MMC2_HS200_MANUAL1 iodelay values - [armhf] dts: am57xx-idk: Remove support for voltage switching for SD card - [arm64] sve: should not depend on - [arm64] ssbd: explicitly depend on - [x86] drm/vmwgfx: Use the backdoor port if the HB port is not available - Bluetooth: Align minimum encryption key size for LE and BR/EDR connections (CVE-2019-9506) - Bluetooth: Fix regression with minimum encryption key size alignment - SMB3: retry on STATUS_INSUFFICIENT_RESOURCES instead of failing write - cfg80211: fix memory leak of wiphy device name - mac80211: drop robust management frames from unknown TA - {nl,mac}80211: allow 4addr AP operation on crypto controlled devices - mac80211: handle deauthentication/disassociation from TDLS peer - nl80211: fix station_info pertid memory leak - mac80211: Do not use stack memory with scatterlist for GMAC - [x86] resctrl: Don't stop walking closids when a locksetup group is found https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.57 - perf ui helpline: Use strlcpy() as a shorter form of strncpy() + explicit set nul - perf help: Remove needless use of strncpy() - perf header: Fix unchecked usage of strncpy() - [arm64] Don't unconditionally add -Wno-psabi to KBUILD_CFLAGS - IB/hfi1: Close PSM sdma_progress sleep window - 9p/xen: fix check for xenbus_read error in front_probe - 9p: Use a slab for allocating requests - 9p: embed fcall in req to round down buffer allocs - 9p: add a per-client fcall kmem_cache - 9p: rename p9_free_req() function - 9p: Add refcount to p9_req_t - 9p/rdma: do not disconnect on down_interruptible EAGAIN - 9p: Rename req to rreq in trans_fd - 9p: acl: fix uninitialized iattr access - 9p/rdma: remove useless check in cm_event_handler - 9p: p9dirent_read: check network-provided name length - 9p: potential NULL dereference - 9p/trans_fd: abort p9_read_work if req status changed - 9p/trans_fd: put worker reqs on destroy - net/9p: include trans_common.h to fix missing prototype warning. - qmi_wwan: Fix out-of-bounds read - [armhf,arm64] Revert "usb: dwc3: gadget: Clear req->needs_extra_trb flag on cleanup" - [armhf,arm64] usb: dwc3: gadget: combine unaligned and zero flags - [armhf,arm64] usb: dwc3: gadget: track number of TRBs per request - [armhf,arm64] usb: dwc3: gadget: use num_trbs when skipping TRBs on ->dequeue() - [armhf,arm64] usb: dwc3: gadget: extract dwc3_gadget_ep_skip_trbs() - [armhf,arm64] usb: dwc3: gadget: introduce cancelled_list - [armhf,arm64] usb: dwc3: gadget: move requests to cancelled_list - [armhf,arm64] usb: dwc3: gadget: remove wait_end_transfer - [armhf,arm64] usb: dwc3: gadget: Clear req->needs_extra_trb flag on cleanup - fs/proc/array.c: allow reporting eip/esp for all coredumping threads - mm/mempolicy.c: fix an incorrect rebind node in mpol_rebind_nodemask - fs/binfmt_flat.c: make load_flat_shared_library() work - [armhf] clk: socfpga: stratix10: fix divider entry for the emac clocks - mm: soft-offline: return -EBUSY if set_hwpoison_free_buddy_page() fails - mm: hugetlb: soft-offline: dissolve_free_huge_page() return zero on !PageHuge - mm/page_idle.c: fix oops because end_pfn is larger than max_pfn - dm log writes: make sure super sector log updates are written in order - [x86] scsi: vmw_pscsi: Fix use-after-free in pvscsi_queue_lck() - [x86] speculation: Allow guests to use SSBD even if host does not - [x86] microcode: Fix the microcode load on CPU hotplug for real - [x86] resctrl: Prevent possible overrun during bitmap operations - [x86] KVM: mmu: Allocate PAE root array when using SVM's 32-bit NPT - NFS/flexfiles: Use the correct TCP timeout for flexfiles I/O - cpu/speculation: Warn on unsupported mitigations= parameter - SUNRPC: Clean up initialisation of the struct rpc_rqst - [mips*] irqchip/mips-gic: Use the correct local interrupt map registers - eeprom: at24: fix unexpected timeout under high load - af_packet: Block execution of tasks waiting for transmit to complete in AF_PACKET - bonding: Always enable vlan tx offload - ipv4: Use return value of inet_iif() for __raw_v4_lookup in the while loop - net/packet: fix memory leak in packet_set_ring() - net: remove duplicate fetch in sock_getsockopt - [armhf,arm64] net: stmmac: fixed new system time seconds value calculation - [armhf,arm64] net: stmmac: set IC bit when transmitting frames with HW timestamp - sctp: change to hold sk after auth shkey is created successfully - team: Always enable vlan tx offload - tipc: change to use register_pernet_device - tipc: check msg->req data len in tipc_nl_compat_bearer_disable - tun: wake up waitqueues after IFF_UP is set - bpf: simplify definition of BPF_FIB_LOOKUP related flags - bpf: lpm_trie: check left child of last leftmost node for NULL - bpf: fix nested bpf tracepoints with per-cpu data - bpf: fix unconnected udp hooks - bpf: udp: Avoid calling reuseport's bpf_prog from udp_gro - bpf: udp: ipv6: Avoid running reuseport's bpf_prog from __udp6_lib_err - [arm64] futex: Avoid copying out uninitialised stack in failed cmpxchg() - [arm64] bpf: use more scalable stadd over ldxr / stxr loop in xadd - futex: Update comments and docs about return values of arch futex code - RDMA: Directly cast the sockaddr union to sockaddr - tipc: pass tunnel dev as NULL to udp_tunnel(6)_xmit_skb - [armhf,arm64] usb: dwc3: Reset num_trbs after skipping - [arm64] insn: Fix ldadd instruction encoding https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.58 - Bluetooth: Fix faulty expression for minimum encryption key size check - block: Fix a NULL pointer dereference in generic_make_request() - md/raid0: Do not bypass blocking queue entered for raid0 bios - netfilter: nf_flow_table: ignore DF bit setting - netfilter: nft_flow_offload: set liberal tracking mode for tcp - netfilter: nft_flow_offload: don't offload when sequence numbers need adjustment - netfilter: nft_flow_offload: IPCB is only valid for ipv4 family - ASoC: soc-pcm: BE dai needs prepare when pause release after resume - spi: bitbang: Fix NULL pointer dereference in spi_unregister_master - [armhf,arm64] ASoC: max98090: remove 24-bit format support if RJ is 0 - [x86] CPU: Add more Icelake model numbers - ALSA: hdac: fix memory release for SST and SOF drivers - scsi: hpsa: correct ioaccel2 chaining - [x86] drm: panel-orientation-quirks: Add quirk for GPD pocket2 - [x86] drm: panel-orientation-quirks: Add quirk for GPD MicroPC - [x86] platform: asus-wmi: Only Tell EC the OS will handle display hotkeys from asus_nb_wmi - [x86] platform: intel-vbtn: Report switch events when event wakes device - [x86] platform: mlx-platform: Fix parent device in i2c-mux-reg device registration - i2c: pca-platform: Fix GPIO lookup code - cpuset: restore sanity to cpuset_cpus_allowed_fallback() - mm/mlock.c: change count_mm_mlocked_page_nr return type - tracing: avoid build warning with HAVE_NOP_MCOUNT - module: Fix livepatch/ftrace module text permissions race - ftrace: Fix NULL pointer dereference in free_ftrace_func_mapper() - [x86] drm/i915/dmc: protect against reading random memory - crypto: user - prevent operating on larval algorithms - crypto: cryptd - Fix skcipher instance memory leak - ALSA: seq: fix incorrect order of dest_client/dest_ports arguments - ALSA: firewire-lib/fireworks: fix miss detection of received MIDI messages - ALSA: line6: Fix write on zero-sized buffer - ALSA: usb-audio: fix sign unintended sign extension on left shifts - [x86] ALSA: hda/realtek: Add quirks for several Clevo notebook barebones - [x86] ALSA: hda/realtek - Change front mic location for Lenovo M710q - lib/mpi: Fix karactx leak in mpi_powm - fs/userfaultfd.c: disable irqs for fault_pending and event locks - tracing/snapshot: Resize spare buffer if size changed - [armhf] dts: armada-xp-98dx3236: Switch to armada-38x-uart serial node - drm/amd/powerplay: use hardware fan control if no powerplay fan table - drm/amdgpu/gfx9: use reset default for PA_SC_FIFO_SIZE - [armhf] drm/etnaviv: add missing failure path to destroy suballoc - [armhf] drm/imx: notify drm core before sending event during crtc disable - drm/imx: only send event on crtc disable if kept disabled - [x86] ftrace: Remove possible deadlock between register_kprobe() and ftrace_run_update_code() - mm/vmscan.c: prevent useless kswapd loops - btrfs: Ensure replaced device doesn't have pending chunk allocation - tty: rocket: fix incorrect forward declaration of 'rp_init()' - net/smc: move unhash before release of clcsock - drm/fb-helper: generic: Don't take module ref for fbcon - f2fs: don't access node/meta inode mapping after iput - mac80211: mesh: fix missing unlock on error in table_path_del() - scsi: tcmu: fix use after free - [amd64] boot/compressed: Do not corrupt EDX on EFER.LME=1 setting - [arm64] net: hns: Fixes the missing put_device in positive leg for roce reset - ALSA: hda: Initialize power_state field properly - rds: Fix warning. - ip6: fix skb leak in ip6frag_expire_frag_queue() - netfilter: ipv6: nf_defrag: fix leakage of unqueued fragments - [arm64] net: hns: fix unsigned comparison to less than zero - bpf: fix bpf_jit_limit knob for PAGE_SIZE >= 64K - netfilter: ipv6: nf_defrag: accept duplicate fragments again - [x86] KVM: degrade WARN to pr_warn_ratelimited - [x86] KVM: LAPIC: Fix pending interrupt in IRR blocked by software disable LAPIC - nfsd: Fix overflow causing non-working mounts on 1 TB machines - svcrdma: Ignore source port when computing DRC hash - [mips*] Fix bounds check virt_addr_valid - [mips*] Add missing EHB in mtc0 -> mfc0 sequence. - [arm64] dmaengine: qcom: bam_dma: Fix completed descriptors count - [armhf] dmaengine: imx-sdma: remove BD_INTR for channel0 https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.59 - [x86] Input: elantech - enable middle button support on 2 ThinkPads - mac80211: fix rate reporting inside cfg80211_calculate_bitrate_he() - bpf: sockmap, fix use after free from sleep in psock backlog workqueue - mac80211: mesh: fix RCU warning - mac80211: free peer keys before vif down in mesh - iwlwifi: Fix double-free problems in iwl_req_fw_callback() - can: af_can: Fix error path of can_init() - net: phy: rename Asix Electronics PHY driver - [armhf] dts: am335x phytec boards: Fix cd-gpios active level - [s390x] boot: disable address-of-packed-member warning - [x86] drm/vmwgfx: Honor the sg list segment size limitation - [x86] drm/vmwgfx: fix a warning due to missing dma_parms - [armhf] Input: imx_keypad - make sure keyboard can always wake up system - [armhf,arm64] KVM: vgic: Fix kvm_device leak in vgic_its_destroy - mac80211: only warn once on chanctx_conf being NULL - mac80211: do not start any work during reconfigure flow - bpf, devmap: Fix premature entry free on destroying map - bpf, devmap: Add missing bulk queue free - bpf, devmap: Add missing RCU read lock on flush - [amd64] bpf: fix stack layout of JITed bpf code - qmi_wwan: add support for QMAP padding in the RX path - qmi_wwan: avoid RCU stalls on device disconnect when in QMAP mode - qmi_wwan: extend permitted QMAP mux_id value range - mmc: core: complete HS400 before checking status - md: fix for divide error in status_resync - bnx2x: Check if transceiver implements DDM before access - drm: return -EFAULT if copy_to_user() fails - ip6_tunnel: allow not to count pkts on tstats by passing dev as NULL - net: lio_core: fix potential sign-extension overflow on large shift - scsi: qedi: Check targetname while finding boot target information - quota: fix a problem about transfer quota - [armhf,arm64] net: dsa: mv88e6xxx: fix shift of FID bits in mv88e6185_g1_vtu_loadpurge() - NFS4: Only set creation opendata if O_CREAT - net :sunrpc :clnt :Fix xps refcount imbalance on the error path - fscrypt: don't set policy for a dead directory - udf: Fix incorrect final NOT_ALLOCATED (hole) extent length - media: stv0297: fix frequency range limit - ALSA: usb-audio: Fix parse of UAC2 Extension Units - ALSA: hda/realtek - Headphone Mic can't record after S3 - block, bfq: NULL out the bic when it's no longer valid - [arm64] perf pmu: Fix uncore PMU alias list for ARM64 - [x86] ptrace: Fix possible spectre-v1 in ptrace_get_debugreg() - [x86] tls: Fix possible spectre-v1 in do_get_thread_area() - USB: serial: ftdi_sio: add ID for isodebug v1 - USB: serial: option: add support for GosunCn ME3630 RNDIS mode - Revert "serial: 8250: Don't service RX FIFO if interrupts are disabled" - p54usb: Fix race between disconnect and firmware loading - usb: gadget: ether: Fix race between gether_disconnect and rx_submit - [armhf,arm64] usb: dwc2: use a longer AHB idle timeout in dwc2_core_reset() - [x86] drivers/usb/typec/tps6598x.c: fix portinfo width - [x86] drivers/usb/typec/tps6598x.c: fix 4CC cmd write - [i386] staging: comedi: dt282x: fix a null pointer deref on interrupt - [x86] staging: comedi: amplc_pci230: fix null pointer deref on interrupt - HID: Add another Primax PIXART OEM mouse quirk - binder: fix memory leak in error path - carl9170: fix misuse of device driver API - [x86] VMCI: Fix integer overflow in VMCI handle arrays - staging: rtl8712: reduce stack usage, again https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.60 - Revert "e1000e: fix cyclic resets at link up with active tx" - e1000e: start network tx queue only when link is up - [x86] Input: synaptics - enable SMBUS on T480 thinkpad trackpad - nilfs2: do not use unexported cpu_to_le32()/le32_to_cpu() in uapi header - drivers: base: cacheinfo: Ensure cpu hotplug work is done before Intel RDT - firmware: improve LSM/IMA security behaviour - [armhf,arm64] irqchip/gic-v3-its: Fix command queue pointer comparison bug - [armhf] clk: ti: clkctrl: Fix returning uninitialized data - [amd64,arm64] efi/bgrt: Drop BGRT status field reserved bits check - perf/core: Fix perf_sample_regs_user() mm check - [armhf] omap2: remove incorrect __init annotation - afs: Fix uninitialised spinlock afs_volume::cb_break_lock - [x86] apic: Fix integer overflow on 10 bit left shift of cpu_khz - be2net: fix link failure after ethtool offline test - ppp: mppe: Add softdep to arc4 - sis900: fix TX completion - [armhf] dts: imx6ul: fix PWM[1-4] interrupts - [armhf] pinctrl: mcp23s08: Fix add_data and irqchip_add_nested call order - dm table: don't copy from a NULL pointer in realloc_argv() - dm verity: use message limit for data block corruption message - [amd64] boot: Fix crash if kernel image crosses page table boundary - [amd64] boot: Add missing fixup_pointer() for next_early_pgt access - HID: chicony: add another quirk for PixArt mouse - HID: multitouch: Add pointstick support for ALPS Touchpad - cpu/hotplug: Fix out-of-bounds read when setting fail state - linux/kernel.h: fix overflow for DIV_ROUND_UP_ULL - genirq: Delay deactivation in free_irq() - genirq: Fix misleading synchronize_irq() documentation - genirq: Add optional hardware synchronization for shutdown - [x86] ioapic: Implement irq_get_irqchip_state() callback - [x86] irq: Handle spurious interrupt after shutdown gracefully - [x86] irq: Seperate unused system vectors from spurious entry again - [s390x] fix stfle zero padding - [s390x] qdio: (re-)initialize tiqdio list entries - [s390x] qdio: don't touch the dsci in tiqdio_add_input_queues() - regmap-irq: do not write mask register if mask_base is zero - drm/udl: introduce a macro to convert dev to udl. - drm/udl: Replace drm_dev_unref with drm_dev_put - drm/udl: move to embedding drm device inside udl device. - [i386] entry: Fix ENDPROC of common_spurious https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.61 - [arm64] efi: Mark __efistub_stext_offset as an absolute symbol explicitly - scsi: iscsi: set auth_protocol back to NULL if CHAP_A value is not supported - [armhf] dmaengine: imx-sdma: fix use-after-free on probe error path - wil6210: fix potential out-of-bounds read - ath10k: Do not send probe response template for mesh - ath9k: Check for errors when reading SREV register - ath6kl: add some bounds checking - ath10k: add peer id check in ath10k_peer_find_by_id - wil6210: fix spurious interrupts in 3-msi - ath: DFS JP domain W56 fixed pulse type 3 RADAR detection - regmap: debugfs: Fix memory leak in regmap_debugfs_init - batman-adv: fix for leaked TVLV handler. - media: dvb: usb: fix use after free in dvb_usb_device_exit - media: marvell-ccic: fix DMA s/g desc number calculation - media: media_device_enum_links32: clean a reserved field - [armhf,arm64] net: stmmac: dwmac1000: Clear unused address entries - [armhf,arm64] net: stmmac: dwmac4/5: Clear unused address entries - qed: Set the doorbell address correctly - signal/pid_namespace: Fix reboot_pid_ns to use send_sig not force_sig - af_key: fix leaks in key_pol_get_resp and dump_sp. - xfrm: Fix xfrm sel prefix length validation - fscrypt: clean up some BUG_ON()s in block encryption/decryption - perf annotate TUI browser: Do not use member from variable within its own initialization - media: mc-device.c: don't memset __user pointer contents - media: saa7164: fix remove_proc_entry warning - net: phy: Check against net_device being NULL - tua6100: Avoid build warnings. - batman-adv: Fix duplicated OGMs on NETDEV_UP - [armhf] media: wl128x: Fix some error handling in fm_v4l2_init_video_device() - [arm64] net: hns3: set ops to null when unregister ad_dev - cpupower : frequency-set -r option misses the last cpu in related cpu list - [armhf,arm64] net: stmmac: dwmac4: fix flow control issue - [armhf,arm64] net: stmmac: modify default value of tx-frames - [arm64] crypto: inside-secure - do not rely on the hardware last bit for result descriptors - [s390x] qdio: handle PENDING state for QEBSM devices - net: sfp: add mutex to prevent concurrent state checks - ipset: Fix memory accounting for hash types on resize - perf cs-etm: Properly set the value of 'old' and 'head' in snapshot mode - [s390x] perf report: Fix OOM error in TUI mode on s390 - [arm64] irqchip/meson-gpio: Add support for Meson-G12A SoC - media: uvcvideo: Fix access to uninitialized fields on probe error - iommu: Fix a leak in iommu_insert_resv_region - [armhf] gpio: omap: fix lack of irqstatus_raw0 for OMAP4 - [armhf] gpio: omap: ensure irq is enabled before wakeup - regmap: fix bulk writes on paged registers - bpf: silence warning messages in core - selinux: fix empty write to keycreate file - [x86] cpu: Add Ice Lake NNPI to Intel family - [arm64] ASoC: meson: axg-tdm: fix sample clock inversion - rcu: Force inlining of rcu_read_lock() - [x86] cpufeatures: Add FDP_EXCPTN_ONLY and ZERO_FCS_FDS - qed: iWARP - Fix tc for MPA ll2 connection - [arm64] net: hns3: fix for skb leak when doing selftest - block: null_blk: fix race condition for null_del_dev - blkcg, writeback: dead memcgs shouldn't contribute to writeback ownership arbitration - xfrm: fix sa selector validation - sched/core: Add __sched tag for io_schedule() - sched/fair: Fix "runnable_avg_yN_inv" not used warnings - [x86] perf/intel/uncore: Handle invalid event coding for free-running counter - [x86] atomic: Fix smp_mb__{before,after}_atomic() - perf evsel: Make perf_evsel__name() accept a NULL argument - vhost_net: disable zerocopy by default - ipoib: correcly show a VF hardware address - [x86] cacheinfo: Fix a -Wtype-limits warning - blk-iolatency: only account submitted bios - ACPICA: Clear status of GPEs on first direct enable - EDAC/sysfs: Fix memory leak when creating a csrow object - nvme: fix possible io failures when removing multipathed ns - nvme-pci: properly report state change failure in nvme_reset_work - nvme-pci: set the errno on ctrl state change error - lightnvm: pblk: fix freeing of merged pages - [arm64] Do not enable IRQs for ct_user_exit - ipsec: select crypto ciphers for xfrm_algo - ipvs: defer hook registration to avoid leaks - media: i2c: fix warning same module names - ntp: Limit TAI-UTC offset - timer_list: Guard procfs specific code - [arm64] acpi: ignore 5.1 FADTs that are reported as 5.0 - media: hdpvr: fix locking and a missing msleep - [armhf] net: stmmac: sun8i: force select external PHY when no internal one - rtlwifi: rtl8192cu: fix error handle when usb probe failed - mt7601u: do not schedule rx_tasklet when the device has been disconnected - mt7601u: fix possible memory leak when the device is disconnected - ipvs: fix tinfo memory leak in start_sync_thread - ath10k: add missing error handling - ath10k: fix PCIE device wake up failed - perf tools: Increase MAX_NR_CPUS and MAX_CACHES - [x86] ASoC: Intel: hdac_hdmi: Set ops to NULL on remove - libata: don't request sense data on !ZAC ATA devices - [armhf] clocksource/drivers/exynos_mct: Increase priority over ARM arch timer - xsk: Properly terminate assignment in xskq_produce_flush_desc - rslib: Fix decoding of shortened codes - rslib: Fix handling of of caller provided syndrome - ixgbe: Check DDM existence in transceiver before access - crypto: serpent - mark __serpent_setkey_sbox noinline - wil6210: drop old event after wmi_call timeout - EDAC: Fix global-out-of-bounds write when setting edac_mc_poll_msec - bcache: check CACHE_SET_IO_DISABLE in allocator code - bcache: check CACHE_SET_IO_DISABLE bit in bch_journal() - bcache: acquire bch_register_lock later in cached_dev_free() - bcache: check c->gc_thread by IS_ERR_OR_NULL in cache_set_flush() - bcache: fix potential deadlock in cached_def_free() - [arm64] net: hns3: fix a -Wformat-nonliteral compile warning - [arm64] net: hns3: add some error checking in hclge_tm module - ath10k: destroy sdio workqueue while remove sdio module - [armhf,arm64] net: mvpp2: prs: Don't override the sign bit in SRAM parser shift - igb: clear out skb->tstamp after reading the txtime - iwlwifi: mvm: Drop large non sta frames - perf stat: Make metric event lookup more robust - perf stat: Fix group lookup for metric group - bnx2x: Prevent ptp_task to be rescheduled indefinitely - net: usb: asix: init MAC address buffers - rxrpc: Fix oops in tracepoint - bpf, libbpf, smatch: Fix potential NULL pointer dereference - bonding: validate ip header before check IPPROTO_IGMP - gpiolib: Fix references to gpiod_[gs]et_*value_cansleep() variants - [ppc64el] tools: bpftool: Fix json dump crash on powerpc - Bluetooth: hci_bcsp: Fix memory leak in rx_skb - Bluetooth: Add new 13d3:3491 QCA_ROME device - Bluetooth: Add new 13d3:3501 QCA_ROME device - Bluetooth: 6lowpan: search for destination address in all peers - [ppc64el] perf tests: Fix record+probe_libc_inet_pton.sh for powerpc64 - Bluetooth: Check state in l2cap_disconnect_rsp - gtp: add missing gtp_encap_disable_sock() in gtp_encap_enable() - Bluetooth: validate BLE connection interval updates - gtp: fix suspicious RCU usage - gtp: fix Illegal context switch in RCU read-side critical section. - gtp: fix use-after-free in gtp_encap_destroy() - gtp: fix use-after-free in gtp_newlink() - [armel/marvell,armhf] net: mvmdio: defer probe of orion-mdio if a clock is not ready - iavf: fix dereference of null rx_buffer pointer - floppy: fix out-of-bounds read in next_valid_format - floppy: fix invalid pointer dereference in drive_name - xen: let alloc_xenballooned_pages() fail if not enough memory free - scsi: core: Fix race on creating sense cache - scsi: megaraid_sas: Fix calculation of target ID - crypto: ghash - fix unaligned memory access in ghash_setkey() - [x86] crypto: ccp - Validate the the error value used to index error messages - [arm64] crypto: sha1-ce - correct digest for empty data in finup - [arm64] crypto: sha2-ce - correct digest for empty data in finup - crypto: chacha20poly1305 - fix atomic sleep when using async algorithm - [x86] crypto: ccp - memset structure fields to zero before reuse - [x86] crypto: ccp/gcm - use const time tag comparison. - Revert "bcache: set CACHE_SET_IO_DISABLE in bch_cached_dev_error()" - bcache: Revert "bcache: fix high CPU occupancy during journal" - bcache: Revert "bcache: free heap cache_set->flush_btree in bch_journal_free" - bcache: ignore read-ahead request failure on backing device - bcache: fix mistaken sysfs entry for io_error counter - bcache: destroy dc->writeback_write_wq if failed to create dc->writeback_thread - Input: alps - don't handle ALPS cs19 trackpoint-only device - [x86] Input: synaptics - whitelist Lenovo T580 SMBus intertouch - Input: alps - fix a mismatch between a condition check and its comment - [armhf] regulator: s2mps11: Fix buck7 and buck8 wrong voltages - [arm64] tegra: Update Jetson TX1 GPU regulator timings - iwlwifi: pcie: don't service an interrupt that was masked - iwlwifi: pcie: fix ALIVE interrupt handling for gen2 devices w/o MSI-X - iwlwifi: don't WARN when calling iwl_get_shared_mem_conf with RF-Kill - iwlwifi: fix RF-Kill interrupt while FW load for gen2 devices - NFSv4: Handle the special Linux file open access mode - pnfs/flexfiles: Fix PTR_ERR() dereferences in ff_layout_track_ds_error - pNFS: Fix a typo in pnfs_update_layout - pnfs: Fix a problem where we gratuitously start doing I/O through the MDS - lib/scatterlist: Fix mapping iterator when sg->offset is greater than PAGE_SIZE - ASoC: dapm: Adapt for debugfs API change - raid5-cache: Need to do start() part job after adding journal device - ALSA: seq: Break too long mutex context in the write loop - [x86] ALSA: hda/realtek - Fixed Headphone Mic can't record on Dell platform - [x86] ALSA: hda/realtek: apply ALC891 headset fixup to one Dell machine - media: v4l2: Test type instead of cfg->type in v4l2_ctrl_new_custom() - media: videobuf2-core: Prevent size alignment wrapping buffer size to 0 - media: videobuf2-dma-sg: Prevent size from overflowing - [x86] KVM: vPMU: refine kvm_pmu err msg when event creation failed - [arm64] tegra: Fix AGIC register range - fs/proc/proc_sysctl.c: fix the default values of i_uid/i_gid on /proc/sys inodes. - kconfig: fix missing choice values in auto.conf - drm/nouveau/i2c: Enable i2c pads & busses during preinit - padata: use smp_mb in padata_reorder to avoid orphaned padata jobs - dm zoned: fix zone state management race - xen/events: fix binding user event channels to cpus - 9p/xen: Add cleanup path in p9_trans_xen_init - 9p/virtio: Add cleanup path in p9_virtio_init - [x86] boot: Fix memory leak in default_get_smp_config() - [x86] perf/intel: Fix spurious NMI on fixed counter - [x86] perf/amd/uncore: Do not set 'ThreadMask' and 'SliceMask' for non-L3 PMCs - [x86] perf/amd/uncore: Set the thread mask for F17h L3 PMCs - drm/edid: parse CEA blocks embedded in DisplayID - [x86] intel_th: pci: Add Ice Lake NNPI support - [x86] PCI: hv: Fix a use-after-free bug in hv_eject_device_work() - PCI: Do not poll for PME if the device is in D3cold - [arm64] PCI: qcom: Ensure that PERST is asserted for at least 100 ms - Btrfs: fix data loss after inode eviction, renaming it, and fsync it - Btrfs: fix fsync not persisting dentry deletions due to inode evictions - Btrfs: add missing inode version, ctime and mtime updates when punching hole - IB/mlx5: Report correctly tag matching rendezvous capability - HID: wacom: generic: only switch the mode on devices with LEDs - HID: wacom: generic: Correct pad syncing - HID: wacom: correct touch resolution x/y typo - libnvdimm/pfn: fix fsdax-mode namespace info-block zero-fields - coda: pass the host file in vma->vm_file on mmap - include/asm-generic/bug.h: fix "cut here" for WARN_ON for __WARN_TAINT architectures - xfs: fix pagecache truncation prior to reflink - xfs: flush removing page cache in xfs_reflink_remap_prep - xfs: don't overflow xattr listent buffer - xfs: rename m_inotbt_nores to m_finobt_nores - xfs: don't ever put nlink > 0 inodes on the unlinked list - xfs: reserve blocks for ifree transaction during log recovery - xfs: fix reporting supported extra file attributes for statx() - xfs: serialize unaligned dio writes against all other dio writes - xfs: abort unaligned nowait directio early - [ppc64el] watchpoint: Restore NV GPRs while returning from exception - [ppc64el] powernv/npu: Fix reference leak - [ppc64el] pseries: Fix oops in hotplug memory notifier - [arm64] mmc: sdhci-msm: fix mutex while in spinlock - eCryptfs: fix a couple type promotion bugs - [x86] intel_th: msu: Fix single mode with disabled IOMMU - Bluetooth: Add SMP workaround Microsoft Surface Precision Mouse bug - usb: Handle USB3 remote wakeup for LPM enabled devices correctly - blk-throttle: fix zero wait time for iops throttled group - blk-iolatency: clear use_delay when io.latency is set to zero - blkcg: update blkcg_print_stat() to handle larger outputs - [armel/marvell,armhf] net: mvmdio: allow up to four clocks to be specified for orion-mdio - dm bufio: fix deadlock with loop device https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.62 - bnx2x: Prevent load reordering in tx completion processing - [x86] hv_netvsc: Fix extra rcu_read_unlock in netvsc_recv_callback() - igmp: fix memory leak in igmpv3_del_delrec() - ipv4: don't set IPv6 only flags to IPv4 addresses - ipv6: rt6_check should return NULL if 'from' is NULL - ipv6: Unlink sibling route in case of failure - [armhf,arm64] net: dsa: mv88e6xxx: wait after reset deactivation - net: make skb_dst_force return true when dst is refcounted - net: neigh: fix multiple neigh timer scheduling - net: openvswitch: fix csum updates for MPLS actions - net: phy: sfp: hwmon: Fix scaling of RX power - [armhf,arm64] net: stmmac: Re-work the queue selection for TSO packets - nfc: fix potential illegal memory access - r8169: fix issue with confused RX unit after PHY power-down on RTL8411b - rxrpc: Fix send on a connected, but unbound socket - sctp: fix error handling on stream scheduler initialization - [x86] sky2: Disable MSI on ASUS P6T - tcp: be more careful in tcp_fragment() - tcp: fix tcp_set_congestion_control() use from bpf hook - tcp: Reset bytes_acked and bytes_received when disconnecting - vrf: make sure skb->data contains ip header to make routing - net/mlx5e: IPoIB, Add error path in mlx5_rdma_setup_rn - macsec: fix use-after-free of skb during RX - macsec: fix checksumming after decryption - netrom: fix a memory leak in nr_rx_frame() - netrom: hold sock when setting skb->destructor - net_sched: unset TCQ_F_CAN_BYPASS when adding filters - sctp: not bind the socket in sctp_connect - net: bridge: mcast: fix stale nsrcs pointer in igmp3/mld2 report handling - net: bridge: mcast: fix stale ipv6 hdr pointer when handling v6 query - net: bridge: don't cache ether dest pointer on input - net: bridge: stp: don't cache eth dest pointer before skb pull - dma-buf: balance refcount inbalance - dma-buf: Discard old fence_excl on retrying get_fences_rcu for realloc - perf/core: Fix exclusive events' grouping - perf/core: Fix race between close() and fork() - ext4: don't allow any modifications to an immutable file - ext4: enforce the immutable flag on open files - mm: add filemap_fdatawait_range_keep_errors() - jbd2: introduce jbd2_inode dirty range scoping - ext4: use jbd2_inode dirty range scoping - ext4: allow directory holes - [x86] KVM: nVMX: do not use dangling shadow VMCS after guest reset - [x86] KVM: nVMX: Clear pending KVM_REQ_GET_VMCS12_PAGES when leaving nested - mm: vmscan: scan anonymous pages on file refaults - net: sched: verify that q!=NULL before setting q->flags https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.63 - [x86] hvsock: fix epollout hang from race condition - [armhf,arm64] drm/panel: simple: Fix panel_simple_dsi_probe - [x86] staging: vt6656: use meaningful error code during buffer allocation - usb: core: hub: Disable hub-initiated U1/U2 - [armhf,arm64] pinctrl: rockchip: fix leaked of_node references - drm/amd/display: Fill prescale_params->scale for RGB565 - drm/amdgpu/sriov: Need to initialize the HDP_NONSURFACE_BAStE - drm/amd/display: Disable ABM before destroy ABM struct - drm/amdkfd: Fix a potential memory leak - drm/amdkfd: Fix sdma queue map issue - drm/edid: Fix a missing-check bug in drm_load_edid_firmware() - PCI: Return error if cannot probe VF - [armhf,arm64] gpu: host1x: Increase maximum DMA segment size - drm/crc-debugfs: User irqsafe spinlock in drm_crtc_add_crc_entry - drm/crc-debugfs: Also sprinkle irqrestore over early exits - memstick: Fix error cleanup path of memstick_init - [arm64] tty: serial: msm_serial: avoid system lockup condition - serial: 8250: Fix TX interrupt handling condition - drm/amd/display: Always allocate initial connector state state - drm/virtio: Add memory barriers for capset cache. - drm/amd/display: fix compilation error - [ppc64el] pseries/mobility: prevent cpu hotplug during DT update - [armhf,arm64] drm/rockchip: Properly adjust to a true clock in adjusted_mode - [armhf] serial: imx: fix locking in set_termios() - tty: serial_core: Set port active bit in uart_port_activate - usb: gadget: Zero ffs_io_data - mmc: sdhci: sdhci-pci-o2micro: Check if controller supports 8-bit width - [ppc64el] pci/of: Fix OF flags parsing for 64bit BARs - [arm64] drm/msm: Depopulate platform on probe failure - [arm64] PCI: xilinx-nwl: Fix Multi MSI data programming - iio: iio-utils: Fix possible incorrect mask calculation - [ppc64el] cacheflush: fix variable set but not used - [ppc64el] xmon: Fix disabling tracing while in xmon - [ppc64el] recordmcount: Fix spurious mcount entries on powerpc - mfd: core: Set fwnode for created devices - [arm64] mfd: hi655x-pmic: Fix missing return value check for devm_regmap_init_mmio_clk - mm/swap: fix release_pages() when releasing devmap pages - RDMA/i40iw: Set queue pair state when being queried - IB/mlx5: Fixed reporting counters on 2nd port for Dual port RoCE - [ppc64el] mm: Handle page table allocation failures - IB/ipoib: Add child to parent list only if device initialized - [arm64] assembler: Switch ESB-instruction with a vanilla nop if !ARM64_HAS_RAS - perf stat: Fix use-after-freed pointer detected by the smatch tool - perf top: Fix potential NULL pointer dereference detected by the smatch tool - perf session: Fix potential NULL pointer dereference found by the smatch tool - perf annotate: Fix dereferencing freed memory found by the smatch tool - perf hists browser: Fix potential NULL pointer dereference found by the smatch tool - RDMA/rxe: Fill in wc byte_len with IB_WC_RECV_RDMA_WITH_IMM - [armhf] PCI: dwc: pci-dra7xx: Fix compilation when !CONFIG_GPIOLIB - [ppc64el] boot: add {get, put}_unaligned_be32 to xz_config.h - block: init flush rq ref count to 1 - f2fs: avoid out-of-range memory access - mailbox: handle failed named mailbox channel request - dlm: check if workqueues are NULL before flushing/destroying - [ppc64el] eeh: Handle hugepages in ioremap space - block/bio-integrity: fix a memory leak bug - 9p: pass the correct prototype to read_cache_page - mm/gup.c: mark undo_dev_pagemap as __maybe_unused - mm/gup.c: remove some BUG_ONs from get_gate_page() - memcg, fsnotify: no oom-kill for remote memcg charging - mm/mmu_notifier: use hlist_add_head_rcu() - proc: use down_read_killable mmap_sem for /proc/pid/smaps_rollup - proc: use down_read_killable mmap_sem for /proc/pid/pagemap - proc: use down_read_killable mmap_sem for /proc/pid/clear_refs - proc: use down_read_killable mmap_sem for /proc/pid/map_files - cxgb4: reduce kernel stack usage in cudbg_collect_mem_region() - proc: use down_read_killable mmap_sem for /proc/pid/maps - locking/lockdep: Fix lock used or unused stats error - mm: use down_read_killable for locking mmap_sem in access_remote_vm - locking/lockdep: Hide unused 'class' variable - usb: wusbcore: fix unbalanced get/put cluster_id - [x86] usb: pci-quirks: Correct AMD PLL quirk detection - btrfs: inode: Don't compress if NODATASUM or NODATACOW set - [x86] sysfb_efi: Add quirks for some devices with swapped width and height - [x86] speculation/mds: Apply more accurate check on hypervisor platform - binder: prevent transactions to context manager from its own process. - fpga-manager: altera-ps-spi: Fix build error - [x86] mei: me: add mule creek canyon (EHL) device ids - [x86] hpet: Fix division by zero in hpet_time_div() - ALSA: ac97: Fix double free of ac97_codec_device - ALSA: line6: Fix wrong altsetting for LINE6_PODHD500_1 - ALSA: hda - Add a conexant codec entry to let mute led work - [ppc64el] xive: Fix loop exit-condition in xive_find_target_in_mask() - libnvdimm/bus: Stop holding nvdimm_bus_list_mutex over __nd_ioctl() - access: avoid the RCU grace period for the temporary subjective credentials https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.64 - [x86] hv_sock: Add support for delayed close - vsock: correct removal of socket from the list - NFS: Fix dentry revalidation on NFSv4 lookup - NFS: Refactor nfs_lookup_revalidate() - NFSv4: Fix lookup revalidate of regular files - [armhf,arm64] usb: dwc2: Disable all EP's on disconnect - [armhf,arm64] usb: dwc2: Fix disable all EP's on disconnect - [arm64] compat: Provide definition for COMPAT_SIGMINSTKSZ (Closes: #904385). - binder: fix possible UAF when freeing buffer - ISDN: hfcsusb: checking idx of ep configuration - media: au0828: fix null dereference in error path - ath10k: Change the warning message string - media: cpia2_usb: first wake up, then free in disconnect - media: pvrusb2: use a different format for warnings - NFS: Cleanup if nfs_match_client is interrupted - media: radio-raremono: change devm_k*alloc to k*alloc - [x86] iommu/vt-d: Don't queue_iova() if there is no flush queue - vhost: introduce vhost_exceeds_weight() - vhost_net: fix possible infinite loop (CVE-2019-3900) - vhost: vsock: add weight support - vhost: scsi: add weight support (CVE-2019-3900) - sched/fair: Don't free p->numa_faults with concurrent readers - sched/fair: Use RCU accessors consistently for ->numa_group - /proc//cmdline: remove all the special cases - /proc//cmdline: add back the setproctitle() special case - drivers/pps/pps.c: clear offset flags in PPS_SETPARAMS ioctl - Fix allyesconfig output. - ceph: hold i_ceph_lock when removing caps for freeing inode - block, scsi: Change the preempt-only flag into a counter - scsi: core: Avoid that a kernel warning appears during system resume - ip_tunnel: allow not to count pkts on tstats by setting skb's dev to NULL https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.65 - [armhf] dts: rockchip: Make rk3288-veyron-minnie run at hs200 - [armhf] dts: rockchip: Make rk3288-veyron-mickey's emmc work again - [armhf] dts: rockchip: Mark that the rk3288 timer might stop in suspend - ftrace: Enable trampoline when rec count returns back to one - [armhf,arm64] dmaengine: tegra-apb: Error out if DMA_PREP_INTERRUPT flag is unset - [arm64] dts: rockchip: fix isp iommu clocks and power domain - kernel/module.c: Only return -EEXIST for modules that have finished loading - [arm64] clk: tegra210: fix PLLU and PLLU_OUT1 - fs/adfs: super: fix use-after-free bug - btrfs: fix minimum number of chunk errors for DUP - btrfs: qgroup: Don't hold qgroup_ioctl_lock in btrfs_qgroup_inherit() - cifs: Fix a race condition with cifs_echo_request - ceph: fix improper use of smp_mb__before_atomic() - ceph: return -ERANGE if virtual xattr value didn't fit in buffer - ACPI: blacklist: fix clang warning for unused DMI table - [s390x] scsi: zfcp: fix GCC compiler warning emitted with -Wmaybe-uninitialized - perf version: Fix segfault due to missing OPT_END() - [x86] kvm: avoid constant-conversion warning - ACPI: fix false-positive -Wuninitialized warning - be2net: Signal that the device cannot transmit during reconfiguration - [x86] apic: Silence -Wtype-limits compiler warnings - mm/cma.c: fail if fixed declaration can't be honored - lib/test_overflow.c: avoid tainting the kernel and fix wrap size - lib/test_string.c: avoid masking memset16/32/64 failures - coda: add error handling for fget - coda: fix build using bare-metal toolchain - uapi linux/coda_psdev.h: move upc_req definition from uapi to kernel side headers - drivers/rapidio/devices/rio_mport_cdev.c: NUL terminate some strings - ipc/mqueue.c: only perform resource calculation if user valid - [x86] xen/pv: Fix a boot up hang revealed by int3 self test - [x86] kvm: Don't call kvm_spurious_fault() from .fixup - [x86] paravirt: Fix callee-saved function ELF sizes - [x86] boot: Remove multiple copy of static function sanitize_boot_params() - drm/nouveau: fix memory leak in nouveau_conn_reset() - kconfig: Clear "written" flag to avoid data loss - Btrfs: fix incremental send failure after deduplication - Btrfs: fix race leading to fs corruption after transaction abort - [armhf,arm64] mmc: dw_mmc: Fix occasional hang after tuning on eMMC - [arm64] mmc: meson-mx-sdio: Fix misuse of GENMASK macro - gpiolib: fix incorrect IRQ requesting of an active-low lineevent - IB/hfi1: Fix Spectre v1 vulnerability - mtd: rawnand: micron: handle on-die "ECC-off" devices correctly - selinux: fix memory leak in policydb_init() - ALSA: hda: Fix 1-minute detection delay when i915 module is not available (Closes: #931507) - mm: vmscan: check if mem cgroup is disabled or not before calling memcg slab shrinker - [s390x] dasd: fix endless loop after read unit address configuration - [arm*] drivers/perf: arm_pmu: Fix failure path in PM notifier - [arm64] compat: Allow single-byte watchpoints on all addresses - [arm64] cpufeature: Fix feature comparison for CTR_EL0.{CWG,ERG} - nbd: replace kill_bdev() with __invalidate_device() again - xen/swiotlb: fix condition for calling xen_destroy_contiguous_region() - IB/mlx5: Fix unreg_umr to ignore the mkey state - IB/mlx5: Use direct mkey destroy command upon UMR unreg failure - IB/mlx5: Move MRs to a kernel PD when freeing them to the MR cache - IB/mlx5: Fix clean_mr() to work in the expected order - IB/mlx5: Fix RSS Toeplitz setup to be aligned with the HW specification - IB/hfi1: Check for error on call to alloc_rsm_map_table - [x86] drm/i915/gvt: fix incorrect cache entry for guest page mapping - eeprom: at24: make spd world-readable again - objtool: Support GCC 9 cold subfunction naming scheme - gcc-9: properly declare the {pv,hv}clock_page storage - [x86] vdso: Prevent segfaults due to hoisted vclock reads - scsi: mpt3sas: Use 63-bit DMA addressing on SAS35 HBA https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.66 - scsi: fcoe: Embed fc_rport_priv in fcoe_rport structure - gcc-9: don't warn about uninitialized variable - driver core: Establish order of operations for device_add and device_del via bitflag - drivers/base: Introduce kill_device() - libnvdimm/bus: Prevent duplicate device_unregister() calls - libnvdimm/region: Register badblocks before namespaces - libnvdimm/bus: Prepare the nd_ioctl() path to be re-entrant - libnvdimm/bus: Fix wait_nvdimm_bus_probe_idle() ABBA deadlock - HID: wacom: fix bit shift for Cintiq Companion 2 - HID: Add quirk for HP X1200 PIXART OEM mouse - IB: directly cast the sockaddr union to aockaddr - atm: iphase: Fix Spectre v1 vulnerability - bnx2x: Disable multi-cos feature. - ife: error out when nla attributes are empty - ip6_gre: reload ipv6h in prepare_ip6gre_xmit_ipv6 - ip6_tunnel: fix possible use-after-free on xmit - ipip: validate header length in ipip_tunnel_xmit - [armhf,arm64] mvpp2: fix panic on module removal - [armhf,arm64] mvpp2: refactor MTU change code - net: bridge: delete local fdb on device init failure - net: bridge: mcast: don't delete permanent entries when fast leave is enabled - net: fix ifindex collision during namespace removal - net/mlx5e: always initialize frag->last_in_page - net/mlx5: Use reversed order when unregister devices - net: phylink: Fix flow control for fixed-link - net: sched: Fix a possible null-pointer dereference in dequeue_func() - net sched: update vlan action for batched events operations - net: sched: use temporary variable for actions indexes - net/smc: do not schedule tx_work in SMC_CLOSED state - tipc: compat: allow tipc commands without arguments - tun: mark small packets as owned by the tap sock - net/mlx5: Fix modify_cq_in alignment - net/mlx5e: Prevent encap flow counter update async to user query - r8169: don't use MSI before RTL8168d - compat_ioctl: pppoe: fix PPPOEIOCSFWD handling - cgroup: Call cgroup_release() before __exit_signal() - cgroup: Implement css_task_iter_skip() - cgroup: Include dying leaders with live threads in PROCS iterations - cgroup: css_task_iter_skip()'d iterators must be advanced before accessed - cgroup: Fix css_task_iter_advance_css_set() cset skip condition - [arm*] spi: bcm2835: Fix 3-wire mode if DMA is enabled https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.67 - [x86] crypto: ccp - Fix oops by properly managing allocated structures - [x86] crypto: ccp - Add support for valid authsize values less than 16 - [x86] crypto: ccp - Ignore tag length when decrypting GCM ciphertext - usb: usbfs: fix double-free of usb memory upon submiturb error - usb: iowarrior: fix deadlock on disconnect - sound: fix a memory leak bug - [arm64,mips*/octeon] mmc: cavium: Set the correct dma max segment size for mmc_host - [arm64,mips*/octeon] mmc: cavium: Add the missing dma unmap when the dma has finished. - loop: set PF_MEMALLOC_NOIO for the worker thread - Input: usbtouchscreen - initialize PM mutex before using it - [x86] Input: elantech - enable SMBus on new (2018+) systems - [x86] Input: synaptics - enable RMI mode for HP Spectre X360 - [x86] mm: Check for pfn instead of page in vmalloc_sync_one() - [x86] mm: Sync also unmappings in vmalloc_sync_all() - mm/vmalloc: Sync unmappings in __purge_vmap_area_lazy() - [s390x] perf annotate: Fix s390 gap between kernel end and module start - perf db-export: Fix thread__exec_comm() - [s390x] perf record: Fix module size on s390 - [x86] purgatory: Use CFLAGS_REMOVE rather than reset KBUILD_CFLAGS - gfs2: gfs2_walk_metadata fix - usb: yurex: Fix use-after-free in yurex_delete - [x86] usb: typec: tcpm: free log buf memory when remove debug file - [x86] usb: typec: tcpm: remove tcpm dir if no children - [x86] usb: typec: tcpm: Add NULL check before dereferencing config - [x86] usb: typec: tcpm: Ignore unsupported/unknown alternate mode requests - can: peak_usb: fix potential double kfree_skb() - netfilter: nfnetlink: avoid deadlock due to synchronous request_module - [s390x] vfio-ccw: Set pa_nr to 0 if memory allocation fails for pa_iova_pfn - netfilter: Fix rpfilter dropping vrf packets by mistake - netfilter: conntrack: always store window size un-scaled - netfilter: nft_hash: fix symhash with modulus one - drm/amd/display: Wait for backlight programming completion in set backlight level - drm/amd/display: use encoder's engine id to find matched free audio device - drm/amd/display: Fix dc_create failure handling and 666 color depths - drm/amd/display: Only enable audio if speaker allocation exists - drm/amd/display: Increase size of audios array - [x86] iscsi_ibft: make ISCSI_IBFT dependson ACPI instead of ISCSI_IBFT_FIND - nl80211: fix NL80211_HE_MAX_CAPABILITY_LEN - mac80211: don't warn about CW params when not using them - allocate_flower_entry: should check for null deref - hwmon: (nct6775) Fix register address and added missed tolerance for nct6106 - drm: silence variable 'conn' set but not used - [s390x] qdio: add sanity checks to the fast-requeue path - ALSA: compress: Fix regression on compressed capture streams - ALSA: compress: Prevent bypasses of set_params - ALSA: compress: Don't allow paritial drain operations on capture streams - ALSA: compress: Be more restrictive about when a drain is allowed - perf tools: Fix proper buffer size for feature processing - perf probe: Avoid calling freeing routine multiple times for same pointer - drbd: dynamically allocate shash descriptor - ACPI/IORT: Fix off-by-one check in iort_dev_find_its_id() - nvme: fix multipath crash when ANA is deactivated - scsi: megaraid_sas: fix panic on loading firmware crashdump - [ppc64el] scsi: ibmvfc: fix WARN_ON during event pool release - scsi: scsi_dh_alua: always use a 2 second delay before retrying RTPG - test_firmware: fix a memory leak bug - tty/ldsem, locking/rwsem: Add missing ACQUIRE to read_failed sleep loop - perf/core: Fix creating kernel counters for PMUs that override event->cpu - [s390x] dma: provide proper ARCH_ZONE_DMA_BITS value - HID: sony: Fix race condition between rumble and device remove. - [x86] purgatory: Do not use __builtin_memcpy and __builtin_memset - ALSA: usb-audio: fix a memory leak bug - can: peak_usb: pcan_usb_pro: Fix info-leaks to USB devices - can: peak_usb: pcan_usb_fd: Fix info-leaks to USB devices - hwmon: (nct7802) Fix wrong detection of in4 presence - [x86] drm/i915: Fix wrong escape clock divisor init for GLK - ALSA: firewire: fix a memory leak bug - ALSA: hiface: fix multiple memory leak bugs - ALSA: hda - Don't override global PCM hw info flag - [x86] ALSA: hda - Workaround for crackled sound on AMD controller (1022:1457) - mac80211: don't WARN on short WMM parameters from AP - dax: dax_layout_busy_page() should not unmap cow pages - SMB3: Fix deadlock in validate negotiate hits reconnect - smb3: send CAP_DFS capability during session setup - NFSv4: Fix an Oops in nfs4_do_setattr - [x86] KVM: Fix leak vCPU's VMCS value into other pCPU - mwifiex: fix 802.11n/WPA detection - iwlwifi: don't unmap as page memory that was mapped as single - iwlwifi: mvm: fix an out-of-bound access - iwlwifi: mvm: don't send GEO_TX_POWER_LIMIT on version < 41 - iwlwifi: mvm: fix version check for GEO_TX_POWER_LIMIT support . [ Steve McIntyre ] * [arm64] Improve support for the Huawei TaiShan server platform (Closes: #930554): - Enable the HNS/ROCE Infiniband driver - Backport fixes from 4.20 and 4.21 for HNS3 networking, hisi_sas SAS and HNS/ROCE Infiniband - Add module:drivers/scsi/hisi_sas/* to the ABI ignore list . [ Uwe Kleine-König ] * [armhf] Add support for all i.MX6 variants. * rtc-s35390a: backport fix to make hwclock able to read the time (Closes: #932845) . [ Ben Hutchings ] * [rt] Update to 4.19.59-rt24: - Fix build failure after "genirq: Prevent use-after-free and work list corruption": + Update "genirq: Do not invoke the affinity callback via a workqueue on RT" + kthread: add a global worker thread. + genirq: Do not invoke the affinity callback via a workqueue on RT + genirq: Handle missing work_struct in irq_set_affinity_notifier() - Update "irqwork: push most work into softirq context" to resolve conflict with "irq_work: Do not raise an IPI when queueing work on the local CPU" - Drop "random: avoid preempt_disable()ed section" - arm: imx6: cpuidle: Use raw_spinlock_t - rcu: Don't allow to change rcu_normal_after_boot on RT - sched/core: Drop a preempt_disable_rt() statement - timers: Redo the notification of canceling timers on -RT - Fix futex regression in 4.19.21: + Revert "futex: Ensure lock/unlock symetry versus pi_lock and hash bucket lock" + Revert "futex: Fix bug on when a requeued RT task times out" + Revert "rtmutex: Handle the various new futex race conditions" + Revert "futex: workaround migrate_disable/enable in different context" + futex: Make the futex_hash_bucket lock raw + futex: Delay deallocation of pi_state - mm/zswap: Do not disable preemption in zswap_frontswap_store() * Bump ABI to 6 linux (4.19.37-6) unstable; urgency=high . [ John Paul Adrian Glaubitz ] * [sh4]: Check for kprobe trap number before trying to handle a kprobe trap . [ Salvatore Bonaccorso ] * tcp: refine memory limit test in tcp_fragment() (Closes: #930904) * ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME (CVE-2019-13272) . [ Steve McIntyre ] * [arm64] Improve support for the Huawei TaiShan server platform (Closes: #930554): - Enable the HNS/ROCE Infiniband driver - Backport fixes from 4.20 and 4.21 for HNS3 networking, hisi_sas SAS and HNS/ROCE Infiniband - Add module:drivers/scsi/hisi_sas/* to the ABI ignore list . [ Cyril Brulebois ] * [arm] Backport DTB support for Rasperry Pi Compute Module 3. * [arm64] Backport DTB support for Rasperry Pi Compute Module 3. linux (4.19.37-5+deb10u2) buster-security; urgency=high . [ Romain Perier ] * [x86] x86/insn-eval: Fix use-after-free access to LDT entry (CVE-2019-13233) * [powerpc*] mm/64s/hash: Reallocate context ids on fork (CVE-2019-12817) * nfc: Ensure presence of required attributes in the deactivate_target handler (CVE-2019-12984) * binder: fix race between munmap() and direct reclaim (CVE-2019-1999) * scsi: libsas: fix a race condition when smp task timeout (CVE-2018-20836) * Input: gtco - bounds check collection indent level (CVE-2019-13631) * floppy: fix out-of-bounds read in copy_buffer (CVE-2019-14283) * inet: switch IP ID generator to siphash (CVE-2019-10638) * floppy: fix div-by-zero in setup_format_params (CVE-2019-14284) * Bluetooth: hci_uart: check for missing tty operations (CVE-2019-10207) * [powerpc/tm] Fix oops on sigreturn on systems without TM (CVE-2019-13648) . [ Salvatore Bonaccorso ] * [x86] cpufeatures: Carve out CQM features retrieval * [x86] cpufeatures: Combine word 11 and 12 into a new scattered features word * [x86] speculation: Prepare entry code for Spectre v1 swapgs mitigations * [x86] speculation: Enable Spectre v1 swapgs mitigations (CVE-2019-1125) * [amd64] entry: Use JMP instead of JMPQ * [x86] speculation/swapgs: Exclude ATOMs from speculation through SWAPGS * Documentation: Add section about CPU vulnerabilities for Spectre * Documentation: Add swapgs description to the Spectre v1 documentation . [ Ben Hutchings ] * [x86] cpufeatures: Avoid ABI change for swapgs mitigations: - Move swapgs feature bits to existing scattered words - Revert "x86/cpufeatures: Combine word 11 and 12 into a new scattered features word" * inet: Avoid ABI change for IP ID hash change linux (4.19.37-5+deb10u2~bpo9+1) stretch-backports; urgency=medium . * Rebuild for stretch-backports; no further changes required . linux (4.19.37-5+deb10u2) buster-security; urgency=high . [ Romain Perier ] * [x86] x86/insn-eval: Fix use-after-free access to LDT entry (CVE-2019-13233) * [powerpc*] mm/64s/hash: Reallocate context ids on fork (CVE-2019-12817) * nfc: Ensure presence of required attributes in the deactivate_target handler (CVE-2019-12984) * binder: fix race between munmap() and direct reclaim (CVE-2019-1999) * scsi: libsas: fix a race condition when smp task timeout (CVE-2018-20836) * Input: gtco - bounds check collection indent level (CVE-2019-13631) * floppy: fix out-of-bounds read in copy_buffer (CVE-2019-14283) * inet: switch IP ID generator to siphash (CVE-2019-10638) * floppy: fix div-by-zero in setup_format_params (CVE-2019-14284) * Bluetooth: hci_uart: check for missing tty operations (CVE-2019-10207) * [powerpc/tm] Fix oops on sigreturn on systems without TM (CVE-2019-13648) . [ Salvatore Bonaccorso ] * [x86] cpufeatures: Carve out CQM features retrieval * [x86] cpufeatures: Combine word 11 and 12 into a new scattered features word * [x86] speculation: Prepare entry code for Spectre v1 swapgs mitigations * [x86] speculation: Enable Spectre v1 swapgs mitigations (CVE-2019-1125) * [amd64] entry: Use JMP instead of JMPQ * [x86] speculation/swapgs: Exclude ATOMs from speculation through SWAPGS * Documentation: Add section about CPU vulnerabilities for Spectre * Documentation: Add swapgs description to the Spectre v1 documentation . [ Ben Hutchings ] * [x86] cpufeatures: Avoid ABI change for swapgs mitigations: - Move swapgs feature bits to existing scattered words - Revert "x86/cpufeatures: Combine word 11 and 12 into a new scattered features word" * inet: Avoid ABI change for IP ID hash change . linux (4.19.37-5+deb10u1) buster-security; urgency=high . * tcp: refine memory limit test in tcp_fragment() (Closes: #930904) * ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME (CVE-2019-13272) . linux (4.19.37-5) unstable; urgency=medium . [ Romain Perier ] * [sparc64] Fix device naming inconsistency between sunhv_console and sunhv_reg (Closes: #926539) . [ Ben Hutchings ] * tcp: Avoid ABI change for DoS fixes (Closes: #930743) * Add ABI reference for 4.19.0-5 linux (4.19.37-5+deb10u1) buster-security; urgency=high . * tcp: refine memory limit test in tcp_fragment() (Closes: #930904) * ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME (CVE-2019-13272) linux-latest (105+deb10u1) buster; urgency=medium . * Update to 4.19.0-6 linux-signed-amd64 (4.19.67+2) buster; urgency=medium . * Sign kernel from linux 4.19.67-2 . [ Salvatore Bonaccorso ] * dm: disable DISCARD if the underlying storage no longer supports it (Closes: #934331) * xfs: fix missing ILOCK unlock when xfs_setattr_nonsize fails due to EDQUOT (CVE-2019-15538) . [ Ben Hutchings ] * KVM: Ignore ABI changes * [ppc64el] Disable PPC_TRANSACTIONAL_MEM (Closes: #866122) * [ppc64el] Avoid ABI change for disabling TM * netfilter: conntrack: Use consistent ct id hash calculation (fixes regression in 4.19.44) . [ Cyril Brulebois ] * [arm] Backport DTB support for Rasperry Pi Compute Module 3. * [arm64] Backport DTB support for Rasperry Pi Compute Module 3. linux-signed-amd64 (4.19.67+1) buster; urgency=medium . * Sign kernel from linux 4.19.67-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.38 - netfilter: nft_compat: use refcnt_t type for nft_xt reference count - netfilter: nft_compat: make lists per netns - netfilter: nf_tables: split set destruction in deactivate and destroy phase - netfilter: nft_compat: destroy function must not have side effects - netfilter: nf_tables: warn when expr implements only one of activate/deactivate - netfilter: nf_tables: unbind set in rule from commit path - netfilter: nft_compat: don't use refcount_inc on newly allocated entry - netfilter: nft_compat: use .release_ops and remove list of extension - netfilter: nf_tables: fix set double-free in abort path - netfilter: nf_tables: bogus EBUSY when deleting set after flush - netfilter: nf_tables: bogus EBUSY in helper removal from transaction - net/ibmvnic: Fix RTNL deadlock during device reset - net: mvpp2: fix validate for PPv2.1 - ext4: fix some error pointer dereferences - tipc: handle the err returned from cmd header function - loop: do not print warn message if partition scan is successful - [armhf,arm64] drm/rockchip: fix for mailbox read validation. - vsock/virtio: fix kernel panic from virtio_transport_reset_no_sock - ipvs: fix warning on unused variable - [ppc64el] vdso32: fix CLOCK_MONOTONIC on PPC64 - [armhf,arm64] net: dsa: mv88e6xxx: add call to mv88e6xxx_ports_cmode_init to probe for new DSA framework - cifs: fix memory leak in SMB2_read - cifs: do not attempt cifs operation on smb2+ rename error - tracing: Fix a memory leak by early error exit in trace_pid_write() - zram: pass down the bvec we need to read into in the work struct - trace: Fix preempt_enable_no_resched() abuse - IB/rdmavt: Fix frwr memory registration - RDMA/mlx5: Do not allow the user to write to the clock page - sched/numa: Fix a possible divide-by-zero - ceph: only use d_name directly when parent is locked - ceph: ensure d_name stability in ceph_dentry_hash() - ceph: fix ci->i_head_snapc leak - nfsd: Don't release the callback slot unless it was actually held - sunrpc: don't mark uninitialised items as VALID. - [x86] perf/intel: Update KBL Package C-state events to also include PC8/PC9/PC10 counters - Input: synaptics-rmi4 - write config register values to the right offset - [armhf] 8857/1: efi: enable CP15 DMB instructions before cleaning the cache - [ppc64el] mm/radix: Make Radix require HUGETLB_PAGE - [arm*] drm/vc4: Fix memory leak during gpu reset. - [x86] Revert "drm/i915/fbdev: Actually configure untiled displays" - USB: Add new USB LPM helpers - USB: Consolidate LPM checks to avoid enabling LPM twice - slip: make slhc_free() silently accept an error pointer - [x86] intel_th: gth: Fix an off-by-one in output unassigning - fs/proc/proc_sysctl.c: Fix a NULL pointer dereference - workqueue: Try to catch flush_work() without INIT_WORK(). - sched/deadline: Correctly handle active 0-lag timers - NFS: Forbid setting AF_INET6 to "struct sockaddr_in"->sin_family. - netfilter: ebtables: CONFIG_COMPAT: drop a bogus WARN_ON - fm10k: Fix a potential NULL pointer dereference - tipc: check bearer name with right length in tipc_nl_compat_bearer_enable - tipc: check link name with right length in tipc_nl_compat_link_set - net: netrom: Fix error cleanup path of nr_proto_init - net/rds: Check address length before reading address family - rxrpc: fix race condition in rxrpc_input_packet() - [x86] retpolines: Raise limit for generating indirect calls from switch-case - [x86] retpolines: Disable switch jump tables when retpolines are enabled - mm: Fix warning in insert_pfn() - [x86] fpu: Don't export __kernel_fpu_{begin,end}() - ipv4: add sanity checks in ipv4_link_failure() - ipv4: set the tcp_min_rtt_wlen range from 0 to one day - net/mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query - net: rds: exchange of 8K and 1M pool - net/rose: fix unbound loop in rose_loopback_timer() - [armhf,arm64] net: stmmac: move stmmac_check_ether_addr() to driver probe - team: fix possible recursive locking when add slaves - [arm64] net: hns: Fix WARNING when hns modules installed - net/mlx5e: Fix the max MTU check in case of XDP - net/mlx5e: Fix use-after-free after xdp_return_frame https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.39 - selinux: use kernel linux/socket.h for genheaders and mdp - Revert "ACPICA: Clear status of GPEs before enabling them" - [arm*] dts: bcm283x: Fix hdmi hpd gpio pull - [s390x] limit brk randomization to 32MB - net: ieee802154: fix a potential NULL pointer dereference - ieee802154: hwsim: propagate genlmsg_reply return code - [armhf,arm64] net: stmmac: don't set own bit too early for jumbo frames - qlcnic: Avoid potential NULL pointer dereference - xsk: fix umem memory leak on cleanup - netfilter: nft_set_rbtree: check for inactive element after flag mismatch - netfilter: bridge: set skb transport_header before entering NF_INET_PRE_ROUTING - netfilter: fix NETFILTER_XT_TARGET_TEE dependencies - netfilter: ip6t_srh: fix NULL pointer dereferences - [s390x] qeth: fix race when initializing the IP address table - [armhf] imx51: fix a leaked reference by adding missing of_node_put - [arm64] KVM: Reset the PMU in preemptible context - [armhf,arm64] KVM: vgic-its: Take the srcu lock when writing to guest memory - [armhf,arm64] KVM: vgic-its: Take the srcu lock when parsing the memslots - [x86] usb: dwc3: pci: add support for Comet Lake PCH ID - usb: gadget: net2280: Fix overrun of OUT messages - usb: gadget: net2280: Fix net2280_dequeue() - [x86] i2c: i801: Add support for Intel Comet Lake - staging: rtl8188eu: Fix potential NULL pointer dereference of kcalloc - staging: rtlwifi: rtl8822b: fix to avoid potential NULL pointer dereference - staging: rtl8712: uninitialized memory in read_bbreg_hdl() - staging: rtlwifi: Fix potential NULL pointer dereference of kzalloc - [arm64] net: macb: Add null check for PCLK and HCLK - net/sched: don't dereference a->goto_chain to read the chain index - [armhf] dts: imx6qdl: Fix typo in imx6qdl-icore-rqs.dtsi - [armhf,arm64] drm/tegra: hub: Fix dereference before check - NFS: Fix a typo in nfs_init_timeout_values() - drm: Fix drm_release() and device unplug - [arm64] drm/meson: Fix invalid pointer in meson_drv_unbind() - [arm64] drm/meson: Uninstall IRQ handler - scsi: mpt3sas: Fix kernel panic during expander reset - scsi: aacraid: Insure we don't access PCIe space during AER/EEH - scsi: qla4xxx: fix a potential NULL pointer dereference - leds: trigger: netdev: fix refcnt leak on interface rename - [x86] realmode: Don't leak the trampoline kernel address - usb: u132-hcd: fix resource leak - ceph: fix use-after-free on symlink traversal - [s390x] scsi: zfcp: reduce flood of fcrscn1 trace records on multi- element RSCN - [x86] mm: Don't exceed the valid physical address space - libata: fix using DMA buffers on stack - gpio: of: Fix of_gpiochip_add() error path - nvme-multipath: relax ANA state check - perf machine: Update kernel map address and re-order properly - [x86] iommu/amd: Reserve exclusion range in iova-domain - ptrace: take into account saved_sigmask in PTRACE{GET,SET}SIGMASK - leds: trigger: netdev: use memcpy in device_name_store https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.40 - ipv4: ip_do_fragment: Preserve skb_iif during fragmentation - ipv6: A few fixes on dereferencing rt->from - ipv6: fix races in ip6_dst_destroy() - ipv6/flowlabel: wait rcu grace period before put_pid() - ipv6: invert flowlabel sharing check in process and user mode - l2ip: fix possible use-after-free - l2tp: use rcu_dereference_sk_user_data() in l2tp_udp_encap_recv() - [armhf] net: dsa: bcm_sf2: fix buffer overflow doing set_rxnfc - net: phy: marvell: Fix buffer overrun with stats counters - rxrpc: Fix net namespace cleanup - sctp: avoid running the sctp state machine recursively - packet: validate msg_namelen in send directly - bnxt_en: Improve multicast address setup logic. - bnxt_en: Free short FW command HWRM memory in error path in bnxt_init_one() - bnxt_en: Fix uninitialized variable usage in bnxt_rx_pkt(). - [x86] KVM: Whitelist port 0x7e for pre-incrementing %rip - [x86] KVM: nVMX: Fix size checks in vmx_set_nested_state - ALSA: line6: use dynamic buffers - ath10k: Drop WARN_ON()s that always trigger during system resume https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.41 - iwlwifi: fix driver operation for 5350 - mwifiex: Make resume actually do something useful again on SDIO cards - mac80211: don't attempt to rename ERR_PTR() debugfs dirs - [armhf] i2c: imx: correct the method of getting private data in notifier_call - i2c: Remove unnecessary call to irq_find_mapping - i2c: Clear client->irq in i2c_device_remove - i2c: Allow recovery of the initial IRQ by an I2C client device. - i2c: Prevent runtime suspend of adapter when Host Notify is required - [x86] ALSA: hda/realtek - Add new Dell platform for headset mode - [x86] ALSA: hda/realtek - Fixed Dell AIO speaker noise - [x86] ALSA: hda/realtek - Apply the fixup for ASUS Q325UAR - USB: yurex: Fix protection fault after device removal - USB: w1 ds2490: Fix bug caused by improper use of altsetting array - USB: dummy-hcd: Fix failure to give back unlinked URBs - usb: usbip: fix isoc packet num validation in get_pipe - USB: core: Fix unterminated string returned by usb_string() - USB: core: Fix bug caused by duplicate interface PM usage counter - nvme-loop: init nvmet_ctrl fatal_err_work when allocate - [arm64] dts: rockchip: fix rk3328-roc-cc gmac2io tx/rx_delay - HID: logitech: check the return value of create_singlethread_workqueue - HID: debug: fix race condition with between rdesc_show() and device removal - rtc: cros-ec: Fail suspend/resume if wake IRQ can't be configured - batman-adv: Reduce claim hash refcnt only for removed entry - batman-adv: Reduce tt_local hash refcnt only for removed entry - batman-adv: Reduce tt_global hash refcnt only for removed entry - batman-adv: fix warning in function batadv_v_elp_get_throughput - [armhf] dts: rockchip: Fix gpu opp node names for rk3288 - [arm64] reset: meson-audio-arb: Fix missing .owner setting of reset_controller_dev - igb: Fix WARN_ONCE on runtime suspend - HID: quirks: Fix keyboard + touchpad on Lenovo Miix 630 - net/mlx5: E-Switch, Fix esw manager vport indication for more vport commands - bonding: show full hw address in sysfs for slave entries - [armhf,arm64] net: stmmac: use correct DMA buffer size in the RX descriptor - [armhf,arm64] net: stmmac: ratelimit RX error logs - [armhf,arm64] net: stmmac: don't stop NAPI processing when dropping a packet - [armhf,arm64] net: stmmac: don't overwrite discard_frame status - [armhf,arm64] net: stmmac: fix dropping of multi-descriptor RX frames - [armhf,arm64] net: stmmac: don't log oversized frames - jffs2: fix use-after-free on symlink traversal - debugfs: fix use-after-free on symlink traversal - [armhf] mfd: twl-core: Disable IRQ while suspended - block: use blk_free_flush_queue() to free hctx->fq in blk_mq_init_hctx - HID: input: add mapping for Assistant key - vfio/pci: use correct format characters - scsi: core: add new RDAC LENOVO/DE_Series device - [x86] scsi: storvsc: Fix calculation of sub-channel count - [arm64] fix wrong check of on_sdei_stack in nmi context - [arm64] net: hns: fix KASAN: use-after-free in hns_nic_net_xmit_hw() - [arm64] net: hns: Use NAPI_POLL_WEIGHT for hns driver - [arm64] net: hns: Fix probabilistic memory overwrite when HNS driver initialized - [arm64] net: hns: fix ICMP6 neighbor solicitation messages discard problem - [arm64] net: hns: Fix WARNING when remove HNS driver with SMMU enabled - libcxgb: fix incorrect ppmax calculation - [x86] KVM: SVM: prevent DBG_DECRYPT and DBG_ENCRYPT overflow - hugetlbfs: fix memory leak for resv_map - fs: stream_open - opener for stream-like files so that read and write can run simultaneously without deadlock - [armel] orion: don't use using 64-bit DMA masks - block: pass no-op callback to INIT_WORK(). - [x86] perf/amd: Update generic hardware cache events for Family 17h - Bluetooth: btusb: request wake pin with NOAUTOEN - Bluetooth: mediatek: fix up an error path to restore bdev->tx_state - [arm64] clk: qcom: Add missing freq for usb30_master_clk on 8998 - scsi: RDMA/srpt: Fix a credit leak for aborted commands - [x86] ASoC: Intel: bytcr_rt5651: Revert "Fix DMIC map headsetmic mapping" - [x86] platform: intel_pmc_core: Fix PCH IP name - [x86] platform: intel_pmc_core: Handle CFL regmap properly - IB/core: Unregister notifier before freeing MAD security - IB/core: Fix potential memory leak while creating MAD agents - IB/core: Destroy QP if XRC QP fails - selinux: avoid silent denials in permissive mode under RCU walk - selinux: never allow relabeling on context mounts - mac80211: Honor SW_CRYPTO_CONTROL for unicast keys in AP VLAN mode - [ppc64el] mm/hash: Handle mmap_min_addr correctly in get_unmapped_area topdown search - [x86] mce: Improve error message when kernel cannot recover, p2 - [x86] clk: Add system specific quirk to mark clocks as critical - [x86] mm/KASLR: Fix the size of the direct mapping section - [x86] mm: Fix a crash with kmemleak_scan() - [x86] mm/tlb: Revert "x86/mm: Align TLB invalidation info" - media: v4l2: i2c: ov7670: Fix PLL bypass register values https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.42 - [armhf,arm64] net: stmmac: Use bfsize1 in ndesc_init_rx_desc - [x86] Drivers: hv: vmbus: Remove the undesired put_cpu_ptr() in hv_synic_cleanup() - ASoC: hdmi-codec: fix S/PDIF DAI - ASoC:soc-pcm:fix a codec fixup issue in TDM case - [x86] ASoC:intel:skl:fix a simultaneous playback & capture issue on hda platform - [arm64] clk: meson-gxbb: round the vdec dividers to closest - ASoC: dapm: Fix NULL pointer dereference in snd_soc_dapm_free_kcontrol - [armhf] drm/omap: hdmi4_cec: Fix CEC clock handling for PM - IB/hfi1: Eliminate opcode tests on mr deref - IB/hfi1: Fix the allocation of RSM table - [x86] perf/intel: Fix handling of wakeup_events for multi-entry PEBS - [x86] perf/intel: Initialize TFA MSR - linux/kernel.h: Use parentheses around argument in u64_to_user_ptr() - drm/amd/display: fix cursor black issue - objtool: Add rewind_stack_do_exit() to the noreturn list - slab: fix a crash by reading /proc/slab_allocators - [armhf,arm64] drm/sun4i: tcon top: Fix NULL/invalid pointer dereference in sun8i_tcon_top_un/bind - virtio_pci: fix a NULL pointer reference in vp_del_vqs - [x86] RDMA/vmw_pvrdma: Fix memory leak on pvrdma_pci_remove - [arm64] RDMA/hns: Fix bug that caused srq creation to fail - scsi: csiostor: fix missing data copy in csio_scsi_err_handler() - [x86] ASoC: Intel: kbl: fix wrong number of channels - virtio-blk: limit number of hw queues by nr_cpu_ids - nvme-fc: correct csn initialization and increments on error - [x86] platform: pmc_atom: Drop __initconst on dmi table - perf/core: Fix perf_event_disable_inatomic() race - [x86] iommu/amd: Set exclusion range correctly - genirq: Prevent use-after-free and work list corruption - usb: dwc3: Fix default lpm_nyet_threshold value - USB: serial: f81232: fix interrupt worker not stop - USB: cdc-acm: fix unthrottle races - usb-storage: Set virt_boundary_mask to avoid SG overflows - [x86] intel_th: pci: Add Comet Lake support - [arm64] cpufreq: armada-37xx: fix frequency calculation for opp - scsi: lpfc: change snprintf to scnprintf for possible overflow - scsi: qla2xxx: Fix incorrect region-size setting in optrom SYSFS routines - scsi: qla2xxx: Fix device staying in blocked state - UAS: fix alignment of scatter/gather segments - [x86] ASoC: Intel: avoid Oops if DMA setup fails - locking/futex: Allow low-level atomic operations to return -EAGAIN - [arm64] futex: Bound number of LDXR/STXR loops in FUTEX_WAKE_OP https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.43 https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.44 - bfq: update internal depth state when queue depth changes - [x86] platform: sony-laptop: Fix unintentional fall-through - [x86] platform: thinkpad_acpi: Disable Bluetooth for some machines - [x86] platform: dell-laptop: fix rfkill functionality - hwmon: (pwm-fan) Disable PWM if fetching cooling data fails - kernfs: fix barrier usage in __kernfs_new_node() - [x86] virt: vbox: Sanity-check parameter types for hgcm-calls coming from userspace - USB: serial: fix unthrottle races - acpi/nfit: Always dump _DSM output payload - libnvdimm/namespace: Fix a potential NULL pointer dereference - HID: input: add mapping for Expose/Overview key - HID: input: add mapping for keyboard Brightness Up/Down/Toggle keys - HID: input: add mapping for "Toggle Display" key - libnvdimm/btt: Fix a kmemdup failure check - [s390x] dasd: Fix capacity calculation for large volumes - mac80211: fix unaligned access in mesh table hash function - mac80211: Increase MAX_MSG_LEN - cfg80211: Handle WMM rules in regulatory domain intersection - mac80211: fix memory accounting with A-MSDU aggregation - nl80211: Add NL80211_FLAG_CLEAR_SKB flag for other NL commands - libnvdimm/pmem: fix a possible OOB access when read and write pmem - [s390x] 3270: fix lockdep false positive on view->lock - drm/amd/display: extending AUX SW Timeout - mISDN: Check address length before reading address family - vxge: fix return of a free'd memblock on a failed dma mapping - qede: fix write to free'd pointer error and double free of ptp - afs: Unlock pages for __pagevec_release() - drm/amd/display: If one stream full updates, full update all planes - [s390x] pkey: add one more argument space for debug feature entry - [x86] reboot, efi: Use EFI reboot for Acer TravelMate X514-51T - [x86] KVM: fix spectrev1 gadgets - [x86] KVM: avoid misreporting level-triggered irqs as edge-triggered in tracing - tools lib traceevent: Fix missing equality check for strcmp - ipmi: ipmi_si_hardcode.c: init si_type array to fix a crash - scsi: aic7xxx: fix EISA support - mm: fix inactive list balancing between NUMA nodes and cgroups - init: initialize jump labels before command line option parsing - ipvs: do not schedule icmp errors from tunnels - netfilter: ctnetlink: don't use conntrack/expect object addresses as id - netfilter: nf_tables: prevent shift wrap in nft_chain_parse_hook() - [s390x] ctcm: fix ctcm_new_device error return code - [armhf,arm64] drm/sun4i: Set device driver data at bind time for use in unbind - [armhf,arm64] drm/sun4i: Fix component unbinding and component master deletion - netfilter: fix nf_l4proto_log_invalid to log invalid packets - [armhf] gpu: ipu-v3: dp: fix CSC handling - [armhf] drm/imx: don't skip DP channel disable for background plane - [armhf,arm64] drm/sun4i: Unbind components before releasing DRM and memory - Input: synaptics-rmi4 - fix possible double free - [arm64] RDMA/hns: Bugfix for mapping user db - mm/memory_hotplug.c: drop memory device reference after find_memory_block() - [ppc64el] smp: Fix NMI IPI timeout - [ppc64el] smp: Fix NMI IPI xmon timeout - [armhf,arm64] net: dsa: mv88e6xxx: fix few issues in mv88e6390x_port_set_cmode - mm/memory.c: fix modifying of page protection by insert_pfn() - usb: typec: Fix unchecked return value - netfilter: nf_tables: use-after-free in dynamic operations - netfilter: nf_tables: add missing ->release_ops() in error path of newrule() (Closes: #934168) - net: fec: manage ahb clock in runtime pm - net: strparser: partially revert "strparser: Call skb_unclone conditionally" - NFC: nci: Add some bounds checking in nci_hci_cmd_received() - nfc: nci: Potential off by one in ->pipes[] array - [x86] kprobes: Avoid kretprobe recursion bug - mwl8k: Fix rate_idx underflow - rtlwifi: rtl8723ae: Fix missing break in switch statement - bonding: fix arp_validate toggling in active-backup mode - bridge: Fix error path for kobject_init_and_add() - ipv4: Fix raw socket lookup for local traffic - net: dsa: Fix error cleanup path in dsa_init_module - [armhf] net: ethernet: stmmac: dwmac-sun8i: enable support of unicast filtering - [arm64] net: macb: Change interrupt and napi enable order in open - packet: Fix error path in packet_init - selinux: do not report error on connect(AF_UNSPEC) - vlan: disable SIOCSHWTSTAMP in container - vrf: sit mtu should not be updated when vrf netdev is the link - tuntap: fix dividing by zero in ebpf queue selection - tuntap: synchronize through tfiles array instead of tun->numqueues - isdn: bas_gigaset: use usb_fill_int_urb() properly - tipc: fix hanging clients using poll with EPOLLOUT flag - [ppc64el] book3s/64: check for NULL pointer in pgd_alloc() - [ppc64el] powernv/idle: Restore IAMR after idle - [x86] PCI: hv: Fix a memory leak in hv_eject_device_work() - [x86] PCI: hv: Add hv_pci_remove_slots() when we unload the driver - [x86] PCI: hv: Add pci_destroy_slot() in pci_devices_present_work(), if necessary https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.45 - locking/rwsem: Prevent decrement of reader count before increment - [x86] speculation/mds: Revert CPU buffer clear on double fault exit - [x86] speculation/mds: Improve CPU buffer clear documentation - objtool: Fix function fallthrough detection - [arm64] dts: rockchip: Disable DCMDs on RK3399's eMMC controller. - [armhf] dts: exynos: Fix interrupt for shared EINTs on Exynos5260 - [armhf] dts: exynos: Fix audio (microphone) routing on Odroid XU3 - [arm64] mmc: sdhci-of-arasan: Add DTS property to disable DCMDs. - [armhf] exynos: Fix a leaked reference by adding missing of_node_put - [armhf] power: supply: axp288_charger: Fix unchecked return value - [armhf,arm64] power: supply: axp288_fuel_gauge: Add ACEPC T8 and T11 mini PCs to the blacklist - [arm64] mmap: Ensure file offset is treated as unsigned - [arm64] arch_timer: Ensure counter register reads occur with seqlock held - [arm64] compat: Reduce address limit - [arm64] Clear OSDLR_EL1 on CPU boot - [arm64] Save and restore OSDLR_EL1 across suspend/resume - [x96] sched: Save [ER]FLAGS on context switch - crypto: salsa20 - don't access already-freed walk.iv - crypto: chacha20poly1305 - set cra_name correctly - [x86] crypto: ccp - Do not free psp_master when PLATFORM_INIT fails - [ppc64el] crypto: vmx - fix copy-paste error in CTR mode - crypto: skcipher - don't WARN on unprocessed data after slow walk step - crypto: crct10dif-generic - fix use via crypto_shash_digest() - [x86] crypto: crct10dif-pcl - fix use via crypto_shash_digest() - [arm64] crypto: gcm-aes-ce - fix no-NEON fallback code - crypto: gcm - fix incompatibility between "gcm" and "gcm_base" - [armhf,arm64] crypto: aes-neonbs - don't access already-freed walk.iv - mmc: core: Fix tag set memory leak - ALSA: line6: toneport: Fix broken usage of timer for delayed execution - ALSA: usb-audio: Fix a memory leak bug - ALSA: hda/hdmi - Read the pin sense from register when repolling - ALSA: hda/hdmi - Consider eld_valid when reporting jack event - ALSA: hda/realtek - EAPD turn on later - ALSA: hdea/realtek - Headset fixup for System76 Gazelle (gaze14) - [armhf,arm64] ASoC: max98090: Fix restore of DAPM Muxes - ASoC: codec: hdac_hdmi add device_link to card device - [arm64] bpf: remove prefetch insn in xadd mapping - mm/huge_memory: fix vmf_insert_pfn_{pmd, pud}() crash, handle unaligned addresses - mm/hugetlb.c: don't put_page in lock of hugetlb_lock - hugetlb: use same fault hash key for shared and private mappings - ocfs2: fix ocfs2 read inode data panic in ocfs2_iget - userfaultfd: use RCU to free the task struct when fork fails - ACPI: PM: Set enable_for_wake for wakeup GPEs during suspend-to-idle - [arm64] mfd: max77620: Fix swapped FPS_PERIOD_MAX_US values - mtd: spi-nor: intel-spi: Avoid crossing 4K address boundary on read/write - tty: vt.c: Fix TIOCL_BLANKSCREEN console blanking if blankinterval == 0 - tty/vt: fix write/write race in ioctl(KDSKBSENT) handler - jbd2: check superblock mapped prior to committing - ext4: make sanity check in mballoc more strict - ext4: ignore e_value_offs for xattrs with value-in-ea-inode - ext4: avoid drop reference to iloc.bh twice - ext4: fix use-after-free race with debug_want_extra_isize - ext4: actually request zeroing of inode table after grow - ext4: fix ext4_show_options for file systems w/o journal - btrfs: Check the first key and level for cached extent buffer - btrfs: Correctly free extent buffer in case btree_read_extent_buffer_pages fails - Btrfs: send, flush dellaloc in order to avoid data loss - Btrfs: do not start a transaction during fiemap - Btrfs: do not start a transaction at iterate_extent_inodes() - bcache: fix a race between cache register and cacheset unregister - bcache: never set KEY_PTRS of journal key to 0 in journal_reclaim() - ipmi:ssif: compare block number correctly for multi-part return messages - crypto: ccm - fix incompatibility between "ccm" and "ccm_base" - fs/writeback.c: use rcu_barrier() to wait for inflight wb switches going into workqueue when umount - ext4: fix data corruption caused by overlapping unaligned and aligned IO - ext4: fix use-after-free in dx_release() - ext4: avoid panic during forced reboot due to aborted journal - [x86] ALSA: hda/realtek - Corrected fixup for System76 Gazelle (gaze14) - ALSA: hda/realtek - Fixup headphone noise via runtime suspend - [x86] ALSA: hda/realtek - Fix for Lenovo B50-70 inverted internal microphone bug - jbd2: fix potential double free - [x86] KVM: Skip EFER vs. guest CPUID checks for host-initiated writes - [x86] KVM: lapic: Busy wait for timer to expire when using hv_timer - xen/pvh: set xen_domain_type to HVM in xen_pvh_init - libnvdimm/namespace: Fix label tracking error - iov_iter: optimize page_copy_sane() - pstore: Centralize init/exit routines - pstore: Allocate compression during late_initcall() - pstore: Refactor compression initialization - ext4: don't update s_rev_level if not required https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.46 - ipv6: fix src addr routing with the exception table - ipv6: prevent possible fib6 leaks - net: Always descend into dsa/ - net: avoid weird emergency message - net/mlx4_core: Change the error print to info print - net: test nouarg before dereferencing zerocopy pointers - net: usb: qmi_wwan: add Telit 0x1260 and 0x1261 compositions - nfp: flower: add rcu locks when accessing netdev for tunnels - ppp: deflate: Fix possible crash in deflate_init - rtnetlink: always put IFLA_LINK for links with a link-netnsid - tipc: switch order of device registration to fix a crash - vsock/virtio: free packets during the socket release - vsock/virtio: Initialize core virtio vsock before registering the driver - net/mlx5: Imply MLXFW in mlx5_core - net/mlx5e: Fix ethtool rxfh commands when CONFIG_MLX5_EN_RXNFC is disabled - stm class: Fix channel free in stm output free path - stm class: Fix channel bitmap on 32-bit systems - brd: re-enable __GFP_HIGHMEM in brd_insert_page() - proc: prevent changes to overridden credentials - Revert "MD: fix lock contention for flush bios" - md: batch flush requests. - md: add mddev->pers to avoid potential NULL pointer dereference - dcache: sort the freeing-without-RCU-delay mess for good. - [x86] intel_th: msu: Fix single mode with IOMMU - p54: drop device reference count if fails to enable device - of: fix clang -Wunsequenced for be32_to_cpu() - cifs: fix strcat buffer overflow and reduce raciness in smb21_set_oplock_level() - [armhf] phy: ti-pipe3: fix missing bit-wise or operator when assigning val - NFS4: Fix v4.0 client state corruption when mount - PNFS fallback to MDS if no deviceid found - [arm64] clk: hi3660: Mark clk_gate_ufs_subsys as critical - [armhf,arm64] clk: tegra: Fix PLLM programming on Tegra124+ when PMC overrides divider - [arm64] clk: rockchip: fix wrong clock definitions for rk3328 - udlfb: delete the unused parameter for dlfb_handle_damage - udlfb: fix sleeping inside spinlock - udlfb: introduce a rendering mutex - fuse: fix writepages on 32bit - fuse: honor RLIMIT_FSIZE in fuse_file_fallocate - ovl: fix missing upper fs freeze protection on copy up for ioctl - [armhf] iommu/tegra-smmu: Fix invalid ASID bits on Tegra30/114 - ceph: flush dirty inodes before proceeding with remount - [amd64] Add gap to int3 to allow for call emulation - [amd64] Allow breakpoints to emulate call instructions - [amd64] ftrace: Emulate call function while updating in breakpoint handler - tracing: Fix partial reading of trace event's id file - [armhf,arm64] memory: tegra: Fix integer overflow on tick value calculation - [x86] perf intel-pt: Fix instructions sampling rate - [x86] perf intel-pt: Fix improved sample timestamp - [x86] perf intel-pt: Fix sample timestamp wrt non-taken branches - fbdev/efifb: Ignore framebuffer memmap entries that lack any memory types - PCI: Mark AMD Stoney Radeon R7 GPU ATS as broken - PCI: Mark Atheros AR9462 to avoid bus reset - PCI: Init PCIe feature bits for managed host bridge alloc - PCI/AER: Change pci_aer_init() stub to return void - PCI: Factor out pcie_retrain_link() function - PCI: Work around Pericom PCIe-to-PCI bridge Retrain Link erratum - dm cache metadata: Fix loading discard bitset - dm zoned: Fix zone report handling - dm delay: fix a crash when invalid device is specified - dm integrity: correctly calculate the size of metadata area - dm mpath: always free attached_handler_name in parse_path() - fuse: Add FOPEN_STREAM to use stream_open() - xfrm: policy: Fix out-of-bound array accesses in __xfrm_policy_unlink - xfrm6_tunnel: Fix potential panic when unloading xfrm6_tunnel module - vti4: ipip tunnel deregistration fixes. - xfrm: clean up xfrm protocol checks - esp4: add length check for UDP encapsulation - xfrm: Honor original L3 slave device in xfrmi policy lookup - xfrm4: Fix uninitialized memory read in _decode_session4 - [armhf,arm64] clk: sunxi-ng: nkmp: Avoid GENMASK(-1, 0) - securityfs: fix use-after-free on symlink traversal - apparmorfs: fix use-after-free on symlink traversal - PCI: Fix issue with "pci=disable_acs_redir" parameter being ignored - [x86] kvm: hyper-v: deal with buggy TLB flush requests from WS2012 - mac80211: Fix kernel panic due to use of txq after free - net: ieee802154: fix missing checks for regmap_update_bits - [armhf,arm64] KVM: Ensure vcpu target is unset on reset failure - bpf: Fix preempt_enable_no_resched() abuse - qmi_wwan: new Wistron, ZTE and D-Link devices - iwlwifi: mvm: check for length correctness in iwl_mvm_create_skb() - sched/cpufreq: Fix kobject memleak - [x86] mm/mem_encrypt: Disable all instrumentation for early SME setup - ufs: fix braino in ufs_get_inode_gid() for solaris UFS flavour - perf bench numa: Add define for RUSAGE_THREAD if not present - [x86] perf/intel: Fix race in intel_pmu_disable_event() - md/raid: raid5 preserve the writeback action after the parity check - driver core: Postpone DMA tear-down until after devres release for probe failure - bpf: relax inode permission check for retrieving bpf program - bpf: add map_lookup_elem_sys_only for lookups from syscall side - bpf, lru: avoid messing with eviction heuristics upon syscall lookup https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.47 - [x86] Hide the int3_emulate_call/jmp functions from UML - ext4: do not delete unlinked inode from orphan list on failed truncate - ext4: wait for outstanding dio during truncate in nojournal mode - f2fs: Fix use of number of devices - [x86] KVM: fix return value for reserved EFER - bio: fix improper use of smp_mb__before_atomic() - sbitmap: fix improper use of smp_mb__before_atomic() - Revert "scsi: sd: Keep disk read-only when re-reading partition" - [ppc64el] crypto: vmx - CTR: always increment IV as quadword - [arm*] mmc: sdhci-iproc: cygnus: Set NO_HISPD bit to fix HS50 data hold time problem - [arm*] mmc: sdhci-iproc: Set NO_HISPD bit to fix HS50 data hold time problem - [x86] kvm: svm/avic: fix off-by-one in checking host APIC ID - libnvdimm/pmem: Bypass CONFIG_HARDENED_USERCOPY overhead - [arm64] kernel: kaslr: reduce module randomization range to 2 GB - [arm64] iommu: handle non-remapped addresses in ->mmap and ->get_sgtable - gfs2: Fix sign extension bug in gfs2_update_stats - btrfs: don't double unlock on error in btrfs_punch_hole - Btrfs: do not abort transaction at btrfs_update_root() after failure to COW path - Btrfs: avoid fallback to transaction commit during fsync of files with holes - Btrfs: fix race between ranged fsync and writeback of adjacent ranges - btrfs: sysfs: Fix error path kobject memory leak - btrfs: sysfs: don't leak memory when failing add fsid - udlfb: fix some inconsistent NULL checking - fbdev: fix divide error in fb_var_to_videomode - NFSv4.2 fix unnecessary retry in nfs4_copy_file_range - NFSv4.1 fix incorrect return value in copy_file_range - bpf: add bpf_jit_limit knob to restrict unpriv allocations - [arm64] errata: Add workaround for Cortex-A76 erratum #1463225 - btrfs: honor path->skip_locking in backref code - ovl: relax WARN_ON() for overlapping layers use case - fbdev: fix WARNING in __alloc_pages_nodemask bug - media: cpia2: Fix use-after-free in cpia2_exit - media: serial_ir: Fix use-after-free in serial_ir_init_module - media: vb2: add waiting_in_dqbuf flag - media: vivid: use vfree() instead of kfree() for dev->bitmap_cap - ssb: Fix possible NULL pointer dereference in ssb_host_pcmcia_exit - bpf: devmap: fix use-after-free Read in __dev_map_entry_free - batman-adv: mcast: fix multicast tt/tvlv worker locking - at76c50x-usb: Don't register led_trigger if usb_register_driver failed - acct_on(): don't mess with freeze protection - gfs2: Fix lru_count going negative - cxgb4: Fix error path in cxgb4_init_module - NFS: make nfs_match_client killable - IB/hfi1: Fix WQ_MEM_RECLAIM warning - gfs2: Fix occasional glock use-after-free - mmc: core: Verify SD bus width - [arm64] dmaengine: tegra210-dma: free dma controller in remove() - net: ena: gcc 8: fix compilation warning - [x86] hv_netvsc: fix race that may miss tx queue wakeup - Bluetooth: Ignore CC events not matching the last HCI command - [x86] ASoC: Intel: kbl_da7219_max98357a: Map BTN_0 to KEY_PLAYPAUSE - [armhf,arm64] usb: dwc2: gadget: Increase descriptors count for ISOC's - [armhf,arm64] usb: dwc3: move synchronize_irq() out of the spinlock protected block - ASoC: hdmi-codec: unlock the device on startup errors - [ppc64el] perf: Return accordingly on invalid chip-id in - [ppc64el] boot: Fix missing check of lseek() return value - [ppc64el] perf: Fix loop exit condition in nest_imc_event_init - [armhf] ASoC: imx: fix fiq dependencies - [amd64] spi: pxa2xx: fix SCR (divisor) calculation - brcm80211: potential NULL dereference in brcmf_cfg80211_vndr_cmds_dcmd_handler() - ACPI / property: fix handling of data_nodes in acpi_get_next_subnode() - drm/nouveau/bar/nv50: ensure BAR is mapped - [armel,armhf] vdso: Remove dependency with the arch_timer driver internals - [ppc64el] watchdog: Use hrtimers for per-CPU heartbeat - sched/cpufreq: Fix kobject memleak - scsi: qla2xxx: Fix a qla24xx_enable_msix() error path - scsi: qla2xxx: Fix abort handling in tcm_qla2xxx_write_pending() - scsi: qla2xxx: Avoid that lockdep complains about unsafe locking in tcm_qla2xxx_close_session() - scsi: qla2xxx: Fix hardirq-unsafe locking - [x86] modules: Avoid breaking W^X while loading modules - Btrfs: fix data bytes_may_use underflow with fallocate due to failed quota reserve - btrfs: fix panic during relocation after ENOSPC before writeback happens - btrfs: Don't panic when we can't find a root key - iwlwifi: pcie: don't crash on invalid RX interrupt - scsi: qedi: Abort ep termination if offload not scheduled - [s390x] kexec_file: Fix detection of text segment in ELF loader - sched/nohz: Run NOHZ idle load balancer on HK_FLAG_MISC CPUs - w1: fix the resume command API - [s390x] qeth: address type mismatch warning - [armhf,arm64] dmaengine: pl330: _stop: clear interrupt status - mac80211/cfg80211: update bss channel on channel switch - mwifiex: prevent an array overflow - rsi: Fix NULL pointer dereference in kmalloc - nvme: set 0 capacity if namespace block size exceeds PAGE_SIZE - nvme-rdma: fix a NULL deref when an admin connect times out - [armhf,arm64] crypto: sun4i-ss - Fix invalid calculation of hash end - bcache: avoid potential memleak of list of journal_replay(s) in the CACHE_SYNC branch of run_cache_set - bcache: return error immediately in bch_journal_replay() - bcache: fix failure in journal relplay - bcache: add failure check to run_cache_set() for journal replay - bcache: avoid clang -Wunintialized warning - RDMA/cma: Consider scope_id while binding to ipv6 ll address - vfio-ccw: Do not call flush_workqueue while holding the spinlock - vfio-ccw: Release any channel program when releasing/removing vfio-ccw mdev - [x86] mm: Remove in_nmi() warning from 64-bit implementation of vmalloc_fault() - mm/uaccess: Use 'unsigned long' to placate UBSAN warnings on older GCC versions - Bluetooth: hci_qca: Give enough time to ROME controller to bootup. - HID: logitech-hidpp: use RAP instead of FAP to get the protocol version - [armhf] pinctrl: samsung: fix leaked of_node references - [armhf] clk: rockchip: undo several noc and special clocks as critical on rk3288 - [arm64] perf/arm-cci: Remove broken race mitigation - media: au0828: stop video streaming only when last user stops - audit: fix a memory leak bug - media: au0828: Fix NULL pointer dereference in au0828_analog_stream_enable() - media: pvrusb2: Prevent a buffer overflow - block: fix use-after-free on gendisk - [ppc64el] numa: improve control of topology updates - [ppc64el] Fix booting large kernels with STRICT_KERNEL_RWX - random: fix CRNG initialization when random.trust_cpu=1 - random: add a spinlock_t to struct batched_entropy - cgroup: protect cgroup->nr_(dying_)descendants by css_set_lock - sched/core: Check quota and period overflow at usec to nsec conversion - sched/rt: Check integer overflow at usec to nsec conversion - sched/core: Handle overflow in cpu_shares_write_u64 - [arm*] staging: vc04_services: handle kzalloc failure - [arm64] drm/msm: a5xx: fix possible object reference leak - irq_work: Do not raise an IPI when queueing work on the local CPU - [x86] thunderbolt: Take domain lock in switch sysfs attribute callbacks - [s390x] qeth: handle error from qeth_update_from_chp_desc() - USB: core: Don't unbind interfaces following device reset failure - [amd64] irq: Limit IST stack overflow check to #DB stack - [armhf] drm: etnaviv: avoid DMA API warning when importing buffers - [armhf,arm64] phy: sun4i-usb: Make sure to disable PHY0 passby for peripheral mode - i40e: Able to add up to 16 MAC filters on an untrusted VF - i40e: don't allow changes to HW VLAN stripping on active port VLANs - ACPI/IORT: Reject platform device creation on NUMA node mapping failure - [arm64] vdso: Fix clock_getres() for CLOCK_REALTIME - RDMA/cxgb4: Fix null pointer dereference on alloc_skb failure - [x86] perf/msr: Add Icelake support - [x86] perf/intel/rapl: Add Icelake support - [x86] perf/intel/cstate: Add Icelake support - hwmon: (vt1211) Use request_muxed_region for Super-IO accesses - hwmon: (smsc47m1) Use request_muxed_region for Super-IO accesses - hwmon: (smsc47b397) Use request_muxed_region for Super-IO accesses - hwmon: (pc87427) Use request_muxed_region for Super-IO accesses - hwmon: (f71805f) Use request_muxed_region for Super-IO accesses - scsi: libsas: Do discovery on empty PHY to update PHY info - mmc: core: make pwrseq_emmc (partially) support sleepy GPIO controllers - [armhf,arm64] mmc_spi: add a status check for spi_sync_locked - drm/amdgpu: fix old fence check in amdgpu_fence_emit - PM / core: Propagate dev->power.wakeup_path when no callbacks - [armhf] clk: rockchip: Fix video codec clocks on rk3288 - [armhf] clk: rockchip: Make rkpwm a critical clock on rk3288 - [s390x] zcrypt: initialize variables before_use - [x86] microcode: Fix the ancient deprecated microcode loading method - [s390x] mm: silence compiler warning when compiling without CONFIG_PGSTE - [s390x] cio: fix cio_irb declaration - qmi_wwan: Add quirk for Quectel dynamic config - block: sed-opal: fix IOC_OPAL_ENABLE_DISABLE_MBR - rtlwifi: fix a potential NULL pointer dereference - mwifiex: Fix mem leak in mwifiex_tm_cmd - brcmfmac: fix missing checks for kmemdup - b43: shut up clang -Wuninitialized variable warning - brcmfmac: convert dev_init_lock mutex to completion - brcmfmac: fix WARNING during USB disconnect in case of unempty psq - brcmfmac: fix race during disconnect when USB completion is in progress - brcmfmac: fix Oops when bringing up interface during USB disconnect - [arm64] rtc: xgene: fix possible race condition - rtlwifi: fix potential NULL pointer dereference - scsi: ufs: Fix regulator load and icc-level configuration - scsi: ufs: Avoid configuring regulator with undefined voltage range - [arm64] cpu_ops: fix a leaked reference by adding missing of_node_put - wil6210: fix return code of wmi_mgmt_tx and wmi_mgmt_tx_ext - [x86] uaccess, signal: Fix AC=1 bloat - [amd64] ia32: Fix ia32_restore_sigcontext() AC leak - [x86] uaccess: Fix up the fixup - chardev: add additional check for minor range overlap - [arm64] RDMA/hns: Fix bad endianess of port_pd variable - HID: core: move Usage Page concatenation to Main item - [armhf] ASoC: eukrea-tlv320: fix a leaked reference by adding missing of_node_put - cxgb3/l2t: Fix undefined behaviour - HID: logitech-hidpp: change low battery level threshold from 31 to 30 percent - [armhf] spi: tegra114: reset controller on probe - kobject: Don't trigger kobject_uevent(KOBJ_REMOVE) twice. - [armhf] media: wl128x: prevent two potential buffer overflows - media: gspca: Kill URBs on USB device disconnect - efifb: Omit memory map check on legacy boot - [x86] thunderbolt: property: Fix a missing check of kzalloc - [x86] thunderbolt: Fix to check the return value of kmemdup - timekeeping: Force upper bound for setting CLOCK_REALTIME - scsi: qedf: Add missing return in qedf_post_io_req() in the fcport offload check - virtio_console: initialize vtermno value for ports - tty: ipwireless: fix missing checks for ioremap - overflow: Fix -Wtype-limits compilation warnings - [x86] mce: Fix machine_check_poll() tests for error types - rcutorture: Fix cleanup path for invalid torture_type strings - [x86] mce: Handle varying MCA bank counts - rcuperf: Fix cleanup path for invalid perf_type strings - usb: core: Add PM runtime calls to usb_hcd_platform_shutdown - scsi: qla4xxx: avoid freeing unallocated dma memory - scsi: lpfc: avoid uninitialized variable warning - selinux: avoid uninitialized variable warning - batman-adv: allow updating DAT entry timeouts on incoming ARP Replies - dmaengine: tegra210-adma: use devm_clk_*() helpers - [armhf] hwrng: omap - Set default quality - [x86] thunderbolt: Fix to check return value of ida_simple_get - [x86] thunderbolt: Fix to check for kmemdup failure - drm/amd/display: fix releasing planes when exiting odm - [x86] thunderbolt: property: Fix a NULL pointer dereference - e1000e: Disable runtime PM on CNP+ - igb: Exclude device from suspend direct complete optimization - media: dvbsky: Avoid leaking dvb frontend - drm/amd/display: Fix Divide by 0 in memory calculations - drm/amd/display: Set stream->mode_changed when connectors change - scsi: ufs: fix a missing check of devm_reset_control_get - media: gspca: do not resubmit URBs when streaming has stopped - media: go7007: avoid clang frame overflow warning with KASAN - scsi: lpfc: Fix FDMI manufacturer attribute value - scsi: lpfc: Fix fc4type information for FDMI - media: saa7146: avoid high stack usage with clang - scsi: lpfc: Fix SLI3 commands being issued on SLI4 devices - [i386] spi : spi-topcliff-pch: Fix to handle empty DMA buffers - [armhf] drm/omap: dsi: Fix PM for display blank with paired dss_pll calls - [armhf] spi: imx: stop buffer overflow in RX FIFO flush - spi: Fix zero length xfer bug - [armhf] ASoC: davinci-mcasp: Fix clang warning without CONFIG_PM - drm/drv: Hold ref on parent device during drm_device lifetime - drm: Wake up next in drm_read() chain if we are forced to putback the event - [s390x] vfio-ccw: Prevent quiesce function going into an infinite loop - NFS: Fix a double unlock from nfs_match,get_client https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.48 - bonding/802.3ad: fix slave link initialization transition states - cxgb4: offload VLAN flows regardless of VLAN ethtype - ipv4/igmp: fix another memory leak in igmpv3_del_delrec() - ipv4/igmp: fix build error if !CONFIG_IP_MULTICAST - ipv6: Consider sk_bound_dev_if when binding a raw socket to an address - ipv6: Fix redirect with VRF - llc: fix skb leak in llc_build_and_send_ui_pkt() - [armhf,arm64] net: dsa: mv88e6xxx: fix handling of upper half of STATS_TYPE_PORT - net-gro: fix use-after-free read in napi_gro_frags() - [armhf,arm64] net: mvneta: Fix err code path of probe - [armhf,arm64] net: mvpp2: fix bad MVPP2_TXQ_SCHED_TOKEN_CNTR_REG queue value - net: phy: marvell10g: report if the PHY fails to boot firmware - net: sched: don't use tc_action->order during action dump - [armhf,arm64] net: stmmac: fix reset gpio free missing - usbnet: fix kernel crash after disconnect - net/mlx5: Avoid double free in fs init error unwinding path - tipc: Avoid copying bytes beyond the supplied data - net/mlx5: Allocate root ns memory using kzalloc to match kfree - net/mlx5e: Disable rxhash when CQE compress is enabled - [armhf,arm64] net: stmmac: dma channel control register need to be init first - bnxt_en: Fix aggregation buffer leak under OOM condition. - [ppc64el] crypto: vmx - ghash: do nosimd fallback manually - include/linux/compiler*.h: define asm_volatile_goto - compiler.h: give up __compiletime_assert_fallback() - jump_label: move 'asm goto' support test to Kconfig - tipc: fix modprobe tipc failed after switch order of device registration https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.49 - include/linux/bitops.h: sanitize rotate primitives - xhci: update bounce buffer with correct sg num - xhci: Use %zu for printing size_t type - xhci: Convert xhci_handshake() to use readl_poll_timeout_atomic() - usb: xhci: avoid null pointer deref when bos field is NULL - usbip: usbip_host: fix BUG: sleeping function called from invalid context - usbip: usbip_host: fix stub_dev lock context imbalance regression - USB: Fix slab-out-of-bounds write in usb_get_bos_descriptor - USB: sisusbvga: fix oops in error path of sisusb_probe - USB: Add LPM quirk for Surface Dock GigE adapter - USB: rio500: refuse more than one device at a time - USB: rio500: fix memory leak in close after disconnect - media: usb: siano: Fix general protection fault in smsusb - media: usb: siano: Fix false-positive "uninitialized variable" warning - media: smsusb: better handle optional alignment - brcmfmac: fix NULL pointer derefence during USB disconnect - [s390x] scsi: zfcp: fix missing zfcp_port reference put on -EBUSY from port_remove - [s390x] scsi: zfcp: fix to prevent port_remove with pure auto scan LUNs (only sdevs) - tracing: Avoid memory leak in predicate_parse() - Btrfs: fix wrong ctime and mtime of a directory after log replay - Btrfs: fix race updating log root item during fsync - Btrfs: fix fsync not persisting changed attributes of a directory - Btrfs: incremental send, fix file corruption when no-holes feature is enabled - [s390x] crypto: fix gcm-aes-s390 selftest failures - [s390x] crypto: fix possible sleep during spinlock aquired - [ppc64el] KVM: Book3S HV: XIVE: Do not clear IRQ data of passthrough interrupts - [ppc64el] perf: Fix MMCRA corruption by bhrb_filter - ALSA: line6: Assure canceling delayed work at disconnection - ALSA: hda/realtek - Set default power save node to 0 - [s390x] KVM: Do not report unusabled IDs via KVM_CAP_MAX_VCPU_ID - drm/nouveau/i2c: Disable i2c bus access after ->fini() - [arm64] tty: serial: msm_serial: Fix XON/XOFF - memcg: make it work on sparse non-0-node systems - kernel/signal.c: trace_signal_deliver when signal_group_exit - [arm64] Fix the arm64_personality() syscall wrapper redirection - vt/fbcon: deinitialize resources in visual_init() after failed memory allocation - [arm*] staging: vc04_services: prevent integer overflow in create_pagelist() - [x86] staging: wlan-ng: fix adapter initialization failure - cifs: fix memory leak of pneg_inbuf on -EOPNOTSUPP ioctl case - CIFS: cifs_read_allocate_pages: don't iterate through whole page array on ENOMEM - Revert "lockd: Show pid of lockd for remote locks" - [armhf,arm64] drm/tegra: gem: Fix CPU-cache maintenance for BO's allocated using get_pages() - [x86] drm/vmwgfx: Don't send drm sysfs hotplug events on initial master set - [armhf,arm64] drm/sun4i: Fix sun8i HDMI PHY clock initialization - [armhf,arm64] drm/sun4i: Fix sun8i HDMI PHY configuration for > 148.5 MHz - [armhf,arm64] drm/rockchip: shutdown drm subsystem on shutdown - drm/lease: Make sure implicit planes are leased - [x86] ftrace: Do not call function graph from dynamic trampolines - [x86] ftrace: Set trampoline pages as executable - [x86] kprobes: Set instruction page as executable - scsi: lpfc: Fix backport of faf5a744f4f8 ("scsi: lpfc: avoid uninitialized variable warning") - media: uvcvideo: Fix uvc_alloc_entity() allocation alignment https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.50 - ethtool: fix potential userspace buffer overflow - Fix memory leak in sctp_process_init - ipv4: not do cache for local delivery if bc_forwarding is enabled - ipv6: fix the check before getting the cookie in rt6_get_cookie - neighbor: Call __ipv4_neigh_lookup_noref in neigh_xmit - [armhf] net: ethernet: ti: cpsw_ethtool: fix ethtool ring param set - net/mlx4_en: ethtool, Remove unsupported SFP EEPROM high pages query - [armhf,arm64] net: mvpp2: Use strscpy to handle stat strings - net: rds: fix memory leak in rds_ib_flush_mr_pool - net: sfp: read eeprom in maximum 16 byte increments - packet: unconditionally free po->rollover - pktgen: do not sleep with the thread lock held. - ipv6: use READ_ONCE() for inet->hdrincl as in ipv4 - ipv6: fix EFAULT on sendto with icmpv6 and hdrincl - rcu: locking and unlocking need to always be at least barriers - NFSv4.1: Again fix a race where CB_NOTIFY_LOCK fails to wake a waiter - NFSv4.1: Fix bug only first CB_NOTIFY_LOCK is handled - fuse: fallocate: fix return with locked inode - pstore: Remove needless lock during console writes - pstore: Convert buf_lock to semaphore - pstore: Set tfm to NULL on free_buf_for_compression - pstore/ram: Run without kernel crash dump region - [x86] power: Fix 'nosmt' vs hibernation triple fault during resume - [s390x] mm: fix address space detection in exception handling - xen-blkfront: switch kcalloc to kvcalloc for large array allocation - [ppc64el] genwqe: Prevent an integer overflow in the ioctl - test_firmware: Use correct snprintf() limit - [x86] drm/gma500/cdv: Check vbt config bits when detecting lvds panels - [arm64] drm/msm: fix fb references in async update - drm: add non-desktop quirk for Valve HMDs - drm: add non-desktop quirks to Sensics and OSVR headsets. - drm/amdgpu/psp: move psp version specific function pointers to early_init - drm/radeon: prefer lower reference dividers - drm/amdgpu: remove ATPX_DGPU_REQ_POWER_FOR_DISPLAYS check when hotplug-in - [x86] drm/i915: Fix I915_EXEC_RING_MASK - [x86] drm/i915/fbc: disable framebuffer compression on GeminiLake - [x86] drm/i915: Maintain consistent documentation subsection ordering - drm: don't block fb changes for async plane updates - [x86] drm/i915/gvt: Initialize intel_gvt_gtt_entry in stack - TTY: serial_core, add ->install - ipv4: Define __ipv4_neigh_lookup_noref when CONFIG_INET is disabled - ethtool: check the return value of get_regs_len https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.51 - fs/fat/file.c: issue flush after the writeback of FAT - sysctl: return -EINVAL if val violates minmax - ipc: prevent lockup on alloc_msg and free_msg - [armhf] prevent tracing IPI_CPU_BACKTRACE - hugetlbfs: on restore reserve error path retain subpool reservation - mem-hotplug: fix node spanned pages when we have a node with only ZONE_MOVABLE - mm/cma.c: fix crash on CMA allocation if bitmap allocation fails - initramfs: free initrd memory if opening /initrd.image fails - mm/cma.c: fix the bitmap status to show failed allocation reason - mm: page_mkclean vs MADV_DONTNEED race - mm/cma_debug.c: fix the break condition in cma_maxchunk_get() - mm/slab.c: fix an infinite loop in leaks_show() - kernel/sys.c: prctl: fix false positive in validate_prctl_map() - drivers: thermal: tsens: Don't print error message on -EPROBE_DEFER - [x86] mfd: intel-lpss: Set the device in reset state when init - drm/nouveau/disp/dp: respect sink limits when selecting failsafe link configuration - [armhf] mfd: twl6040: Fix device init errors for ACCCTL register - [x86] perf/intel: Allow PEBS multi-entry in watermark mode - drm/nouveau/kms/gf119-gp10x: push HeadSetControlOutputResource() mthd when encoders change - [arm64] drm/bridge: adv7511: Fix low refresh rate selection - objtool: Don't use ignore flag for fake jumps - drm/nouveau/kms/gv100-: fix spurious window immediate interlocks - bpf: fix undefined behavior in narrow load handling - [arm64] pwm: meson: Use the spin-lock only to protect register modifications - ntp: Allow TAI-UTC offset to be set to zero - f2fs: fix to avoid panic in do_recover_data() - f2fs: fix to avoid panic in f2fs_inplace_write_data() - f2fs: fix to avoid panic in f2fs_remove_inode_page() - f2fs: fix to do sanity check on free nid - f2fs: fix to clear dirty inode in error path of f2fs_iget() - f2fs: fix to avoid panic in dec_valid_block_count() - f2fs: fix to use inline space only if inline_xattr is enable - f2fs: fix to do sanity check on valid block count of segment - f2fs: fix to do checksum even if inode page is uptodate - percpu: remove spurious lock dependency between percpu and sched - configfs: fix possible use-after-free in configfs_register_group - [armhf,arm64] PCI: dwc: Free MSI in dw_pcie_host_init() error path - [armhf,arm64] PCI: dwc: Free MSI IRQ page in dw_pcie_free_msi() - ovl: do not generate duplicate fsnotify events for "fake" path - mmc: mmci: Prevent polling for busy detection in IRQ context - netfilter: nf_flow_table: fix missing error check for rhashtable_insert_fast - netfilter: nf_conntrack_h323: restore boundary check correctness - [mips*] Make sure dt memory regions are valid - netfilter: nf_tables: fix base chain stat rcu_dereference usage - [armhf] watchdog: imx2_wdt: Fix set_timeout for big timeout values - watchdog: fix compile time error of pretimeout governors - blk-mq: move cancel of requeue_work into blk_mq_release - [x86] iommu/vt-d: Set intel_iommu_gfx_mapped correctly - nvme-pci: unquiesce admin queue on shutdown - nvme-pci: shutdown on timeout during deletion - netfilter: nf_flow_table: check ttl value in flow offload data path - netfilter: nf_flow_table: fix netdev refcnt leak - ALSA: hda - Register irq handler after the chip initialization - nvmem: core: fix read buffer in place - [armhf,arm64] nvmem: sunxi_sid: Support SID on A83T and H5 - fuse: retrieve: cap requested size to negotiated max_write - nfsd: allow fh_want_write to be called twice - nfsd: avoid uninitialized variable warning - vfio: Fix WARNING "do not call blocking ops when !TASK_RUNNING" - [armhf,arm64] iommu/arm-smmu-v3: Don't disable SMMU in kdump kernel - [x86] net: thunderbolt: Unregister ThunderboltIP protocol handler when suspending - [x86] PCI: Fix PCI IRQ routing table memory leak - i40e: Queues are reserved despite "Invalid argument" error - platform/chrome: cros_ec_proto: check for NULL transfer function - [armhf] clk: rockchip: Turn on "aclk_dmac1" for suspend on rk3288 - [armhf] soc: rockchip: Set the proper PWM for rk3288 - [armhf] dts: imx51: Specify IMX5_CLK_IPG as "ahb" clock to SDMA - [armhf] dts: imx50: Specify IMX5_CLK_IPG as "ahb" clock to SDMA - [armhf] dts: imx53: Specify IMX5_CLK_IPG as "ahb" clock to SDMA - [armhf] dts: imx6sx: Specify IMX6SX_CLK_IPG as "ahb" clock to SDMA - [armhf] dts: imx6sll: Specify IMX6SLL_CLK_IPG as "ipg" clock to SDMA - [armhf] dts: imx6ul: Specify IMX6UL_CLK_IPG as "ipg" clock to SDMA - [armhf] dts: imx6sx: Specify IMX6SX_CLK_IPG as "ipg" clock to SDMA - [armhf] dts: imx6qdl: Specify IMX6QDL_CLK_IPG as "ipg" clock to SDMA - [ppc64el] PCI: rpadlpar: Fix leaked device_node references in add/remove paths - drm/amd/display: Use plane->color_space for dpp if specified - [armhf] OMAP2+: pm33xx-core: Do not Turn OFF CEFUSE as PPA may be using it - [x86] platform: intel_pmc_ipc: adding error handling - [arm64] net: hns3: return 0 and print warning when hit duplicate MAC - scsi: qla2xxx: Reset the FCF_ASYNC_{SENT|ACTIVE} flags - [x86] video: hgafb: fix potential NULL pointer dereference - block, bfq: increase idling for weight-raised queues - [arm64] PCI: xilinx: Check for __get_free_pages() failure - ice: Add missing case in print_link_msg for printing flow control - [x86] dmaengine: idma64: Use actual device for DMA transfers - [armhf] pwm: tiehrpwm: Update shadow register for disabling PWMs - [armhf] dts: exynos: Always enable necessary APIO_1V8 and ABB_1V8 regulators on Arndale Octa - pwm: Fix deadlock warning when removing PWM device - [armhf] exynos: Fix undefined instruction during Exynos5422 resume - [x86] usb: typec: fusb302: Check vconn is off when we start toggling - soc: renesas: Identify R-Car M3-W ES1.3 - percpu: do not search past bitmap when allocating an area - ovl: check the capability before cred overridden - ovl: support stacked SEEK_HOLE/SEEK_DATA - [arm*] drm/vc4: fix fb references in async update - ALSA: seq: Cover unsubscribe_port() in list_mutex https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.52 https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.53 - drm/nouveau: add kconfig option to turn off nouveau legacy contexts. (v3) - nouveau: Fix build with CONFIG_NOUVEAU_LEGACY_CTX_SUPPORT disabled - HID: multitouch: handle faulty Elo touch device - HID: wacom: Don't set tool type until we're in range - HID: wacom: Don't report anything prior to the tool entering range - HID: wacom: Send BTN_TOUCH in response to INTUOSP2_BT eraser contact - HID: wacom: Correct button numbering 2nd-gen Intuos Pro over Bluetooth - HID: wacom: Sync INTUOSP2_BT touch state after each frame if necessary - ALSA: oxfw: allow PCM capture for Stanton SCS.1m - ALSA: hda/realtek - Update headset mode for ALC256 - ALSA: firewire-motu: fix destruction of data for isochronous resources - libata: Extend quirks for the ST1000LM024 drives with NOLPM quirk - mm/list_lru.c: fix memory leak in __memcg_init_list_lru_node - fs/ocfs2: fix race in ocfs2_dentry_attach_lock() - mm/vmscan.c: fix trying to reclaim unevictable LRU page - signal/ptrace: Don't leak unitialized kernel memory with PTRACE_PEEK_SIGINFO - ptrace: restore smp_rmb() in __ptrace_may_access() - [armhf,arm64] iommu/arm-smmu: Avoid constant zero in TLBI writes - bcache: fix stack corruption by PRECEDING_KEY() - bcache: only set BCACHE_DEV_WB_RUNNING when cached device attached - cgroup: Use css_tryget() instead of css_tryget_online() in task_get_css() - [x86] drm/i915/sdvo: Implement proper HDMI audio support for SDVO - ALSA: seq: Fix race of get-subscription call vs port-delete ioctls - Drivers: misc: fix out-of-bounds access in function param_set_kgdbts_var - f2fs: fix to avoid accessing xattr across the boundary - scsi: qedi: remove memset/memcpy to nfunc and use func instead (CVE-2019-15090) - scsi: qedi: remove set but not used variables 'cdev' and 'udev' - scsi: lpfc: correct rcu unlock issue in lpfc_nvme_info_show - scsi: lpfc: add check for loss of ndlp when sending RRQ - [arm64] mm: Inhibit huge-vmap with ptdump - nvme: fix srcu locking on error return in nvme_get_ns_from_disk - nvme: remove the ifdef around nvme_nvm_ioctl - nvme: merge nvme_ns_ioctl into nvme_ioctl - nvme: release namespace SRCU protection before performing controller ioctls - nvme: fix memory leak for power latency tolerance - [x86] platform: pmc_atom: Add Lex 3I380D industrial PC to critclk_systems DMI table - [x86] platform: pmc_atom: Add several Beckhoff Automation boards to critclk_systems DMI table - scsi: bnx2fc: fix incorrect cast to u64 on shift operation - libnvdimm: Fix compilation warnings with W=1 - tracing: Prevent hist_field_var_ref() from accessing NULL tracing_map_elts - usbnet: ipheth: fix racing condition - [armhf,arm64] KVM: Move cc/it checks under hyp's Makefile to avoid instrumentation - [x86] KVM: pmu: mask the result of rdpmc according to the width of the counters - [x86] KVM: pmu: do not mask the value that is written to fixed PMUs - [s390x] KVM: fix memory slot handling for KVM_SET_USER_MEMORY_REGION - [x86] drm/vmwgfx: integer underflow in vmw_cmd_dx_set_shader() leading to an invalid read - [x86] drm/vmwgfx: NULL pointer dereference from vmw_cmd_dx_view_define() - [armhf,arm64] usb: dwc2: Fix DMA cache alignment issues - [armhf,arm64] usb: dwc2: host: Fix wMaxPacketSize handling (fix webcam regression) - USB: Fix chipmunk-like voice when using Logitech C270 for recording audio. - USB: usb-storage: Add new ID to ums-realtek - USB: serial: pl2303: add Allied Telesis VT-Kit3 - USB: serial: option: add support for Simcom SIM7500/SIM7600 RNDIS mode - USB: serial: option: add Telit 0x1260 and 0x1261 compositions - timekeeping: Repair ktime_get_coarse*() granularity - [x86] microcode, cpuhotplug: Add a microcode loader CPU hotplug callback - [x86] mm/KASLR: Compute the size of the vmemmap section properly - [x86] resctrl: Prevent NULL pointer dereference when local MBM is disabled - drm/edid: abstract override/firmware EDID retrieval - drm: add fallback override/firmware EDID modes workaround - [armhf] rtc: pcf8523: don't return invalid date when battery is low https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.54 - ax25: fix inconsistent lock state in ax25_destroy_timer - be2net: Fix number of Rx queues used for flow hashing - [x86] hv_netvsc: Set probe mode to sync - ipv6: flowlabel: fl6_sock_lookup() must use atomic_inc_not_zero - lapb: fixed leak of control-blocks. - neigh: fix use-after-free read in pneigh_get_next - net: openvswitch: do not free vport if register_netdevice() is failed. - sctp: Free cookie before we memdup a new one - tipc: purge deferredq list for each grp member in tipc_group_delete - vsock/virtio: set SOCK_DONE on peer shutdown - net/mlx5: Avoid reloading already removed devices - [armhf,arm64] net: mvpp2: prs: Fix parser range for VID filtering - [armhf,arm64] net: mvpp2: prs: Use the correct helpers when removing all VID filters - [arm*] Staging: vc04_services: Fix a couple error codes - [x86] perf/intel/ds: Fix EVENT vs. UEVENT PEBS constraints - netfilter: nf_queue: fix reinject verdict handling - ipvs: Fix use-after-free in ip_vs_in - [armhf] clk: ti: clkctrl: Fix clkdm_clk handling - [ppc64el] powernv: Return for invalid IMC domain - usb: xhci: Fix a potential null pointer dereference in xhci_debugfs_create_endpoint() - mISDN: make sure device name is NUL terminated - [x86] CPU/AMD: Don't force the CPB cap when running under a hypervisor - perf/ring_buffer: Fix exposing a temporarily decreased data_head - perf/ring_buffer: Add ordering to rb->nest increment - perf/ring-buffer: Always use {READ,WRITE}_ONCE() for rb->user_page data - [armhf,arm64] net: stmmac: update rx tail pointer register to fix rx dma hang issue. - ACPI/PCI: PM: Add missing wakeup.flags.valid checks - [armhf] drm/etnaviv: lock MMU while dumping core - net: aquantia: tx clean budget logic error - net: aquantia: fix LRO with FCS error - i2c: dev: fix potential memory leak in i2cdev_ioctl_rdwr - ALSA: hda - Force polling mode on CNL for fixing codec communication - configfs: Fix use-after-free when accessing sd->s_dentry - perf data: Fix 'strncat may truncate' build failure with recent gcc - perf namespace: Protect reading thread's namespace - [s390x] perf record: Fix s390 missing module symbol and warning for non-root users - xenbus: Avoid deadlock during suspend due to open transactions - [ppc64el] KVM: Book3S: Use new mutex to synchronize access to rtas token list - [ppc64el] KVM: Book3S HV: Don't take kvm->lock around kvm_for_each_vcpu - [arm64] fix syscall_fn_t type - [arm64] use the correct function type in SYSCALL_DEFINE0 - [arm64] use the correct function type for __arm64_sys_ni_syscall - net: phylink: ensure consistent phy interface mode - net: phy: dp83867: Set up RGMII TX delay - scsi: libcxgbi: add a check for NULL pointer in cxgbi_check_route() - scsi: smartpqi: properly set both the DMA mask and the coherent DMA mask - scsi: scsi_dh_alua: Fix possible null-ptr-deref - scsi: libsas: delete sas port if expander discover failed - ocfs2: fix error path kobject memory leak - coredump: fix race condition between collapse_huge_page() and core dumping - Abort file_remove_privs() for non-reg. files https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.55 https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.56 - tracing: Silence GCC 9 array bounds warning - objtool: Support per-function rodata sections - ovl: support the FS_IOC_FS[SG]ETXATTR ioctls - ovl: fix wrong flags check in FS_IOC_FS[SG]ETXATTR ioctls - ovl: make i_ino consistent with st_ino in more cases - ovl: detect overlapping layers - ovl: don't fail with disconnected lower NFS - ovl: fix bogus -Wmaybe-unitialized warning - [s390x] jump_label: Use "jdd" constraint on gcc9 - [s390x] ap: rework assembler functions to use unions for in/out register variables - mmc: sdhci: sdhci-pci-o2micro: Correctly set bus width when tuning - mmc: core: API to temporarily disable retuning for SDIO CRC errors - mmc: core: Add sdio_retune_hold_now() and sdio_retune_release() - mmc: core: Prevent processing SDIO IRQs when the card is suspended - scsi: ufs: Avoid runtime suspend possibly being blocked forever - [armhf,arm64] usb: chipidea: udc: workaround for endpoint conflict issue - xhci: detect USB 3.2 capable host controllers correctly - usb: xhci: Don't try to recover an endpoint if port is in error state. - IB/hfi1: Validate fault injection opcode user input - IB/hfi1: Silence txreq allocation warnings - [x86] Input: synaptics - enable SMBus on ThinkPad E480 and E580 - Input: uinput - add compat ioctl number translation for UI_*_FF_UPLOAD - [x86] Input: silead - add MSSL0017 to acpi_device_id - apparmor: fix PROFILE_MEDIATES for untrusted input - apparmor: enforce nullbyte at end of tag string - brcmfmac: sdio: Disable auto-tuning around commands expected to fail - brcmfmac: sdio: Don't tune while the card is off - parport: Fix mem leak in parport_register_dev_model - IB/rdmavt: Fix alloc_qpn() WARN_ON() - IB/hfi1: Insure freeze_work work_struct is canceled on shutdown - IB/{qib, hfi1, rdmavt}: Correct ibv_devinfo max_mr value - IB/hfi1: Validate page aligned for a given virtual address - [mips*] uprobes: remove set but not used variable 'epc' - [armhf,arm64] net: dsa: mv88e6xxx: avoid error message on remove from VLAN 0 - [arm64] net: hns: Fix loopback test failed at copper ports - mdesc: fix a missing-check bug in get_vdev_port_node_info() - [arm64] drm/arm/mali-dp: Add a loop around the second set CVAL and try 5 times - [arm64] drm/arm/hdlcd: Actually validate CRTC modes - [arm64] drm/arm/hdlcd: Allow a bit of clock tolerance - nvmet: fix data_len to 0 for bdev-backed write_zeroes - scsi: ufs: Check that space was properly alloced in copy_query_response - scsi: smartpqi: unlock on error in pqi_submit_raid_request_synchronous() - net: ipvlan: Fix ipvlan device tso disabled while NETIF_F_IP_CSUM is set - [s390x] qeth: fix VLAN attribute in bridge_hostnotify udev event - hwmon: (core) add thermal sensors only if dev->of_node is present - hwmon: (pmbus/core) Treat parameters as paged if on multiple pages - nvme: Fix u32 overflow in the number of namespace list calculation - btrfs: start readahead also in seed devices - [armhf] can: flexcan: fix timeout when set small bitrate - can: purge socket error queue on sock destruct - [ppc64el] bpf: use unsigned division instruction for 64-bit operations - [armhf] imx: cpuidle-imx6sx: Restrict the SW2ISO increase to i.MX6SX - [armhf] dts: dra76x: Update MMC2_HS200_MANUAL1 iodelay values - [armhf] dts: am57xx-idk: Remove support for voltage switching for SD card - [arm64] sve: should not depend on - [arm64] ssbd: explicitly depend on - [x86] drm/vmwgfx: Use the backdoor port if the HB port is not available - Bluetooth: Align minimum encryption key size for LE and BR/EDR connections (CVE-2019-9506) - Bluetooth: Fix regression with minimum encryption key size alignment - SMB3: retry on STATUS_INSUFFICIENT_RESOURCES instead of failing write - cfg80211: fix memory leak of wiphy device name - mac80211: drop robust management frames from unknown TA - {nl,mac}80211: allow 4addr AP operation on crypto controlled devices - mac80211: handle deauthentication/disassociation from TDLS peer - nl80211: fix station_info pertid memory leak - mac80211: Do not use stack memory with scatterlist for GMAC - [x86] resctrl: Don't stop walking closids when a locksetup group is found https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.57 - perf ui helpline: Use strlcpy() as a shorter form of strncpy() + explicit set nul - perf help: Remove needless use of strncpy() - perf header: Fix unchecked usage of strncpy() - [arm64] Don't unconditionally add -Wno-psabi to KBUILD_CFLAGS - IB/hfi1: Close PSM sdma_progress sleep window - 9p/xen: fix check for xenbus_read error in front_probe - 9p: Use a slab for allocating requests - 9p: embed fcall in req to round down buffer allocs - 9p: add a per-client fcall kmem_cache - 9p: rename p9_free_req() function - 9p: Add refcount to p9_req_t - 9p/rdma: do not disconnect on down_interruptible EAGAIN - 9p: Rename req to rreq in trans_fd - 9p: acl: fix uninitialized iattr access - 9p/rdma: remove useless check in cm_event_handler - 9p: p9dirent_read: check network-provided name length - 9p: potential NULL dereference - 9p/trans_fd: abort p9_read_work if req status changed - 9p/trans_fd: put worker reqs on destroy - net/9p: include trans_common.h to fix missing prototype warning. - qmi_wwan: Fix out-of-bounds read - [armhf,arm64] Revert "usb: dwc3: gadget: Clear req->needs_extra_trb flag on cleanup" - [armhf,arm64] usb: dwc3: gadget: combine unaligned and zero flags - [armhf,arm64] usb: dwc3: gadget: track number of TRBs per request - [armhf,arm64] usb: dwc3: gadget: use num_trbs when skipping TRBs on ->dequeue() - [armhf,arm64] usb: dwc3: gadget: extract dwc3_gadget_ep_skip_trbs() - [armhf,arm64] usb: dwc3: gadget: introduce cancelled_list - [armhf,arm64] usb: dwc3: gadget: move requests to cancelled_list - [armhf,arm64] usb: dwc3: gadget: remove wait_end_transfer - [armhf,arm64] usb: dwc3: gadget: Clear req->needs_extra_trb flag on cleanup - fs/proc/array.c: allow reporting eip/esp for all coredumping threads - mm/mempolicy.c: fix an incorrect rebind node in mpol_rebind_nodemask - fs/binfmt_flat.c: make load_flat_shared_library() work - [armhf] clk: socfpga: stratix10: fix divider entry for the emac clocks - mm: soft-offline: return -EBUSY if set_hwpoison_free_buddy_page() fails - mm: hugetlb: soft-offline: dissolve_free_huge_page() return zero on !PageHuge - mm/page_idle.c: fix oops because end_pfn is larger than max_pfn - dm log writes: make sure super sector log updates are written in order - [x86] scsi: vmw_pscsi: Fix use-after-free in pvscsi_queue_lck() - [x86] speculation: Allow guests to use SSBD even if host does not - [x86] microcode: Fix the microcode load on CPU hotplug for real - [x86] resctrl: Prevent possible overrun during bitmap operations - [x86] KVM: mmu: Allocate PAE root array when using SVM's 32-bit NPT - NFS/flexfiles: Use the correct TCP timeout for flexfiles I/O - cpu/speculation: Warn on unsupported mitigations= parameter - SUNRPC: Clean up initialisation of the struct rpc_rqst - [mips*] irqchip/mips-gic: Use the correct local interrupt map registers - eeprom: at24: fix unexpected timeout under high load - af_packet: Block execution of tasks waiting for transmit to complete in AF_PACKET - bonding: Always enable vlan tx offload - ipv4: Use return value of inet_iif() for __raw_v4_lookup in the while loop - net/packet: fix memory leak in packet_set_ring() - net: remove duplicate fetch in sock_getsockopt - [armhf,arm64] net: stmmac: fixed new system time seconds value calculation - [armhf,arm64] net: stmmac: set IC bit when transmitting frames with HW timestamp - sctp: change to hold sk after auth shkey is created successfully - team: Always enable vlan tx offload - tipc: change to use register_pernet_device - tipc: check msg->req data len in tipc_nl_compat_bearer_disable - tun: wake up waitqueues after IFF_UP is set - bpf: simplify definition of BPF_FIB_LOOKUP related flags - bpf: lpm_trie: check left child of last leftmost node for NULL - bpf: fix nested bpf tracepoints with per-cpu data - bpf: fix unconnected udp hooks - bpf: udp: Avoid calling reuseport's bpf_prog from udp_gro - bpf: udp: ipv6: Avoid running reuseport's bpf_prog from __udp6_lib_err - [arm64] futex: Avoid copying out uninitialised stack in failed cmpxchg() - [arm64] bpf: use more scalable stadd over ldxr / stxr loop in xadd - futex: Update comments and docs about return values of arch futex code - RDMA: Directly cast the sockaddr union to sockaddr - tipc: pass tunnel dev as NULL to udp_tunnel(6)_xmit_skb - [armhf,arm64] usb: dwc3: Reset num_trbs after skipping - [arm64] insn: Fix ldadd instruction encoding https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.58 - Bluetooth: Fix faulty expression for minimum encryption key size check - block: Fix a NULL pointer dereference in generic_make_request() - md/raid0: Do not bypass blocking queue entered for raid0 bios - netfilter: nf_flow_table: ignore DF bit setting - netfilter: nft_flow_offload: set liberal tracking mode for tcp - netfilter: nft_flow_offload: don't offload when sequence numbers need adjustment - netfilter: nft_flow_offload: IPCB is only valid for ipv4 family - ASoC: soc-pcm: BE dai needs prepare when pause release after resume - spi: bitbang: Fix NULL pointer dereference in spi_unregister_master - [armhf,arm64] ASoC: max98090: remove 24-bit format support if RJ is 0 - [x86] CPU: Add more Icelake model numbers - ALSA: hdac: fix memory release for SST and SOF drivers - scsi: hpsa: correct ioaccel2 chaining - [x86] drm: panel-orientation-quirks: Add quirk for GPD pocket2 - [x86] drm: panel-orientation-quirks: Add quirk for GPD MicroPC - [x86] platform: asus-wmi: Only Tell EC the OS will handle display hotkeys from asus_nb_wmi - [x86] platform: intel-vbtn: Report switch events when event wakes device - [x86] platform: mlx-platform: Fix parent device in i2c-mux-reg device registration - i2c: pca-platform: Fix GPIO lookup code - cpuset: restore sanity to cpuset_cpus_allowed_fallback() - mm/mlock.c: change count_mm_mlocked_page_nr return type - tracing: avoid build warning with HAVE_NOP_MCOUNT - module: Fix livepatch/ftrace module text permissions race - ftrace: Fix NULL pointer dereference in free_ftrace_func_mapper() - [x86] drm/i915/dmc: protect against reading random memory - crypto: user - prevent operating on larval algorithms - crypto: cryptd - Fix skcipher instance memory leak - ALSA: seq: fix incorrect order of dest_client/dest_ports arguments - ALSA: firewire-lib/fireworks: fix miss detection of received MIDI messages - ALSA: line6: Fix write on zero-sized buffer - ALSA: usb-audio: fix sign unintended sign extension on left shifts - [x86] ALSA: hda/realtek: Add quirks for several Clevo notebook barebones - [x86] ALSA: hda/realtek - Change front mic location for Lenovo M710q - lib/mpi: Fix karactx leak in mpi_powm - fs/userfaultfd.c: disable irqs for fault_pending and event locks - tracing/snapshot: Resize spare buffer if size changed - [armhf] dts: armada-xp-98dx3236: Switch to armada-38x-uart serial node - drm/amd/powerplay: use hardware fan control if no powerplay fan table - drm/amdgpu/gfx9: use reset default for PA_SC_FIFO_SIZE - [armhf] drm/etnaviv: add missing failure path to destroy suballoc - [armhf] drm/imx: notify drm core before sending event during crtc disable - drm/imx: only send event on crtc disable if kept disabled - [x86] ftrace: Remove possible deadlock between register_kprobe() and ftrace_run_update_code() - mm/vmscan.c: prevent useless kswapd loops - btrfs: Ensure replaced device doesn't have pending chunk allocation - tty: rocket: fix incorrect forward declaration of 'rp_init()' - net/smc: move unhash before release of clcsock - drm/fb-helper: generic: Don't take module ref for fbcon - f2fs: don't access node/meta inode mapping after iput - mac80211: mesh: fix missing unlock on error in table_path_del() - scsi: tcmu: fix use after free - [amd64] boot/compressed: Do not corrupt EDX on EFER.LME=1 setting - [arm64] net: hns: Fixes the missing put_device in positive leg for roce reset - ALSA: hda: Initialize power_state field properly - rds: Fix warning. - ip6: fix skb leak in ip6frag_expire_frag_queue() - netfilter: ipv6: nf_defrag: fix leakage of unqueued fragments - [arm64] net: hns: fix unsigned comparison to less than zero - bpf: fix bpf_jit_limit knob for PAGE_SIZE >= 64K - netfilter: ipv6: nf_defrag: accept duplicate fragments again - [x86] KVM: degrade WARN to pr_warn_ratelimited - [x86] KVM: LAPIC: Fix pending interrupt in IRR blocked by software disable LAPIC - nfsd: Fix overflow causing non-working mounts on 1 TB machines - svcrdma: Ignore source port when computing DRC hash - [mips*] Fix bounds check virt_addr_valid - [mips*] Add missing EHB in mtc0 -> mfc0 sequence. - [arm64] dmaengine: qcom: bam_dma: Fix completed descriptors count - [armhf] dmaengine: imx-sdma: remove BD_INTR for channel0 https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.59 - [x86] Input: elantech - enable middle button support on 2 ThinkPads - mac80211: fix rate reporting inside cfg80211_calculate_bitrate_he() - bpf: sockmap, fix use after free from sleep in psock backlog workqueue - mac80211: mesh: fix RCU warning - mac80211: free peer keys before vif down in mesh - iwlwifi: Fix double-free problems in iwl_req_fw_callback() - can: af_can: Fix error path of can_init() - net: phy: rename Asix Electronics PHY driver - [armhf] dts: am335x phytec boards: Fix cd-gpios active level - [s390x] boot: disable address-of-packed-member warning - [x86] drm/vmwgfx: Honor the sg list segment size limitation - [x86] drm/vmwgfx: fix a warning due to missing dma_parms - [armhf] Input: imx_keypad - make sure keyboard can always wake up system - [armhf,arm64] KVM: vgic: Fix kvm_device leak in vgic_its_destroy - mac80211: only warn once on chanctx_conf being NULL - mac80211: do not start any work during reconfigure flow - bpf, devmap: Fix premature entry free on destroying map - bpf, devmap: Add missing bulk queue free - bpf, devmap: Add missing RCU read lock on flush - [amd64] bpf: fix stack layout of JITed bpf code - qmi_wwan: add support for QMAP padding in the RX path - qmi_wwan: avoid RCU stalls on device disconnect when in QMAP mode - qmi_wwan: extend permitted QMAP mux_id value range - mmc: core: complete HS400 before checking status - md: fix for divide error in status_resync - bnx2x: Check if transceiver implements DDM before access - drm: return -EFAULT if copy_to_user() fails - ip6_tunnel: allow not to count pkts on tstats by passing dev as NULL - net: lio_core: fix potential sign-extension overflow on large shift - scsi: qedi: Check targetname while finding boot target information - quota: fix a problem about transfer quota - [armhf,arm64] net: dsa: mv88e6xxx: fix shift of FID bits in mv88e6185_g1_vtu_loadpurge() - NFS4: Only set creation opendata if O_CREAT - net :sunrpc :clnt :Fix xps refcount imbalance on the error path - fscrypt: don't set policy for a dead directory - udf: Fix incorrect final NOT_ALLOCATED (hole) extent length - media: stv0297: fix frequency range limit - ALSA: usb-audio: Fix parse of UAC2 Extension Units - ALSA: hda/realtek - Headphone Mic can't record after S3 - block, bfq: NULL out the bic when it's no longer valid - [arm64] perf pmu: Fix uncore PMU alias list for ARM64 - [x86] ptrace: Fix possible spectre-v1 in ptrace_get_debugreg() - [x86] tls: Fix possible spectre-v1 in do_get_thread_area() - USB: serial: ftdi_sio: add ID for isodebug v1 - USB: serial: option: add support for GosunCn ME3630 RNDIS mode - Revert "serial: 8250: Don't service RX FIFO if interrupts are disabled" - p54usb: Fix race between disconnect and firmware loading - usb: gadget: ether: Fix race between gether_disconnect and rx_submit - [armhf,arm64] usb: dwc2: use a longer AHB idle timeout in dwc2_core_reset() - [x86] drivers/usb/typec/tps6598x.c: fix portinfo width - [x86] drivers/usb/typec/tps6598x.c: fix 4CC cmd write - [i386] staging: comedi: dt282x: fix a null pointer deref on interrupt - [x86] staging: comedi: amplc_pci230: fix null pointer deref on interrupt - HID: Add another Primax PIXART OEM mouse quirk - binder: fix memory leak in error path - carl9170: fix misuse of device driver API - [x86] VMCI: Fix integer overflow in VMCI handle arrays - staging: rtl8712: reduce stack usage, again https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.60 - Revert "e1000e: fix cyclic resets at link up with active tx" - e1000e: start network tx queue only when link is up - [x86] Input: synaptics - enable SMBUS on T480 thinkpad trackpad - nilfs2: do not use unexported cpu_to_le32()/le32_to_cpu() in uapi header - drivers: base: cacheinfo: Ensure cpu hotplug work is done before Intel RDT - firmware: improve LSM/IMA security behaviour - [armhf,arm64] irqchip/gic-v3-its: Fix command queue pointer comparison bug - [armhf] clk: ti: clkctrl: Fix returning uninitialized data - [amd64,arm64] efi/bgrt: Drop BGRT status field reserved bits check - perf/core: Fix perf_sample_regs_user() mm check - [armhf] omap2: remove incorrect __init annotation - afs: Fix uninitialised spinlock afs_volume::cb_break_lock - [x86] apic: Fix integer overflow on 10 bit left shift of cpu_khz - be2net: fix link failure after ethtool offline test - ppp: mppe: Add softdep to arc4 - sis900: fix TX completion - [armhf] dts: imx6ul: fix PWM[1-4] interrupts - [armhf] pinctrl: mcp23s08: Fix add_data and irqchip_add_nested call order - dm table: don't copy from a NULL pointer in realloc_argv() - dm verity: use message limit for data block corruption message - [amd64] boot: Fix crash if kernel image crosses page table boundary - [amd64] boot: Add missing fixup_pointer() for next_early_pgt access - HID: chicony: add another quirk for PixArt mouse - HID: multitouch: Add pointstick support for ALPS Touchpad - cpu/hotplug: Fix out-of-bounds read when setting fail state - linux/kernel.h: fix overflow for DIV_ROUND_UP_ULL - genirq: Delay deactivation in free_irq() - genirq: Fix misleading synchronize_irq() documentation - genirq: Add optional hardware synchronization for shutdown - [x86] ioapic: Implement irq_get_irqchip_state() callback - [x86] irq: Handle spurious interrupt after shutdown gracefully - [x86] irq: Seperate unused system vectors from spurious entry again - [s390x] fix stfle zero padding - [s390x] qdio: (re-)initialize tiqdio list entries - [s390x] qdio: don't touch the dsci in tiqdio_add_input_queues() - regmap-irq: do not write mask register if mask_base is zero - drm/udl: introduce a macro to convert dev to udl. - drm/udl: Replace drm_dev_unref with drm_dev_put - drm/udl: move to embedding drm device inside udl device. - [i386] entry: Fix ENDPROC of common_spurious https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.61 - [arm64] efi: Mark __efistub_stext_offset as an absolute symbol explicitly - scsi: iscsi: set auth_protocol back to NULL if CHAP_A value is not supported - [armhf] dmaengine: imx-sdma: fix use-after-free on probe error path - wil6210: fix potential out-of-bounds read - ath10k: Do not send probe response template for mesh - ath9k: Check for errors when reading SREV register - ath6kl: add some bounds checking - ath10k: add peer id check in ath10k_peer_find_by_id - wil6210: fix spurious interrupts in 3-msi - ath: DFS JP domain W56 fixed pulse type 3 RADAR detection - regmap: debugfs: Fix memory leak in regmap_debugfs_init - batman-adv: fix for leaked TVLV handler. - media: dvb: usb: fix use after free in dvb_usb_device_exit - media: marvell-ccic: fix DMA s/g desc number calculation - media: media_device_enum_links32: clean a reserved field - [armhf,arm64] net: stmmac: dwmac1000: Clear unused address entries - [armhf,arm64] net: stmmac: dwmac4/5: Clear unused address entries - qed: Set the doorbell address correctly - signal/pid_namespace: Fix reboot_pid_ns to use send_sig not force_sig - af_key: fix leaks in key_pol_get_resp and dump_sp. - xfrm: Fix xfrm sel prefix length validation - fscrypt: clean up some BUG_ON()s in block encryption/decryption - perf annotate TUI browser: Do not use member from variable within its own initialization - media: mc-device.c: don't memset __user pointer contents - media: saa7164: fix remove_proc_entry warning - net: phy: Check against net_device being NULL - tua6100: Avoid build warnings. - batman-adv: Fix duplicated OGMs on NETDEV_UP - [armhf] media: wl128x: Fix some error handling in fm_v4l2_init_video_device() - [arm64] net: hns3: set ops to null when unregister ad_dev - cpupower : frequency-set -r option misses the last cpu in related cpu list - [armhf,arm64] net: stmmac: dwmac4: fix flow control issue - [armhf,arm64] net: stmmac: modify default value of tx-frames - [arm64] crypto: inside-secure - do not rely on the hardware last bit for result descriptors - [s390x] qdio: handle PENDING state for QEBSM devices - net: sfp: add mutex to prevent concurrent state checks - ipset: Fix memory accounting for hash types on resize - perf cs-etm: Properly set the value of 'old' and 'head' in snapshot mode - [s390x] perf report: Fix OOM error in TUI mode on s390 - [arm64] irqchip/meson-gpio: Add support for Meson-G12A SoC - media: uvcvideo: Fix access to uninitialized fields on probe error - iommu: Fix a leak in iommu_insert_resv_region - [armhf] gpio: omap: fix lack of irqstatus_raw0 for OMAP4 - [armhf] gpio: omap: ensure irq is enabled before wakeup - regmap: fix bulk writes on paged registers - bpf: silence warning messages in core - selinux: fix empty write to keycreate file - [x86] cpu: Add Ice Lake NNPI to Intel family - [arm64] ASoC: meson: axg-tdm: fix sample clock inversion - rcu: Force inlining of rcu_read_lock() - [x86] cpufeatures: Add FDP_EXCPTN_ONLY and ZERO_FCS_FDS - qed: iWARP - Fix tc for MPA ll2 connection - [arm64] net: hns3: fix for skb leak when doing selftest - block: null_blk: fix race condition for null_del_dev - blkcg, writeback: dead memcgs shouldn't contribute to writeback ownership arbitration - xfrm: fix sa selector validation - sched/core: Add __sched tag for io_schedule() - sched/fair: Fix "runnable_avg_yN_inv" not used warnings - [x86] perf/intel/uncore: Handle invalid event coding for free-running counter - [x86] atomic: Fix smp_mb__{before,after}_atomic() - perf evsel: Make perf_evsel__name() accept a NULL argument - vhost_net: disable zerocopy by default - ipoib: correcly show a VF hardware address - [x86] cacheinfo: Fix a -Wtype-limits warning - blk-iolatency: only account submitted bios - ACPICA: Clear status of GPEs on first direct enable - EDAC/sysfs: Fix memory leak when creating a csrow object - nvme: fix possible io failures when removing multipathed ns - nvme-pci: properly report state change failure in nvme_reset_work - nvme-pci: set the errno on ctrl state change error - lightnvm: pblk: fix freeing of merged pages - [arm64] Do not enable IRQs for ct_user_exit - ipsec: select crypto ciphers for xfrm_algo - ipvs: defer hook registration to avoid leaks - media: i2c: fix warning same module names - ntp: Limit TAI-UTC offset - timer_list: Guard procfs specific code - [arm64] acpi: ignore 5.1 FADTs that are reported as 5.0 - media: hdpvr: fix locking and a missing msleep - [armhf] net: stmmac: sun8i: force select external PHY when no internal one - rtlwifi: rtl8192cu: fix error handle when usb probe failed - mt7601u: do not schedule rx_tasklet when the device has been disconnected - mt7601u: fix possible memory leak when the device is disconnected - ipvs: fix tinfo memory leak in start_sync_thread - ath10k: add missing error handling - ath10k: fix PCIE device wake up failed - perf tools: Increase MAX_NR_CPUS and MAX_CACHES - [x86] ASoC: Intel: hdac_hdmi: Set ops to NULL on remove - libata: don't request sense data on !ZAC ATA devices - [armhf] clocksource/drivers/exynos_mct: Increase priority over ARM arch timer - xsk: Properly terminate assignment in xskq_produce_flush_desc - rslib: Fix decoding of shortened codes - rslib: Fix handling of of caller provided syndrome - ixgbe: Check DDM existence in transceiver before access - crypto: serpent - mark __serpent_setkey_sbox noinline - wil6210: drop old event after wmi_call timeout - EDAC: Fix global-out-of-bounds write when setting edac_mc_poll_msec - bcache: check CACHE_SET_IO_DISABLE in allocator code - bcache: check CACHE_SET_IO_DISABLE bit in bch_journal() - bcache: acquire bch_register_lock later in cached_dev_free() - bcache: check c->gc_thread by IS_ERR_OR_NULL in cache_set_flush() - bcache: fix potential deadlock in cached_def_free() - [arm64] net: hns3: fix a -Wformat-nonliteral compile warning - [arm64] net: hns3: add some error checking in hclge_tm module - ath10k: destroy sdio workqueue while remove sdio module - [armhf,arm64] net: mvpp2: prs: Don't override the sign bit in SRAM parser shift - igb: clear out skb->tstamp after reading the txtime - iwlwifi: mvm: Drop large non sta frames - perf stat: Make metric event lookup more robust - perf stat: Fix group lookup for metric group - bnx2x: Prevent ptp_task to be rescheduled indefinitely - net: usb: asix: init MAC address buffers - rxrpc: Fix oops in tracepoint - bpf, libbpf, smatch: Fix potential NULL pointer dereference - bonding: validate ip header before check IPPROTO_IGMP - gpiolib: Fix references to gpiod_[gs]et_*value_cansleep() variants - [ppc64el] tools: bpftool: Fix json dump crash on powerpc - Bluetooth: hci_bcsp: Fix memory leak in rx_skb - Bluetooth: Add new 13d3:3491 QCA_ROME device - Bluetooth: Add new 13d3:3501 QCA_ROME device - Bluetooth: 6lowpan: search for destination address in all peers - [ppc64el] perf tests: Fix record+probe_libc_inet_pton.sh for powerpc64 - Bluetooth: Check state in l2cap_disconnect_rsp - gtp: add missing gtp_encap_disable_sock() in gtp_encap_enable() - Bluetooth: validate BLE connection interval updates - gtp: fix suspicious RCU usage - gtp: fix Illegal context switch in RCU read-side critical section. - gtp: fix use-after-free in gtp_encap_destroy() - gtp: fix use-after-free in gtp_newlink() - [armel/marvell,armhf] net: mvmdio: defer probe of orion-mdio if a clock is not ready - iavf: fix dereference of null rx_buffer pointer - floppy: fix out-of-bounds read in next_valid_format - floppy: fix invalid pointer dereference in drive_name - xen: let alloc_xenballooned_pages() fail if not enough memory free - scsi: core: Fix race on creating sense cache - scsi: megaraid_sas: Fix calculation of target ID - crypto: ghash - fix unaligned memory access in ghash_setkey() - [x86] crypto: ccp - Validate the the error value used to index error messages - [arm64] crypto: sha1-ce - correct digest for empty data in finup - [arm64] crypto: sha2-ce - correct digest for empty data in finup - crypto: chacha20poly1305 - fix atomic sleep when using async algorithm - [x86] crypto: ccp - memset structure fields to zero before reuse - [x86] crypto: ccp/gcm - use const time tag comparison. - Revert "bcache: set CACHE_SET_IO_DISABLE in bch_cached_dev_error()" - bcache: Revert "bcache: fix high CPU occupancy during journal" - bcache: Revert "bcache: free heap cache_set->flush_btree in bch_journal_free" - bcache: ignore read-ahead request failure on backing device - bcache: fix mistaken sysfs entry for io_error counter - bcache: destroy dc->writeback_write_wq if failed to create dc->writeback_thread - Input: alps - don't handle ALPS cs19 trackpoint-only device - [x86] Input: synaptics - whitelist Lenovo T580 SMBus intertouch - Input: alps - fix a mismatch between a condition check and its comment - [armhf] regulator: s2mps11: Fix buck7 and buck8 wrong voltages - [arm64] tegra: Update Jetson TX1 GPU regulator timings - iwlwifi: pcie: don't service an interrupt that was masked - iwlwifi: pcie: fix ALIVE interrupt handling for gen2 devices w/o MSI-X - iwlwifi: don't WARN when calling iwl_get_shared_mem_conf with RF-Kill - iwlwifi: fix RF-Kill interrupt while FW load for gen2 devices - NFSv4: Handle the special Linux file open access mode - pnfs/flexfiles: Fix PTR_ERR() dereferences in ff_layout_track_ds_error - pNFS: Fix a typo in pnfs_update_layout - pnfs: Fix a problem where we gratuitously start doing I/O through the MDS - lib/scatterlist: Fix mapping iterator when sg->offset is greater than PAGE_SIZE - ASoC: dapm: Adapt for debugfs API change - raid5-cache: Need to do start() part job after adding journal device - ALSA: seq: Break too long mutex context in the write loop - [x86] ALSA: hda/realtek - Fixed Headphone Mic can't record on Dell platform - [x86] ALSA: hda/realtek: apply ALC891 headset fixup to one Dell machine - media: v4l2: Test type instead of cfg->type in v4l2_ctrl_new_custom() - media: videobuf2-core: Prevent size alignment wrapping buffer size to 0 - media: videobuf2-dma-sg: Prevent size from overflowing - [x86] KVM: vPMU: refine kvm_pmu err msg when event creation failed - [arm64] tegra: Fix AGIC register range - fs/proc/proc_sysctl.c: fix the default values of i_uid/i_gid on /proc/sys inodes. - kconfig: fix missing choice values in auto.conf - drm/nouveau/i2c: Enable i2c pads & busses during preinit - padata: use smp_mb in padata_reorder to avoid orphaned padata jobs - dm zoned: fix zone state management race - xen/events: fix binding user event channels to cpus - 9p/xen: Add cleanup path in p9_trans_xen_init - 9p/virtio: Add cleanup path in p9_virtio_init - [x86] boot: Fix memory leak in default_get_smp_config() - [x86] perf/intel: Fix spurious NMI on fixed counter - [x86] perf/amd/uncore: Do not set 'ThreadMask' and 'SliceMask' for non-L3 PMCs - [x86] perf/amd/uncore: Set the thread mask for F17h L3 PMCs - drm/edid: parse CEA blocks embedded in DisplayID - [x86] intel_th: pci: Add Ice Lake NNPI support - [x86] PCI: hv: Fix a use-after-free bug in hv_eject_device_work() - PCI: Do not poll for PME if the device is in D3cold - [arm64] PCI: qcom: Ensure that PERST is asserted for at least 100 ms - Btrfs: fix data loss after inode eviction, renaming it, and fsync it - Btrfs: fix fsync not persisting dentry deletions due to inode evictions - Btrfs: add missing inode version, ctime and mtime updates when punching hole - IB/mlx5: Report correctly tag matching rendezvous capability - HID: wacom: generic: only switch the mode on devices with LEDs - HID: wacom: generic: Correct pad syncing - HID: wacom: correct touch resolution x/y typo - libnvdimm/pfn: fix fsdax-mode namespace info-block zero-fields - coda: pass the host file in vma->vm_file on mmap - include/asm-generic/bug.h: fix "cut here" for WARN_ON for __WARN_TAINT architectures - xfs: fix pagecache truncation prior to reflink - xfs: flush removing page cache in xfs_reflink_remap_prep - xfs: don't overflow xattr listent buffer - xfs: rename m_inotbt_nores to m_finobt_nores - xfs: don't ever put nlink > 0 inodes on the unlinked list - xfs: reserve blocks for ifree transaction during log recovery - xfs: fix reporting supported extra file attributes for statx() - xfs: serialize unaligned dio writes against all other dio writes - xfs: abort unaligned nowait directio early - [ppc64el] watchpoint: Restore NV GPRs while returning from exception - [ppc64el] powernv/npu: Fix reference leak - [ppc64el] pseries: Fix oops in hotplug memory notifier - [arm64] mmc: sdhci-msm: fix mutex while in spinlock - eCryptfs: fix a couple type promotion bugs - [x86] intel_th: msu: Fix single mode with disabled IOMMU - Bluetooth: Add SMP workaround Microsoft Surface Precision Mouse bug - usb: Handle USB3 remote wakeup for LPM enabled devices correctly - blk-throttle: fix zero wait time for iops throttled group - blk-iolatency: clear use_delay when io.latency is set to zero - blkcg: update blkcg_print_stat() to handle larger outputs - [armel/marvell,armhf] net: mvmdio: allow up to four clocks to be specified for orion-mdio - dm bufio: fix deadlock with loop device https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.62 - bnx2x: Prevent load reordering in tx completion processing - [x86] hv_netvsc: Fix extra rcu_read_unlock in netvsc_recv_callback() - igmp: fix memory leak in igmpv3_del_delrec() - ipv4: don't set IPv6 only flags to IPv4 addresses - ipv6: rt6_check should return NULL if 'from' is NULL - ipv6: Unlink sibling route in case of failure - [armhf,arm64] net: dsa: mv88e6xxx: wait after reset deactivation - net: make skb_dst_force return true when dst is refcounted - net: neigh: fix multiple neigh timer scheduling - net: openvswitch: fix csum updates for MPLS actions - net: phy: sfp: hwmon: Fix scaling of RX power - [armhf,arm64] net: stmmac: Re-work the queue selection for TSO packets - nfc: fix potential illegal memory access - r8169: fix issue with confused RX unit after PHY power-down on RTL8411b - rxrpc: Fix send on a connected, but unbound socket - sctp: fix error handling on stream scheduler initialization - [x86] sky2: Disable MSI on ASUS P6T - tcp: be more careful in tcp_fragment() - tcp: fix tcp_set_congestion_control() use from bpf hook - tcp: Reset bytes_acked and bytes_received when disconnecting - vrf: make sure skb->data contains ip header to make routing - net/mlx5e: IPoIB, Add error path in mlx5_rdma_setup_rn - macsec: fix use-after-free of skb during RX - macsec: fix checksumming after decryption - netrom: fix a memory leak in nr_rx_frame() - netrom: hold sock when setting skb->destructor - net_sched: unset TCQ_F_CAN_BYPASS when adding filters - sctp: not bind the socket in sctp_connect - net: bridge: mcast: fix stale nsrcs pointer in igmp3/mld2 report handling - net: bridge: mcast: fix stale ipv6 hdr pointer when handling v6 query - net: bridge: don't cache ether dest pointer on input - net: bridge: stp: don't cache eth dest pointer before skb pull - dma-buf: balance refcount inbalance - dma-buf: Discard old fence_excl on retrying get_fences_rcu for realloc - perf/core: Fix exclusive events' grouping - perf/core: Fix race between close() and fork() - ext4: don't allow any modifications to an immutable file - ext4: enforce the immutable flag on open files - mm: add filemap_fdatawait_range_keep_errors() - jbd2: introduce jbd2_inode dirty range scoping - ext4: use jbd2_inode dirty range scoping - ext4: allow directory holes - [x86] KVM: nVMX: do not use dangling shadow VMCS after guest reset - [x86] KVM: nVMX: Clear pending KVM_REQ_GET_VMCS12_PAGES when leaving nested - mm: vmscan: scan anonymous pages on file refaults - net: sched: verify that q!=NULL before setting q->flags https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.63 - [x86] hvsock: fix epollout hang from race condition - [armhf,arm64] drm/panel: simple: Fix panel_simple_dsi_probe - [x86] staging: vt6656: use meaningful error code during buffer allocation - usb: core: hub: Disable hub-initiated U1/U2 - [armhf,arm64] pinctrl: rockchip: fix leaked of_node references - drm/amd/display: Fill prescale_params->scale for RGB565 - drm/amdgpu/sriov: Need to initialize the HDP_NONSURFACE_BAStE - drm/amd/display: Disable ABM before destroy ABM struct - drm/amdkfd: Fix a potential memory leak - drm/amdkfd: Fix sdma queue map issue - drm/edid: Fix a missing-check bug in drm_load_edid_firmware() - PCI: Return error if cannot probe VF - [armhf,arm64] gpu: host1x: Increase maximum DMA segment size - drm/crc-debugfs: User irqsafe spinlock in drm_crtc_add_crc_entry - drm/crc-debugfs: Also sprinkle irqrestore over early exits - memstick: Fix error cleanup path of memstick_init - [arm64] tty: serial: msm_serial: avoid system lockup condition - serial: 8250: Fix TX interrupt handling condition - drm/amd/display: Always allocate initial connector state state - drm/virtio: Add memory barriers for capset cache. - drm/amd/display: fix compilation error - [ppc64el] pseries/mobility: prevent cpu hotplug during DT update - [armhf,arm64] drm/rockchip: Properly adjust to a true clock in adjusted_mode - [armhf] serial: imx: fix locking in set_termios() - tty: serial_core: Set port active bit in uart_port_activate - usb: gadget: Zero ffs_io_data - mmc: sdhci: sdhci-pci-o2micro: Check if controller supports 8-bit width - [ppc64el] pci/of: Fix OF flags parsing for 64bit BARs - [arm64] drm/msm: Depopulate platform on probe failure - [arm64] PCI: xilinx-nwl: Fix Multi MSI data programming - iio: iio-utils: Fix possible incorrect mask calculation - [ppc64el] cacheflush: fix variable set but not used - [ppc64el] xmon: Fix disabling tracing while in xmon - [ppc64el] recordmcount: Fix spurious mcount entries on powerpc - mfd: core: Set fwnode for created devices - [arm64] mfd: hi655x-pmic: Fix missing return value check for devm_regmap_init_mmio_clk - mm/swap: fix release_pages() when releasing devmap pages - RDMA/i40iw: Set queue pair state when being queried - IB/mlx5: Fixed reporting counters on 2nd port for Dual port RoCE - [ppc64el] mm: Handle page table allocation failures - IB/ipoib: Add child to parent list only if device initialized - [arm64] assembler: Switch ESB-instruction with a vanilla nop if !ARM64_HAS_RAS - perf stat: Fix use-after-freed pointer detected by the smatch tool - perf top: Fix potential NULL pointer dereference detected by the smatch tool - perf session: Fix potential NULL pointer dereference found by the smatch tool - perf annotate: Fix dereferencing freed memory found by the smatch tool - perf hists browser: Fix potential NULL pointer dereference found by the smatch tool - RDMA/rxe: Fill in wc byte_len with IB_WC_RECV_RDMA_WITH_IMM - [armhf] PCI: dwc: pci-dra7xx: Fix compilation when !CONFIG_GPIOLIB - [ppc64el] boot: add {get, put}_unaligned_be32 to xz_config.h - block: init flush rq ref count to 1 - f2fs: avoid out-of-range memory access - mailbox: handle failed named mailbox channel request - dlm: check if workqueues are NULL before flushing/destroying - [ppc64el] eeh: Handle hugepages in ioremap space - block/bio-integrity: fix a memory leak bug - 9p: pass the correct prototype to read_cache_page - mm/gup.c: mark undo_dev_pagemap as __maybe_unused - mm/gup.c: remove some BUG_ONs from get_gate_page() - memcg, fsnotify: no oom-kill for remote memcg charging - mm/mmu_notifier: use hlist_add_head_rcu() - proc: use down_read_killable mmap_sem for /proc/pid/smaps_rollup - proc: use down_read_killable mmap_sem for /proc/pid/pagemap - proc: use down_read_killable mmap_sem for /proc/pid/clear_refs - proc: use down_read_killable mmap_sem for /proc/pid/map_files - cxgb4: reduce kernel stack usage in cudbg_collect_mem_region() - proc: use down_read_killable mmap_sem for /proc/pid/maps - locking/lockdep: Fix lock used or unused stats error - mm: use down_read_killable for locking mmap_sem in access_remote_vm - locking/lockdep: Hide unused 'class' variable - usb: wusbcore: fix unbalanced get/put cluster_id - [x86] usb: pci-quirks: Correct AMD PLL quirk detection - btrfs: inode: Don't compress if NODATASUM or NODATACOW set - [x86] sysfb_efi: Add quirks for some devices with swapped width and height - [x86] speculation/mds: Apply more accurate check on hypervisor platform - binder: prevent transactions to context manager from its own process. - fpga-manager: altera-ps-spi: Fix build error - [x86] mei: me: add mule creek canyon (EHL) device ids - [x86] hpet: Fix division by zero in hpet_time_div() - ALSA: ac97: Fix double free of ac97_codec_device - ALSA: line6: Fix wrong altsetting for LINE6_PODHD500_1 - ALSA: hda - Add a conexant codec entry to let mute led work - [ppc64el] xive: Fix loop exit-condition in xive_find_target_in_mask() - libnvdimm/bus: Stop holding nvdimm_bus_list_mutex over __nd_ioctl() - access: avoid the RCU grace period for the temporary subjective credentials https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.64 - [x86] hv_sock: Add support for delayed close - vsock: correct removal of socket from the list - NFS: Fix dentry revalidation on NFSv4 lookup - NFS: Refactor nfs_lookup_revalidate() - NFSv4: Fix lookup revalidate of regular files - [armhf,arm64] usb: dwc2: Disable all EP's on disconnect - [armhf,arm64] usb: dwc2: Fix disable all EP's on disconnect - [arm64] compat: Provide definition for COMPAT_SIGMINSTKSZ (Closes: #904385). - binder: fix possible UAF when freeing buffer - ISDN: hfcsusb: checking idx of ep configuration - media: au0828: fix null dereference in error path - ath10k: Change the warning message string - media: cpia2_usb: first wake up, then free in disconnect - media: pvrusb2: use a different format for warnings - NFS: Cleanup if nfs_match_client is interrupted - media: radio-raremono: change devm_k*alloc to k*alloc - [x86] iommu/vt-d: Don't queue_iova() if there is no flush queue - vhost: introduce vhost_exceeds_weight() - vhost_net: fix possible infinite loop (CVE-2019-3900) - vhost: vsock: add weight support - vhost: scsi: add weight support (CVE-2019-3900) - sched/fair: Don't free p->numa_faults with concurrent readers - sched/fair: Use RCU accessors consistently for ->numa_group - /proc//cmdline: remove all the special cases - /proc//cmdline: add back the setproctitle() special case - drivers/pps/pps.c: clear offset flags in PPS_SETPARAMS ioctl - Fix allyesconfig output. - ceph: hold i_ceph_lock when removing caps for freeing inode - block, scsi: Change the preempt-only flag into a counter - scsi: core: Avoid that a kernel warning appears during system resume - ip_tunnel: allow not to count pkts on tstats by setting skb's dev to NULL https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.65 - [armhf] dts: rockchip: Make rk3288-veyron-minnie run at hs200 - [armhf] dts: rockchip: Make rk3288-veyron-mickey's emmc work again - [armhf] dts: rockchip: Mark that the rk3288 timer might stop in suspend - ftrace: Enable trampoline when rec count returns back to one - [armhf,arm64] dmaengine: tegra-apb: Error out if DMA_PREP_INTERRUPT flag is unset - [arm64] dts: rockchip: fix isp iommu clocks and power domain - kernel/module.c: Only return -EEXIST for modules that have finished loading - [arm64] clk: tegra210: fix PLLU and PLLU_OUT1 - fs/adfs: super: fix use-after-free bug - btrfs: fix minimum number of chunk errors for DUP - btrfs: qgroup: Don't hold qgroup_ioctl_lock in btrfs_qgroup_inherit() - cifs: Fix a race condition with cifs_echo_request - ceph: fix improper use of smp_mb__before_atomic() - ceph: return -ERANGE if virtual xattr value didn't fit in buffer - ACPI: blacklist: fix clang warning for unused DMI table - [s390x] scsi: zfcp: fix GCC compiler warning emitted with -Wmaybe-uninitialized - perf version: Fix segfault due to missing OPT_END() - [x86] kvm: avoid constant-conversion warning - ACPI: fix false-positive -Wuninitialized warning - be2net: Signal that the device cannot transmit during reconfiguration - [x86] apic: Silence -Wtype-limits compiler warnings - mm/cma.c: fail if fixed declaration can't be honored - lib/test_overflow.c: avoid tainting the kernel and fix wrap size - lib/test_string.c: avoid masking memset16/32/64 failures - coda: add error handling for fget - coda: fix build using bare-metal toolchain - uapi linux/coda_psdev.h: move upc_req definition from uapi to kernel side headers - drivers/rapidio/devices/rio_mport_cdev.c: NUL terminate some strings - ipc/mqueue.c: only perform resource calculation if user valid - [x86] xen/pv: Fix a boot up hang revealed by int3 self test - [x86] kvm: Don't call kvm_spurious_fault() from .fixup - [x86] paravirt: Fix callee-saved function ELF sizes - [x86] boot: Remove multiple copy of static function sanitize_boot_params() - drm/nouveau: fix memory leak in nouveau_conn_reset() - kconfig: Clear "written" flag to avoid data loss - Btrfs: fix incremental send failure after deduplication - Btrfs: fix race leading to fs corruption after transaction abort - [armhf,arm64] mmc: dw_mmc: Fix occasional hang after tuning on eMMC - [arm64] mmc: meson-mx-sdio: Fix misuse of GENMASK macro - gpiolib: fix incorrect IRQ requesting of an active-low lineevent - IB/hfi1: Fix Spectre v1 vulnerability - mtd: rawnand: micron: handle on-die "ECC-off" devices correctly - selinux: fix memory leak in policydb_init() - ALSA: hda: Fix 1-minute detection delay when i915 module is not available (Closes: #931507) - mm: vmscan: check if mem cgroup is disabled or not before calling memcg slab shrinker - [s390x] dasd: fix endless loop after read unit address configuration - [arm*] drivers/perf: arm_pmu: Fix failure path in PM notifier - [arm64] compat: Allow single-byte watchpoints on all addresses - [arm64] cpufeature: Fix feature comparison for CTR_EL0.{CWG,ERG} - nbd: replace kill_bdev() with __invalidate_device() again - xen/swiotlb: fix condition for calling xen_destroy_contiguous_region() - IB/mlx5: Fix unreg_umr to ignore the mkey state - IB/mlx5: Use direct mkey destroy command upon UMR unreg failure - IB/mlx5: Move MRs to a kernel PD when freeing them to the MR cache - IB/mlx5: Fix clean_mr() to work in the expected order - IB/mlx5: Fix RSS Toeplitz setup to be aligned with the HW specification - IB/hfi1: Check for error on call to alloc_rsm_map_table - [x86] drm/i915/gvt: fix incorrect cache entry for guest page mapping - eeprom: at24: make spd world-readable again - objtool: Support GCC 9 cold subfunction naming scheme - gcc-9: properly declare the {pv,hv}clock_page storage - [x86] vdso: Prevent segfaults due to hoisted vclock reads - scsi: mpt3sas: Use 63-bit DMA addressing on SAS35 HBA https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.66 - scsi: fcoe: Embed fc_rport_priv in fcoe_rport structure - gcc-9: don't warn about uninitialized variable - driver core: Establish order of operations for device_add and device_del via bitflag - drivers/base: Introduce kill_device() - libnvdimm/bus: Prevent duplicate device_unregister() calls - libnvdimm/region: Register badblocks before namespaces - libnvdimm/bus: Prepare the nd_ioctl() path to be re-entrant - libnvdimm/bus: Fix wait_nvdimm_bus_probe_idle() ABBA deadlock - HID: wacom: fix bit shift for Cintiq Companion 2 - HID: Add quirk for HP X1200 PIXART OEM mouse - IB: directly cast the sockaddr union to aockaddr - atm: iphase: Fix Spectre v1 vulnerability - bnx2x: Disable multi-cos feature. - ife: error out when nla attributes are empty - ip6_gre: reload ipv6h in prepare_ip6gre_xmit_ipv6 - ip6_tunnel: fix possible use-after-free on xmit - ipip: validate header length in ipip_tunnel_xmit - [armhf,arm64] mvpp2: fix panic on module removal - [armhf,arm64] mvpp2: refactor MTU change code - net: bridge: delete local fdb on device init failure - net: bridge: mcast: don't delete permanent entries when fast leave is enabled - net: fix ifindex collision during namespace removal - net/mlx5e: always initialize frag->last_in_page - net/mlx5: Use reversed order when unregister devices - net: phylink: Fix flow control for fixed-link - net: sched: Fix a possible null-pointer dereference in dequeue_func() - net sched: update vlan action for batched events operations - net: sched: use temporary variable for actions indexes - net/smc: do not schedule tx_work in SMC_CLOSED state - tipc: compat: allow tipc commands without arguments - tun: mark small packets as owned by the tap sock - net/mlx5: Fix modify_cq_in alignment - net/mlx5e: Prevent encap flow counter update async to user query - r8169: don't use MSI before RTL8168d - compat_ioctl: pppoe: fix PPPOEIOCSFWD handling - cgroup: Call cgroup_release() before __exit_signal() - cgroup: Implement css_task_iter_skip() - cgroup: Include dying leaders with live threads in PROCS iterations - cgroup: css_task_iter_skip()'d iterators must be advanced before accessed - cgroup: Fix css_task_iter_advance_css_set() cset skip condition - [arm*] spi: bcm2835: Fix 3-wire mode if DMA is enabled https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.67 - [x86] crypto: ccp - Fix oops by properly managing allocated structures - [x86] crypto: ccp - Add support for valid authsize values less than 16 - [x86] crypto: ccp - Ignore tag length when decrypting GCM ciphertext - usb: usbfs: fix double-free of usb memory upon submiturb error - usb: iowarrior: fix deadlock on disconnect - sound: fix a memory leak bug - [arm64,mips*/octeon] mmc: cavium: Set the correct dma max segment size for mmc_host - [arm64,mips*/octeon] mmc: cavium: Add the missing dma unmap when the dma has finished. - loop: set PF_MEMALLOC_NOIO for the worker thread - Input: usbtouchscreen - initialize PM mutex before using it - [x86] Input: elantech - enable SMBus on new (2018+) systems - [x86] Input: synaptics - enable RMI mode for HP Spectre X360 - [x86] mm: Check for pfn instead of page in vmalloc_sync_one() - [x86] mm: Sync also unmappings in vmalloc_sync_all() - mm/vmalloc: Sync unmappings in __purge_vmap_area_lazy() - [s390x] perf annotate: Fix s390 gap between kernel end and module start - perf db-export: Fix thread__exec_comm() - [s390x] perf record: Fix module size on s390 - [x86] purgatory: Use CFLAGS_REMOVE rather than reset KBUILD_CFLAGS - gfs2: gfs2_walk_metadata fix - usb: yurex: Fix use-after-free in yurex_delete - [x86] usb: typec: tcpm: free log buf memory when remove debug file - [x86] usb: typec: tcpm: remove tcpm dir if no children - [x86] usb: typec: tcpm: Add NULL check before dereferencing config - [x86] usb: typec: tcpm: Ignore unsupported/unknown alternate mode requests - can: peak_usb: fix potential double kfree_skb() - netfilter: nfnetlink: avoid deadlock due to synchronous request_module - [s390x] vfio-ccw: Set pa_nr to 0 if memory allocation fails for pa_iova_pfn - netfilter: Fix rpfilter dropping vrf packets by mistake - netfilter: conntrack: always store window size un-scaled - netfilter: nft_hash: fix symhash with modulus one - drm/amd/display: Wait for backlight programming completion in set backlight level - drm/amd/display: use encoder's engine id to find matched free audio device - drm/amd/display: Fix dc_create failure handling and 666 color depths - drm/amd/display: Only enable audio if speaker allocation exists - drm/amd/display: Increase size of audios array - [x86] iscsi_ibft: make ISCSI_IBFT dependson ACPI instead of ISCSI_IBFT_FIND - nl80211: fix NL80211_HE_MAX_CAPABILITY_LEN - mac80211: don't warn about CW params when not using them - allocate_flower_entry: should check for null deref - hwmon: (nct6775) Fix register address and added missed tolerance for nct6106 - drm: silence variable 'conn' set but not used - [s390x] qdio: add sanity checks to the fast-requeue path - ALSA: compress: Fix regression on compressed capture streams - ALSA: compress: Prevent bypasses of set_params - ALSA: compress: Don't allow paritial drain operations on capture streams - ALSA: compress: Be more restrictive about when a drain is allowed - perf tools: Fix proper buffer size for feature processing - perf probe: Avoid calling freeing routine multiple times for same pointer - drbd: dynamically allocate shash descriptor - ACPI/IORT: Fix off-by-one check in iort_dev_find_its_id() - nvme: fix multipath crash when ANA is deactivated - scsi: megaraid_sas: fix panic on loading firmware crashdump - [ppc64el] scsi: ibmvfc: fix WARN_ON during event pool release - scsi: scsi_dh_alua: always use a 2 second delay before retrying RTPG - test_firmware: fix a memory leak bug - tty/ldsem, locking/rwsem: Add missing ACQUIRE to read_failed sleep loop - perf/core: Fix creating kernel counters for PMUs that override event->cpu - [s390x] dma: provide proper ARCH_ZONE_DMA_BITS value - HID: sony: Fix race condition between rumble and device remove. - [x86] purgatory: Do not use __builtin_memcpy and __builtin_memset - ALSA: usb-audio: fix a memory leak bug - can: peak_usb: pcan_usb_pro: Fix info-leaks to USB devices - can: peak_usb: pcan_usb_fd: Fix info-leaks to USB devices - hwmon: (nct7802) Fix wrong detection of in4 presence - [x86] drm/i915: Fix wrong escape clock divisor init for GLK - ALSA: firewire: fix a memory leak bug - ALSA: hiface: fix multiple memory leak bugs - ALSA: hda - Don't override global PCM hw info flag - [x86] ALSA: hda - Workaround for crackled sound on AMD controller (1022:1457) - mac80211: don't WARN on short WMM parameters from AP - dax: dax_layout_busy_page() should not unmap cow pages - SMB3: Fix deadlock in validate negotiate hits reconnect - smb3: send CAP_DFS capability during session setup - NFSv4: Fix an Oops in nfs4_do_setattr - [x86] KVM: Fix leak vCPU's VMCS value into other pCPU - mwifiex: fix 802.11n/WPA detection - iwlwifi: don't unmap as page memory that was mapped as single - iwlwifi: mvm: fix an out-of-bound access - iwlwifi: mvm: don't send GEO_TX_POWER_LIMIT on version < 41 - iwlwifi: mvm: fix version check for GEO_TX_POWER_LIMIT support . [ Steve McIntyre ] * [arm64] Improve support for the Huawei TaiShan server platform (Closes: #930554): - Enable the HNS/ROCE Infiniband driver - Backport fixes from 4.20 and 4.21 for HNS3 networking, hisi_sas SAS and HNS/ROCE Infiniband - Add module:drivers/scsi/hisi_sas/* to the ABI ignore list . [ Uwe Kleine-König ] * [armhf] Add support for all i.MX6 variants. * rtc-s35390a: backport fix to make hwclock able to read the time (Closes: #932845) . [ Ben Hutchings ] * [rt] Update to 4.19.59-rt24: - Fix build failure after "genirq: Prevent use-after-free and work list corruption": + Update "genirq: Do not invoke the affinity callback via a workqueue on RT" + kthread: add a global worker thread. + genirq: Do not invoke the affinity callback via a workqueue on RT + genirq: Handle missing work_struct in irq_set_affinity_notifier() - Update "irqwork: push most work into softirq context" to resolve conflict with "irq_work: Do not raise an IPI when queueing work on the local CPU" - Drop "random: avoid preempt_disable()ed section" - arm: imx6: cpuidle: Use raw_spinlock_t - rcu: Don't allow to change rcu_normal_after_boot on RT - sched/core: Drop a preempt_disable_rt() statement - timers: Redo the notification of canceling timers on -RT - Fix futex regression in 4.19.21: + Revert "futex: Ensure lock/unlock symetry versus pi_lock and hash bucket lock" + Revert "futex: Fix bug on when a requeued RT task times out" + Revert "rtmutex: Handle the various new futex race conditions" + Revert "futex: workaround migrate_disable/enable in different context" + futex: Make the futex_hash_bucket lock raw + futex: Delay deallocation of pi_state - mm/zswap: Do not disable preemption in zswap_frontswap_store() * Bump ABI to 6 linux-signed-amd64 (4.19.37+6) unstable; urgency=high . * Sign kernel from linux 4.19.37-6 . [ John Paul Adrian Glaubitz ] * [sh4]: Check for kprobe trap number before trying to handle a kprobe trap . [ Salvatore Bonaccorso ] * tcp: refine memory limit test in tcp_fragment() (Closes: #930904) * ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME (CVE-2019-13272) . [ Steve McIntyre ] * [arm64] Improve support for the Huawei TaiShan server platform (Closes: #930554): - Enable the HNS/ROCE Infiniband driver - Backport fixes from 4.20 and 4.21 for HNS3 networking, hisi_sas SAS and HNS/ROCE Infiniband - Add module:drivers/scsi/hisi_sas/* to the ABI ignore list . [ Cyril Brulebois ] * [arm] Backport DTB support for Rasperry Pi Compute Module 3. * [arm64] Backport DTB support for Rasperry Pi Compute Module 3. linux-signed-amd64 (4.19.37+5+deb10u2) buster-security; urgency=high . * Sign kernel from linux 4.19.37-5+deb10u2 . [ Romain Perier ] * [x86] x86/insn-eval: Fix use-after-free access to LDT entry (CVE-2019-13233) * [powerpc*] mm/64s/hash: Reallocate context ids on fork (CVE-2019-12817) * nfc: Ensure presence of required attributes in the deactivate_target handler (CVE-2019-12984) * binder: fix race between munmap() and direct reclaim (CVE-2019-1999) * scsi: libsas: fix a race condition when smp task timeout (CVE-2018-20836) * Input: gtco - bounds check collection indent level (CVE-2019-13631) * floppy: fix out-of-bounds read in copy_buffer (CVE-2019-14283) * inet: switch IP ID generator to siphash (CVE-2019-10638) * floppy: fix div-by-zero in setup_format_params (CVE-2019-14284) * Bluetooth: hci_uart: check for missing tty operations (CVE-2019-10207) * [powerpc/tm] Fix oops on sigreturn on systems without TM (CVE-2019-13648) . [ Salvatore Bonaccorso ] * [x86] cpufeatures: Carve out CQM features retrieval * [x86] cpufeatures: Combine word 11 and 12 into a new scattered features word * [x86] speculation: Prepare entry code for Spectre v1 swapgs mitigations * [x86] speculation: Enable Spectre v1 swapgs mitigations (CVE-2019-1125) * [amd64] entry: Use JMP instead of JMPQ * [x86] speculation/swapgs: Exclude ATOMs from speculation through SWAPGS * Documentation: Add section about CPU vulnerabilities for Spectre * Documentation: Add swapgs description to the Spectre v1 documentation . [ Ben Hutchings ] * [x86] cpufeatures: Avoid ABI change for swapgs mitigations: - Move swapgs feature bits to existing scattered words - Revert "x86/cpufeatures: Combine word 11 and 12 into a new scattered features word" * inet: Avoid ABI change for IP ID hash change linux-signed-amd64 (4.19.37+5+deb10u2~bpo9+1) stretch-backports; urgency=medium . * Sign kernel from linux 4.19.37-5+deb10u2~bpo9+1 . * Rebuild for stretch-backports; no further changes required linux-signed-amd64 (4.19.37+5+deb10u1) buster-security; urgency=high . * Sign kernel from linux 4.19.37-5+deb10u1 . * tcp: refine memory limit test in tcp_fragment() (Closes: #930904) * ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME (CVE-2019-13272) linux-signed-arm64 (4.19.67+2) buster; urgency=medium . * Sign kernel from linux 4.19.67-2 . [ Salvatore Bonaccorso ] * dm: disable DISCARD if the underlying storage no longer supports it (Closes: #934331) * xfs: fix missing ILOCK unlock when xfs_setattr_nonsize fails due to EDQUOT (CVE-2019-15538) . [ Ben Hutchings ] * KVM: Ignore ABI changes * [ppc64el] Disable PPC_TRANSACTIONAL_MEM (Closes: #866122) * [ppc64el] Avoid ABI change for disabling TM * netfilter: conntrack: Use consistent ct id hash calculation (fixes regression in 4.19.44) . [ Cyril Brulebois ] * [arm] Backport DTB support for Rasperry Pi Compute Module 3. * [arm64] Backport DTB support for Rasperry Pi Compute Module 3. linux-signed-arm64 (4.19.67+1) buster; urgency=medium . * Sign kernel from linux 4.19.67-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.38 - netfilter: nft_compat: use refcnt_t type for nft_xt reference count - netfilter: nft_compat: make lists per netns - netfilter: nf_tables: split set destruction in deactivate and destroy phase - netfilter: nft_compat: destroy function must not have side effects - netfilter: nf_tables: warn when expr implements only one of activate/deactivate - netfilter: nf_tables: unbind set in rule from commit path - netfilter: nft_compat: don't use refcount_inc on newly allocated entry - netfilter: nft_compat: use .release_ops and remove list of extension - netfilter: nf_tables: fix set double-free in abort path - netfilter: nf_tables: bogus EBUSY when deleting set after flush - netfilter: nf_tables: bogus EBUSY in helper removal from transaction - net/ibmvnic: Fix RTNL deadlock during device reset - net: mvpp2: fix validate for PPv2.1 - ext4: fix some error pointer dereferences - tipc: handle the err returned from cmd header function - loop: do not print warn message if partition scan is successful - [armhf,arm64] drm/rockchip: fix for mailbox read validation. - vsock/virtio: fix kernel panic from virtio_transport_reset_no_sock - ipvs: fix warning on unused variable - [ppc64el] vdso32: fix CLOCK_MONOTONIC on PPC64 - [armhf,arm64] net: dsa: mv88e6xxx: add call to mv88e6xxx_ports_cmode_init to probe for new DSA framework - cifs: fix memory leak in SMB2_read - cifs: do not attempt cifs operation on smb2+ rename error - tracing: Fix a memory leak by early error exit in trace_pid_write() - zram: pass down the bvec we need to read into in the work struct - trace: Fix preempt_enable_no_resched() abuse - IB/rdmavt: Fix frwr memory registration - RDMA/mlx5: Do not allow the user to write to the clock page - sched/numa: Fix a possible divide-by-zero - ceph: only use d_name directly when parent is locked - ceph: ensure d_name stability in ceph_dentry_hash() - ceph: fix ci->i_head_snapc leak - nfsd: Don't release the callback slot unless it was actually held - sunrpc: don't mark uninitialised items as VALID. - [x86] perf/intel: Update KBL Package C-state events to also include PC8/PC9/PC10 counters - Input: synaptics-rmi4 - write config register values to the right offset - [armhf] 8857/1: efi: enable CP15 DMB instructions before cleaning the cache - [ppc64el] mm/radix: Make Radix require HUGETLB_PAGE - [arm*] drm/vc4: Fix memory leak during gpu reset. - [x86] Revert "drm/i915/fbdev: Actually configure untiled displays" - USB: Add new USB LPM helpers - USB: Consolidate LPM checks to avoid enabling LPM twice - slip: make slhc_free() silently accept an error pointer - [x86] intel_th: gth: Fix an off-by-one in output unassigning - fs/proc/proc_sysctl.c: Fix a NULL pointer dereference - workqueue: Try to catch flush_work() without INIT_WORK(). - sched/deadline: Correctly handle active 0-lag timers - NFS: Forbid setting AF_INET6 to "struct sockaddr_in"->sin_family. - netfilter: ebtables: CONFIG_COMPAT: drop a bogus WARN_ON - fm10k: Fix a potential NULL pointer dereference - tipc: check bearer name with right length in tipc_nl_compat_bearer_enable - tipc: check link name with right length in tipc_nl_compat_link_set - net: netrom: Fix error cleanup path of nr_proto_init - net/rds: Check address length before reading address family - rxrpc: fix race condition in rxrpc_input_packet() - [x86] retpolines: Raise limit for generating indirect calls from switch-case - [x86] retpolines: Disable switch jump tables when retpolines are enabled - mm: Fix warning in insert_pfn() - [x86] fpu: Don't export __kernel_fpu_{begin,end}() - ipv4: add sanity checks in ipv4_link_failure() - ipv4: set the tcp_min_rtt_wlen range from 0 to one day - net/mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query - net: rds: exchange of 8K and 1M pool - net/rose: fix unbound loop in rose_loopback_timer() - [armhf,arm64] net: stmmac: move stmmac_check_ether_addr() to driver probe - team: fix possible recursive locking when add slaves - [arm64] net: hns: Fix WARNING when hns modules installed - net/mlx5e: Fix the max MTU check in case of XDP - net/mlx5e: Fix use-after-free after xdp_return_frame https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.39 - selinux: use kernel linux/socket.h for genheaders and mdp - Revert "ACPICA: Clear status of GPEs before enabling them" - [arm*] dts: bcm283x: Fix hdmi hpd gpio pull - [s390x] limit brk randomization to 32MB - net: ieee802154: fix a potential NULL pointer dereference - ieee802154: hwsim: propagate genlmsg_reply return code - [armhf,arm64] net: stmmac: don't set own bit too early for jumbo frames - qlcnic: Avoid potential NULL pointer dereference - xsk: fix umem memory leak on cleanup - netfilter: nft_set_rbtree: check for inactive element after flag mismatch - netfilter: bridge: set skb transport_header before entering NF_INET_PRE_ROUTING - netfilter: fix NETFILTER_XT_TARGET_TEE dependencies - netfilter: ip6t_srh: fix NULL pointer dereferences - [s390x] qeth: fix race when initializing the IP address table - [armhf] imx51: fix a leaked reference by adding missing of_node_put - [arm64] KVM: Reset the PMU in preemptible context - [armhf,arm64] KVM: vgic-its: Take the srcu lock when writing to guest memory - [armhf,arm64] KVM: vgic-its: Take the srcu lock when parsing the memslots - [x86] usb: dwc3: pci: add support for Comet Lake PCH ID - usb: gadget: net2280: Fix overrun of OUT messages - usb: gadget: net2280: Fix net2280_dequeue() - [x86] i2c: i801: Add support for Intel Comet Lake - staging: rtl8188eu: Fix potential NULL pointer dereference of kcalloc - staging: rtlwifi: rtl8822b: fix to avoid potential NULL pointer dereference - staging: rtl8712: uninitialized memory in read_bbreg_hdl() - staging: rtlwifi: Fix potential NULL pointer dereference of kzalloc - [arm64] net: macb: Add null check for PCLK and HCLK - net/sched: don't dereference a->goto_chain to read the chain index - [armhf] dts: imx6qdl: Fix typo in imx6qdl-icore-rqs.dtsi - [armhf,arm64] drm/tegra: hub: Fix dereference before check - NFS: Fix a typo in nfs_init_timeout_values() - drm: Fix drm_release() and device unplug - [arm64] drm/meson: Fix invalid pointer in meson_drv_unbind() - [arm64] drm/meson: Uninstall IRQ handler - scsi: mpt3sas: Fix kernel panic during expander reset - scsi: aacraid: Insure we don't access PCIe space during AER/EEH - scsi: qla4xxx: fix a potential NULL pointer dereference - leds: trigger: netdev: fix refcnt leak on interface rename - [x86] realmode: Don't leak the trampoline kernel address - usb: u132-hcd: fix resource leak - ceph: fix use-after-free on symlink traversal - [s390x] scsi: zfcp: reduce flood of fcrscn1 trace records on multi- element RSCN - [x86] mm: Don't exceed the valid physical address space - libata: fix using DMA buffers on stack - gpio: of: Fix of_gpiochip_add() error path - nvme-multipath: relax ANA state check - perf machine: Update kernel map address and re-order properly - [x86] iommu/amd: Reserve exclusion range in iova-domain - ptrace: take into account saved_sigmask in PTRACE{GET,SET}SIGMASK - leds: trigger: netdev: use memcpy in device_name_store https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.40 - ipv4: ip_do_fragment: Preserve skb_iif during fragmentation - ipv6: A few fixes on dereferencing rt->from - ipv6: fix races in ip6_dst_destroy() - ipv6/flowlabel: wait rcu grace period before put_pid() - ipv6: invert flowlabel sharing check in process and user mode - l2ip: fix possible use-after-free - l2tp: use rcu_dereference_sk_user_data() in l2tp_udp_encap_recv() - [armhf] net: dsa: bcm_sf2: fix buffer overflow doing set_rxnfc - net: phy: marvell: Fix buffer overrun with stats counters - rxrpc: Fix net namespace cleanup - sctp: avoid running the sctp state machine recursively - packet: validate msg_namelen in send directly - bnxt_en: Improve multicast address setup logic. - bnxt_en: Free short FW command HWRM memory in error path in bnxt_init_one() - bnxt_en: Fix uninitialized variable usage in bnxt_rx_pkt(). - [x86] KVM: Whitelist port 0x7e for pre-incrementing %rip - [x86] KVM: nVMX: Fix size checks in vmx_set_nested_state - ALSA: line6: use dynamic buffers - ath10k: Drop WARN_ON()s that always trigger during system resume https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.41 - iwlwifi: fix driver operation for 5350 - mwifiex: Make resume actually do something useful again on SDIO cards - mac80211: don't attempt to rename ERR_PTR() debugfs dirs - [armhf] i2c: imx: correct the method of getting private data in notifier_call - i2c: Remove unnecessary call to irq_find_mapping - i2c: Clear client->irq in i2c_device_remove - i2c: Allow recovery of the initial IRQ by an I2C client device. - i2c: Prevent runtime suspend of adapter when Host Notify is required - [x86] ALSA: hda/realtek - Add new Dell platform for headset mode - [x86] ALSA: hda/realtek - Fixed Dell AIO speaker noise - [x86] ALSA: hda/realtek - Apply the fixup for ASUS Q325UAR - USB: yurex: Fix protection fault after device removal - USB: w1 ds2490: Fix bug caused by improper use of altsetting array - USB: dummy-hcd: Fix failure to give back unlinked URBs - usb: usbip: fix isoc packet num validation in get_pipe - USB: core: Fix unterminated string returned by usb_string() - USB: core: Fix bug caused by duplicate interface PM usage counter - nvme-loop: init nvmet_ctrl fatal_err_work when allocate - [arm64] dts: rockchip: fix rk3328-roc-cc gmac2io tx/rx_delay - HID: logitech: check the return value of create_singlethread_workqueue - HID: debug: fix race condition with between rdesc_show() and device removal - rtc: cros-ec: Fail suspend/resume if wake IRQ can't be configured - batman-adv: Reduce claim hash refcnt only for removed entry - batman-adv: Reduce tt_local hash refcnt only for removed entry - batman-adv: Reduce tt_global hash refcnt only for removed entry - batman-adv: fix warning in function batadv_v_elp_get_throughput - [armhf] dts: rockchip: Fix gpu opp node names for rk3288 - [arm64] reset: meson-audio-arb: Fix missing .owner setting of reset_controller_dev - igb: Fix WARN_ONCE on runtime suspend - HID: quirks: Fix keyboard + touchpad on Lenovo Miix 630 - net/mlx5: E-Switch, Fix esw manager vport indication for more vport commands - bonding: show full hw address in sysfs for slave entries - [armhf,arm64] net: stmmac: use correct DMA buffer size in the RX descriptor - [armhf,arm64] net: stmmac: ratelimit RX error logs - [armhf,arm64] net: stmmac: don't stop NAPI processing when dropping a packet - [armhf,arm64] net: stmmac: don't overwrite discard_frame status - [armhf,arm64] net: stmmac: fix dropping of multi-descriptor RX frames - [armhf,arm64] net: stmmac: don't log oversized frames - jffs2: fix use-after-free on symlink traversal - debugfs: fix use-after-free on symlink traversal - [armhf] mfd: twl-core: Disable IRQ while suspended - block: use blk_free_flush_queue() to free hctx->fq in blk_mq_init_hctx - HID: input: add mapping for Assistant key - vfio/pci: use correct format characters - scsi: core: add new RDAC LENOVO/DE_Series device - [x86] scsi: storvsc: Fix calculation of sub-channel count - [arm64] fix wrong check of on_sdei_stack in nmi context - [arm64] net: hns: fix KASAN: use-after-free in hns_nic_net_xmit_hw() - [arm64] net: hns: Use NAPI_POLL_WEIGHT for hns driver - [arm64] net: hns: Fix probabilistic memory overwrite when HNS driver initialized - [arm64] net: hns: fix ICMP6 neighbor solicitation messages discard problem - [arm64] net: hns: Fix WARNING when remove HNS driver with SMMU enabled - libcxgb: fix incorrect ppmax calculation - [x86] KVM: SVM: prevent DBG_DECRYPT and DBG_ENCRYPT overflow - hugetlbfs: fix memory leak for resv_map - fs: stream_open - opener for stream-like files so that read and write can run simultaneously without deadlock - [armel] orion: don't use using 64-bit DMA masks - block: pass no-op callback to INIT_WORK(). - [x86] perf/amd: Update generic hardware cache events for Family 17h - Bluetooth: btusb: request wake pin with NOAUTOEN - Bluetooth: mediatek: fix up an error path to restore bdev->tx_state - [arm64] clk: qcom: Add missing freq for usb30_master_clk on 8998 - scsi: RDMA/srpt: Fix a credit leak for aborted commands - [x86] ASoC: Intel: bytcr_rt5651: Revert "Fix DMIC map headsetmic mapping" - [x86] platform: intel_pmc_core: Fix PCH IP name - [x86] platform: intel_pmc_core: Handle CFL regmap properly - IB/core: Unregister notifier before freeing MAD security - IB/core: Fix potential memory leak while creating MAD agents - IB/core: Destroy QP if XRC QP fails - selinux: avoid silent denials in permissive mode under RCU walk - selinux: never allow relabeling on context mounts - mac80211: Honor SW_CRYPTO_CONTROL for unicast keys in AP VLAN mode - [ppc64el] mm/hash: Handle mmap_min_addr correctly in get_unmapped_area topdown search - [x86] mce: Improve error message when kernel cannot recover, p2 - [x86] clk: Add system specific quirk to mark clocks as critical - [x86] mm/KASLR: Fix the size of the direct mapping section - [x86] mm: Fix a crash with kmemleak_scan() - [x86] mm/tlb: Revert "x86/mm: Align TLB invalidation info" - media: v4l2: i2c: ov7670: Fix PLL bypass register values https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.42 - [armhf,arm64] net: stmmac: Use bfsize1 in ndesc_init_rx_desc - [x86] Drivers: hv: vmbus: Remove the undesired put_cpu_ptr() in hv_synic_cleanup() - ASoC: hdmi-codec: fix S/PDIF DAI - ASoC:soc-pcm:fix a codec fixup issue in TDM case - [x86] ASoC:intel:skl:fix a simultaneous playback & capture issue on hda platform - [arm64] clk: meson-gxbb: round the vdec dividers to closest - ASoC: dapm: Fix NULL pointer dereference in snd_soc_dapm_free_kcontrol - [armhf] drm/omap: hdmi4_cec: Fix CEC clock handling for PM - IB/hfi1: Eliminate opcode tests on mr deref - IB/hfi1: Fix the allocation of RSM table - [x86] perf/intel: Fix handling of wakeup_events for multi-entry PEBS - [x86] perf/intel: Initialize TFA MSR - linux/kernel.h: Use parentheses around argument in u64_to_user_ptr() - drm/amd/display: fix cursor black issue - objtool: Add rewind_stack_do_exit() to the noreturn list - slab: fix a crash by reading /proc/slab_allocators - [armhf,arm64] drm/sun4i: tcon top: Fix NULL/invalid pointer dereference in sun8i_tcon_top_un/bind - virtio_pci: fix a NULL pointer reference in vp_del_vqs - [x86] RDMA/vmw_pvrdma: Fix memory leak on pvrdma_pci_remove - [arm64] RDMA/hns: Fix bug that caused srq creation to fail - scsi: csiostor: fix missing data copy in csio_scsi_err_handler() - [x86] ASoC: Intel: kbl: fix wrong number of channels - virtio-blk: limit number of hw queues by nr_cpu_ids - nvme-fc: correct csn initialization and increments on error - [x86] platform: pmc_atom: Drop __initconst on dmi table - perf/core: Fix perf_event_disable_inatomic() race - [x86] iommu/amd: Set exclusion range correctly - genirq: Prevent use-after-free and work list corruption - usb: dwc3: Fix default lpm_nyet_threshold value - USB: serial: f81232: fix interrupt worker not stop - USB: cdc-acm: fix unthrottle races - usb-storage: Set virt_boundary_mask to avoid SG overflows - [x86] intel_th: pci: Add Comet Lake support - [arm64] cpufreq: armada-37xx: fix frequency calculation for opp - scsi: lpfc: change snprintf to scnprintf for possible overflow - scsi: qla2xxx: Fix incorrect region-size setting in optrom SYSFS routines - scsi: qla2xxx: Fix device staying in blocked state - UAS: fix alignment of scatter/gather segments - [x86] ASoC: Intel: avoid Oops if DMA setup fails - locking/futex: Allow low-level atomic operations to return -EAGAIN - [arm64] futex: Bound number of LDXR/STXR loops in FUTEX_WAKE_OP https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.43 https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.44 - bfq: update internal depth state when queue depth changes - [x86] platform: sony-laptop: Fix unintentional fall-through - [x86] platform: thinkpad_acpi: Disable Bluetooth for some machines - [x86] platform: dell-laptop: fix rfkill functionality - hwmon: (pwm-fan) Disable PWM if fetching cooling data fails - kernfs: fix barrier usage in __kernfs_new_node() - [x86] virt: vbox: Sanity-check parameter types for hgcm-calls coming from userspace - USB: serial: fix unthrottle races - acpi/nfit: Always dump _DSM output payload - libnvdimm/namespace: Fix a potential NULL pointer dereference - HID: input: add mapping for Expose/Overview key - HID: input: add mapping for keyboard Brightness Up/Down/Toggle keys - HID: input: add mapping for "Toggle Display" key - libnvdimm/btt: Fix a kmemdup failure check - [s390x] dasd: Fix capacity calculation for large volumes - mac80211: fix unaligned access in mesh table hash function - mac80211: Increase MAX_MSG_LEN - cfg80211: Handle WMM rules in regulatory domain intersection - mac80211: fix memory accounting with A-MSDU aggregation - nl80211: Add NL80211_FLAG_CLEAR_SKB flag for other NL commands - libnvdimm/pmem: fix a possible OOB access when read and write pmem - [s390x] 3270: fix lockdep false positive on view->lock - drm/amd/display: extending AUX SW Timeout - mISDN: Check address length before reading address family - vxge: fix return of a free'd memblock on a failed dma mapping - qede: fix write to free'd pointer error and double free of ptp - afs: Unlock pages for __pagevec_release() - drm/amd/display: If one stream full updates, full update all planes - [s390x] pkey: add one more argument space for debug feature entry - [x86] reboot, efi: Use EFI reboot for Acer TravelMate X514-51T - [x86] KVM: fix spectrev1 gadgets - [x86] KVM: avoid misreporting level-triggered irqs as edge-triggered in tracing - tools lib traceevent: Fix missing equality check for strcmp - ipmi: ipmi_si_hardcode.c: init si_type array to fix a crash - scsi: aic7xxx: fix EISA support - mm: fix inactive list balancing between NUMA nodes and cgroups - init: initialize jump labels before command line option parsing - ipvs: do not schedule icmp errors from tunnels - netfilter: ctnetlink: don't use conntrack/expect object addresses as id - netfilter: nf_tables: prevent shift wrap in nft_chain_parse_hook() - [s390x] ctcm: fix ctcm_new_device error return code - [armhf,arm64] drm/sun4i: Set device driver data at bind time for use in unbind - [armhf,arm64] drm/sun4i: Fix component unbinding and component master deletion - netfilter: fix nf_l4proto_log_invalid to log invalid packets - [armhf] gpu: ipu-v3: dp: fix CSC handling - [armhf] drm/imx: don't skip DP channel disable for background plane - [armhf,arm64] drm/sun4i: Unbind components before releasing DRM and memory - Input: synaptics-rmi4 - fix possible double free - [arm64] RDMA/hns: Bugfix for mapping user db - mm/memory_hotplug.c: drop memory device reference after find_memory_block() - [ppc64el] smp: Fix NMI IPI timeout - [ppc64el] smp: Fix NMI IPI xmon timeout - [armhf,arm64] net: dsa: mv88e6xxx: fix few issues in mv88e6390x_port_set_cmode - mm/memory.c: fix modifying of page protection by insert_pfn() - usb: typec: Fix unchecked return value - netfilter: nf_tables: use-after-free in dynamic operations - netfilter: nf_tables: add missing ->release_ops() in error path of newrule() (Closes: #934168) - net: fec: manage ahb clock in runtime pm - net: strparser: partially revert "strparser: Call skb_unclone conditionally" - NFC: nci: Add some bounds checking in nci_hci_cmd_received() - nfc: nci: Potential off by one in ->pipes[] array - [x86] kprobes: Avoid kretprobe recursion bug - mwl8k: Fix rate_idx underflow - rtlwifi: rtl8723ae: Fix missing break in switch statement - bonding: fix arp_validate toggling in active-backup mode - bridge: Fix error path for kobject_init_and_add() - ipv4: Fix raw socket lookup for local traffic - net: dsa: Fix error cleanup path in dsa_init_module - [armhf] net: ethernet: stmmac: dwmac-sun8i: enable support of unicast filtering - [arm64] net: macb: Change interrupt and napi enable order in open - packet: Fix error path in packet_init - selinux: do not report error on connect(AF_UNSPEC) - vlan: disable SIOCSHWTSTAMP in container - vrf: sit mtu should not be updated when vrf netdev is the link - tuntap: fix dividing by zero in ebpf queue selection - tuntap: synchronize through tfiles array instead of tun->numqueues - isdn: bas_gigaset: use usb_fill_int_urb() properly - tipc: fix hanging clients using poll with EPOLLOUT flag - [ppc64el] book3s/64: check for NULL pointer in pgd_alloc() - [ppc64el] powernv/idle: Restore IAMR after idle - [x86] PCI: hv: Fix a memory leak in hv_eject_device_work() - [x86] PCI: hv: Add hv_pci_remove_slots() when we unload the driver - [x86] PCI: hv: Add pci_destroy_slot() in pci_devices_present_work(), if necessary https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.45 - locking/rwsem: Prevent decrement of reader count before increment - [x86] speculation/mds: Revert CPU buffer clear on double fault exit - [x86] speculation/mds: Improve CPU buffer clear documentation - objtool: Fix function fallthrough detection - [arm64] dts: rockchip: Disable DCMDs on RK3399's eMMC controller. - [armhf] dts: exynos: Fix interrupt for shared EINTs on Exynos5260 - [armhf] dts: exynos: Fix audio (microphone) routing on Odroid XU3 - [arm64] mmc: sdhci-of-arasan: Add DTS property to disable DCMDs. - [armhf] exynos: Fix a leaked reference by adding missing of_node_put - [armhf] power: supply: axp288_charger: Fix unchecked return value - [armhf,arm64] power: supply: axp288_fuel_gauge: Add ACEPC T8 and T11 mini PCs to the blacklist - [arm64] mmap: Ensure file offset is treated as unsigned - [arm64] arch_timer: Ensure counter register reads occur with seqlock held - [arm64] compat: Reduce address limit - [arm64] Clear OSDLR_EL1 on CPU boot - [arm64] Save and restore OSDLR_EL1 across suspend/resume - [x96] sched: Save [ER]FLAGS on context switch - crypto: salsa20 - don't access already-freed walk.iv - crypto: chacha20poly1305 - set cra_name correctly - [x86] crypto: ccp - Do not free psp_master when PLATFORM_INIT fails - [ppc64el] crypto: vmx - fix copy-paste error in CTR mode - crypto: skcipher - don't WARN on unprocessed data after slow walk step - crypto: crct10dif-generic - fix use via crypto_shash_digest() - [x86] crypto: crct10dif-pcl - fix use via crypto_shash_digest() - [arm64] crypto: gcm-aes-ce - fix no-NEON fallback code - crypto: gcm - fix incompatibility between "gcm" and "gcm_base" - [armhf,arm64] crypto: aes-neonbs - don't access already-freed walk.iv - mmc: core: Fix tag set memory leak - ALSA: line6: toneport: Fix broken usage of timer for delayed execution - ALSA: usb-audio: Fix a memory leak bug - ALSA: hda/hdmi - Read the pin sense from register when repolling - ALSA: hda/hdmi - Consider eld_valid when reporting jack event - ALSA: hda/realtek - EAPD turn on later - ALSA: hdea/realtek - Headset fixup for System76 Gazelle (gaze14) - [armhf,arm64] ASoC: max98090: Fix restore of DAPM Muxes - ASoC: codec: hdac_hdmi add device_link to card device - [arm64] bpf: remove prefetch insn in xadd mapping - mm/huge_memory: fix vmf_insert_pfn_{pmd, pud}() crash, handle unaligned addresses - mm/hugetlb.c: don't put_page in lock of hugetlb_lock - hugetlb: use same fault hash key for shared and private mappings - ocfs2: fix ocfs2 read inode data panic in ocfs2_iget - userfaultfd: use RCU to free the task struct when fork fails - ACPI: PM: Set enable_for_wake for wakeup GPEs during suspend-to-idle - [arm64] mfd: max77620: Fix swapped FPS_PERIOD_MAX_US values - mtd: spi-nor: intel-spi: Avoid crossing 4K address boundary on read/write - tty: vt.c: Fix TIOCL_BLANKSCREEN console blanking if blankinterval == 0 - tty/vt: fix write/write race in ioctl(KDSKBSENT) handler - jbd2: check superblock mapped prior to committing - ext4: make sanity check in mballoc more strict - ext4: ignore e_value_offs for xattrs with value-in-ea-inode - ext4: avoid drop reference to iloc.bh twice - ext4: fix use-after-free race with debug_want_extra_isize - ext4: actually request zeroing of inode table after grow - ext4: fix ext4_show_options for file systems w/o journal - btrfs: Check the first key and level for cached extent buffer - btrfs: Correctly free extent buffer in case btree_read_extent_buffer_pages fails - Btrfs: send, flush dellaloc in order to avoid data loss - Btrfs: do not start a transaction during fiemap - Btrfs: do not start a transaction at iterate_extent_inodes() - bcache: fix a race between cache register and cacheset unregister - bcache: never set KEY_PTRS of journal key to 0 in journal_reclaim() - ipmi:ssif: compare block number correctly for multi-part return messages - crypto: ccm - fix incompatibility between "ccm" and "ccm_base" - fs/writeback.c: use rcu_barrier() to wait for inflight wb switches going into workqueue when umount - ext4: fix data corruption caused by overlapping unaligned and aligned IO - ext4: fix use-after-free in dx_release() - ext4: avoid panic during forced reboot due to aborted journal - [x86] ALSA: hda/realtek - Corrected fixup for System76 Gazelle (gaze14) - ALSA: hda/realtek - Fixup headphone noise via runtime suspend - [x86] ALSA: hda/realtek - Fix for Lenovo B50-70 inverted internal microphone bug - jbd2: fix potential double free - [x86] KVM: Skip EFER vs. guest CPUID checks for host-initiated writes - [x86] KVM: lapic: Busy wait for timer to expire when using hv_timer - xen/pvh: set xen_domain_type to HVM in xen_pvh_init - libnvdimm/namespace: Fix label tracking error - iov_iter: optimize page_copy_sane() - pstore: Centralize init/exit routines - pstore: Allocate compression during late_initcall() - pstore: Refactor compression initialization - ext4: don't update s_rev_level if not required https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.46 - ipv6: fix src addr routing with the exception table - ipv6: prevent possible fib6 leaks - net: Always descend into dsa/ - net: avoid weird emergency message - net/mlx4_core: Change the error print to info print - net: test nouarg before dereferencing zerocopy pointers - net: usb: qmi_wwan: add Telit 0x1260 and 0x1261 compositions - nfp: flower: add rcu locks when accessing netdev for tunnels - ppp: deflate: Fix possible crash in deflate_init - rtnetlink: always put IFLA_LINK for links with a link-netnsid - tipc: switch order of device registration to fix a crash - vsock/virtio: free packets during the socket release - vsock/virtio: Initialize core virtio vsock before registering the driver - net/mlx5: Imply MLXFW in mlx5_core - net/mlx5e: Fix ethtool rxfh commands when CONFIG_MLX5_EN_RXNFC is disabled - stm class: Fix channel free in stm output free path - stm class: Fix channel bitmap on 32-bit systems - brd: re-enable __GFP_HIGHMEM in brd_insert_page() - proc: prevent changes to overridden credentials - Revert "MD: fix lock contention for flush bios" - md: batch flush requests. - md: add mddev->pers to avoid potential NULL pointer dereference - dcache: sort the freeing-without-RCU-delay mess for good. - [x86] intel_th: msu: Fix single mode with IOMMU - p54: drop device reference count if fails to enable device - of: fix clang -Wunsequenced for be32_to_cpu() - cifs: fix strcat buffer overflow and reduce raciness in smb21_set_oplock_level() - [armhf] phy: ti-pipe3: fix missing bit-wise or operator when assigning val - NFS4: Fix v4.0 client state corruption when mount - PNFS fallback to MDS if no deviceid found - [arm64] clk: hi3660: Mark clk_gate_ufs_subsys as critical - [armhf,arm64] clk: tegra: Fix PLLM programming on Tegra124+ when PMC overrides divider - [arm64] clk: rockchip: fix wrong clock definitions for rk3328 - udlfb: delete the unused parameter for dlfb_handle_damage - udlfb: fix sleeping inside spinlock - udlfb: introduce a rendering mutex - fuse: fix writepages on 32bit - fuse: honor RLIMIT_FSIZE in fuse_file_fallocate - ovl: fix missing upper fs freeze protection on copy up for ioctl - [armhf] iommu/tegra-smmu: Fix invalid ASID bits on Tegra30/114 - ceph: flush dirty inodes before proceeding with remount - [amd64] Add gap to int3 to allow for call emulation - [amd64] Allow breakpoints to emulate call instructions - [amd64] ftrace: Emulate call function while updating in breakpoint handler - tracing: Fix partial reading of trace event's id file - [armhf,arm64] memory: tegra: Fix integer overflow on tick value calculation - [x86] perf intel-pt: Fix instructions sampling rate - [x86] perf intel-pt: Fix improved sample timestamp - [x86] perf intel-pt: Fix sample timestamp wrt non-taken branches - fbdev/efifb: Ignore framebuffer memmap entries that lack any memory types - PCI: Mark AMD Stoney Radeon R7 GPU ATS as broken - PCI: Mark Atheros AR9462 to avoid bus reset - PCI: Init PCIe feature bits for managed host bridge alloc - PCI/AER: Change pci_aer_init() stub to return void - PCI: Factor out pcie_retrain_link() function - PCI: Work around Pericom PCIe-to-PCI bridge Retrain Link erratum - dm cache metadata: Fix loading discard bitset - dm zoned: Fix zone report handling - dm delay: fix a crash when invalid device is specified - dm integrity: correctly calculate the size of metadata area - dm mpath: always free attached_handler_name in parse_path() - fuse: Add FOPEN_STREAM to use stream_open() - xfrm: policy: Fix out-of-bound array accesses in __xfrm_policy_unlink - xfrm6_tunnel: Fix potential panic when unloading xfrm6_tunnel module - vti4: ipip tunnel deregistration fixes. - xfrm: clean up xfrm protocol checks - esp4: add length check for UDP encapsulation - xfrm: Honor original L3 slave device in xfrmi policy lookup - xfrm4: Fix uninitialized memory read in _decode_session4 - [armhf,arm64] clk: sunxi-ng: nkmp: Avoid GENMASK(-1, 0) - securityfs: fix use-after-free on symlink traversal - apparmorfs: fix use-after-free on symlink traversal - PCI: Fix issue with "pci=disable_acs_redir" parameter being ignored - [x86] kvm: hyper-v: deal with buggy TLB flush requests from WS2012 - mac80211: Fix kernel panic due to use of txq after free - net: ieee802154: fix missing checks for regmap_update_bits - [armhf,arm64] KVM: Ensure vcpu target is unset on reset failure - bpf: Fix preempt_enable_no_resched() abuse - qmi_wwan: new Wistron, ZTE and D-Link devices - iwlwifi: mvm: check for length correctness in iwl_mvm_create_skb() - sched/cpufreq: Fix kobject memleak - [x86] mm/mem_encrypt: Disable all instrumentation for early SME setup - ufs: fix braino in ufs_get_inode_gid() for solaris UFS flavour - perf bench numa: Add define for RUSAGE_THREAD if not present - [x86] perf/intel: Fix race in intel_pmu_disable_event() - md/raid: raid5 preserve the writeback action after the parity check - driver core: Postpone DMA tear-down until after devres release for probe failure - bpf: relax inode permission check for retrieving bpf program - bpf: add map_lookup_elem_sys_only for lookups from syscall side - bpf, lru: avoid messing with eviction heuristics upon syscall lookup https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.47 - [x86] Hide the int3_emulate_call/jmp functions from UML - ext4: do not delete unlinked inode from orphan list on failed truncate - ext4: wait for outstanding dio during truncate in nojournal mode - f2fs: Fix use of number of devices - [x86] KVM: fix return value for reserved EFER - bio: fix improper use of smp_mb__before_atomic() - sbitmap: fix improper use of smp_mb__before_atomic() - Revert "scsi: sd: Keep disk read-only when re-reading partition" - [ppc64el] crypto: vmx - CTR: always increment IV as quadword - [arm*] mmc: sdhci-iproc: cygnus: Set NO_HISPD bit to fix HS50 data hold time problem - [arm*] mmc: sdhci-iproc: Set NO_HISPD bit to fix HS50 data hold time problem - [x86] kvm: svm/avic: fix off-by-one in checking host APIC ID - libnvdimm/pmem: Bypass CONFIG_HARDENED_USERCOPY overhead - [arm64] kernel: kaslr: reduce module randomization range to 2 GB - [arm64] iommu: handle non-remapped addresses in ->mmap and ->get_sgtable - gfs2: Fix sign extension bug in gfs2_update_stats - btrfs: don't double unlock on error in btrfs_punch_hole - Btrfs: do not abort transaction at btrfs_update_root() after failure to COW path - Btrfs: avoid fallback to transaction commit during fsync of files with holes - Btrfs: fix race between ranged fsync and writeback of adjacent ranges - btrfs: sysfs: Fix error path kobject memory leak - btrfs: sysfs: don't leak memory when failing add fsid - udlfb: fix some inconsistent NULL checking - fbdev: fix divide error in fb_var_to_videomode - NFSv4.2 fix unnecessary retry in nfs4_copy_file_range - NFSv4.1 fix incorrect return value in copy_file_range - bpf: add bpf_jit_limit knob to restrict unpriv allocations - [arm64] errata: Add workaround for Cortex-A76 erratum #1463225 - btrfs: honor path->skip_locking in backref code - ovl: relax WARN_ON() for overlapping layers use case - fbdev: fix WARNING in __alloc_pages_nodemask bug - media: cpia2: Fix use-after-free in cpia2_exit - media: serial_ir: Fix use-after-free in serial_ir_init_module - media: vb2: add waiting_in_dqbuf flag - media: vivid: use vfree() instead of kfree() for dev->bitmap_cap - ssb: Fix possible NULL pointer dereference in ssb_host_pcmcia_exit - bpf: devmap: fix use-after-free Read in __dev_map_entry_free - batman-adv: mcast: fix multicast tt/tvlv worker locking - at76c50x-usb: Don't register led_trigger if usb_register_driver failed - acct_on(): don't mess with freeze protection - gfs2: Fix lru_count going negative - cxgb4: Fix error path in cxgb4_init_module - NFS: make nfs_match_client killable - IB/hfi1: Fix WQ_MEM_RECLAIM warning - gfs2: Fix occasional glock use-after-free - mmc: core: Verify SD bus width - [arm64] dmaengine: tegra210-dma: free dma controller in remove() - net: ena: gcc 8: fix compilation warning - [x86] hv_netvsc: fix race that may miss tx queue wakeup - Bluetooth: Ignore CC events not matching the last HCI command - [x86] ASoC: Intel: kbl_da7219_max98357a: Map BTN_0 to KEY_PLAYPAUSE - [armhf,arm64] usb: dwc2: gadget: Increase descriptors count for ISOC's - [armhf,arm64] usb: dwc3: move synchronize_irq() out of the spinlock protected block - ASoC: hdmi-codec: unlock the device on startup errors - [ppc64el] perf: Return accordingly on invalid chip-id in - [ppc64el] boot: Fix missing check of lseek() return value - [ppc64el] perf: Fix loop exit condition in nest_imc_event_init - [armhf] ASoC: imx: fix fiq dependencies - [amd64] spi: pxa2xx: fix SCR (divisor) calculation - brcm80211: potential NULL dereference in brcmf_cfg80211_vndr_cmds_dcmd_handler() - ACPI / property: fix handling of data_nodes in acpi_get_next_subnode() - drm/nouveau/bar/nv50: ensure BAR is mapped - [armel,armhf] vdso: Remove dependency with the arch_timer driver internals - [ppc64el] watchdog: Use hrtimers for per-CPU heartbeat - sched/cpufreq: Fix kobject memleak - scsi: qla2xxx: Fix a qla24xx_enable_msix() error path - scsi: qla2xxx: Fix abort handling in tcm_qla2xxx_write_pending() - scsi: qla2xxx: Avoid that lockdep complains about unsafe locking in tcm_qla2xxx_close_session() - scsi: qla2xxx: Fix hardirq-unsafe locking - [x86] modules: Avoid breaking W^X while loading modules - Btrfs: fix data bytes_may_use underflow with fallocate due to failed quota reserve - btrfs: fix panic during relocation after ENOSPC before writeback happens - btrfs: Don't panic when we can't find a root key - iwlwifi: pcie: don't crash on invalid RX interrupt - scsi: qedi: Abort ep termination if offload not scheduled - [s390x] kexec_file: Fix detection of text segment in ELF loader - sched/nohz: Run NOHZ idle load balancer on HK_FLAG_MISC CPUs - w1: fix the resume command API - [s390x] qeth: address type mismatch warning - [armhf,arm64] dmaengine: pl330: _stop: clear interrupt status - mac80211/cfg80211: update bss channel on channel switch - mwifiex: prevent an array overflow - rsi: Fix NULL pointer dereference in kmalloc - nvme: set 0 capacity if namespace block size exceeds PAGE_SIZE - nvme-rdma: fix a NULL deref when an admin connect times out - [armhf,arm64] crypto: sun4i-ss - Fix invalid calculation of hash end - bcache: avoid potential memleak of list of journal_replay(s) in the CACHE_SYNC branch of run_cache_set - bcache: return error immediately in bch_journal_replay() - bcache: fix failure in journal relplay - bcache: add failure check to run_cache_set() for journal replay - bcache: avoid clang -Wunintialized warning - RDMA/cma: Consider scope_id while binding to ipv6 ll address - vfio-ccw: Do not call flush_workqueue while holding the spinlock - vfio-ccw: Release any channel program when releasing/removing vfio-ccw mdev - [x86] mm: Remove in_nmi() warning from 64-bit implementation of vmalloc_fault() - mm/uaccess: Use 'unsigned long' to placate UBSAN warnings on older GCC versions - Bluetooth: hci_qca: Give enough time to ROME controller to bootup. - HID: logitech-hidpp: use RAP instead of FAP to get the protocol version - [armhf] pinctrl: samsung: fix leaked of_node references - [armhf] clk: rockchip: undo several noc and special clocks as critical on rk3288 - [arm64] perf/arm-cci: Remove broken race mitigation - media: au0828: stop video streaming only when last user stops - audit: fix a memory leak bug - media: au0828: Fix NULL pointer dereference in au0828_analog_stream_enable() - media: pvrusb2: Prevent a buffer overflow - block: fix use-after-free on gendisk - [ppc64el] numa: improve control of topology updates - [ppc64el] Fix booting large kernels with STRICT_KERNEL_RWX - random: fix CRNG initialization when random.trust_cpu=1 - random: add a spinlock_t to struct batched_entropy - cgroup: protect cgroup->nr_(dying_)descendants by css_set_lock - sched/core: Check quota and period overflow at usec to nsec conversion - sched/rt: Check integer overflow at usec to nsec conversion - sched/core: Handle overflow in cpu_shares_write_u64 - [arm*] staging: vc04_services: handle kzalloc failure - [arm64] drm/msm: a5xx: fix possible object reference leak - irq_work: Do not raise an IPI when queueing work on the local CPU - [x86] thunderbolt: Take domain lock in switch sysfs attribute callbacks - [s390x] qeth: handle error from qeth_update_from_chp_desc() - USB: core: Don't unbind interfaces following device reset failure - [amd64] irq: Limit IST stack overflow check to #DB stack - [armhf] drm: etnaviv: avoid DMA API warning when importing buffers - [armhf,arm64] phy: sun4i-usb: Make sure to disable PHY0 passby for peripheral mode - i40e: Able to add up to 16 MAC filters on an untrusted VF - i40e: don't allow changes to HW VLAN stripping on active port VLANs - ACPI/IORT: Reject platform device creation on NUMA node mapping failure - [arm64] vdso: Fix clock_getres() for CLOCK_REALTIME - RDMA/cxgb4: Fix null pointer dereference on alloc_skb failure - [x86] perf/msr: Add Icelake support - [x86] perf/intel/rapl: Add Icelake support - [x86] perf/intel/cstate: Add Icelake support - hwmon: (vt1211) Use request_muxed_region for Super-IO accesses - hwmon: (smsc47m1) Use request_muxed_region for Super-IO accesses - hwmon: (smsc47b397) Use request_muxed_region for Super-IO accesses - hwmon: (pc87427) Use request_muxed_region for Super-IO accesses - hwmon: (f71805f) Use request_muxed_region for Super-IO accesses - scsi: libsas: Do discovery on empty PHY to update PHY info - mmc: core: make pwrseq_emmc (partially) support sleepy GPIO controllers - [armhf,arm64] mmc_spi: add a status check for spi_sync_locked - drm/amdgpu: fix old fence check in amdgpu_fence_emit - PM / core: Propagate dev->power.wakeup_path when no callbacks - [armhf] clk: rockchip: Fix video codec clocks on rk3288 - [armhf] clk: rockchip: Make rkpwm a critical clock on rk3288 - [s390x] zcrypt: initialize variables before_use - [x86] microcode: Fix the ancient deprecated microcode loading method - [s390x] mm: silence compiler warning when compiling without CONFIG_PGSTE - [s390x] cio: fix cio_irb declaration - qmi_wwan: Add quirk for Quectel dynamic config - block: sed-opal: fix IOC_OPAL_ENABLE_DISABLE_MBR - rtlwifi: fix a potential NULL pointer dereference - mwifiex: Fix mem leak in mwifiex_tm_cmd - brcmfmac: fix missing checks for kmemdup - b43: shut up clang -Wuninitialized variable warning - brcmfmac: convert dev_init_lock mutex to completion - brcmfmac: fix WARNING during USB disconnect in case of unempty psq - brcmfmac: fix race during disconnect when USB completion is in progress - brcmfmac: fix Oops when bringing up interface during USB disconnect - [arm64] rtc: xgene: fix possible race condition - rtlwifi: fix potential NULL pointer dereference - scsi: ufs: Fix regulator load and icc-level configuration - scsi: ufs: Avoid configuring regulator with undefined voltage range - [arm64] cpu_ops: fix a leaked reference by adding missing of_node_put - wil6210: fix return code of wmi_mgmt_tx and wmi_mgmt_tx_ext - [x86] uaccess, signal: Fix AC=1 bloat - [amd64] ia32: Fix ia32_restore_sigcontext() AC leak - [x86] uaccess: Fix up the fixup - chardev: add additional check for minor range overlap - [arm64] RDMA/hns: Fix bad endianess of port_pd variable - HID: core: move Usage Page concatenation to Main item - [armhf] ASoC: eukrea-tlv320: fix a leaked reference by adding missing of_node_put - cxgb3/l2t: Fix undefined behaviour - HID: logitech-hidpp: change low battery level threshold from 31 to 30 percent - [armhf] spi: tegra114: reset controller on probe - kobject: Don't trigger kobject_uevent(KOBJ_REMOVE) twice. - [armhf] media: wl128x: prevent two potential buffer overflows - media: gspca: Kill URBs on USB device disconnect - efifb: Omit memory map check on legacy boot - [x86] thunderbolt: property: Fix a missing check of kzalloc - [x86] thunderbolt: Fix to check the return value of kmemdup - timekeeping: Force upper bound for setting CLOCK_REALTIME - scsi: qedf: Add missing return in qedf_post_io_req() in the fcport offload check - virtio_console: initialize vtermno value for ports - tty: ipwireless: fix missing checks for ioremap - overflow: Fix -Wtype-limits compilation warnings - [x86] mce: Fix machine_check_poll() tests for error types - rcutorture: Fix cleanup path for invalid torture_type strings - [x86] mce: Handle varying MCA bank counts - rcuperf: Fix cleanup path for invalid perf_type strings - usb: core: Add PM runtime calls to usb_hcd_platform_shutdown - scsi: qla4xxx: avoid freeing unallocated dma memory - scsi: lpfc: avoid uninitialized variable warning - selinux: avoid uninitialized variable warning - batman-adv: allow updating DAT entry timeouts on incoming ARP Replies - dmaengine: tegra210-adma: use devm_clk_*() helpers - [armhf] hwrng: omap - Set default quality - [x86] thunderbolt: Fix to check return value of ida_simple_get - [x86] thunderbolt: Fix to check for kmemdup failure - drm/amd/display: fix releasing planes when exiting odm - [x86] thunderbolt: property: Fix a NULL pointer dereference - e1000e: Disable runtime PM on CNP+ - igb: Exclude device from suspend direct complete optimization - media: dvbsky: Avoid leaking dvb frontend - drm/amd/display: Fix Divide by 0 in memory calculations - drm/amd/display: Set stream->mode_changed when connectors change - scsi: ufs: fix a missing check of devm_reset_control_get - media: gspca: do not resubmit URBs when streaming has stopped - media: go7007: avoid clang frame overflow warning with KASAN - scsi: lpfc: Fix FDMI manufacturer attribute value - scsi: lpfc: Fix fc4type information for FDMI - media: saa7146: avoid high stack usage with clang - scsi: lpfc: Fix SLI3 commands being issued on SLI4 devices - [i386] spi : spi-topcliff-pch: Fix to handle empty DMA buffers - [armhf] drm/omap: dsi: Fix PM for display blank with paired dss_pll calls - [armhf] spi: imx: stop buffer overflow in RX FIFO flush - spi: Fix zero length xfer bug - [armhf] ASoC: davinci-mcasp: Fix clang warning without CONFIG_PM - drm/drv: Hold ref on parent device during drm_device lifetime - drm: Wake up next in drm_read() chain if we are forced to putback the event - [s390x] vfio-ccw: Prevent quiesce function going into an infinite loop - NFS: Fix a double unlock from nfs_match,get_client https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.48 - bonding/802.3ad: fix slave link initialization transition states - cxgb4: offload VLAN flows regardless of VLAN ethtype - ipv4/igmp: fix another memory leak in igmpv3_del_delrec() - ipv4/igmp: fix build error if !CONFIG_IP_MULTICAST - ipv6: Consider sk_bound_dev_if when binding a raw socket to an address - ipv6: Fix redirect with VRF - llc: fix skb leak in llc_build_and_send_ui_pkt() - [armhf,arm64] net: dsa: mv88e6xxx: fix handling of upper half of STATS_TYPE_PORT - net-gro: fix use-after-free read in napi_gro_frags() - [armhf,arm64] net: mvneta: Fix err code path of probe - [armhf,arm64] net: mvpp2: fix bad MVPP2_TXQ_SCHED_TOKEN_CNTR_REG queue value - net: phy: marvell10g: report if the PHY fails to boot firmware - net: sched: don't use tc_action->order during action dump - [armhf,arm64] net: stmmac: fix reset gpio free missing - usbnet: fix kernel crash after disconnect - net/mlx5: Avoid double free in fs init error unwinding path - tipc: Avoid copying bytes beyond the supplied data - net/mlx5: Allocate root ns memory using kzalloc to match kfree - net/mlx5e: Disable rxhash when CQE compress is enabled - [armhf,arm64] net: stmmac: dma channel control register need to be init first - bnxt_en: Fix aggregation buffer leak under OOM condition. - [ppc64el] crypto: vmx - ghash: do nosimd fallback manually - include/linux/compiler*.h: define asm_volatile_goto - compiler.h: give up __compiletime_assert_fallback() - jump_label: move 'asm goto' support test to Kconfig - tipc: fix modprobe tipc failed after switch order of device registration https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.49 - include/linux/bitops.h: sanitize rotate primitives - xhci: update bounce buffer with correct sg num - xhci: Use %zu for printing size_t type - xhci: Convert xhci_handshake() to use readl_poll_timeout_atomic() - usb: xhci: avoid null pointer deref when bos field is NULL - usbip: usbip_host: fix BUG: sleeping function called from invalid context - usbip: usbip_host: fix stub_dev lock context imbalance regression - USB: Fix slab-out-of-bounds write in usb_get_bos_descriptor - USB: sisusbvga: fix oops in error path of sisusb_probe - USB: Add LPM quirk for Surface Dock GigE adapter - USB: rio500: refuse more than one device at a time - USB: rio500: fix memory leak in close after disconnect - media: usb: siano: Fix general protection fault in smsusb - media: usb: siano: Fix false-positive "uninitialized variable" warning - media: smsusb: better handle optional alignment - brcmfmac: fix NULL pointer derefence during USB disconnect - [s390x] scsi: zfcp: fix missing zfcp_port reference put on -EBUSY from port_remove - [s390x] scsi: zfcp: fix to prevent port_remove with pure auto scan LUNs (only sdevs) - tracing: Avoid memory leak in predicate_parse() - Btrfs: fix wrong ctime and mtime of a directory after log replay - Btrfs: fix race updating log root item during fsync - Btrfs: fix fsync not persisting changed attributes of a directory - Btrfs: incremental send, fix file corruption when no-holes feature is enabled - [s390x] crypto: fix gcm-aes-s390 selftest failures - [s390x] crypto: fix possible sleep during spinlock aquired - [ppc64el] KVM: Book3S HV: XIVE: Do not clear IRQ data of passthrough interrupts - [ppc64el] perf: Fix MMCRA corruption by bhrb_filter - ALSA: line6: Assure canceling delayed work at disconnection - ALSA: hda/realtek - Set default power save node to 0 - [s390x] KVM: Do not report unusabled IDs via KVM_CAP_MAX_VCPU_ID - drm/nouveau/i2c: Disable i2c bus access after ->fini() - [arm64] tty: serial: msm_serial: Fix XON/XOFF - memcg: make it work on sparse non-0-node systems - kernel/signal.c: trace_signal_deliver when signal_group_exit - [arm64] Fix the arm64_personality() syscall wrapper redirection - vt/fbcon: deinitialize resources in visual_init() after failed memory allocation - [arm*] staging: vc04_services: prevent integer overflow in create_pagelist() - [x86] staging: wlan-ng: fix adapter initialization failure - cifs: fix memory leak of pneg_inbuf on -EOPNOTSUPP ioctl case - CIFS: cifs_read_allocate_pages: don't iterate through whole page array on ENOMEM - Revert "lockd: Show pid of lockd for remote locks" - [armhf,arm64] drm/tegra: gem: Fix CPU-cache maintenance for BO's allocated using get_pages() - [x86] drm/vmwgfx: Don't send drm sysfs hotplug events on initial master set - [armhf,arm64] drm/sun4i: Fix sun8i HDMI PHY clock initialization - [armhf,arm64] drm/sun4i: Fix sun8i HDMI PHY configuration for > 148.5 MHz - [armhf,arm64] drm/rockchip: shutdown drm subsystem on shutdown - drm/lease: Make sure implicit planes are leased - [x86] ftrace: Do not call function graph from dynamic trampolines - [x86] ftrace: Set trampoline pages as executable - [x86] kprobes: Set instruction page as executable - scsi: lpfc: Fix backport of faf5a744f4f8 ("scsi: lpfc: avoid uninitialized variable warning") - media: uvcvideo: Fix uvc_alloc_entity() allocation alignment https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.50 - ethtool: fix potential userspace buffer overflow - Fix memory leak in sctp_process_init - ipv4: not do cache for local delivery if bc_forwarding is enabled - ipv6: fix the check before getting the cookie in rt6_get_cookie - neighbor: Call __ipv4_neigh_lookup_noref in neigh_xmit - [armhf] net: ethernet: ti: cpsw_ethtool: fix ethtool ring param set - net/mlx4_en: ethtool, Remove unsupported SFP EEPROM high pages query - [armhf,arm64] net: mvpp2: Use strscpy to handle stat strings - net: rds: fix memory leak in rds_ib_flush_mr_pool - net: sfp: read eeprom in maximum 16 byte increments - packet: unconditionally free po->rollover - pktgen: do not sleep with the thread lock held. - ipv6: use READ_ONCE() for inet->hdrincl as in ipv4 - ipv6: fix EFAULT on sendto with icmpv6 and hdrincl - rcu: locking and unlocking need to always be at least barriers - NFSv4.1: Again fix a race where CB_NOTIFY_LOCK fails to wake a waiter - NFSv4.1: Fix bug only first CB_NOTIFY_LOCK is handled - fuse: fallocate: fix return with locked inode - pstore: Remove needless lock during console writes - pstore: Convert buf_lock to semaphore - pstore: Set tfm to NULL on free_buf_for_compression - pstore/ram: Run without kernel crash dump region - [x86] power: Fix 'nosmt' vs hibernation triple fault during resume - [s390x] mm: fix address space detection in exception handling - xen-blkfront: switch kcalloc to kvcalloc for large array allocation - [ppc64el] genwqe: Prevent an integer overflow in the ioctl - test_firmware: Use correct snprintf() limit - [x86] drm/gma500/cdv: Check vbt config bits when detecting lvds panels - [arm64] drm/msm: fix fb references in async update - drm: add non-desktop quirk for Valve HMDs - drm: add non-desktop quirks to Sensics and OSVR headsets. - drm/amdgpu/psp: move psp version specific function pointers to early_init - drm/radeon: prefer lower reference dividers - drm/amdgpu: remove ATPX_DGPU_REQ_POWER_FOR_DISPLAYS check when hotplug-in - [x86] drm/i915: Fix I915_EXEC_RING_MASK - [x86] drm/i915/fbc: disable framebuffer compression on GeminiLake - [x86] drm/i915: Maintain consistent documentation subsection ordering - drm: don't block fb changes for async plane updates - [x86] drm/i915/gvt: Initialize intel_gvt_gtt_entry in stack - TTY: serial_core, add ->install - ipv4: Define __ipv4_neigh_lookup_noref when CONFIG_INET is disabled - ethtool: check the return value of get_regs_len https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.51 - fs/fat/file.c: issue flush after the writeback of FAT - sysctl: return -EINVAL if val violates minmax - ipc: prevent lockup on alloc_msg and free_msg - [armhf] prevent tracing IPI_CPU_BACKTRACE - hugetlbfs: on restore reserve error path retain subpool reservation - mem-hotplug: fix node spanned pages when we have a node with only ZONE_MOVABLE - mm/cma.c: fix crash on CMA allocation if bitmap allocation fails - initramfs: free initrd memory if opening /initrd.image fails - mm/cma.c: fix the bitmap status to show failed allocation reason - mm: page_mkclean vs MADV_DONTNEED race - mm/cma_debug.c: fix the break condition in cma_maxchunk_get() - mm/slab.c: fix an infinite loop in leaks_show() - kernel/sys.c: prctl: fix false positive in validate_prctl_map() - drivers: thermal: tsens: Don't print error message on -EPROBE_DEFER - [x86] mfd: intel-lpss: Set the device in reset state when init - drm/nouveau/disp/dp: respect sink limits when selecting failsafe link configuration - [armhf] mfd: twl6040: Fix device init errors for ACCCTL register - [x86] perf/intel: Allow PEBS multi-entry in watermark mode - drm/nouveau/kms/gf119-gp10x: push HeadSetControlOutputResource() mthd when encoders change - [arm64] drm/bridge: adv7511: Fix low refresh rate selection - objtool: Don't use ignore flag for fake jumps - drm/nouveau/kms/gv100-: fix spurious window immediate interlocks - bpf: fix undefined behavior in narrow load handling - [arm64] pwm: meson: Use the spin-lock only to protect register modifications - ntp: Allow TAI-UTC offset to be set to zero - f2fs: fix to avoid panic in do_recover_data() - f2fs: fix to avoid panic in f2fs_inplace_write_data() - f2fs: fix to avoid panic in f2fs_remove_inode_page() - f2fs: fix to do sanity check on free nid - f2fs: fix to clear dirty inode in error path of f2fs_iget() - f2fs: fix to avoid panic in dec_valid_block_count() - f2fs: fix to use inline space only if inline_xattr is enable - f2fs: fix to do sanity check on valid block count of segment - f2fs: fix to do checksum even if inode page is uptodate - percpu: remove spurious lock dependency between percpu and sched - configfs: fix possible use-after-free in configfs_register_group - [armhf,arm64] PCI: dwc: Free MSI in dw_pcie_host_init() error path - [armhf,arm64] PCI: dwc: Free MSI IRQ page in dw_pcie_free_msi() - ovl: do not generate duplicate fsnotify events for "fake" path - mmc: mmci: Prevent polling for busy detection in IRQ context - netfilter: nf_flow_table: fix missing error check for rhashtable_insert_fast - netfilter: nf_conntrack_h323: restore boundary check correctness - [mips*] Make sure dt memory regions are valid - netfilter: nf_tables: fix base chain stat rcu_dereference usage - [armhf] watchdog: imx2_wdt: Fix set_timeout for big timeout values - watchdog: fix compile time error of pretimeout governors - blk-mq: move cancel of requeue_work into blk_mq_release - [x86] iommu/vt-d: Set intel_iommu_gfx_mapped correctly - nvme-pci: unquiesce admin queue on shutdown - nvme-pci: shutdown on timeout during deletion - netfilter: nf_flow_table: check ttl value in flow offload data path - netfilter: nf_flow_table: fix netdev refcnt leak - ALSA: hda - Register irq handler after the chip initialization - nvmem: core: fix read buffer in place - [armhf,arm64] nvmem: sunxi_sid: Support SID on A83T and H5 - fuse: retrieve: cap requested size to negotiated max_write - nfsd: allow fh_want_write to be called twice - nfsd: avoid uninitialized variable warning - vfio: Fix WARNING "do not call blocking ops when !TASK_RUNNING" - [armhf,arm64] iommu/arm-smmu-v3: Don't disable SMMU in kdump kernel - [x86] net: thunderbolt: Unregister ThunderboltIP protocol handler when suspending - [x86] PCI: Fix PCI IRQ routing table memory leak - i40e: Queues are reserved despite "Invalid argument" error - platform/chrome: cros_ec_proto: check for NULL transfer function - [armhf] clk: rockchip: Turn on "aclk_dmac1" for suspend on rk3288 - [armhf] soc: rockchip: Set the proper PWM for rk3288 - [armhf] dts: imx51: Specify IMX5_CLK_IPG as "ahb" clock to SDMA - [armhf] dts: imx50: Specify IMX5_CLK_IPG as "ahb" clock to SDMA - [armhf] dts: imx53: Specify IMX5_CLK_IPG as "ahb" clock to SDMA - [armhf] dts: imx6sx: Specify IMX6SX_CLK_IPG as "ahb" clock to SDMA - [armhf] dts: imx6sll: Specify IMX6SLL_CLK_IPG as "ipg" clock to SDMA - [armhf] dts: imx6ul: Specify IMX6UL_CLK_IPG as "ipg" clock to SDMA - [armhf] dts: imx6sx: Specify IMX6SX_CLK_IPG as "ipg" clock to SDMA - [armhf] dts: imx6qdl: Specify IMX6QDL_CLK_IPG as "ipg" clock to SDMA - [ppc64el] PCI: rpadlpar: Fix leaked device_node references in add/remove paths - drm/amd/display: Use plane->color_space for dpp if specified - [armhf] OMAP2+: pm33xx-core: Do not Turn OFF CEFUSE as PPA may be using it - [x86] platform: intel_pmc_ipc: adding error handling - [arm64] net: hns3: return 0 and print warning when hit duplicate MAC - scsi: qla2xxx: Reset the FCF_ASYNC_{SENT|ACTIVE} flags - [x86] video: hgafb: fix potential NULL pointer dereference - block, bfq: increase idling for weight-raised queues - [arm64] PCI: xilinx: Check for __get_free_pages() failure - ice: Add missing case in print_link_msg for printing flow control - [x86] dmaengine: idma64: Use actual device for DMA transfers - [armhf] pwm: tiehrpwm: Update shadow register for disabling PWMs - [armhf] dts: exynos: Always enable necessary APIO_1V8 and ABB_1V8 regulators on Arndale Octa - pwm: Fix deadlock warning when removing PWM device - [armhf] exynos: Fix undefined instruction during Exynos5422 resume - [x86] usb: typec: fusb302: Check vconn is off when we start toggling - soc: renesas: Identify R-Car M3-W ES1.3 - percpu: do not search past bitmap when allocating an area - ovl: check the capability before cred overridden - ovl: support stacked SEEK_HOLE/SEEK_DATA - [arm*] drm/vc4: fix fb references in async update - ALSA: seq: Cover unsubscribe_port() in list_mutex https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.52 https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.53 - drm/nouveau: add kconfig option to turn off nouveau legacy contexts. (v3) - nouveau: Fix build with CONFIG_NOUVEAU_LEGACY_CTX_SUPPORT disabled - HID: multitouch: handle faulty Elo touch device - HID: wacom: Don't set tool type until we're in range - HID: wacom: Don't report anything prior to the tool entering range - HID: wacom: Send BTN_TOUCH in response to INTUOSP2_BT eraser contact - HID: wacom: Correct button numbering 2nd-gen Intuos Pro over Bluetooth - HID: wacom: Sync INTUOSP2_BT touch state after each frame if necessary - ALSA: oxfw: allow PCM capture for Stanton SCS.1m - ALSA: hda/realtek - Update headset mode for ALC256 - ALSA: firewire-motu: fix destruction of data for isochronous resources - libata: Extend quirks for the ST1000LM024 drives with NOLPM quirk - mm/list_lru.c: fix memory leak in __memcg_init_list_lru_node - fs/ocfs2: fix race in ocfs2_dentry_attach_lock() - mm/vmscan.c: fix trying to reclaim unevictable LRU page - signal/ptrace: Don't leak unitialized kernel memory with PTRACE_PEEK_SIGINFO - ptrace: restore smp_rmb() in __ptrace_may_access() - [armhf,arm64] iommu/arm-smmu: Avoid constant zero in TLBI writes - bcache: fix stack corruption by PRECEDING_KEY() - bcache: only set BCACHE_DEV_WB_RUNNING when cached device attached - cgroup: Use css_tryget() instead of css_tryget_online() in task_get_css() - [x86] drm/i915/sdvo: Implement proper HDMI audio support for SDVO - ALSA: seq: Fix race of get-subscription call vs port-delete ioctls - Drivers: misc: fix out-of-bounds access in function param_set_kgdbts_var - f2fs: fix to avoid accessing xattr across the boundary - scsi: qedi: remove memset/memcpy to nfunc and use func instead (CVE-2019-15090) - scsi: qedi: remove set but not used variables 'cdev' and 'udev' - scsi: lpfc: correct rcu unlock issue in lpfc_nvme_info_show - scsi: lpfc: add check for loss of ndlp when sending RRQ - [arm64] mm: Inhibit huge-vmap with ptdump - nvme: fix srcu locking on error return in nvme_get_ns_from_disk - nvme: remove the ifdef around nvme_nvm_ioctl - nvme: merge nvme_ns_ioctl into nvme_ioctl - nvme: release namespace SRCU protection before performing controller ioctls - nvme: fix memory leak for power latency tolerance - [x86] platform: pmc_atom: Add Lex 3I380D industrial PC to critclk_systems DMI table - [x86] platform: pmc_atom: Add several Beckhoff Automation boards to critclk_systems DMI table - scsi: bnx2fc: fix incorrect cast to u64 on shift operation - libnvdimm: Fix compilation warnings with W=1 - tracing: Prevent hist_field_var_ref() from accessing NULL tracing_map_elts - usbnet: ipheth: fix racing condition - [armhf,arm64] KVM: Move cc/it checks under hyp's Makefile to avoid instrumentation - [x86] KVM: pmu: mask the result of rdpmc according to the width of the counters - [x86] KVM: pmu: do not mask the value that is written to fixed PMUs - [s390x] KVM: fix memory slot handling for KVM_SET_USER_MEMORY_REGION - [x86] drm/vmwgfx: integer underflow in vmw_cmd_dx_set_shader() leading to an invalid read - [x86] drm/vmwgfx: NULL pointer dereference from vmw_cmd_dx_view_define() - [armhf,arm64] usb: dwc2: Fix DMA cache alignment issues - [armhf,arm64] usb: dwc2: host: Fix wMaxPacketSize handling (fix webcam regression) - USB: Fix chipmunk-like voice when using Logitech C270 for recording audio. - USB: usb-storage: Add new ID to ums-realtek - USB: serial: pl2303: add Allied Telesis VT-Kit3 - USB: serial: option: add support for Simcom SIM7500/SIM7600 RNDIS mode - USB: serial: option: add Telit 0x1260 and 0x1261 compositions - timekeeping: Repair ktime_get_coarse*() granularity - [x86] microcode, cpuhotplug: Add a microcode loader CPU hotplug callback - [x86] mm/KASLR: Compute the size of the vmemmap section properly - [x86] resctrl: Prevent NULL pointer dereference when local MBM is disabled - drm/edid: abstract override/firmware EDID retrieval - drm: add fallback override/firmware EDID modes workaround - [armhf] rtc: pcf8523: don't return invalid date when battery is low https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.54 - ax25: fix inconsistent lock state in ax25_destroy_timer - be2net: Fix number of Rx queues used for flow hashing - [x86] hv_netvsc: Set probe mode to sync - ipv6: flowlabel: fl6_sock_lookup() must use atomic_inc_not_zero - lapb: fixed leak of control-blocks. - neigh: fix use-after-free read in pneigh_get_next - net: openvswitch: do not free vport if register_netdevice() is failed. - sctp: Free cookie before we memdup a new one - tipc: purge deferredq list for each grp member in tipc_group_delete - vsock/virtio: set SOCK_DONE on peer shutdown - net/mlx5: Avoid reloading already removed devices - [armhf,arm64] net: mvpp2: prs: Fix parser range for VID filtering - [armhf,arm64] net: mvpp2: prs: Use the correct helpers when removing all VID filters - [arm*] Staging: vc04_services: Fix a couple error codes - [x86] perf/intel/ds: Fix EVENT vs. UEVENT PEBS constraints - netfilter: nf_queue: fix reinject verdict handling - ipvs: Fix use-after-free in ip_vs_in - [armhf] clk: ti: clkctrl: Fix clkdm_clk handling - [ppc64el] powernv: Return for invalid IMC domain - usb: xhci: Fix a potential null pointer dereference in xhci_debugfs_create_endpoint() - mISDN: make sure device name is NUL terminated - [x86] CPU/AMD: Don't force the CPB cap when running under a hypervisor - perf/ring_buffer: Fix exposing a temporarily decreased data_head - perf/ring_buffer: Add ordering to rb->nest increment - perf/ring-buffer: Always use {READ,WRITE}_ONCE() for rb->user_page data - [armhf,arm64] net: stmmac: update rx tail pointer register to fix rx dma hang issue. - ACPI/PCI: PM: Add missing wakeup.flags.valid checks - [armhf] drm/etnaviv: lock MMU while dumping core - net: aquantia: tx clean budget logic error - net: aquantia: fix LRO with FCS error - i2c: dev: fix potential memory leak in i2cdev_ioctl_rdwr - ALSA: hda - Force polling mode on CNL for fixing codec communication - configfs: Fix use-after-free when accessing sd->s_dentry - perf data: Fix 'strncat may truncate' build failure with recent gcc - perf namespace: Protect reading thread's namespace - [s390x] perf record: Fix s390 missing module symbol and warning for non-root users - xenbus: Avoid deadlock during suspend due to open transactions - [ppc64el] KVM: Book3S: Use new mutex to synchronize access to rtas token list - [ppc64el] KVM: Book3S HV: Don't take kvm->lock around kvm_for_each_vcpu - [arm64] fix syscall_fn_t type - [arm64] use the correct function type in SYSCALL_DEFINE0 - [arm64] use the correct function type for __arm64_sys_ni_syscall - net: phylink: ensure consistent phy interface mode - net: phy: dp83867: Set up RGMII TX delay - scsi: libcxgbi: add a check for NULL pointer in cxgbi_check_route() - scsi: smartpqi: properly set both the DMA mask and the coherent DMA mask - scsi: scsi_dh_alua: Fix possible null-ptr-deref - scsi: libsas: delete sas port if expander discover failed - ocfs2: fix error path kobject memory leak - coredump: fix race condition between collapse_huge_page() and core dumping - Abort file_remove_privs() for non-reg. files https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.55 https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.56 - tracing: Silence GCC 9 array bounds warning - objtool: Support per-function rodata sections - ovl: support the FS_IOC_FS[SG]ETXATTR ioctls - ovl: fix wrong flags check in FS_IOC_FS[SG]ETXATTR ioctls - ovl: make i_ino consistent with st_ino in more cases - ovl: detect overlapping layers - ovl: don't fail with disconnected lower NFS - ovl: fix bogus -Wmaybe-unitialized warning - [s390x] jump_label: Use "jdd" constraint on gcc9 - [s390x] ap: rework assembler functions to use unions for in/out register variables - mmc: sdhci: sdhci-pci-o2micro: Correctly set bus width when tuning - mmc: core: API to temporarily disable retuning for SDIO CRC errors - mmc: core: Add sdio_retune_hold_now() and sdio_retune_release() - mmc: core: Prevent processing SDIO IRQs when the card is suspended - scsi: ufs: Avoid runtime suspend possibly being blocked forever - [armhf,arm64] usb: chipidea: udc: workaround for endpoint conflict issue - xhci: detect USB 3.2 capable host controllers correctly - usb: xhci: Don't try to recover an endpoint if port is in error state. - IB/hfi1: Validate fault injection opcode user input - IB/hfi1: Silence txreq allocation warnings - [x86] Input: synaptics - enable SMBus on ThinkPad E480 and E580 - Input: uinput - add compat ioctl number translation for UI_*_FF_UPLOAD - [x86] Input: silead - add MSSL0017 to acpi_device_id - apparmor: fix PROFILE_MEDIATES for untrusted input - apparmor: enforce nullbyte at end of tag string - brcmfmac: sdio: Disable auto-tuning around commands expected to fail - brcmfmac: sdio: Don't tune while the card is off - parport: Fix mem leak in parport_register_dev_model - IB/rdmavt: Fix alloc_qpn() WARN_ON() - IB/hfi1: Insure freeze_work work_struct is canceled on shutdown - IB/{qib, hfi1, rdmavt}: Correct ibv_devinfo max_mr value - IB/hfi1: Validate page aligned for a given virtual address - [mips*] uprobes: remove set but not used variable 'epc' - [armhf,arm64] net: dsa: mv88e6xxx: avoid error message on remove from VLAN 0 - [arm64] net: hns: Fix loopback test failed at copper ports - mdesc: fix a missing-check bug in get_vdev_port_node_info() - [arm64] drm/arm/mali-dp: Add a loop around the second set CVAL and try 5 times - [arm64] drm/arm/hdlcd: Actually validate CRTC modes - [arm64] drm/arm/hdlcd: Allow a bit of clock tolerance - nvmet: fix data_len to 0 for bdev-backed write_zeroes - scsi: ufs: Check that space was properly alloced in copy_query_response - scsi: smartpqi: unlock on error in pqi_submit_raid_request_synchronous() - net: ipvlan: Fix ipvlan device tso disabled while NETIF_F_IP_CSUM is set - [s390x] qeth: fix VLAN attribute in bridge_hostnotify udev event - hwmon: (core) add thermal sensors only if dev->of_node is present - hwmon: (pmbus/core) Treat parameters as paged if on multiple pages - nvme: Fix u32 overflow in the number of namespace list calculation - btrfs: start readahead also in seed devices - [armhf] can: flexcan: fix timeout when set small bitrate - can: purge socket error queue on sock destruct - [ppc64el] bpf: use unsigned division instruction for 64-bit operations - [armhf] imx: cpuidle-imx6sx: Restrict the SW2ISO increase to i.MX6SX - [armhf] dts: dra76x: Update MMC2_HS200_MANUAL1 iodelay values - [armhf] dts: am57xx-idk: Remove support for voltage switching for SD card - [arm64] sve: should not depend on - [arm64] ssbd: explicitly depend on - [x86] drm/vmwgfx: Use the backdoor port if the HB port is not available - Bluetooth: Align minimum encryption key size for LE and BR/EDR connections (CVE-2019-9506) - Bluetooth: Fix regression with minimum encryption key size alignment - SMB3: retry on STATUS_INSUFFICIENT_RESOURCES instead of failing write - cfg80211: fix memory leak of wiphy device name - mac80211: drop robust management frames from unknown TA - {nl,mac}80211: allow 4addr AP operation on crypto controlled devices - mac80211: handle deauthentication/disassociation from TDLS peer - nl80211: fix station_info pertid memory leak - mac80211: Do not use stack memory with scatterlist for GMAC - [x86] resctrl: Don't stop walking closids when a locksetup group is found https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.57 - perf ui helpline: Use strlcpy() as a shorter form of strncpy() + explicit set nul - perf help: Remove needless use of strncpy() - perf header: Fix unchecked usage of strncpy() - [arm64] Don't unconditionally add -Wno-psabi to KBUILD_CFLAGS - IB/hfi1: Close PSM sdma_progress sleep window - 9p/xen: fix check for xenbus_read error in front_probe - 9p: Use a slab for allocating requests - 9p: embed fcall in req to round down buffer allocs - 9p: add a per-client fcall kmem_cache - 9p: rename p9_free_req() function - 9p: Add refcount to p9_req_t - 9p/rdma: do not disconnect on down_interruptible EAGAIN - 9p: Rename req to rreq in trans_fd - 9p: acl: fix uninitialized iattr access - 9p/rdma: remove useless check in cm_event_handler - 9p: p9dirent_read: check network-provided name length - 9p: potential NULL dereference - 9p/trans_fd: abort p9_read_work if req status changed - 9p/trans_fd: put worker reqs on destroy - net/9p: include trans_common.h to fix missing prototype warning. - qmi_wwan: Fix out-of-bounds read - [armhf,arm64] Revert "usb: dwc3: gadget: Clear req->needs_extra_trb flag on cleanup" - [armhf,arm64] usb: dwc3: gadget: combine unaligned and zero flags - [armhf,arm64] usb: dwc3: gadget: track number of TRBs per request - [armhf,arm64] usb: dwc3: gadget: use num_trbs when skipping TRBs on ->dequeue() - [armhf,arm64] usb: dwc3: gadget: extract dwc3_gadget_ep_skip_trbs() - [armhf,arm64] usb: dwc3: gadget: introduce cancelled_list - [armhf,arm64] usb: dwc3: gadget: move requests to cancelled_list - [armhf,arm64] usb: dwc3: gadget: remove wait_end_transfer - [armhf,arm64] usb: dwc3: gadget: Clear req->needs_extra_trb flag on cleanup - fs/proc/array.c: allow reporting eip/esp for all coredumping threads - mm/mempolicy.c: fix an incorrect rebind node in mpol_rebind_nodemask - fs/binfmt_flat.c: make load_flat_shared_library() work - [armhf] clk: socfpga: stratix10: fix divider entry for the emac clocks - mm: soft-offline: return -EBUSY if set_hwpoison_free_buddy_page() fails - mm: hugetlb: soft-offline: dissolve_free_huge_page() return zero on !PageHuge - mm/page_idle.c: fix oops because end_pfn is larger than max_pfn - dm log writes: make sure super sector log updates are written in order - [x86] scsi: vmw_pscsi: Fix use-after-free in pvscsi_queue_lck() - [x86] speculation: Allow guests to use SSBD even if host does not - [x86] microcode: Fix the microcode load on CPU hotplug for real - [x86] resctrl: Prevent possible overrun during bitmap operations - [x86] KVM: mmu: Allocate PAE root array when using SVM's 32-bit NPT - NFS/flexfiles: Use the correct TCP timeout for flexfiles I/O - cpu/speculation: Warn on unsupported mitigations= parameter - SUNRPC: Clean up initialisation of the struct rpc_rqst - [mips*] irqchip/mips-gic: Use the correct local interrupt map registers - eeprom: at24: fix unexpected timeout under high load - af_packet: Block execution of tasks waiting for transmit to complete in AF_PACKET - bonding: Always enable vlan tx offload - ipv4: Use return value of inet_iif() for __raw_v4_lookup in the while loop - net/packet: fix memory leak in packet_set_ring() - net: remove duplicate fetch in sock_getsockopt - [armhf,arm64] net: stmmac: fixed new system time seconds value calculation - [armhf,arm64] net: stmmac: set IC bit when transmitting frames with HW timestamp - sctp: change to hold sk after auth shkey is created successfully - team: Always enable vlan tx offload - tipc: change to use register_pernet_device - tipc: check msg->req data len in tipc_nl_compat_bearer_disable - tun: wake up waitqueues after IFF_UP is set - bpf: simplify definition of BPF_FIB_LOOKUP related flags - bpf: lpm_trie: check left child of last leftmost node for NULL - bpf: fix nested bpf tracepoints with per-cpu data - bpf: fix unconnected udp hooks - bpf: udp: Avoid calling reuseport's bpf_prog from udp_gro - bpf: udp: ipv6: Avoid running reuseport's bpf_prog from __udp6_lib_err - [arm64] futex: Avoid copying out uninitialised stack in failed cmpxchg() - [arm64] bpf: use more scalable stadd over ldxr / stxr loop in xadd - futex: Update comments and docs about return values of arch futex code - RDMA: Directly cast the sockaddr union to sockaddr - tipc: pass tunnel dev as NULL to udp_tunnel(6)_xmit_skb - [armhf,arm64] usb: dwc3: Reset num_trbs after skipping - [arm64] insn: Fix ldadd instruction encoding https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.58 - Bluetooth: Fix faulty expression for minimum encryption key size check - block: Fix a NULL pointer dereference in generic_make_request() - md/raid0: Do not bypass blocking queue entered for raid0 bios - netfilter: nf_flow_table: ignore DF bit setting - netfilter: nft_flow_offload: set liberal tracking mode for tcp - netfilter: nft_flow_offload: don't offload when sequence numbers need adjustment - netfilter: nft_flow_offload: IPCB is only valid for ipv4 family - ASoC: soc-pcm: BE dai needs prepare when pause release after resume - spi: bitbang: Fix NULL pointer dereference in spi_unregister_master - [armhf,arm64] ASoC: max98090: remove 24-bit format support if RJ is 0 - [x86] CPU: Add more Icelake model numbers - ALSA: hdac: fix memory release for SST and SOF drivers - scsi: hpsa: correct ioaccel2 chaining - [x86] drm: panel-orientation-quirks: Add quirk for GPD pocket2 - [x86] drm: panel-orientation-quirks: Add quirk for GPD MicroPC - [x86] platform: asus-wmi: Only Tell EC the OS will handle display hotkeys from asus_nb_wmi - [x86] platform: intel-vbtn: Report switch events when event wakes device - [x86] platform: mlx-platform: Fix parent device in i2c-mux-reg device registration - i2c: pca-platform: Fix GPIO lookup code - cpuset: restore sanity to cpuset_cpus_allowed_fallback() - mm/mlock.c: change count_mm_mlocked_page_nr return type - tracing: avoid build warning with HAVE_NOP_MCOUNT - module: Fix livepatch/ftrace module text permissions race - ftrace: Fix NULL pointer dereference in free_ftrace_func_mapper() - [x86] drm/i915/dmc: protect against reading random memory - crypto: user - prevent operating on larval algorithms - crypto: cryptd - Fix skcipher instance memory leak - ALSA: seq: fix incorrect order of dest_client/dest_ports arguments - ALSA: firewire-lib/fireworks: fix miss detection of received MIDI messages - ALSA: line6: Fix write on zero-sized buffer - ALSA: usb-audio: fix sign unintended sign extension on left shifts - [x86] ALSA: hda/realtek: Add quirks for several Clevo notebook barebones - [x86] ALSA: hda/realtek - Change front mic location for Lenovo M710q - lib/mpi: Fix karactx leak in mpi_powm - fs/userfaultfd.c: disable irqs for fault_pending and event locks - tracing/snapshot: Resize spare buffer if size changed - [armhf] dts: armada-xp-98dx3236: Switch to armada-38x-uart serial node - drm/amd/powerplay: use hardware fan control if no powerplay fan table - drm/amdgpu/gfx9: use reset default for PA_SC_FIFO_SIZE - [armhf] drm/etnaviv: add missing failure path to destroy suballoc - [armhf] drm/imx: notify drm core before sending event during crtc disable - drm/imx: only send event on crtc disable if kept disabled - [x86] ftrace: Remove possible deadlock between register_kprobe() and ftrace_run_update_code() - mm/vmscan.c: prevent useless kswapd loops - btrfs: Ensure replaced device doesn't have pending chunk allocation - tty: rocket: fix incorrect forward declaration of 'rp_init()' - net/smc: move unhash before release of clcsock - drm/fb-helper: generic: Don't take module ref for fbcon - f2fs: don't access node/meta inode mapping after iput - mac80211: mesh: fix missing unlock on error in table_path_del() - scsi: tcmu: fix use after free - [amd64] boot/compressed: Do not corrupt EDX on EFER.LME=1 setting - [arm64] net: hns: Fixes the missing put_device in positive leg for roce reset - ALSA: hda: Initialize power_state field properly - rds: Fix warning. - ip6: fix skb leak in ip6frag_expire_frag_queue() - netfilter: ipv6: nf_defrag: fix leakage of unqueued fragments - [arm64] net: hns: fix unsigned comparison to less than zero - bpf: fix bpf_jit_limit knob for PAGE_SIZE >= 64K - netfilter: ipv6: nf_defrag: accept duplicate fragments again - [x86] KVM: degrade WARN to pr_warn_ratelimited - [x86] KVM: LAPIC: Fix pending interrupt in IRR blocked by software disable LAPIC - nfsd: Fix overflow causing non-working mounts on 1 TB machines - svcrdma: Ignore source port when computing DRC hash - [mips*] Fix bounds check virt_addr_valid - [mips*] Add missing EHB in mtc0 -> mfc0 sequence. - [arm64] dmaengine: qcom: bam_dma: Fix completed descriptors count - [armhf] dmaengine: imx-sdma: remove BD_INTR for channel0 https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.59 - [x86] Input: elantech - enable middle button support on 2 ThinkPads - mac80211: fix rate reporting inside cfg80211_calculate_bitrate_he() - bpf: sockmap, fix use after free from sleep in psock backlog workqueue - mac80211: mesh: fix RCU warning - mac80211: free peer keys before vif down in mesh - iwlwifi: Fix double-free problems in iwl_req_fw_callback() - can: af_can: Fix error path of can_init() - net: phy: rename Asix Electronics PHY driver - [armhf] dts: am335x phytec boards: Fix cd-gpios active level - [s390x] boot: disable address-of-packed-member warning - [x86] drm/vmwgfx: Honor the sg list segment size limitation - [x86] drm/vmwgfx: fix a warning due to missing dma_parms - [armhf] Input: imx_keypad - make sure keyboard can always wake up system - [armhf,arm64] KVM: vgic: Fix kvm_device leak in vgic_its_destroy - mac80211: only warn once on chanctx_conf being NULL - mac80211: do not start any work during reconfigure flow - bpf, devmap: Fix premature entry free on destroying map - bpf, devmap: Add missing bulk queue free - bpf, devmap: Add missing RCU read lock on flush - [amd64] bpf: fix stack layout of JITed bpf code - qmi_wwan: add support for QMAP padding in the RX path - qmi_wwan: avoid RCU stalls on device disconnect when in QMAP mode - qmi_wwan: extend permitted QMAP mux_id value range - mmc: core: complete HS400 before checking status - md: fix for divide error in status_resync - bnx2x: Check if transceiver implements DDM before access - drm: return -EFAULT if copy_to_user() fails - ip6_tunnel: allow not to count pkts on tstats by passing dev as NULL - net: lio_core: fix potential sign-extension overflow on large shift - scsi: qedi: Check targetname while finding boot target information - quota: fix a problem about transfer quota - [armhf,arm64] net: dsa: mv88e6xxx: fix shift of FID bits in mv88e6185_g1_vtu_loadpurge() - NFS4: Only set creation opendata if O_CREAT - net :sunrpc :clnt :Fix xps refcount imbalance on the error path - fscrypt: don't set policy for a dead directory - udf: Fix incorrect final NOT_ALLOCATED (hole) extent length - media: stv0297: fix frequency range limit - ALSA: usb-audio: Fix parse of UAC2 Extension Units - ALSA: hda/realtek - Headphone Mic can't record after S3 - block, bfq: NULL out the bic when it's no longer valid - [arm64] perf pmu: Fix uncore PMU alias list for ARM64 - [x86] ptrace: Fix possible spectre-v1 in ptrace_get_debugreg() - [x86] tls: Fix possible spectre-v1 in do_get_thread_area() - USB: serial: ftdi_sio: add ID for isodebug v1 - USB: serial: option: add support for GosunCn ME3630 RNDIS mode - Revert "serial: 8250: Don't service RX FIFO if interrupts are disabled" - p54usb: Fix race between disconnect and firmware loading - usb: gadget: ether: Fix race between gether_disconnect and rx_submit - [armhf,arm64] usb: dwc2: use a longer AHB idle timeout in dwc2_core_reset() - [x86] drivers/usb/typec/tps6598x.c: fix portinfo width - [x86] drivers/usb/typec/tps6598x.c: fix 4CC cmd write - [i386] staging: comedi: dt282x: fix a null pointer deref on interrupt - [x86] staging: comedi: amplc_pci230: fix null pointer deref on interrupt - HID: Add another Primax PIXART OEM mouse quirk - binder: fix memory leak in error path - carl9170: fix misuse of device driver API - [x86] VMCI: Fix integer overflow in VMCI handle arrays - staging: rtl8712: reduce stack usage, again https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.60 - Revert "e1000e: fix cyclic resets at link up with active tx" - e1000e: start network tx queue only when link is up - [x86] Input: synaptics - enable SMBUS on T480 thinkpad trackpad - nilfs2: do not use unexported cpu_to_le32()/le32_to_cpu() in uapi header - drivers: base: cacheinfo: Ensure cpu hotplug work is done before Intel RDT - firmware: improve LSM/IMA security behaviour - [armhf,arm64] irqchip/gic-v3-its: Fix command queue pointer comparison bug - [armhf] clk: ti: clkctrl: Fix returning uninitialized data - [amd64,arm64] efi/bgrt: Drop BGRT status field reserved bits check - perf/core: Fix perf_sample_regs_user() mm check - [armhf] omap2: remove incorrect __init annotation - afs: Fix uninitialised spinlock afs_volume::cb_break_lock - [x86] apic: Fix integer overflow on 10 bit left shift of cpu_khz - be2net: fix link failure after ethtool offline test - ppp: mppe: Add softdep to arc4 - sis900: fix TX completion - [armhf] dts: imx6ul: fix PWM[1-4] interrupts - [armhf] pinctrl: mcp23s08: Fix add_data and irqchip_add_nested call order - dm table: don't copy from a NULL pointer in realloc_argv() - dm verity: use message limit for data block corruption message - [amd64] boot: Fix crash if kernel image crosses page table boundary - [amd64] boot: Add missing fixup_pointer() for next_early_pgt access - HID: chicony: add another quirk for PixArt mouse - HID: multitouch: Add pointstick support for ALPS Touchpad - cpu/hotplug: Fix out-of-bounds read when setting fail state - linux/kernel.h: fix overflow for DIV_ROUND_UP_ULL - genirq: Delay deactivation in free_irq() - genirq: Fix misleading synchronize_irq() documentation - genirq: Add optional hardware synchronization for shutdown - [x86] ioapic: Implement irq_get_irqchip_state() callback - [x86] irq: Handle spurious interrupt after shutdown gracefully - [x86] irq: Seperate unused system vectors from spurious entry again - [s390x] fix stfle zero padding - [s390x] qdio: (re-)initialize tiqdio list entries - [s390x] qdio: don't touch the dsci in tiqdio_add_input_queues() - regmap-irq: do not write mask register if mask_base is zero - drm/udl: introduce a macro to convert dev to udl. - drm/udl: Replace drm_dev_unref with drm_dev_put - drm/udl: move to embedding drm device inside udl device. - [i386] entry: Fix ENDPROC of common_spurious https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.61 - [arm64] efi: Mark __efistub_stext_offset as an absolute symbol explicitly - scsi: iscsi: set auth_protocol back to NULL if CHAP_A value is not supported - [armhf] dmaengine: imx-sdma: fix use-after-free on probe error path - wil6210: fix potential out-of-bounds read - ath10k: Do not send probe response template for mesh - ath9k: Check for errors when reading SREV register - ath6kl: add some bounds checking - ath10k: add peer id check in ath10k_peer_find_by_id - wil6210: fix spurious interrupts in 3-msi - ath: DFS JP domain W56 fixed pulse type 3 RADAR detection - regmap: debugfs: Fix memory leak in regmap_debugfs_init - batman-adv: fix for leaked TVLV handler. - media: dvb: usb: fix use after free in dvb_usb_device_exit - media: marvell-ccic: fix DMA s/g desc number calculation - media: media_device_enum_links32: clean a reserved field - [armhf,arm64] net: stmmac: dwmac1000: Clear unused address entries - [armhf,arm64] net: stmmac: dwmac4/5: Clear unused address entries - qed: Set the doorbell address correctly - signal/pid_namespace: Fix reboot_pid_ns to use send_sig not force_sig - af_key: fix leaks in key_pol_get_resp and dump_sp. - xfrm: Fix xfrm sel prefix length validation - fscrypt: clean up some BUG_ON()s in block encryption/decryption - perf annotate TUI browser: Do not use member from variable within its own initialization - media: mc-device.c: don't memset __user pointer contents - media: saa7164: fix remove_proc_entry warning - net: phy: Check against net_device being NULL - tua6100: Avoid build warnings. - batman-adv: Fix duplicated OGMs on NETDEV_UP - [armhf] media: wl128x: Fix some error handling in fm_v4l2_init_video_device() - [arm64] net: hns3: set ops to null when unregister ad_dev - cpupower : frequency-set -r option misses the last cpu in related cpu list - [armhf,arm64] net: stmmac: dwmac4: fix flow control issue - [armhf,arm64] net: stmmac: modify default value of tx-frames - [arm64] crypto: inside-secure - do not rely on the hardware last bit for result descriptors - [s390x] qdio: handle PENDING state for QEBSM devices - net: sfp: add mutex to prevent concurrent state checks - ipset: Fix memory accounting for hash types on resize - perf cs-etm: Properly set the value of 'old' and 'head' in snapshot mode - [s390x] perf report: Fix OOM error in TUI mode on s390 - [arm64] irqchip/meson-gpio: Add support for Meson-G12A SoC - media: uvcvideo: Fix access to uninitialized fields on probe error - iommu: Fix a leak in iommu_insert_resv_region - [armhf] gpio: omap: fix lack of irqstatus_raw0 for OMAP4 - [armhf] gpio: omap: ensure irq is enabled before wakeup - regmap: fix bulk writes on paged registers - bpf: silence warning messages in core - selinux: fix empty write to keycreate file - [x86] cpu: Add Ice Lake NNPI to Intel family - [arm64] ASoC: meson: axg-tdm: fix sample clock inversion - rcu: Force inlining of rcu_read_lock() - [x86] cpufeatures: Add FDP_EXCPTN_ONLY and ZERO_FCS_FDS - qed: iWARP - Fix tc for MPA ll2 connection - [arm64] net: hns3: fix for skb leak when doing selftest - block: null_blk: fix race condition for null_del_dev - blkcg, writeback: dead memcgs shouldn't contribute to writeback ownership arbitration - xfrm: fix sa selector validation - sched/core: Add __sched tag for io_schedule() - sched/fair: Fix "runnable_avg_yN_inv" not used warnings - [x86] perf/intel/uncore: Handle invalid event coding for free-running counter - [x86] atomic: Fix smp_mb__{before,after}_atomic() - perf evsel: Make perf_evsel__name() accept a NULL argument - vhost_net: disable zerocopy by default - ipoib: correcly show a VF hardware address - [x86] cacheinfo: Fix a -Wtype-limits warning - blk-iolatency: only account submitted bios - ACPICA: Clear status of GPEs on first direct enable - EDAC/sysfs: Fix memory leak when creating a csrow object - nvme: fix possible io failures when removing multipathed ns - nvme-pci: properly report state change failure in nvme_reset_work - nvme-pci: set the errno on ctrl state change error - lightnvm: pblk: fix freeing of merged pages - [arm64] Do not enable IRQs for ct_user_exit - ipsec: select crypto ciphers for xfrm_algo - ipvs: defer hook registration to avoid leaks - media: i2c: fix warning same module names - ntp: Limit TAI-UTC offset - timer_list: Guard procfs specific code - [arm64] acpi: ignore 5.1 FADTs that are reported as 5.0 - media: hdpvr: fix locking and a missing msleep - [armhf] net: stmmac: sun8i: force select external PHY when no internal one - rtlwifi: rtl8192cu: fix error handle when usb probe failed - mt7601u: do not schedule rx_tasklet when the device has been disconnected - mt7601u: fix possible memory leak when the device is disconnected - ipvs: fix tinfo memory leak in start_sync_thread - ath10k: add missing error handling - ath10k: fix PCIE device wake up failed - perf tools: Increase MAX_NR_CPUS and MAX_CACHES - [x86] ASoC: Intel: hdac_hdmi: Set ops to NULL on remove - libata: don't request sense data on !ZAC ATA devices - [armhf] clocksource/drivers/exynos_mct: Increase priority over ARM arch timer - xsk: Properly terminate assignment in xskq_produce_flush_desc - rslib: Fix decoding of shortened codes - rslib: Fix handling of of caller provided syndrome - ixgbe: Check DDM existence in transceiver before access - crypto: serpent - mark __serpent_setkey_sbox noinline - wil6210: drop old event after wmi_call timeout - EDAC: Fix global-out-of-bounds write when setting edac_mc_poll_msec - bcache: check CACHE_SET_IO_DISABLE in allocator code - bcache: check CACHE_SET_IO_DISABLE bit in bch_journal() - bcache: acquire bch_register_lock later in cached_dev_free() - bcache: check c->gc_thread by IS_ERR_OR_NULL in cache_set_flush() - bcache: fix potential deadlock in cached_def_free() - [arm64] net: hns3: fix a -Wformat-nonliteral compile warning - [arm64] net: hns3: add some error checking in hclge_tm module - ath10k: destroy sdio workqueue while remove sdio module - [armhf,arm64] net: mvpp2: prs: Don't override the sign bit in SRAM parser shift - igb: clear out skb->tstamp after reading the txtime - iwlwifi: mvm: Drop large non sta frames - perf stat: Make metric event lookup more robust - perf stat: Fix group lookup for metric group - bnx2x: Prevent ptp_task to be rescheduled indefinitely - net: usb: asix: init MAC address buffers - rxrpc: Fix oops in tracepoint - bpf, libbpf, smatch: Fix potential NULL pointer dereference - bonding: validate ip header before check IPPROTO_IGMP - gpiolib: Fix references to gpiod_[gs]et_*value_cansleep() variants - [ppc64el] tools: bpftool: Fix json dump crash on powerpc - Bluetooth: hci_bcsp: Fix memory leak in rx_skb - Bluetooth: Add new 13d3:3491 QCA_ROME device - Bluetooth: Add new 13d3:3501 QCA_ROME device - Bluetooth: 6lowpan: search for destination address in all peers - [ppc64el] perf tests: Fix record+probe_libc_inet_pton.sh for powerpc64 - Bluetooth: Check state in l2cap_disconnect_rsp - gtp: add missing gtp_encap_disable_sock() in gtp_encap_enable() - Bluetooth: validate BLE connection interval updates - gtp: fix suspicious RCU usage - gtp: fix Illegal context switch in RCU read-side critical section. - gtp: fix use-after-free in gtp_encap_destroy() - gtp: fix use-after-free in gtp_newlink() - [armel/marvell,armhf] net: mvmdio: defer probe of orion-mdio if a clock is not ready - iavf: fix dereference of null rx_buffer pointer - floppy: fix out-of-bounds read in next_valid_format - floppy: fix invalid pointer dereference in drive_name - xen: let alloc_xenballooned_pages() fail if not enough memory free - scsi: core: Fix race on creating sense cache - scsi: megaraid_sas: Fix calculation of target ID - crypto: ghash - fix unaligned memory access in ghash_setkey() - [x86] crypto: ccp - Validate the the error value used to index error messages - [arm64] crypto: sha1-ce - correct digest for empty data in finup - [arm64] crypto: sha2-ce - correct digest for empty data in finup - crypto: chacha20poly1305 - fix atomic sleep when using async algorithm - [x86] crypto: ccp - memset structure fields to zero before reuse - [x86] crypto: ccp/gcm - use const time tag comparison. - Revert "bcache: set CACHE_SET_IO_DISABLE in bch_cached_dev_error()" - bcache: Revert "bcache: fix high CPU occupancy during journal" - bcache: Revert "bcache: free heap cache_set->flush_btree in bch_journal_free" - bcache: ignore read-ahead request failure on backing device - bcache: fix mistaken sysfs entry for io_error counter - bcache: destroy dc->writeback_write_wq if failed to create dc->writeback_thread - Input: alps - don't handle ALPS cs19 trackpoint-only device - [x86] Input: synaptics - whitelist Lenovo T580 SMBus intertouch - Input: alps - fix a mismatch between a condition check and its comment - [armhf] regulator: s2mps11: Fix buck7 and buck8 wrong voltages - [arm64] tegra: Update Jetson TX1 GPU regulator timings - iwlwifi: pcie: don't service an interrupt that was masked - iwlwifi: pcie: fix ALIVE interrupt handling for gen2 devices w/o MSI-X - iwlwifi: don't WARN when calling iwl_get_shared_mem_conf with RF-Kill - iwlwifi: fix RF-Kill interrupt while FW load for gen2 devices - NFSv4: Handle the special Linux file open access mode - pnfs/flexfiles: Fix PTR_ERR() dereferences in ff_layout_track_ds_error - pNFS: Fix a typo in pnfs_update_layout - pnfs: Fix a problem where we gratuitously start doing I/O through the MDS - lib/scatterlist: Fix mapping iterator when sg->offset is greater than PAGE_SIZE - ASoC: dapm: Adapt for debugfs API change - raid5-cache: Need to do start() part job after adding journal device - ALSA: seq: Break too long mutex context in the write loop - [x86] ALSA: hda/realtek - Fixed Headphone Mic can't record on Dell platform - [x86] ALSA: hda/realtek: apply ALC891 headset fixup to one Dell machine - media: v4l2: Test type instead of cfg->type in v4l2_ctrl_new_custom() - media: videobuf2-core: Prevent size alignment wrapping buffer size to 0 - media: videobuf2-dma-sg: Prevent size from overflowing - [x86] KVM: vPMU: refine kvm_pmu err msg when event creation failed - [arm64] tegra: Fix AGIC register range - fs/proc/proc_sysctl.c: fix the default values of i_uid/i_gid on /proc/sys inodes. - kconfig: fix missing choice values in auto.conf - drm/nouveau/i2c: Enable i2c pads & busses during preinit - padata: use smp_mb in padata_reorder to avoid orphaned padata jobs - dm zoned: fix zone state management race - xen/events: fix binding user event channels to cpus - 9p/xen: Add cleanup path in p9_trans_xen_init - 9p/virtio: Add cleanup path in p9_virtio_init - [x86] boot: Fix memory leak in default_get_smp_config() - [x86] perf/intel: Fix spurious NMI on fixed counter - [x86] perf/amd/uncore: Do not set 'ThreadMask' and 'SliceMask' for non-L3 PMCs - [x86] perf/amd/uncore: Set the thread mask for F17h L3 PMCs - drm/edid: parse CEA blocks embedded in DisplayID - [x86] intel_th: pci: Add Ice Lake NNPI support - [x86] PCI: hv: Fix a use-after-free bug in hv_eject_device_work() - PCI: Do not poll for PME if the device is in D3cold - [arm64] PCI: qcom: Ensure that PERST is asserted for at least 100 ms - Btrfs: fix data loss after inode eviction, renaming it, and fsync it - Btrfs: fix fsync not persisting dentry deletions due to inode evictions - Btrfs: add missing inode version, ctime and mtime updates when punching hole - IB/mlx5: Report correctly tag matching rendezvous capability - HID: wacom: generic: only switch the mode on devices with LEDs - HID: wacom: generic: Correct pad syncing - HID: wacom: correct touch resolution x/y typo - libnvdimm/pfn: fix fsdax-mode namespace info-block zero-fields - coda: pass the host file in vma->vm_file on mmap - include/asm-generic/bug.h: fix "cut here" for WARN_ON for __WARN_TAINT architectures - xfs: fix pagecache truncation prior to reflink - xfs: flush removing page cache in xfs_reflink_remap_prep - xfs: don't overflow xattr listent buffer - xfs: rename m_inotbt_nores to m_finobt_nores - xfs: don't ever put nlink > 0 inodes on the unlinked list - xfs: reserve blocks for ifree transaction during log recovery - xfs: fix reporting supported extra file attributes for statx() - xfs: serialize unaligned dio writes against all other dio writes - xfs: abort unaligned nowait directio early - [ppc64el] watchpoint: Restore NV GPRs while returning from exception - [ppc64el] powernv/npu: Fix reference leak - [ppc64el] pseries: Fix oops in hotplug memory notifier - [arm64] mmc: sdhci-msm: fix mutex while in spinlock - eCryptfs: fix a couple type promotion bugs - [x86] intel_th: msu: Fix single mode with disabled IOMMU - Bluetooth: Add SMP workaround Microsoft Surface Precision Mouse bug - usb: Handle USB3 remote wakeup for LPM enabled devices correctly - blk-throttle: fix zero wait time for iops throttled group - blk-iolatency: clear use_delay when io.latency is set to zero - blkcg: update blkcg_print_stat() to handle larger outputs - [armel/marvell,armhf] net: mvmdio: allow up to four clocks to be specified for orion-mdio - dm bufio: fix deadlock with loop device https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.62 - bnx2x: Prevent load reordering in tx completion processing - [x86] hv_netvsc: Fix extra rcu_read_unlock in netvsc_recv_callback() - igmp: fix memory leak in igmpv3_del_delrec() - ipv4: don't set IPv6 only flags to IPv4 addresses - ipv6: rt6_check should return NULL if 'from' is NULL - ipv6: Unlink sibling route in case of failure - [armhf,arm64] net: dsa: mv88e6xxx: wait after reset deactivation - net: make skb_dst_force return true when dst is refcounted - net: neigh: fix multiple neigh timer scheduling - net: openvswitch: fix csum updates for MPLS actions - net: phy: sfp: hwmon: Fix scaling of RX power - [armhf,arm64] net: stmmac: Re-work the queue selection for TSO packets - nfc: fix potential illegal memory access - r8169: fix issue with confused RX unit after PHY power-down on RTL8411b - rxrpc: Fix send on a connected, but unbound socket - sctp: fix error handling on stream scheduler initialization - [x86] sky2: Disable MSI on ASUS P6T - tcp: be more careful in tcp_fragment() - tcp: fix tcp_set_congestion_control() use from bpf hook - tcp: Reset bytes_acked and bytes_received when disconnecting - vrf: make sure skb->data contains ip header to make routing - net/mlx5e: IPoIB, Add error path in mlx5_rdma_setup_rn - macsec: fix use-after-free of skb during RX - macsec: fix checksumming after decryption - netrom: fix a memory leak in nr_rx_frame() - netrom: hold sock when setting skb->destructor - net_sched: unset TCQ_F_CAN_BYPASS when adding filters - sctp: not bind the socket in sctp_connect - net: bridge: mcast: fix stale nsrcs pointer in igmp3/mld2 report handling - net: bridge: mcast: fix stale ipv6 hdr pointer when handling v6 query - net: bridge: don't cache ether dest pointer on input - net: bridge: stp: don't cache eth dest pointer before skb pull - dma-buf: balance refcount inbalance - dma-buf: Discard old fence_excl on retrying get_fences_rcu for realloc - perf/core: Fix exclusive events' grouping - perf/core: Fix race between close() and fork() - ext4: don't allow any modifications to an immutable file - ext4: enforce the immutable flag on open files - mm: add filemap_fdatawait_range_keep_errors() - jbd2: introduce jbd2_inode dirty range scoping - ext4: use jbd2_inode dirty range scoping - ext4: allow directory holes - [x86] KVM: nVMX: do not use dangling shadow VMCS after guest reset - [x86] KVM: nVMX: Clear pending KVM_REQ_GET_VMCS12_PAGES when leaving nested - mm: vmscan: scan anonymous pages on file refaults - net: sched: verify that q!=NULL before setting q->flags https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.63 - [x86] hvsock: fix epollout hang from race condition - [armhf,arm64] drm/panel: simple: Fix panel_simple_dsi_probe - [x86] staging: vt6656: use meaningful error code during buffer allocation - usb: core: hub: Disable hub-initiated U1/U2 - [armhf,arm64] pinctrl: rockchip: fix leaked of_node references - drm/amd/display: Fill prescale_params->scale for RGB565 - drm/amdgpu/sriov: Need to initialize the HDP_NONSURFACE_BAStE - drm/amd/display: Disable ABM before destroy ABM struct - drm/amdkfd: Fix a potential memory leak - drm/amdkfd: Fix sdma queue map issue - drm/edid: Fix a missing-check bug in drm_load_edid_firmware() - PCI: Return error if cannot probe VF - [armhf,arm64] gpu: host1x: Increase maximum DMA segment size - drm/crc-debugfs: User irqsafe spinlock in drm_crtc_add_crc_entry - drm/crc-debugfs: Also sprinkle irqrestore over early exits - memstick: Fix error cleanup path of memstick_init - [arm64] tty: serial: msm_serial: avoid system lockup condition - serial: 8250: Fix TX interrupt handling condition - drm/amd/display: Always allocate initial connector state state - drm/virtio: Add memory barriers for capset cache. - drm/amd/display: fix compilation error - [ppc64el] pseries/mobility: prevent cpu hotplug during DT update - [armhf,arm64] drm/rockchip: Properly adjust to a true clock in adjusted_mode - [armhf] serial: imx: fix locking in set_termios() - tty: serial_core: Set port active bit in uart_port_activate - usb: gadget: Zero ffs_io_data - mmc: sdhci: sdhci-pci-o2micro: Check if controller supports 8-bit width - [ppc64el] pci/of: Fix OF flags parsing for 64bit BARs - [arm64] drm/msm: Depopulate platform on probe failure - [arm64] PCI: xilinx-nwl: Fix Multi MSI data programming - iio: iio-utils: Fix possible incorrect mask calculation - [ppc64el] cacheflush: fix variable set but not used - [ppc64el] xmon: Fix disabling tracing while in xmon - [ppc64el] recordmcount: Fix spurious mcount entries on powerpc - mfd: core: Set fwnode for created devices - [arm64] mfd: hi655x-pmic: Fix missing return value check for devm_regmap_init_mmio_clk - mm/swap: fix release_pages() when releasing devmap pages - RDMA/i40iw: Set queue pair state when being queried - IB/mlx5: Fixed reporting counters on 2nd port for Dual port RoCE - [ppc64el] mm: Handle page table allocation failures - IB/ipoib: Add child to parent list only if device initialized - [arm64] assembler: Switch ESB-instruction with a vanilla nop if !ARM64_HAS_RAS - perf stat: Fix use-after-freed pointer detected by the smatch tool - perf top: Fix potential NULL pointer dereference detected by the smatch tool - perf session: Fix potential NULL pointer dereference found by the smatch tool - perf annotate: Fix dereferencing freed memory found by the smatch tool - perf hists browser: Fix potential NULL pointer dereference found by the smatch tool - RDMA/rxe: Fill in wc byte_len with IB_WC_RECV_RDMA_WITH_IMM - [armhf] PCI: dwc: pci-dra7xx: Fix compilation when !CONFIG_GPIOLIB - [ppc64el] boot: add {get, put}_unaligned_be32 to xz_config.h - block: init flush rq ref count to 1 - f2fs: avoid out-of-range memory access - mailbox: handle failed named mailbox channel request - dlm: check if workqueues are NULL before flushing/destroying - [ppc64el] eeh: Handle hugepages in ioremap space - block/bio-integrity: fix a memory leak bug - 9p: pass the correct prototype to read_cache_page - mm/gup.c: mark undo_dev_pagemap as __maybe_unused - mm/gup.c: remove some BUG_ONs from get_gate_page() - memcg, fsnotify: no oom-kill for remote memcg charging - mm/mmu_notifier: use hlist_add_head_rcu() - proc: use down_read_killable mmap_sem for /proc/pid/smaps_rollup - proc: use down_read_killable mmap_sem for /proc/pid/pagemap - proc: use down_read_killable mmap_sem for /proc/pid/clear_refs - proc: use down_read_killable mmap_sem for /proc/pid/map_files - cxgb4: reduce kernel stack usage in cudbg_collect_mem_region() - proc: use down_read_killable mmap_sem for /proc/pid/maps - locking/lockdep: Fix lock used or unused stats error - mm: use down_read_killable for locking mmap_sem in access_remote_vm - locking/lockdep: Hide unused 'class' variable - usb: wusbcore: fix unbalanced get/put cluster_id - [x86] usb: pci-quirks: Correct AMD PLL quirk detection - btrfs: inode: Don't compress if NODATASUM or NODATACOW set - [x86] sysfb_efi: Add quirks for some devices with swapped width and height - [x86] speculation/mds: Apply more accurate check on hypervisor platform - binder: prevent transactions to context manager from its own process. - fpga-manager: altera-ps-spi: Fix build error - [x86] mei: me: add mule creek canyon (EHL) device ids - [x86] hpet: Fix division by zero in hpet_time_div() - ALSA: ac97: Fix double free of ac97_codec_device - ALSA: line6: Fix wrong altsetting for LINE6_PODHD500_1 - ALSA: hda - Add a conexant codec entry to let mute led work - [ppc64el] xive: Fix loop exit-condition in xive_find_target_in_mask() - libnvdimm/bus: Stop holding nvdimm_bus_list_mutex over __nd_ioctl() - access: avoid the RCU grace period for the temporary subjective credentials https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.64 - [x86] hv_sock: Add support for delayed close - vsock: correct removal of socket from the list - NFS: Fix dentry revalidation on NFSv4 lookup - NFS: Refactor nfs_lookup_revalidate() - NFSv4: Fix lookup revalidate of regular files - [armhf,arm64] usb: dwc2: Disable all EP's on disconnect - [armhf,arm64] usb: dwc2: Fix disable all EP's on disconnect - [arm64] compat: Provide definition for COMPAT_SIGMINSTKSZ (Closes: #904385). - binder: fix possible UAF when freeing buffer - ISDN: hfcsusb: checking idx of ep configuration - media: au0828: fix null dereference in error path - ath10k: Change the warning message string - media: cpia2_usb: first wake up, then free in disconnect - media: pvrusb2: use a different format for warnings - NFS: Cleanup if nfs_match_client is interrupted - media: radio-raremono: change devm_k*alloc to k*alloc - [x86] iommu/vt-d: Don't queue_iova() if there is no flush queue - vhost: introduce vhost_exceeds_weight() - vhost_net: fix possible infinite loop (CVE-2019-3900) - vhost: vsock: add weight support - vhost: scsi: add weight support (CVE-2019-3900) - sched/fair: Don't free p->numa_faults with concurrent readers - sched/fair: Use RCU accessors consistently for ->numa_group - /proc//cmdline: remove all the special cases - /proc//cmdline: add back the setproctitle() special case - drivers/pps/pps.c: clear offset flags in PPS_SETPARAMS ioctl - Fix allyesconfig output. - ceph: hold i_ceph_lock when removing caps for freeing inode - block, scsi: Change the preempt-only flag into a counter - scsi: core: Avoid that a kernel warning appears during system resume - ip_tunnel: allow not to count pkts on tstats by setting skb's dev to NULL https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.65 - [armhf] dts: rockchip: Make rk3288-veyron-minnie run at hs200 - [armhf] dts: rockchip: Make rk3288-veyron-mickey's emmc work again - [armhf] dts: rockchip: Mark that the rk3288 timer might stop in suspend - ftrace: Enable trampoline when rec count returns back to one - [armhf,arm64] dmaengine: tegra-apb: Error out if DMA_PREP_INTERRUPT flag is unset - [arm64] dts: rockchip: fix isp iommu clocks and power domain - kernel/module.c: Only return -EEXIST for modules that have finished loading - [arm64] clk: tegra210: fix PLLU and PLLU_OUT1 - fs/adfs: super: fix use-after-free bug - btrfs: fix minimum number of chunk errors for DUP - btrfs: qgroup: Don't hold qgroup_ioctl_lock in btrfs_qgroup_inherit() - cifs: Fix a race condition with cifs_echo_request - ceph: fix improper use of smp_mb__before_atomic() - ceph: return -ERANGE if virtual xattr value didn't fit in buffer - ACPI: blacklist: fix clang warning for unused DMI table - [s390x] scsi: zfcp: fix GCC compiler warning emitted with -Wmaybe-uninitialized - perf version: Fix segfault due to missing OPT_END() - [x86] kvm: avoid constant-conversion warning - ACPI: fix false-positive -Wuninitialized warning - be2net: Signal that the device cannot transmit during reconfiguration - [x86] apic: Silence -Wtype-limits compiler warnings - mm/cma.c: fail if fixed declaration can't be honored - lib/test_overflow.c: avoid tainting the kernel and fix wrap size - lib/test_string.c: avoid masking memset16/32/64 failures - coda: add error handling for fget - coda: fix build using bare-metal toolchain - uapi linux/coda_psdev.h: move upc_req definition from uapi to kernel side headers - drivers/rapidio/devices/rio_mport_cdev.c: NUL terminate some strings - ipc/mqueue.c: only perform resource calculation if user valid - [x86] xen/pv: Fix a boot up hang revealed by int3 self test - [x86] kvm: Don't call kvm_spurious_fault() from .fixup - [x86] paravirt: Fix callee-saved function ELF sizes - [x86] boot: Remove multiple copy of static function sanitize_boot_params() - drm/nouveau: fix memory leak in nouveau_conn_reset() - kconfig: Clear "written" flag to avoid data loss - Btrfs: fix incremental send failure after deduplication - Btrfs: fix race leading to fs corruption after transaction abort - [armhf,arm64] mmc: dw_mmc: Fix occasional hang after tuning on eMMC - [arm64] mmc: meson-mx-sdio: Fix misuse of GENMASK macro - gpiolib: fix incorrect IRQ requesting of an active-low lineevent - IB/hfi1: Fix Spectre v1 vulnerability - mtd: rawnand: micron: handle on-die "ECC-off" devices correctly - selinux: fix memory leak in policydb_init() - ALSA: hda: Fix 1-minute detection delay when i915 module is not available (Closes: #931507) - mm: vmscan: check if mem cgroup is disabled or not before calling memcg slab shrinker - [s390x] dasd: fix endless loop after read unit address configuration - [arm*] drivers/perf: arm_pmu: Fix failure path in PM notifier - [arm64] compat: Allow single-byte watchpoints on all addresses - [arm64] cpufeature: Fix feature comparison for CTR_EL0.{CWG,ERG} - nbd: replace kill_bdev() with __invalidate_device() again - xen/swiotlb: fix condition for calling xen_destroy_contiguous_region() - IB/mlx5: Fix unreg_umr to ignore the mkey state - IB/mlx5: Use direct mkey destroy command upon UMR unreg failure - IB/mlx5: Move MRs to a kernel PD when freeing them to the MR cache - IB/mlx5: Fix clean_mr() to work in the expected order - IB/mlx5: Fix RSS Toeplitz setup to be aligned with the HW specification - IB/hfi1: Check for error on call to alloc_rsm_map_table - [x86] drm/i915/gvt: fix incorrect cache entry for guest page mapping - eeprom: at24: make spd world-readable again - objtool: Support GCC 9 cold subfunction naming scheme - gcc-9: properly declare the {pv,hv}clock_page storage - [x86] vdso: Prevent segfaults due to hoisted vclock reads - scsi: mpt3sas: Use 63-bit DMA addressing on SAS35 HBA https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.66 - scsi: fcoe: Embed fc_rport_priv in fcoe_rport structure - gcc-9: don't warn about uninitialized variable - driver core: Establish order of operations for device_add and device_del via bitflag - drivers/base: Introduce kill_device() - libnvdimm/bus: Prevent duplicate device_unregister() calls - libnvdimm/region: Register badblocks before namespaces - libnvdimm/bus: Prepare the nd_ioctl() path to be re-entrant - libnvdimm/bus: Fix wait_nvdimm_bus_probe_idle() ABBA deadlock - HID: wacom: fix bit shift for Cintiq Companion 2 - HID: Add quirk for HP X1200 PIXART OEM mouse - IB: directly cast the sockaddr union to aockaddr - atm: iphase: Fix Spectre v1 vulnerability - bnx2x: Disable multi-cos feature. - ife: error out when nla attributes are empty - ip6_gre: reload ipv6h in prepare_ip6gre_xmit_ipv6 - ip6_tunnel: fix possible use-after-free on xmit - ipip: validate header length in ipip_tunnel_xmit - [armhf,arm64] mvpp2: fix panic on module removal - [armhf,arm64] mvpp2: refactor MTU change code - net: bridge: delete local fdb on device init failure - net: bridge: mcast: don't delete permanent entries when fast leave is enabled - net: fix ifindex collision during namespace removal - net/mlx5e: always initialize frag->last_in_page - net/mlx5: Use reversed order when unregister devices - net: phylink: Fix flow control for fixed-link - net: sched: Fix a possible null-pointer dereference in dequeue_func() - net sched: update vlan action for batched events operations - net: sched: use temporary variable for actions indexes - net/smc: do not schedule tx_work in SMC_CLOSED state - tipc: compat: allow tipc commands without arguments - tun: mark small packets as owned by the tap sock - net/mlx5: Fix modify_cq_in alignment - net/mlx5e: Prevent encap flow counter update async to user query - r8169: don't use MSI before RTL8168d - compat_ioctl: pppoe: fix PPPOEIOCSFWD handling - cgroup: Call cgroup_release() before __exit_signal() - cgroup: Implement css_task_iter_skip() - cgroup: Include dying leaders with live threads in PROCS iterations - cgroup: css_task_iter_skip()'d iterators must be advanced before accessed - cgroup: Fix css_task_iter_advance_css_set() cset skip condition - [arm*] spi: bcm2835: Fix 3-wire mode if DMA is enabled https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.67 - [x86] crypto: ccp - Fix oops by properly managing allocated structures - [x86] crypto: ccp - Add support for valid authsize values less than 16 - [x86] crypto: ccp - Ignore tag length when decrypting GCM ciphertext - usb: usbfs: fix double-free of usb memory upon submiturb error - usb: iowarrior: fix deadlock on disconnect - sound: fix a memory leak bug - [arm64,mips*/octeon] mmc: cavium: Set the correct dma max segment size for mmc_host - [arm64,mips*/octeon] mmc: cavium: Add the missing dma unmap when the dma has finished. - loop: set PF_MEMALLOC_NOIO for the worker thread - Input: usbtouchscreen - initialize PM mutex before using it - [x86] Input: elantech - enable SMBus on new (2018+) systems - [x86] Input: synaptics - enable RMI mode for HP Spectre X360 - [x86] mm: Check for pfn instead of page in vmalloc_sync_one() - [x86] mm: Sync also unmappings in vmalloc_sync_all() - mm/vmalloc: Sync unmappings in __purge_vmap_area_lazy() - [s390x] perf annotate: Fix s390 gap between kernel end and module start - perf db-export: Fix thread__exec_comm() - [s390x] perf record: Fix module size on s390 - [x86] purgatory: Use CFLAGS_REMOVE rather than reset KBUILD_CFLAGS - gfs2: gfs2_walk_metadata fix - usb: yurex: Fix use-after-free in yurex_delete - [x86] usb: typec: tcpm: free log buf memory when remove debug file - [x86] usb: typec: tcpm: remove tcpm dir if no children - [x86] usb: typec: tcpm: Add NULL check before dereferencing config - [x86] usb: typec: tcpm: Ignore unsupported/unknown alternate mode requests - can: peak_usb: fix potential double kfree_skb() - netfilter: nfnetlink: avoid deadlock due to synchronous request_module - [s390x] vfio-ccw: Set pa_nr to 0 if memory allocation fails for pa_iova_pfn - netfilter: Fix rpfilter dropping vrf packets by mistake - netfilter: conntrack: always store window size un-scaled - netfilter: nft_hash: fix symhash with modulus one - drm/amd/display: Wait for backlight programming completion in set backlight level - drm/amd/display: use encoder's engine id to find matched free audio device - drm/amd/display: Fix dc_create failure handling and 666 color depths - drm/amd/display: Only enable audio if speaker allocation exists - drm/amd/display: Increase size of audios array - [x86] iscsi_ibft: make ISCSI_IBFT dependson ACPI instead of ISCSI_IBFT_FIND - nl80211: fix NL80211_HE_MAX_CAPABILITY_LEN - mac80211: don't warn about CW params when not using them - allocate_flower_entry: should check for null deref - hwmon: (nct6775) Fix register address and added missed tolerance for nct6106 - drm: silence variable 'conn' set but not used - [s390x] qdio: add sanity checks to the fast-requeue path - ALSA: compress: Fix regression on compressed capture streams - ALSA: compress: Prevent bypasses of set_params - ALSA: compress: Don't allow paritial drain operations on capture streams - ALSA: compress: Be more restrictive about when a drain is allowed - perf tools: Fix proper buffer size for feature processing - perf probe: Avoid calling freeing routine multiple times for same pointer - drbd: dynamically allocate shash descriptor - ACPI/IORT: Fix off-by-one check in iort_dev_find_its_id() - nvme: fix multipath crash when ANA is deactivated - scsi: megaraid_sas: fix panic on loading firmware crashdump - [ppc64el] scsi: ibmvfc: fix WARN_ON during event pool release - scsi: scsi_dh_alua: always use a 2 second delay before retrying RTPG - test_firmware: fix a memory leak bug - tty/ldsem, locking/rwsem: Add missing ACQUIRE to read_failed sleep loop - perf/core: Fix creating kernel counters for PMUs that override event->cpu - [s390x] dma: provide proper ARCH_ZONE_DMA_BITS value - HID: sony: Fix race condition between rumble and device remove. - [x86] purgatory: Do not use __builtin_memcpy and __builtin_memset - ALSA: usb-audio: fix a memory leak bug - can: peak_usb: pcan_usb_pro: Fix info-leaks to USB devices - can: peak_usb: pcan_usb_fd: Fix info-leaks to USB devices - hwmon: (nct7802) Fix wrong detection of in4 presence - [x86] drm/i915: Fix wrong escape clock divisor init for GLK - ALSA: firewire: fix a memory leak bug - ALSA: hiface: fix multiple memory leak bugs - ALSA: hda - Don't override global PCM hw info flag - [x86] ALSA: hda - Workaround for crackled sound on AMD controller (1022:1457) - mac80211: don't WARN on short WMM parameters from AP - dax: dax_layout_busy_page() should not unmap cow pages - SMB3: Fix deadlock in validate negotiate hits reconnect - smb3: send CAP_DFS capability during session setup - NFSv4: Fix an Oops in nfs4_do_setattr - [x86] KVM: Fix leak vCPU's VMCS value into other pCPU - mwifiex: fix 802.11n/WPA detection - iwlwifi: don't unmap as page memory that was mapped as single - iwlwifi: mvm: fix an out-of-bound access - iwlwifi: mvm: don't send GEO_TX_POWER_LIMIT on version < 41 - iwlwifi: mvm: fix version check for GEO_TX_POWER_LIMIT support . [ Steve McIntyre ] * [arm64] Improve support for the Huawei TaiShan server platform (Closes: #930554): - Enable the HNS/ROCE Infiniband driver - Backport fixes from 4.20 and 4.21 for HNS3 networking, hisi_sas SAS and HNS/ROCE Infiniband - Add module:drivers/scsi/hisi_sas/* to the ABI ignore list . [ Uwe Kleine-König ] * [armhf] Add support for all i.MX6 variants. * rtc-s35390a: backport fix to make hwclock able to read the time (Closes: #932845) . [ Ben Hutchings ] * [rt] Update to 4.19.59-rt24: - Fix build failure after "genirq: Prevent use-after-free and work list corruption": + Update "genirq: Do not invoke the affinity callback via a workqueue on RT" + kthread: add a global worker thread. + genirq: Do not invoke the affinity callback via a workqueue on RT + genirq: Handle missing work_struct in irq_set_affinity_notifier() - Update "irqwork: push most work into softirq context" to resolve conflict with "irq_work: Do not raise an IPI when queueing work on the local CPU" - Drop "random: avoid preempt_disable()ed section" - arm: imx6: cpuidle: Use raw_spinlock_t - rcu: Don't allow to change rcu_normal_after_boot on RT - sched/core: Drop a preempt_disable_rt() statement - timers: Redo the notification of canceling timers on -RT - Fix futex regression in 4.19.21: + Revert "futex: Ensure lock/unlock symetry versus pi_lock and hash bucket lock" + Revert "futex: Fix bug on when a requeued RT task times out" + Revert "rtmutex: Handle the various new futex race conditions" + Revert "futex: workaround migrate_disable/enable in different context" + futex: Make the futex_hash_bucket lock raw + futex: Delay deallocation of pi_state - mm/zswap: Do not disable preemption in zswap_frontswap_store() * Bump ABI to 6 linux-signed-arm64 (4.19.37+6) unstable; urgency=high . * Sign kernel from linux 4.19.37-6 . [ John Paul Adrian Glaubitz ] * [sh4]: Check for kprobe trap number before trying to handle a kprobe trap . [ Salvatore Bonaccorso ] * tcp: refine memory limit test in tcp_fragment() (Closes: #930904) * ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME (CVE-2019-13272) . [ Steve McIntyre ] * [arm64] Improve support for the Huawei TaiShan server platform (Closes: #930554): - Enable the HNS/ROCE Infiniband driver - Backport fixes from 4.20 and 4.21 for HNS3 networking, hisi_sas SAS and HNS/ROCE Infiniband - Add module:drivers/scsi/hisi_sas/* to the ABI ignore list . [ Cyril Brulebois ] * [arm] Backport DTB support for Rasperry Pi Compute Module 3. * [arm64] Backport DTB support for Rasperry Pi Compute Module 3. linux-signed-arm64 (4.19.37+5+deb10u2) buster-security; urgency=high . * Sign kernel from linux 4.19.37-5+deb10u2 . [ Romain Perier ] * [x86] x86/insn-eval: Fix use-after-free access to LDT entry (CVE-2019-13233) * [powerpc*] mm/64s/hash: Reallocate context ids on fork (CVE-2019-12817) * nfc: Ensure presence of required attributes in the deactivate_target handler (CVE-2019-12984) * binder: fix race between munmap() and direct reclaim (CVE-2019-1999) * scsi: libsas: fix a race condition when smp task timeout (CVE-2018-20836) * Input: gtco - bounds check collection indent level (CVE-2019-13631) * floppy: fix out-of-bounds read in copy_buffer (CVE-2019-14283) * inet: switch IP ID generator to siphash (CVE-2019-10638) * floppy: fix div-by-zero in setup_format_params (CVE-2019-14284) * Bluetooth: hci_uart: check for missing tty operations (CVE-2019-10207) * [powerpc/tm] Fix oops on sigreturn on systems without TM (CVE-2019-13648) . [ Salvatore Bonaccorso ] * [x86] cpufeatures: Carve out CQM features retrieval * [x86] cpufeatures: Combine word 11 and 12 into a new scattered features word * [x86] speculation: Prepare entry code for Spectre v1 swapgs mitigations * [x86] speculation: Enable Spectre v1 swapgs mitigations (CVE-2019-1125) * [amd64] entry: Use JMP instead of JMPQ * [x86] speculation/swapgs: Exclude ATOMs from speculation through SWAPGS * Documentation: Add section about CPU vulnerabilities for Spectre * Documentation: Add swapgs description to the Spectre v1 documentation . [ Ben Hutchings ] * [x86] cpufeatures: Avoid ABI change for swapgs mitigations: - Move swapgs feature bits to existing scattered words - Revert "x86/cpufeatures: Combine word 11 and 12 into a new scattered features word" * inet: Avoid ABI change for IP ID hash change linux-signed-arm64 (4.19.37+5+deb10u2~bpo9+1) stretch-backports; urgency=medium . * Sign kernel from linux 4.19.37-5+deb10u2~bpo9+1 . * Rebuild for stretch-backports; no further changes required linux-signed-arm64 (4.19.37+5+deb10u1) buster-security; urgency=high . * Sign kernel from linux 4.19.37-5+deb10u1 . * tcp: refine memory limit test in tcp_fragment() (Closes: #930904) * ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME (CVE-2019-13272) linux-signed-i386 (4.19.67+2) buster; urgency=medium . * Sign kernel from linux 4.19.67-2 . [ Salvatore Bonaccorso ] * dm: disable DISCARD if the underlying storage no longer supports it (Closes: #934331) * xfs: fix missing ILOCK unlock when xfs_setattr_nonsize fails due to EDQUOT (CVE-2019-15538) . [ Ben Hutchings ] * KVM: Ignore ABI changes * [ppc64el] Disable PPC_TRANSACTIONAL_MEM (Closes: #866122) * [ppc64el] Avoid ABI change for disabling TM * netfilter: conntrack: Use consistent ct id hash calculation (fixes regression in 4.19.44) . [ Cyril Brulebois ] * [arm] Backport DTB support for Rasperry Pi Compute Module 3. * [arm64] Backport DTB support for Rasperry Pi Compute Module 3. linux-signed-i386 (4.19.67+1) buster; urgency=medium . * Sign kernel from linux 4.19.67-1 . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.38 - netfilter: nft_compat: use refcnt_t type for nft_xt reference count - netfilter: nft_compat: make lists per netns - netfilter: nf_tables: split set destruction in deactivate and destroy phase - netfilter: nft_compat: destroy function must not have side effects - netfilter: nf_tables: warn when expr implements only one of activate/deactivate - netfilter: nf_tables: unbind set in rule from commit path - netfilter: nft_compat: don't use refcount_inc on newly allocated entry - netfilter: nft_compat: use .release_ops and remove list of extension - netfilter: nf_tables: fix set double-free in abort path - netfilter: nf_tables: bogus EBUSY when deleting set after flush - netfilter: nf_tables: bogus EBUSY in helper removal from transaction - net/ibmvnic: Fix RTNL deadlock during device reset - net: mvpp2: fix validate for PPv2.1 - ext4: fix some error pointer dereferences - tipc: handle the err returned from cmd header function - loop: do not print warn message if partition scan is successful - [armhf,arm64] drm/rockchip: fix for mailbox read validation. - vsock/virtio: fix kernel panic from virtio_transport_reset_no_sock - ipvs: fix warning on unused variable - [ppc64el] vdso32: fix CLOCK_MONOTONIC on PPC64 - [armhf,arm64] net: dsa: mv88e6xxx: add call to mv88e6xxx_ports_cmode_init to probe for new DSA framework - cifs: fix memory leak in SMB2_read - cifs: do not attempt cifs operation on smb2+ rename error - tracing: Fix a memory leak by early error exit in trace_pid_write() - zram: pass down the bvec we need to read into in the work struct - trace: Fix preempt_enable_no_resched() abuse - IB/rdmavt: Fix frwr memory registration - RDMA/mlx5: Do not allow the user to write to the clock page - sched/numa: Fix a possible divide-by-zero - ceph: only use d_name directly when parent is locked - ceph: ensure d_name stability in ceph_dentry_hash() - ceph: fix ci->i_head_snapc leak - nfsd: Don't release the callback slot unless it was actually held - sunrpc: don't mark uninitialised items as VALID. - [x86] perf/intel: Update KBL Package C-state events to also include PC8/PC9/PC10 counters - Input: synaptics-rmi4 - write config register values to the right offset - [armhf] 8857/1: efi: enable CP15 DMB instructions before cleaning the cache - [ppc64el] mm/radix: Make Radix require HUGETLB_PAGE - [arm*] drm/vc4: Fix memory leak during gpu reset. - [x86] Revert "drm/i915/fbdev: Actually configure untiled displays" - USB: Add new USB LPM helpers - USB: Consolidate LPM checks to avoid enabling LPM twice - slip: make slhc_free() silently accept an error pointer - [x86] intel_th: gth: Fix an off-by-one in output unassigning - fs/proc/proc_sysctl.c: Fix a NULL pointer dereference - workqueue: Try to catch flush_work() without INIT_WORK(). - sched/deadline: Correctly handle active 0-lag timers - NFS: Forbid setting AF_INET6 to "struct sockaddr_in"->sin_family. - netfilter: ebtables: CONFIG_COMPAT: drop a bogus WARN_ON - fm10k: Fix a potential NULL pointer dereference - tipc: check bearer name with right length in tipc_nl_compat_bearer_enable - tipc: check link name with right length in tipc_nl_compat_link_set - net: netrom: Fix error cleanup path of nr_proto_init - net/rds: Check address length before reading address family - rxrpc: fix race condition in rxrpc_input_packet() - [x86] retpolines: Raise limit for generating indirect calls from switch-case - [x86] retpolines: Disable switch jump tables when retpolines are enabled - mm: Fix warning in insert_pfn() - [x86] fpu: Don't export __kernel_fpu_{begin,end}() - ipv4: add sanity checks in ipv4_link_failure() - ipv4: set the tcp_min_rtt_wlen range from 0 to one day - net/mlx5e: ethtool, Remove unsupported SFP EEPROM high pages query - net: rds: exchange of 8K and 1M pool - net/rose: fix unbound loop in rose_loopback_timer() - [armhf,arm64] net: stmmac: move stmmac_check_ether_addr() to driver probe - team: fix possible recursive locking when add slaves - [arm64] net: hns: Fix WARNING when hns modules installed - net/mlx5e: Fix the max MTU check in case of XDP - net/mlx5e: Fix use-after-free after xdp_return_frame https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.39 - selinux: use kernel linux/socket.h for genheaders and mdp - Revert "ACPICA: Clear status of GPEs before enabling them" - [arm*] dts: bcm283x: Fix hdmi hpd gpio pull - [s390x] limit brk randomization to 32MB - net: ieee802154: fix a potential NULL pointer dereference - ieee802154: hwsim: propagate genlmsg_reply return code - [armhf,arm64] net: stmmac: don't set own bit too early for jumbo frames - qlcnic: Avoid potential NULL pointer dereference - xsk: fix umem memory leak on cleanup - netfilter: nft_set_rbtree: check for inactive element after flag mismatch - netfilter: bridge: set skb transport_header before entering NF_INET_PRE_ROUTING - netfilter: fix NETFILTER_XT_TARGET_TEE dependencies - netfilter: ip6t_srh: fix NULL pointer dereferences - [s390x] qeth: fix race when initializing the IP address table - [armhf] imx51: fix a leaked reference by adding missing of_node_put - [arm64] KVM: Reset the PMU in preemptible context - [armhf,arm64] KVM: vgic-its: Take the srcu lock when writing to guest memory - [armhf,arm64] KVM: vgic-its: Take the srcu lock when parsing the memslots - [x86] usb: dwc3: pci: add support for Comet Lake PCH ID - usb: gadget: net2280: Fix overrun of OUT messages - usb: gadget: net2280: Fix net2280_dequeue() - [x86] i2c: i801: Add support for Intel Comet Lake - staging: rtl8188eu: Fix potential NULL pointer dereference of kcalloc - staging: rtlwifi: rtl8822b: fix to avoid potential NULL pointer dereference - staging: rtl8712: uninitialized memory in read_bbreg_hdl() - staging: rtlwifi: Fix potential NULL pointer dereference of kzalloc - [arm64] net: macb: Add null check for PCLK and HCLK - net/sched: don't dereference a->goto_chain to read the chain index - [armhf] dts: imx6qdl: Fix typo in imx6qdl-icore-rqs.dtsi - [armhf,arm64] drm/tegra: hub: Fix dereference before check - NFS: Fix a typo in nfs_init_timeout_values() - drm: Fix drm_release() and device unplug - [arm64] drm/meson: Fix invalid pointer in meson_drv_unbind() - [arm64] drm/meson: Uninstall IRQ handler - scsi: mpt3sas: Fix kernel panic during expander reset - scsi: aacraid: Insure we don't access PCIe space during AER/EEH - scsi: qla4xxx: fix a potential NULL pointer dereference - leds: trigger: netdev: fix refcnt leak on interface rename - [x86] realmode: Don't leak the trampoline kernel address - usb: u132-hcd: fix resource leak - ceph: fix use-after-free on symlink traversal - [s390x] scsi: zfcp: reduce flood of fcrscn1 trace records on multi- element RSCN - [x86] mm: Don't exceed the valid physical address space - libata: fix using DMA buffers on stack - gpio: of: Fix of_gpiochip_add() error path - nvme-multipath: relax ANA state check - perf machine: Update kernel map address and re-order properly - [x86] iommu/amd: Reserve exclusion range in iova-domain - ptrace: take into account saved_sigmask in PTRACE{GET,SET}SIGMASK - leds: trigger: netdev: use memcpy in device_name_store https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.40 - ipv4: ip_do_fragment: Preserve skb_iif during fragmentation - ipv6: A few fixes on dereferencing rt->from - ipv6: fix races in ip6_dst_destroy() - ipv6/flowlabel: wait rcu grace period before put_pid() - ipv6: invert flowlabel sharing check in process and user mode - l2ip: fix possible use-after-free - l2tp: use rcu_dereference_sk_user_data() in l2tp_udp_encap_recv() - [armhf] net: dsa: bcm_sf2: fix buffer overflow doing set_rxnfc - net: phy: marvell: Fix buffer overrun with stats counters - rxrpc: Fix net namespace cleanup - sctp: avoid running the sctp state machine recursively - packet: validate msg_namelen in send directly - bnxt_en: Improve multicast address setup logic. - bnxt_en: Free short FW command HWRM memory in error path in bnxt_init_one() - bnxt_en: Fix uninitialized variable usage in bnxt_rx_pkt(). - [x86] KVM: Whitelist port 0x7e for pre-incrementing %rip - [x86] KVM: nVMX: Fix size checks in vmx_set_nested_state - ALSA: line6: use dynamic buffers - ath10k: Drop WARN_ON()s that always trigger during system resume https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.41 - iwlwifi: fix driver operation for 5350 - mwifiex: Make resume actually do something useful again on SDIO cards - mac80211: don't attempt to rename ERR_PTR() debugfs dirs - [armhf] i2c: imx: correct the method of getting private data in notifier_call - i2c: Remove unnecessary call to irq_find_mapping - i2c: Clear client->irq in i2c_device_remove - i2c: Allow recovery of the initial IRQ by an I2C client device. - i2c: Prevent runtime suspend of adapter when Host Notify is required - [x86] ALSA: hda/realtek - Add new Dell platform for headset mode - [x86] ALSA: hda/realtek - Fixed Dell AIO speaker noise - [x86] ALSA: hda/realtek - Apply the fixup for ASUS Q325UAR - USB: yurex: Fix protection fault after device removal - USB: w1 ds2490: Fix bug caused by improper use of altsetting array - USB: dummy-hcd: Fix failure to give back unlinked URBs - usb: usbip: fix isoc packet num validation in get_pipe - USB: core: Fix unterminated string returned by usb_string() - USB: core: Fix bug caused by duplicate interface PM usage counter - nvme-loop: init nvmet_ctrl fatal_err_work when allocate - [arm64] dts: rockchip: fix rk3328-roc-cc gmac2io tx/rx_delay - HID: logitech: check the return value of create_singlethread_workqueue - HID: debug: fix race condition with between rdesc_show() and device removal - rtc: cros-ec: Fail suspend/resume if wake IRQ can't be configured - batman-adv: Reduce claim hash refcnt only for removed entry - batman-adv: Reduce tt_local hash refcnt only for removed entry - batman-adv: Reduce tt_global hash refcnt only for removed entry - batman-adv: fix warning in function batadv_v_elp_get_throughput - [armhf] dts: rockchip: Fix gpu opp node names for rk3288 - [arm64] reset: meson-audio-arb: Fix missing .owner setting of reset_controller_dev - igb: Fix WARN_ONCE on runtime suspend - HID: quirks: Fix keyboard + touchpad on Lenovo Miix 630 - net/mlx5: E-Switch, Fix esw manager vport indication for more vport commands - bonding: show full hw address in sysfs for slave entries - [armhf,arm64] net: stmmac: use correct DMA buffer size in the RX descriptor - [armhf,arm64] net: stmmac: ratelimit RX error logs - [armhf,arm64] net: stmmac: don't stop NAPI processing when dropping a packet - [armhf,arm64] net: stmmac: don't overwrite discard_frame status - [armhf,arm64] net: stmmac: fix dropping of multi-descriptor RX frames - [armhf,arm64] net: stmmac: don't log oversized frames - jffs2: fix use-after-free on symlink traversal - debugfs: fix use-after-free on symlink traversal - [armhf] mfd: twl-core: Disable IRQ while suspended - block: use blk_free_flush_queue() to free hctx->fq in blk_mq_init_hctx - HID: input: add mapping for Assistant key - vfio/pci: use correct format characters - scsi: core: add new RDAC LENOVO/DE_Series device - [x86] scsi: storvsc: Fix calculation of sub-channel count - [arm64] fix wrong check of on_sdei_stack in nmi context - [arm64] net: hns: fix KASAN: use-after-free in hns_nic_net_xmit_hw() - [arm64] net: hns: Use NAPI_POLL_WEIGHT for hns driver - [arm64] net: hns: Fix probabilistic memory overwrite when HNS driver initialized - [arm64] net: hns: fix ICMP6 neighbor solicitation messages discard problem - [arm64] net: hns: Fix WARNING when remove HNS driver with SMMU enabled - libcxgb: fix incorrect ppmax calculation - [x86] KVM: SVM: prevent DBG_DECRYPT and DBG_ENCRYPT overflow - hugetlbfs: fix memory leak for resv_map - fs: stream_open - opener for stream-like files so that read and write can run simultaneously without deadlock - [armel] orion: don't use using 64-bit DMA masks - block: pass no-op callback to INIT_WORK(). - [x86] perf/amd: Update generic hardware cache events for Family 17h - Bluetooth: btusb: request wake pin with NOAUTOEN - Bluetooth: mediatek: fix up an error path to restore bdev->tx_state - [arm64] clk: qcom: Add missing freq for usb30_master_clk on 8998 - scsi: RDMA/srpt: Fix a credit leak for aborted commands - [x86] ASoC: Intel: bytcr_rt5651: Revert "Fix DMIC map headsetmic mapping" - [x86] platform: intel_pmc_core: Fix PCH IP name - [x86] platform: intel_pmc_core: Handle CFL regmap properly - IB/core: Unregister notifier before freeing MAD security - IB/core: Fix potential memory leak while creating MAD agents - IB/core: Destroy QP if XRC QP fails - selinux: avoid silent denials in permissive mode under RCU walk - selinux: never allow relabeling on context mounts - mac80211: Honor SW_CRYPTO_CONTROL for unicast keys in AP VLAN mode - [ppc64el] mm/hash: Handle mmap_min_addr correctly in get_unmapped_area topdown search - [x86] mce: Improve error message when kernel cannot recover, p2 - [x86] clk: Add system specific quirk to mark clocks as critical - [x86] mm/KASLR: Fix the size of the direct mapping section - [x86] mm: Fix a crash with kmemleak_scan() - [x86] mm/tlb: Revert "x86/mm: Align TLB invalidation info" - media: v4l2: i2c: ov7670: Fix PLL bypass register values https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.42 - [armhf,arm64] net: stmmac: Use bfsize1 in ndesc_init_rx_desc - [x86] Drivers: hv: vmbus: Remove the undesired put_cpu_ptr() in hv_synic_cleanup() - ASoC: hdmi-codec: fix S/PDIF DAI - ASoC:soc-pcm:fix a codec fixup issue in TDM case - [x86] ASoC:intel:skl:fix a simultaneous playback & capture issue on hda platform - [arm64] clk: meson-gxbb: round the vdec dividers to closest - ASoC: dapm: Fix NULL pointer dereference in snd_soc_dapm_free_kcontrol - [armhf] drm/omap: hdmi4_cec: Fix CEC clock handling for PM - IB/hfi1: Eliminate opcode tests on mr deref - IB/hfi1: Fix the allocation of RSM table - [x86] perf/intel: Fix handling of wakeup_events for multi-entry PEBS - [x86] perf/intel: Initialize TFA MSR - linux/kernel.h: Use parentheses around argument in u64_to_user_ptr() - drm/amd/display: fix cursor black issue - objtool: Add rewind_stack_do_exit() to the noreturn list - slab: fix a crash by reading /proc/slab_allocators - [armhf,arm64] drm/sun4i: tcon top: Fix NULL/invalid pointer dereference in sun8i_tcon_top_un/bind - virtio_pci: fix a NULL pointer reference in vp_del_vqs - [x86] RDMA/vmw_pvrdma: Fix memory leak on pvrdma_pci_remove - [arm64] RDMA/hns: Fix bug that caused srq creation to fail - scsi: csiostor: fix missing data copy in csio_scsi_err_handler() - [x86] ASoC: Intel: kbl: fix wrong number of channels - virtio-blk: limit number of hw queues by nr_cpu_ids - nvme-fc: correct csn initialization and increments on error - [x86] platform: pmc_atom: Drop __initconst on dmi table - perf/core: Fix perf_event_disable_inatomic() race - [x86] iommu/amd: Set exclusion range correctly - genirq: Prevent use-after-free and work list corruption - usb: dwc3: Fix default lpm_nyet_threshold value - USB: serial: f81232: fix interrupt worker not stop - USB: cdc-acm: fix unthrottle races - usb-storage: Set virt_boundary_mask to avoid SG overflows - [x86] intel_th: pci: Add Comet Lake support - [arm64] cpufreq: armada-37xx: fix frequency calculation for opp - scsi: lpfc: change snprintf to scnprintf for possible overflow - scsi: qla2xxx: Fix incorrect region-size setting in optrom SYSFS routines - scsi: qla2xxx: Fix device staying in blocked state - UAS: fix alignment of scatter/gather segments - [x86] ASoC: Intel: avoid Oops if DMA setup fails - locking/futex: Allow low-level atomic operations to return -EAGAIN - [arm64] futex: Bound number of LDXR/STXR loops in FUTEX_WAKE_OP https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.43 https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.44 - bfq: update internal depth state when queue depth changes - [x86] platform: sony-laptop: Fix unintentional fall-through - [x86] platform: thinkpad_acpi: Disable Bluetooth for some machines - [x86] platform: dell-laptop: fix rfkill functionality - hwmon: (pwm-fan) Disable PWM if fetching cooling data fails - kernfs: fix barrier usage in __kernfs_new_node() - [x86] virt: vbox: Sanity-check parameter types for hgcm-calls coming from userspace - USB: serial: fix unthrottle races - acpi/nfit: Always dump _DSM output payload - libnvdimm/namespace: Fix a potential NULL pointer dereference - HID: input: add mapping for Expose/Overview key - HID: input: add mapping for keyboard Brightness Up/Down/Toggle keys - HID: input: add mapping for "Toggle Display" key - libnvdimm/btt: Fix a kmemdup failure check - [s390x] dasd: Fix capacity calculation for large volumes - mac80211: fix unaligned access in mesh table hash function - mac80211: Increase MAX_MSG_LEN - cfg80211: Handle WMM rules in regulatory domain intersection - mac80211: fix memory accounting with A-MSDU aggregation - nl80211: Add NL80211_FLAG_CLEAR_SKB flag for other NL commands - libnvdimm/pmem: fix a possible OOB access when read and write pmem - [s390x] 3270: fix lockdep false positive on view->lock - drm/amd/display: extending AUX SW Timeout - mISDN: Check address length before reading address family - vxge: fix return of a free'd memblock on a failed dma mapping - qede: fix write to free'd pointer error and double free of ptp - afs: Unlock pages for __pagevec_release() - drm/amd/display: If one stream full updates, full update all planes - [s390x] pkey: add one more argument space for debug feature entry - [x86] reboot, efi: Use EFI reboot for Acer TravelMate X514-51T - [x86] KVM: fix spectrev1 gadgets - [x86] KVM: avoid misreporting level-triggered irqs as edge-triggered in tracing - tools lib traceevent: Fix missing equality check for strcmp - ipmi: ipmi_si_hardcode.c: init si_type array to fix a crash - scsi: aic7xxx: fix EISA support - mm: fix inactive list balancing between NUMA nodes and cgroups - init: initialize jump labels before command line option parsing - ipvs: do not schedule icmp errors from tunnels - netfilter: ctnetlink: don't use conntrack/expect object addresses as id - netfilter: nf_tables: prevent shift wrap in nft_chain_parse_hook() - [s390x] ctcm: fix ctcm_new_device error return code - [armhf,arm64] drm/sun4i: Set device driver data at bind time for use in unbind - [armhf,arm64] drm/sun4i: Fix component unbinding and component master deletion - netfilter: fix nf_l4proto_log_invalid to log invalid packets - [armhf] gpu: ipu-v3: dp: fix CSC handling - [armhf] drm/imx: don't skip DP channel disable for background plane - [armhf,arm64] drm/sun4i: Unbind components before releasing DRM and memory - Input: synaptics-rmi4 - fix possible double free - [arm64] RDMA/hns: Bugfix for mapping user db - mm/memory_hotplug.c: drop memory device reference after find_memory_block() - [ppc64el] smp: Fix NMI IPI timeout - [ppc64el] smp: Fix NMI IPI xmon timeout - [armhf,arm64] net: dsa: mv88e6xxx: fix few issues in mv88e6390x_port_set_cmode - mm/memory.c: fix modifying of page protection by insert_pfn() - usb: typec: Fix unchecked return value - netfilter: nf_tables: use-after-free in dynamic operations - netfilter: nf_tables: add missing ->release_ops() in error path of newrule() (Closes: #934168) - net: fec: manage ahb clock in runtime pm - net: strparser: partially revert "strparser: Call skb_unclone conditionally" - NFC: nci: Add some bounds checking in nci_hci_cmd_received() - nfc: nci: Potential off by one in ->pipes[] array - [x86] kprobes: Avoid kretprobe recursion bug - mwl8k: Fix rate_idx underflow - rtlwifi: rtl8723ae: Fix missing break in switch statement - bonding: fix arp_validate toggling in active-backup mode - bridge: Fix error path for kobject_init_and_add() - ipv4: Fix raw socket lookup for local traffic - net: dsa: Fix error cleanup path in dsa_init_module - [armhf] net: ethernet: stmmac: dwmac-sun8i: enable support of unicast filtering - [arm64] net: macb: Change interrupt and napi enable order in open - packet: Fix error path in packet_init - selinux: do not report error on connect(AF_UNSPEC) - vlan: disable SIOCSHWTSTAMP in container - vrf: sit mtu should not be updated when vrf netdev is the link - tuntap: fix dividing by zero in ebpf queue selection - tuntap: synchronize through tfiles array instead of tun->numqueues - isdn: bas_gigaset: use usb_fill_int_urb() properly - tipc: fix hanging clients using poll with EPOLLOUT flag - [ppc64el] book3s/64: check for NULL pointer in pgd_alloc() - [ppc64el] powernv/idle: Restore IAMR after idle - [x86] PCI: hv: Fix a memory leak in hv_eject_device_work() - [x86] PCI: hv: Add hv_pci_remove_slots() when we unload the driver - [x86] PCI: hv: Add pci_destroy_slot() in pci_devices_present_work(), if necessary https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.45 - locking/rwsem: Prevent decrement of reader count before increment - [x86] speculation/mds: Revert CPU buffer clear on double fault exit - [x86] speculation/mds: Improve CPU buffer clear documentation - objtool: Fix function fallthrough detection - [arm64] dts: rockchip: Disable DCMDs on RK3399's eMMC controller. - [armhf] dts: exynos: Fix interrupt for shared EINTs on Exynos5260 - [armhf] dts: exynos: Fix audio (microphone) routing on Odroid XU3 - [arm64] mmc: sdhci-of-arasan: Add DTS property to disable DCMDs. - [armhf] exynos: Fix a leaked reference by adding missing of_node_put - [armhf] power: supply: axp288_charger: Fix unchecked return value - [armhf,arm64] power: supply: axp288_fuel_gauge: Add ACEPC T8 and T11 mini PCs to the blacklist - [arm64] mmap: Ensure file offset is treated as unsigned - [arm64] arch_timer: Ensure counter register reads occur with seqlock held - [arm64] compat: Reduce address limit - [arm64] Clear OSDLR_EL1 on CPU boot - [arm64] Save and restore OSDLR_EL1 across suspend/resume - [x96] sched: Save [ER]FLAGS on context switch - crypto: salsa20 - don't access already-freed walk.iv - crypto: chacha20poly1305 - set cra_name correctly - [x86] crypto: ccp - Do not free psp_master when PLATFORM_INIT fails - [ppc64el] crypto: vmx - fix copy-paste error in CTR mode - crypto: skcipher - don't WARN on unprocessed data after slow walk step - crypto: crct10dif-generic - fix use via crypto_shash_digest() - [x86] crypto: crct10dif-pcl - fix use via crypto_shash_digest() - [arm64] crypto: gcm-aes-ce - fix no-NEON fallback code - crypto: gcm - fix incompatibility between "gcm" and "gcm_base" - [armhf,arm64] crypto: aes-neonbs - don't access already-freed walk.iv - mmc: core: Fix tag set memory leak - ALSA: line6: toneport: Fix broken usage of timer for delayed execution - ALSA: usb-audio: Fix a memory leak bug - ALSA: hda/hdmi - Read the pin sense from register when repolling - ALSA: hda/hdmi - Consider eld_valid when reporting jack event - ALSA: hda/realtek - EAPD turn on later - ALSA: hdea/realtek - Headset fixup for System76 Gazelle (gaze14) - [armhf,arm64] ASoC: max98090: Fix restore of DAPM Muxes - ASoC: codec: hdac_hdmi add device_link to card device - [arm64] bpf: remove prefetch insn in xadd mapping - mm/huge_memory: fix vmf_insert_pfn_{pmd, pud}() crash, handle unaligned addresses - mm/hugetlb.c: don't put_page in lock of hugetlb_lock - hugetlb: use same fault hash key for shared and private mappings - ocfs2: fix ocfs2 read inode data panic in ocfs2_iget - userfaultfd: use RCU to free the task struct when fork fails - ACPI: PM: Set enable_for_wake for wakeup GPEs during suspend-to-idle - [arm64] mfd: max77620: Fix swapped FPS_PERIOD_MAX_US values - mtd: spi-nor: intel-spi: Avoid crossing 4K address boundary on read/write - tty: vt.c: Fix TIOCL_BLANKSCREEN console blanking if blankinterval == 0 - tty/vt: fix write/write race in ioctl(KDSKBSENT) handler - jbd2: check superblock mapped prior to committing - ext4: make sanity check in mballoc more strict - ext4: ignore e_value_offs for xattrs with value-in-ea-inode - ext4: avoid drop reference to iloc.bh twice - ext4: fix use-after-free race with debug_want_extra_isize - ext4: actually request zeroing of inode table after grow - ext4: fix ext4_show_options for file systems w/o journal - btrfs: Check the first key and level for cached extent buffer - btrfs: Correctly free extent buffer in case btree_read_extent_buffer_pages fails - Btrfs: send, flush dellaloc in order to avoid data loss - Btrfs: do not start a transaction during fiemap - Btrfs: do not start a transaction at iterate_extent_inodes() - bcache: fix a race between cache register and cacheset unregister - bcache: never set KEY_PTRS of journal key to 0 in journal_reclaim() - ipmi:ssif: compare block number correctly for multi-part return messages - crypto: ccm - fix incompatibility between "ccm" and "ccm_base" - fs/writeback.c: use rcu_barrier() to wait for inflight wb switches going into workqueue when umount - ext4: fix data corruption caused by overlapping unaligned and aligned IO - ext4: fix use-after-free in dx_release() - ext4: avoid panic during forced reboot due to aborted journal - [x86] ALSA: hda/realtek - Corrected fixup for System76 Gazelle (gaze14) - ALSA: hda/realtek - Fixup headphone noise via runtime suspend - [x86] ALSA: hda/realtek - Fix for Lenovo B50-70 inverted internal microphone bug - jbd2: fix potential double free - [x86] KVM: Skip EFER vs. guest CPUID checks for host-initiated writes - [x86] KVM: lapic: Busy wait for timer to expire when using hv_timer - xen/pvh: set xen_domain_type to HVM in xen_pvh_init - libnvdimm/namespace: Fix label tracking error - iov_iter: optimize page_copy_sane() - pstore: Centralize init/exit routines - pstore: Allocate compression during late_initcall() - pstore: Refactor compression initialization - ext4: don't update s_rev_level if not required https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.46 - ipv6: fix src addr routing with the exception table - ipv6: prevent possible fib6 leaks - net: Always descend into dsa/ - net: avoid weird emergency message - net/mlx4_core: Change the error print to info print - net: test nouarg before dereferencing zerocopy pointers - net: usb: qmi_wwan: add Telit 0x1260 and 0x1261 compositions - nfp: flower: add rcu locks when accessing netdev for tunnels - ppp: deflate: Fix possible crash in deflate_init - rtnetlink: always put IFLA_LINK for links with a link-netnsid - tipc: switch order of device registration to fix a crash - vsock/virtio: free packets during the socket release - vsock/virtio: Initialize core virtio vsock before registering the driver - net/mlx5: Imply MLXFW in mlx5_core - net/mlx5e: Fix ethtool rxfh commands when CONFIG_MLX5_EN_RXNFC is disabled - stm class: Fix channel free in stm output free path - stm class: Fix channel bitmap on 32-bit systems - brd: re-enable __GFP_HIGHMEM in brd_insert_page() - proc: prevent changes to overridden credentials - Revert "MD: fix lock contention for flush bios" - md: batch flush requests. - md: add mddev->pers to avoid potential NULL pointer dereference - dcache: sort the freeing-without-RCU-delay mess for good. - [x86] intel_th: msu: Fix single mode with IOMMU - p54: drop device reference count if fails to enable device - of: fix clang -Wunsequenced for be32_to_cpu() - cifs: fix strcat buffer overflow and reduce raciness in smb21_set_oplock_level() - [armhf] phy: ti-pipe3: fix missing bit-wise or operator when assigning val - NFS4: Fix v4.0 client state corruption when mount - PNFS fallback to MDS if no deviceid found - [arm64] clk: hi3660: Mark clk_gate_ufs_subsys as critical - [armhf,arm64] clk: tegra: Fix PLLM programming on Tegra124+ when PMC overrides divider - [arm64] clk: rockchip: fix wrong clock definitions for rk3328 - udlfb: delete the unused parameter for dlfb_handle_damage - udlfb: fix sleeping inside spinlock - udlfb: introduce a rendering mutex - fuse: fix writepages on 32bit - fuse: honor RLIMIT_FSIZE in fuse_file_fallocate - ovl: fix missing upper fs freeze protection on copy up for ioctl - [armhf] iommu/tegra-smmu: Fix invalid ASID bits on Tegra30/114 - ceph: flush dirty inodes before proceeding with remount - [amd64] Add gap to int3 to allow for call emulation - [amd64] Allow breakpoints to emulate call instructions - [amd64] ftrace: Emulate call function while updating in breakpoint handler - tracing: Fix partial reading of trace event's id file - [armhf,arm64] memory: tegra: Fix integer overflow on tick value calculation - [x86] perf intel-pt: Fix instructions sampling rate - [x86] perf intel-pt: Fix improved sample timestamp - [x86] perf intel-pt: Fix sample timestamp wrt non-taken branches - fbdev/efifb: Ignore framebuffer memmap entries that lack any memory types - PCI: Mark AMD Stoney Radeon R7 GPU ATS as broken - PCI: Mark Atheros AR9462 to avoid bus reset - PCI: Init PCIe feature bits for managed host bridge alloc - PCI/AER: Change pci_aer_init() stub to return void - PCI: Factor out pcie_retrain_link() function - PCI: Work around Pericom PCIe-to-PCI bridge Retrain Link erratum - dm cache metadata: Fix loading discard bitset - dm zoned: Fix zone report handling - dm delay: fix a crash when invalid device is specified - dm integrity: correctly calculate the size of metadata area - dm mpath: always free attached_handler_name in parse_path() - fuse: Add FOPEN_STREAM to use stream_open() - xfrm: policy: Fix out-of-bound array accesses in __xfrm_policy_unlink - xfrm6_tunnel: Fix potential panic when unloading xfrm6_tunnel module - vti4: ipip tunnel deregistration fixes. - xfrm: clean up xfrm protocol checks - esp4: add length check for UDP encapsulation - xfrm: Honor original L3 slave device in xfrmi policy lookup - xfrm4: Fix uninitialized memory read in _decode_session4 - [armhf,arm64] clk: sunxi-ng: nkmp: Avoid GENMASK(-1, 0) - securityfs: fix use-after-free on symlink traversal - apparmorfs: fix use-after-free on symlink traversal - PCI: Fix issue with "pci=disable_acs_redir" parameter being ignored - [x86] kvm: hyper-v: deal with buggy TLB flush requests from WS2012 - mac80211: Fix kernel panic due to use of txq after free - net: ieee802154: fix missing checks for regmap_update_bits - [armhf,arm64] KVM: Ensure vcpu target is unset on reset failure - bpf: Fix preempt_enable_no_resched() abuse - qmi_wwan: new Wistron, ZTE and D-Link devices - iwlwifi: mvm: check for length correctness in iwl_mvm_create_skb() - sched/cpufreq: Fix kobject memleak - [x86] mm/mem_encrypt: Disable all instrumentation for early SME setup - ufs: fix braino in ufs_get_inode_gid() for solaris UFS flavour - perf bench numa: Add define for RUSAGE_THREAD if not present - [x86] perf/intel: Fix race in intel_pmu_disable_event() - md/raid: raid5 preserve the writeback action after the parity check - driver core: Postpone DMA tear-down until after devres release for probe failure - bpf: relax inode permission check for retrieving bpf program - bpf: add map_lookup_elem_sys_only for lookups from syscall side - bpf, lru: avoid messing with eviction heuristics upon syscall lookup https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.47 - [x86] Hide the int3_emulate_call/jmp functions from UML - ext4: do not delete unlinked inode from orphan list on failed truncate - ext4: wait for outstanding dio during truncate in nojournal mode - f2fs: Fix use of number of devices - [x86] KVM: fix return value for reserved EFER - bio: fix improper use of smp_mb__before_atomic() - sbitmap: fix improper use of smp_mb__before_atomic() - Revert "scsi: sd: Keep disk read-only when re-reading partition" - [ppc64el] crypto: vmx - CTR: always increment IV as quadword - [arm*] mmc: sdhci-iproc: cygnus: Set NO_HISPD bit to fix HS50 data hold time problem - [arm*] mmc: sdhci-iproc: Set NO_HISPD bit to fix HS50 data hold time problem - [x86] kvm: svm/avic: fix off-by-one in checking host APIC ID - libnvdimm/pmem: Bypass CONFIG_HARDENED_USERCOPY overhead - [arm64] kernel: kaslr: reduce module randomization range to 2 GB - [arm64] iommu: handle non-remapped addresses in ->mmap and ->get_sgtable - gfs2: Fix sign extension bug in gfs2_update_stats - btrfs: don't double unlock on error in btrfs_punch_hole - Btrfs: do not abort transaction at btrfs_update_root() after failure to COW path - Btrfs: avoid fallback to transaction commit during fsync of files with holes - Btrfs: fix race between ranged fsync and writeback of adjacent ranges - btrfs: sysfs: Fix error path kobject memory leak - btrfs: sysfs: don't leak memory when failing add fsid - udlfb: fix some inconsistent NULL checking - fbdev: fix divide error in fb_var_to_videomode - NFSv4.2 fix unnecessary retry in nfs4_copy_file_range - NFSv4.1 fix incorrect return value in copy_file_range - bpf: add bpf_jit_limit knob to restrict unpriv allocations - [arm64] errata: Add workaround for Cortex-A76 erratum #1463225 - btrfs: honor path->skip_locking in backref code - ovl: relax WARN_ON() for overlapping layers use case - fbdev: fix WARNING in __alloc_pages_nodemask bug - media: cpia2: Fix use-after-free in cpia2_exit - media: serial_ir: Fix use-after-free in serial_ir_init_module - media: vb2: add waiting_in_dqbuf flag - media: vivid: use vfree() instead of kfree() for dev->bitmap_cap - ssb: Fix possible NULL pointer dereference in ssb_host_pcmcia_exit - bpf: devmap: fix use-after-free Read in __dev_map_entry_free - batman-adv: mcast: fix multicast tt/tvlv worker locking - at76c50x-usb: Don't register led_trigger if usb_register_driver failed - acct_on(): don't mess with freeze protection - gfs2: Fix lru_count going negative - cxgb4: Fix error path in cxgb4_init_module - NFS: make nfs_match_client killable - IB/hfi1: Fix WQ_MEM_RECLAIM warning - gfs2: Fix occasional glock use-after-free - mmc: core: Verify SD bus width - [arm64] dmaengine: tegra210-dma: free dma controller in remove() - net: ena: gcc 8: fix compilation warning - [x86] hv_netvsc: fix race that may miss tx queue wakeup - Bluetooth: Ignore CC events not matching the last HCI command - [x86] ASoC: Intel: kbl_da7219_max98357a: Map BTN_0 to KEY_PLAYPAUSE - [armhf,arm64] usb: dwc2: gadget: Increase descriptors count for ISOC's - [armhf,arm64] usb: dwc3: move synchronize_irq() out of the spinlock protected block - ASoC: hdmi-codec: unlock the device on startup errors - [ppc64el] perf: Return accordingly on invalid chip-id in - [ppc64el] boot: Fix missing check of lseek() return value - [ppc64el] perf: Fix loop exit condition in nest_imc_event_init - [armhf] ASoC: imx: fix fiq dependencies - [amd64] spi: pxa2xx: fix SCR (divisor) calculation - brcm80211: potential NULL dereference in brcmf_cfg80211_vndr_cmds_dcmd_handler() - ACPI / property: fix handling of data_nodes in acpi_get_next_subnode() - drm/nouveau/bar/nv50: ensure BAR is mapped - [armel,armhf] vdso: Remove dependency with the arch_timer driver internals - [ppc64el] watchdog: Use hrtimers for per-CPU heartbeat - sched/cpufreq: Fix kobject memleak - scsi: qla2xxx: Fix a qla24xx_enable_msix() error path - scsi: qla2xxx: Fix abort handling in tcm_qla2xxx_write_pending() - scsi: qla2xxx: Avoid that lockdep complains about unsafe locking in tcm_qla2xxx_close_session() - scsi: qla2xxx: Fix hardirq-unsafe locking - [x86] modules: Avoid breaking W^X while loading modules - Btrfs: fix data bytes_may_use underflow with fallocate due to failed quota reserve - btrfs: fix panic during relocation after ENOSPC before writeback happens - btrfs: Don't panic when we can't find a root key - iwlwifi: pcie: don't crash on invalid RX interrupt - scsi: qedi: Abort ep termination if offload not scheduled - [s390x] kexec_file: Fix detection of text segment in ELF loader - sched/nohz: Run NOHZ idle load balancer on HK_FLAG_MISC CPUs - w1: fix the resume command API - [s390x] qeth: address type mismatch warning - [armhf,arm64] dmaengine: pl330: _stop: clear interrupt status - mac80211/cfg80211: update bss channel on channel switch - mwifiex: prevent an array overflow - rsi: Fix NULL pointer dereference in kmalloc - nvme: set 0 capacity if namespace block size exceeds PAGE_SIZE - nvme-rdma: fix a NULL deref when an admin connect times out - [armhf,arm64] crypto: sun4i-ss - Fix invalid calculation of hash end - bcache: avoid potential memleak of list of journal_replay(s) in the CACHE_SYNC branch of run_cache_set - bcache: return error immediately in bch_journal_replay() - bcache: fix failure in journal relplay - bcache: add failure check to run_cache_set() for journal replay - bcache: avoid clang -Wunintialized warning - RDMA/cma: Consider scope_id while binding to ipv6 ll address - vfio-ccw: Do not call flush_workqueue while holding the spinlock - vfio-ccw: Release any channel program when releasing/removing vfio-ccw mdev - [x86] mm: Remove in_nmi() warning from 64-bit implementation of vmalloc_fault() - mm/uaccess: Use 'unsigned long' to placate UBSAN warnings on older GCC versions - Bluetooth: hci_qca: Give enough time to ROME controller to bootup. - HID: logitech-hidpp: use RAP instead of FAP to get the protocol version - [armhf] pinctrl: samsung: fix leaked of_node references - [armhf] clk: rockchip: undo several noc and special clocks as critical on rk3288 - [arm64] perf/arm-cci: Remove broken race mitigation - media: au0828: stop video streaming only when last user stops - audit: fix a memory leak bug - media: au0828: Fix NULL pointer dereference in au0828_analog_stream_enable() - media: pvrusb2: Prevent a buffer overflow - block: fix use-after-free on gendisk - [ppc64el] numa: improve control of topology updates - [ppc64el] Fix booting large kernels with STRICT_KERNEL_RWX - random: fix CRNG initialization when random.trust_cpu=1 - random: add a spinlock_t to struct batched_entropy - cgroup: protect cgroup->nr_(dying_)descendants by css_set_lock - sched/core: Check quota and period overflow at usec to nsec conversion - sched/rt: Check integer overflow at usec to nsec conversion - sched/core: Handle overflow in cpu_shares_write_u64 - [arm*] staging: vc04_services: handle kzalloc failure - [arm64] drm/msm: a5xx: fix possible object reference leak - irq_work: Do not raise an IPI when queueing work on the local CPU - [x86] thunderbolt: Take domain lock in switch sysfs attribute callbacks - [s390x] qeth: handle error from qeth_update_from_chp_desc() - USB: core: Don't unbind interfaces following device reset failure - [amd64] irq: Limit IST stack overflow check to #DB stack - [armhf] drm: etnaviv: avoid DMA API warning when importing buffers - [armhf,arm64] phy: sun4i-usb: Make sure to disable PHY0 passby for peripheral mode - i40e: Able to add up to 16 MAC filters on an untrusted VF - i40e: don't allow changes to HW VLAN stripping on active port VLANs - ACPI/IORT: Reject platform device creation on NUMA node mapping failure - [arm64] vdso: Fix clock_getres() for CLOCK_REALTIME - RDMA/cxgb4: Fix null pointer dereference on alloc_skb failure - [x86] perf/msr: Add Icelake support - [x86] perf/intel/rapl: Add Icelake support - [x86] perf/intel/cstate: Add Icelake support - hwmon: (vt1211) Use request_muxed_region for Super-IO accesses - hwmon: (smsc47m1) Use request_muxed_region for Super-IO accesses - hwmon: (smsc47b397) Use request_muxed_region for Super-IO accesses - hwmon: (pc87427) Use request_muxed_region for Super-IO accesses - hwmon: (f71805f) Use request_muxed_region for Super-IO accesses - scsi: libsas: Do discovery on empty PHY to update PHY info - mmc: core: make pwrseq_emmc (partially) support sleepy GPIO controllers - [armhf,arm64] mmc_spi: add a status check for spi_sync_locked - drm/amdgpu: fix old fence check in amdgpu_fence_emit - PM / core: Propagate dev->power.wakeup_path when no callbacks - [armhf] clk: rockchip: Fix video codec clocks on rk3288 - [armhf] clk: rockchip: Make rkpwm a critical clock on rk3288 - [s390x] zcrypt: initialize variables before_use - [x86] microcode: Fix the ancient deprecated microcode loading method - [s390x] mm: silence compiler warning when compiling without CONFIG_PGSTE - [s390x] cio: fix cio_irb declaration - qmi_wwan: Add quirk for Quectel dynamic config - block: sed-opal: fix IOC_OPAL_ENABLE_DISABLE_MBR - rtlwifi: fix a potential NULL pointer dereference - mwifiex: Fix mem leak in mwifiex_tm_cmd - brcmfmac: fix missing checks for kmemdup - b43: shut up clang -Wuninitialized variable warning - brcmfmac: convert dev_init_lock mutex to completion - brcmfmac: fix WARNING during USB disconnect in case of unempty psq - brcmfmac: fix race during disconnect when USB completion is in progress - brcmfmac: fix Oops when bringing up interface during USB disconnect - [arm64] rtc: xgene: fix possible race condition - rtlwifi: fix potential NULL pointer dereference - scsi: ufs: Fix regulator load and icc-level configuration - scsi: ufs: Avoid configuring regulator with undefined voltage range - [arm64] cpu_ops: fix a leaked reference by adding missing of_node_put - wil6210: fix return code of wmi_mgmt_tx and wmi_mgmt_tx_ext - [x86] uaccess, signal: Fix AC=1 bloat - [amd64] ia32: Fix ia32_restore_sigcontext() AC leak - [x86] uaccess: Fix up the fixup - chardev: add additional check for minor range overlap - [arm64] RDMA/hns: Fix bad endianess of port_pd variable - HID: core: move Usage Page concatenation to Main item - [armhf] ASoC: eukrea-tlv320: fix a leaked reference by adding missing of_node_put - cxgb3/l2t: Fix undefined behaviour - HID: logitech-hidpp: change low battery level threshold from 31 to 30 percent - [armhf] spi: tegra114: reset controller on probe - kobject: Don't trigger kobject_uevent(KOBJ_REMOVE) twice. - [armhf] media: wl128x: prevent two potential buffer overflows - media: gspca: Kill URBs on USB device disconnect - efifb: Omit memory map check on legacy boot - [x86] thunderbolt: property: Fix a missing check of kzalloc - [x86] thunderbolt: Fix to check the return value of kmemdup - timekeeping: Force upper bound for setting CLOCK_REALTIME - scsi: qedf: Add missing return in qedf_post_io_req() in the fcport offload check - virtio_console: initialize vtermno value for ports - tty: ipwireless: fix missing checks for ioremap - overflow: Fix -Wtype-limits compilation warnings - [x86] mce: Fix machine_check_poll() tests for error types - rcutorture: Fix cleanup path for invalid torture_type strings - [x86] mce: Handle varying MCA bank counts - rcuperf: Fix cleanup path for invalid perf_type strings - usb: core: Add PM runtime calls to usb_hcd_platform_shutdown - scsi: qla4xxx: avoid freeing unallocated dma memory - scsi: lpfc: avoid uninitialized variable warning - selinux: avoid uninitialized variable warning - batman-adv: allow updating DAT entry timeouts on incoming ARP Replies - dmaengine: tegra210-adma: use devm_clk_*() helpers - [armhf] hwrng: omap - Set default quality - [x86] thunderbolt: Fix to check return value of ida_simple_get - [x86] thunderbolt: Fix to check for kmemdup failure - drm/amd/display: fix releasing planes when exiting odm - [x86] thunderbolt: property: Fix a NULL pointer dereference - e1000e: Disable runtime PM on CNP+ - igb: Exclude device from suspend direct complete optimization - media: dvbsky: Avoid leaking dvb frontend - drm/amd/display: Fix Divide by 0 in memory calculations - drm/amd/display: Set stream->mode_changed when connectors change - scsi: ufs: fix a missing check of devm_reset_control_get - media: gspca: do not resubmit URBs when streaming has stopped - media: go7007: avoid clang frame overflow warning with KASAN - scsi: lpfc: Fix FDMI manufacturer attribute value - scsi: lpfc: Fix fc4type information for FDMI - media: saa7146: avoid high stack usage with clang - scsi: lpfc: Fix SLI3 commands being issued on SLI4 devices - [i386] spi : spi-topcliff-pch: Fix to handle empty DMA buffers - [armhf] drm/omap: dsi: Fix PM for display blank with paired dss_pll calls - [armhf] spi: imx: stop buffer overflow in RX FIFO flush - spi: Fix zero length xfer bug - [armhf] ASoC: davinci-mcasp: Fix clang warning without CONFIG_PM - drm/drv: Hold ref on parent device during drm_device lifetime - drm: Wake up next in drm_read() chain if we are forced to putback the event - [s390x] vfio-ccw: Prevent quiesce function going into an infinite loop - NFS: Fix a double unlock from nfs_match,get_client https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.48 - bonding/802.3ad: fix slave link initialization transition states - cxgb4: offload VLAN flows regardless of VLAN ethtype - ipv4/igmp: fix another memory leak in igmpv3_del_delrec() - ipv4/igmp: fix build error if !CONFIG_IP_MULTICAST - ipv6: Consider sk_bound_dev_if when binding a raw socket to an address - ipv6: Fix redirect with VRF - llc: fix skb leak in llc_build_and_send_ui_pkt() - [armhf,arm64] net: dsa: mv88e6xxx: fix handling of upper half of STATS_TYPE_PORT - net-gro: fix use-after-free read in napi_gro_frags() - [armhf,arm64] net: mvneta: Fix err code path of probe - [armhf,arm64] net: mvpp2: fix bad MVPP2_TXQ_SCHED_TOKEN_CNTR_REG queue value - net: phy: marvell10g: report if the PHY fails to boot firmware - net: sched: don't use tc_action->order during action dump - [armhf,arm64] net: stmmac: fix reset gpio free missing - usbnet: fix kernel crash after disconnect - net/mlx5: Avoid double free in fs init error unwinding path - tipc: Avoid copying bytes beyond the supplied data - net/mlx5: Allocate root ns memory using kzalloc to match kfree - net/mlx5e: Disable rxhash when CQE compress is enabled - [armhf,arm64] net: stmmac: dma channel control register need to be init first - bnxt_en: Fix aggregation buffer leak under OOM condition. - [ppc64el] crypto: vmx - ghash: do nosimd fallback manually - include/linux/compiler*.h: define asm_volatile_goto - compiler.h: give up __compiletime_assert_fallback() - jump_label: move 'asm goto' support test to Kconfig - tipc: fix modprobe tipc failed after switch order of device registration https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.49 - include/linux/bitops.h: sanitize rotate primitives - xhci: update bounce buffer with correct sg num - xhci: Use %zu for printing size_t type - xhci: Convert xhci_handshake() to use readl_poll_timeout_atomic() - usb: xhci: avoid null pointer deref when bos field is NULL - usbip: usbip_host: fix BUG: sleeping function called from invalid context - usbip: usbip_host: fix stub_dev lock context imbalance regression - USB: Fix slab-out-of-bounds write in usb_get_bos_descriptor - USB: sisusbvga: fix oops in error path of sisusb_probe - USB: Add LPM quirk for Surface Dock GigE adapter - USB: rio500: refuse more than one device at a time - USB: rio500: fix memory leak in close after disconnect - media: usb: siano: Fix general protection fault in smsusb - media: usb: siano: Fix false-positive "uninitialized variable" warning - media: smsusb: better handle optional alignment - brcmfmac: fix NULL pointer derefence during USB disconnect - [s390x] scsi: zfcp: fix missing zfcp_port reference put on -EBUSY from port_remove - [s390x] scsi: zfcp: fix to prevent port_remove with pure auto scan LUNs (only sdevs) - tracing: Avoid memory leak in predicate_parse() - Btrfs: fix wrong ctime and mtime of a directory after log replay - Btrfs: fix race updating log root item during fsync - Btrfs: fix fsync not persisting changed attributes of a directory - Btrfs: incremental send, fix file corruption when no-holes feature is enabled - [s390x] crypto: fix gcm-aes-s390 selftest failures - [s390x] crypto: fix possible sleep during spinlock aquired - [ppc64el] KVM: Book3S HV: XIVE: Do not clear IRQ data of passthrough interrupts - [ppc64el] perf: Fix MMCRA corruption by bhrb_filter - ALSA: line6: Assure canceling delayed work at disconnection - ALSA: hda/realtek - Set default power save node to 0 - [s390x] KVM: Do not report unusabled IDs via KVM_CAP_MAX_VCPU_ID - drm/nouveau/i2c: Disable i2c bus access after ->fini() - [arm64] tty: serial: msm_serial: Fix XON/XOFF - memcg: make it work on sparse non-0-node systems - kernel/signal.c: trace_signal_deliver when signal_group_exit - [arm64] Fix the arm64_personality() syscall wrapper redirection - vt/fbcon: deinitialize resources in visual_init() after failed memory allocation - [arm*] staging: vc04_services: prevent integer overflow in create_pagelist() - [x86] staging: wlan-ng: fix adapter initialization failure - cifs: fix memory leak of pneg_inbuf on -EOPNOTSUPP ioctl case - CIFS: cifs_read_allocate_pages: don't iterate through whole page array on ENOMEM - Revert "lockd: Show pid of lockd for remote locks" - [armhf,arm64] drm/tegra: gem: Fix CPU-cache maintenance for BO's allocated using get_pages() - [x86] drm/vmwgfx: Don't send drm sysfs hotplug events on initial master set - [armhf,arm64] drm/sun4i: Fix sun8i HDMI PHY clock initialization - [armhf,arm64] drm/sun4i: Fix sun8i HDMI PHY configuration for > 148.5 MHz - [armhf,arm64] drm/rockchip: shutdown drm subsystem on shutdown - drm/lease: Make sure implicit planes are leased - [x86] ftrace: Do not call function graph from dynamic trampolines - [x86] ftrace: Set trampoline pages as executable - [x86] kprobes: Set instruction page as executable - scsi: lpfc: Fix backport of faf5a744f4f8 ("scsi: lpfc: avoid uninitialized variable warning") - media: uvcvideo: Fix uvc_alloc_entity() allocation alignment https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.50 - ethtool: fix potential userspace buffer overflow - Fix memory leak in sctp_process_init - ipv4: not do cache for local delivery if bc_forwarding is enabled - ipv6: fix the check before getting the cookie in rt6_get_cookie - neighbor: Call __ipv4_neigh_lookup_noref in neigh_xmit - [armhf] net: ethernet: ti: cpsw_ethtool: fix ethtool ring param set - net/mlx4_en: ethtool, Remove unsupported SFP EEPROM high pages query - [armhf,arm64] net: mvpp2: Use strscpy to handle stat strings - net: rds: fix memory leak in rds_ib_flush_mr_pool - net: sfp: read eeprom in maximum 16 byte increments - packet: unconditionally free po->rollover - pktgen: do not sleep with the thread lock held. - ipv6: use READ_ONCE() for inet->hdrincl as in ipv4 - ipv6: fix EFAULT on sendto with icmpv6 and hdrincl - rcu: locking and unlocking need to always be at least barriers - NFSv4.1: Again fix a race where CB_NOTIFY_LOCK fails to wake a waiter - NFSv4.1: Fix bug only first CB_NOTIFY_LOCK is handled - fuse: fallocate: fix return with locked inode - pstore: Remove needless lock during console writes - pstore: Convert buf_lock to semaphore - pstore: Set tfm to NULL on free_buf_for_compression - pstore/ram: Run without kernel crash dump region - [x86] power: Fix 'nosmt' vs hibernation triple fault during resume - [s390x] mm: fix address space detection in exception handling - xen-blkfront: switch kcalloc to kvcalloc for large array allocation - [ppc64el] genwqe: Prevent an integer overflow in the ioctl - test_firmware: Use correct snprintf() limit - [x86] drm/gma500/cdv: Check vbt config bits when detecting lvds panels - [arm64] drm/msm: fix fb references in async update - drm: add non-desktop quirk for Valve HMDs - drm: add non-desktop quirks to Sensics and OSVR headsets. - drm/amdgpu/psp: move psp version specific function pointers to early_init - drm/radeon: prefer lower reference dividers - drm/amdgpu: remove ATPX_DGPU_REQ_POWER_FOR_DISPLAYS check when hotplug-in - [x86] drm/i915: Fix I915_EXEC_RING_MASK - [x86] drm/i915/fbc: disable framebuffer compression on GeminiLake - [x86] drm/i915: Maintain consistent documentation subsection ordering - drm: don't block fb changes for async plane updates - [x86] drm/i915/gvt: Initialize intel_gvt_gtt_entry in stack - TTY: serial_core, add ->install - ipv4: Define __ipv4_neigh_lookup_noref when CONFIG_INET is disabled - ethtool: check the return value of get_regs_len https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.51 - fs/fat/file.c: issue flush after the writeback of FAT - sysctl: return -EINVAL if val violates minmax - ipc: prevent lockup on alloc_msg and free_msg - [armhf] prevent tracing IPI_CPU_BACKTRACE - hugetlbfs: on restore reserve error path retain subpool reservation - mem-hotplug: fix node spanned pages when we have a node with only ZONE_MOVABLE - mm/cma.c: fix crash on CMA allocation if bitmap allocation fails - initramfs: free initrd memory if opening /initrd.image fails - mm/cma.c: fix the bitmap status to show failed allocation reason - mm: page_mkclean vs MADV_DONTNEED race - mm/cma_debug.c: fix the break condition in cma_maxchunk_get() - mm/slab.c: fix an infinite loop in leaks_show() - kernel/sys.c: prctl: fix false positive in validate_prctl_map() - drivers: thermal: tsens: Don't print error message on -EPROBE_DEFER - [x86] mfd: intel-lpss: Set the device in reset state when init - drm/nouveau/disp/dp: respect sink limits when selecting failsafe link configuration - [armhf] mfd: twl6040: Fix device init errors for ACCCTL register - [x86] perf/intel: Allow PEBS multi-entry in watermark mode - drm/nouveau/kms/gf119-gp10x: push HeadSetControlOutputResource() mthd when encoders change - [arm64] drm/bridge: adv7511: Fix low refresh rate selection - objtool: Don't use ignore flag for fake jumps - drm/nouveau/kms/gv100-: fix spurious window immediate interlocks - bpf: fix undefined behavior in narrow load handling - [arm64] pwm: meson: Use the spin-lock only to protect register modifications - ntp: Allow TAI-UTC offset to be set to zero - f2fs: fix to avoid panic in do_recover_data() - f2fs: fix to avoid panic in f2fs_inplace_write_data() - f2fs: fix to avoid panic in f2fs_remove_inode_page() - f2fs: fix to do sanity check on free nid - f2fs: fix to clear dirty inode in error path of f2fs_iget() - f2fs: fix to avoid panic in dec_valid_block_count() - f2fs: fix to use inline space only if inline_xattr is enable - f2fs: fix to do sanity check on valid block count of segment - f2fs: fix to do checksum even if inode page is uptodate - percpu: remove spurious lock dependency between percpu and sched - configfs: fix possible use-after-free in configfs_register_group - [armhf,arm64] PCI: dwc: Free MSI in dw_pcie_host_init() error path - [armhf,arm64] PCI: dwc: Free MSI IRQ page in dw_pcie_free_msi() - ovl: do not generate duplicate fsnotify events for "fake" path - mmc: mmci: Prevent polling for busy detection in IRQ context - netfilter: nf_flow_table: fix missing error check for rhashtable_insert_fast - netfilter: nf_conntrack_h323: restore boundary check correctness - [mips*] Make sure dt memory regions are valid - netfilter: nf_tables: fix base chain stat rcu_dereference usage - [armhf] watchdog: imx2_wdt: Fix set_timeout for big timeout values - watchdog: fix compile time error of pretimeout governors - blk-mq: move cancel of requeue_work into blk_mq_release - [x86] iommu/vt-d: Set intel_iommu_gfx_mapped correctly - nvme-pci: unquiesce admin queue on shutdown - nvme-pci: shutdown on timeout during deletion - netfilter: nf_flow_table: check ttl value in flow offload data path - netfilter: nf_flow_table: fix netdev refcnt leak - ALSA: hda - Register irq handler after the chip initialization - nvmem: core: fix read buffer in place - [armhf,arm64] nvmem: sunxi_sid: Support SID on A83T and H5 - fuse: retrieve: cap requested size to negotiated max_write - nfsd: allow fh_want_write to be called twice - nfsd: avoid uninitialized variable warning - vfio: Fix WARNING "do not call blocking ops when !TASK_RUNNING" - [armhf,arm64] iommu/arm-smmu-v3: Don't disable SMMU in kdump kernel - [x86] net: thunderbolt: Unregister ThunderboltIP protocol handler when suspending - [x86] PCI: Fix PCI IRQ routing table memory leak - i40e: Queues are reserved despite "Invalid argument" error - platform/chrome: cros_ec_proto: check for NULL transfer function - [armhf] clk: rockchip: Turn on "aclk_dmac1" for suspend on rk3288 - [armhf] soc: rockchip: Set the proper PWM for rk3288 - [armhf] dts: imx51: Specify IMX5_CLK_IPG as "ahb" clock to SDMA - [armhf] dts: imx50: Specify IMX5_CLK_IPG as "ahb" clock to SDMA - [armhf] dts: imx53: Specify IMX5_CLK_IPG as "ahb" clock to SDMA - [armhf] dts: imx6sx: Specify IMX6SX_CLK_IPG as "ahb" clock to SDMA - [armhf] dts: imx6sll: Specify IMX6SLL_CLK_IPG as "ipg" clock to SDMA - [armhf] dts: imx6ul: Specify IMX6UL_CLK_IPG as "ipg" clock to SDMA - [armhf] dts: imx6sx: Specify IMX6SX_CLK_IPG as "ipg" clock to SDMA - [armhf] dts: imx6qdl: Specify IMX6QDL_CLK_IPG as "ipg" clock to SDMA - [ppc64el] PCI: rpadlpar: Fix leaked device_node references in add/remove paths - drm/amd/display: Use plane->color_space for dpp if specified - [armhf] OMAP2+: pm33xx-core: Do not Turn OFF CEFUSE as PPA may be using it - [x86] platform: intel_pmc_ipc: adding error handling - [arm64] net: hns3: return 0 and print warning when hit duplicate MAC - scsi: qla2xxx: Reset the FCF_ASYNC_{SENT|ACTIVE} flags - [x86] video: hgafb: fix potential NULL pointer dereference - block, bfq: increase idling for weight-raised queues - [arm64] PCI: xilinx: Check for __get_free_pages() failure - ice: Add missing case in print_link_msg for printing flow control - [x86] dmaengine: idma64: Use actual device for DMA transfers - [armhf] pwm: tiehrpwm: Update shadow register for disabling PWMs - [armhf] dts: exynos: Always enable necessary APIO_1V8 and ABB_1V8 regulators on Arndale Octa - pwm: Fix deadlock warning when removing PWM device - [armhf] exynos: Fix undefined instruction during Exynos5422 resume - [x86] usb: typec: fusb302: Check vconn is off when we start toggling - soc: renesas: Identify R-Car M3-W ES1.3 - percpu: do not search past bitmap when allocating an area - ovl: check the capability before cred overridden - ovl: support stacked SEEK_HOLE/SEEK_DATA - [arm*] drm/vc4: fix fb references in async update - ALSA: seq: Cover unsubscribe_port() in list_mutex https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.52 https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.53 - drm/nouveau: add kconfig option to turn off nouveau legacy contexts. (v3) - nouveau: Fix build with CONFIG_NOUVEAU_LEGACY_CTX_SUPPORT disabled - HID: multitouch: handle faulty Elo touch device - HID: wacom: Don't set tool type until we're in range - HID: wacom: Don't report anything prior to the tool entering range - HID: wacom: Send BTN_TOUCH in response to INTUOSP2_BT eraser contact - HID: wacom: Correct button numbering 2nd-gen Intuos Pro over Bluetooth - HID: wacom: Sync INTUOSP2_BT touch state after each frame if necessary - ALSA: oxfw: allow PCM capture for Stanton SCS.1m - ALSA: hda/realtek - Update headset mode for ALC256 - ALSA: firewire-motu: fix destruction of data for isochronous resources - libata: Extend quirks for the ST1000LM024 drives with NOLPM quirk - mm/list_lru.c: fix memory leak in __memcg_init_list_lru_node - fs/ocfs2: fix race in ocfs2_dentry_attach_lock() - mm/vmscan.c: fix trying to reclaim unevictable LRU page - signal/ptrace: Don't leak unitialized kernel memory with PTRACE_PEEK_SIGINFO - ptrace: restore smp_rmb() in __ptrace_may_access() - [armhf,arm64] iommu/arm-smmu: Avoid constant zero in TLBI writes - bcache: fix stack corruption by PRECEDING_KEY() - bcache: only set BCACHE_DEV_WB_RUNNING when cached device attached - cgroup: Use css_tryget() instead of css_tryget_online() in task_get_css() - [x86] drm/i915/sdvo: Implement proper HDMI audio support for SDVO - ALSA: seq: Fix race of get-subscription call vs port-delete ioctls - Drivers: misc: fix out-of-bounds access in function param_set_kgdbts_var - f2fs: fix to avoid accessing xattr across the boundary - scsi: qedi: remove memset/memcpy to nfunc and use func instead (CVE-2019-15090) - scsi: qedi: remove set but not used variables 'cdev' and 'udev' - scsi: lpfc: correct rcu unlock issue in lpfc_nvme_info_show - scsi: lpfc: add check for loss of ndlp when sending RRQ - [arm64] mm: Inhibit huge-vmap with ptdump - nvme: fix srcu locking on error return in nvme_get_ns_from_disk - nvme: remove the ifdef around nvme_nvm_ioctl - nvme: merge nvme_ns_ioctl into nvme_ioctl - nvme: release namespace SRCU protection before performing controller ioctls - nvme: fix memory leak for power latency tolerance - [x86] platform: pmc_atom: Add Lex 3I380D industrial PC to critclk_systems DMI table - [x86] platform: pmc_atom: Add several Beckhoff Automation boards to critclk_systems DMI table - scsi: bnx2fc: fix incorrect cast to u64 on shift operation - libnvdimm: Fix compilation warnings with W=1 - tracing: Prevent hist_field_var_ref() from accessing NULL tracing_map_elts - usbnet: ipheth: fix racing condition - [armhf,arm64] KVM: Move cc/it checks under hyp's Makefile to avoid instrumentation - [x86] KVM: pmu: mask the result of rdpmc according to the width of the counters - [x86] KVM: pmu: do not mask the value that is written to fixed PMUs - [s390x] KVM: fix memory slot handling for KVM_SET_USER_MEMORY_REGION - [x86] drm/vmwgfx: integer underflow in vmw_cmd_dx_set_shader() leading to an invalid read - [x86] drm/vmwgfx: NULL pointer dereference from vmw_cmd_dx_view_define() - [armhf,arm64] usb: dwc2: Fix DMA cache alignment issues - [armhf,arm64] usb: dwc2: host: Fix wMaxPacketSize handling (fix webcam regression) - USB: Fix chipmunk-like voice when using Logitech C270 for recording audio. - USB: usb-storage: Add new ID to ums-realtek - USB: serial: pl2303: add Allied Telesis VT-Kit3 - USB: serial: option: add support for Simcom SIM7500/SIM7600 RNDIS mode - USB: serial: option: add Telit 0x1260 and 0x1261 compositions - timekeeping: Repair ktime_get_coarse*() granularity - [x86] microcode, cpuhotplug: Add a microcode loader CPU hotplug callback - [x86] mm/KASLR: Compute the size of the vmemmap section properly - [x86] resctrl: Prevent NULL pointer dereference when local MBM is disabled - drm/edid: abstract override/firmware EDID retrieval - drm: add fallback override/firmware EDID modes workaround - [armhf] rtc: pcf8523: don't return invalid date when battery is low https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.54 - ax25: fix inconsistent lock state in ax25_destroy_timer - be2net: Fix number of Rx queues used for flow hashing - [x86] hv_netvsc: Set probe mode to sync - ipv6: flowlabel: fl6_sock_lookup() must use atomic_inc_not_zero - lapb: fixed leak of control-blocks. - neigh: fix use-after-free read in pneigh_get_next - net: openvswitch: do not free vport if register_netdevice() is failed. - sctp: Free cookie before we memdup a new one - tipc: purge deferredq list for each grp member in tipc_group_delete - vsock/virtio: set SOCK_DONE on peer shutdown - net/mlx5: Avoid reloading already removed devices - [armhf,arm64] net: mvpp2: prs: Fix parser range for VID filtering - [armhf,arm64] net: mvpp2: prs: Use the correct helpers when removing all VID filters - [arm*] Staging: vc04_services: Fix a couple error codes - [x86] perf/intel/ds: Fix EVENT vs. UEVENT PEBS constraints - netfilter: nf_queue: fix reinject verdict handling - ipvs: Fix use-after-free in ip_vs_in - [armhf] clk: ti: clkctrl: Fix clkdm_clk handling - [ppc64el] powernv: Return for invalid IMC domain - usb: xhci: Fix a potential null pointer dereference in xhci_debugfs_create_endpoint() - mISDN: make sure device name is NUL terminated - [x86] CPU/AMD: Don't force the CPB cap when running under a hypervisor - perf/ring_buffer: Fix exposing a temporarily decreased data_head - perf/ring_buffer: Add ordering to rb->nest increment - perf/ring-buffer: Always use {READ,WRITE}_ONCE() for rb->user_page data - [armhf,arm64] net: stmmac: update rx tail pointer register to fix rx dma hang issue. - ACPI/PCI: PM: Add missing wakeup.flags.valid checks - [armhf] drm/etnaviv: lock MMU while dumping core - net: aquantia: tx clean budget logic error - net: aquantia: fix LRO with FCS error - i2c: dev: fix potential memory leak in i2cdev_ioctl_rdwr - ALSA: hda - Force polling mode on CNL for fixing codec communication - configfs: Fix use-after-free when accessing sd->s_dentry - perf data: Fix 'strncat may truncate' build failure with recent gcc - perf namespace: Protect reading thread's namespace - [s390x] perf record: Fix s390 missing module symbol and warning for non-root users - xenbus: Avoid deadlock during suspend due to open transactions - [ppc64el] KVM: Book3S: Use new mutex to synchronize access to rtas token list - [ppc64el] KVM: Book3S HV: Don't take kvm->lock around kvm_for_each_vcpu - [arm64] fix syscall_fn_t type - [arm64] use the correct function type in SYSCALL_DEFINE0 - [arm64] use the correct function type for __arm64_sys_ni_syscall - net: phylink: ensure consistent phy interface mode - net: phy: dp83867: Set up RGMII TX delay - scsi: libcxgbi: add a check for NULL pointer in cxgbi_check_route() - scsi: smartpqi: properly set both the DMA mask and the coherent DMA mask - scsi: scsi_dh_alua: Fix possible null-ptr-deref - scsi: libsas: delete sas port if expander discover failed - ocfs2: fix error path kobject memory leak - coredump: fix race condition between collapse_huge_page() and core dumping - Abort file_remove_privs() for non-reg. files https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.55 https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.56 - tracing: Silence GCC 9 array bounds warning - objtool: Support per-function rodata sections - ovl: support the FS_IOC_FS[SG]ETXATTR ioctls - ovl: fix wrong flags check in FS_IOC_FS[SG]ETXATTR ioctls - ovl: make i_ino consistent with st_ino in more cases - ovl: detect overlapping layers - ovl: don't fail with disconnected lower NFS - ovl: fix bogus -Wmaybe-unitialized warning - [s390x] jump_label: Use "jdd" constraint on gcc9 - [s390x] ap: rework assembler functions to use unions for in/out register variables - mmc: sdhci: sdhci-pci-o2micro: Correctly set bus width when tuning - mmc: core: API to temporarily disable retuning for SDIO CRC errors - mmc: core: Add sdio_retune_hold_now() and sdio_retune_release() - mmc: core: Prevent processing SDIO IRQs when the card is suspended - scsi: ufs: Avoid runtime suspend possibly being blocked forever - [armhf,arm64] usb: chipidea: udc: workaround for endpoint conflict issue - xhci: detect USB 3.2 capable host controllers correctly - usb: xhci: Don't try to recover an endpoint if port is in error state. - IB/hfi1: Validate fault injection opcode user input - IB/hfi1: Silence txreq allocation warnings - [x86] Input: synaptics - enable SMBus on ThinkPad E480 and E580 - Input: uinput - add compat ioctl number translation for UI_*_FF_UPLOAD - [x86] Input: silead - add MSSL0017 to acpi_device_id - apparmor: fix PROFILE_MEDIATES for untrusted input - apparmor: enforce nullbyte at end of tag string - brcmfmac: sdio: Disable auto-tuning around commands expected to fail - brcmfmac: sdio: Don't tune while the card is off - parport: Fix mem leak in parport_register_dev_model - IB/rdmavt: Fix alloc_qpn() WARN_ON() - IB/hfi1: Insure freeze_work work_struct is canceled on shutdown - IB/{qib, hfi1, rdmavt}: Correct ibv_devinfo max_mr value - IB/hfi1: Validate page aligned for a given virtual address - [mips*] uprobes: remove set but not used variable 'epc' - [armhf,arm64] net: dsa: mv88e6xxx: avoid error message on remove from VLAN 0 - [arm64] net: hns: Fix loopback test failed at copper ports - mdesc: fix a missing-check bug in get_vdev_port_node_info() - [arm64] drm/arm/mali-dp: Add a loop around the second set CVAL and try 5 times - [arm64] drm/arm/hdlcd: Actually validate CRTC modes - [arm64] drm/arm/hdlcd: Allow a bit of clock tolerance - nvmet: fix data_len to 0 for bdev-backed write_zeroes - scsi: ufs: Check that space was properly alloced in copy_query_response - scsi: smartpqi: unlock on error in pqi_submit_raid_request_synchronous() - net: ipvlan: Fix ipvlan device tso disabled while NETIF_F_IP_CSUM is set - [s390x] qeth: fix VLAN attribute in bridge_hostnotify udev event - hwmon: (core) add thermal sensors only if dev->of_node is present - hwmon: (pmbus/core) Treat parameters as paged if on multiple pages - nvme: Fix u32 overflow in the number of namespace list calculation - btrfs: start readahead also in seed devices - [armhf] can: flexcan: fix timeout when set small bitrate - can: purge socket error queue on sock destruct - [ppc64el] bpf: use unsigned division instruction for 64-bit operations - [armhf] imx: cpuidle-imx6sx: Restrict the SW2ISO increase to i.MX6SX - [armhf] dts: dra76x: Update MMC2_HS200_MANUAL1 iodelay values - [armhf] dts: am57xx-idk: Remove support for voltage switching for SD card - [arm64] sve: should not depend on - [arm64] ssbd: explicitly depend on - [x86] drm/vmwgfx: Use the backdoor port if the HB port is not available - Bluetooth: Align minimum encryption key size for LE and BR/EDR connections (CVE-2019-9506) - Bluetooth: Fix regression with minimum encryption key size alignment - SMB3: retry on STATUS_INSUFFICIENT_RESOURCES instead of failing write - cfg80211: fix memory leak of wiphy device name - mac80211: drop robust management frames from unknown TA - {nl,mac}80211: allow 4addr AP operation on crypto controlled devices - mac80211: handle deauthentication/disassociation from TDLS peer - nl80211: fix station_info pertid memory leak - mac80211: Do not use stack memory with scatterlist for GMAC - [x86] resctrl: Don't stop walking closids when a locksetup group is found https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.57 - perf ui helpline: Use strlcpy() as a shorter form of strncpy() + explicit set nul - perf help: Remove needless use of strncpy() - perf header: Fix unchecked usage of strncpy() - [arm64] Don't unconditionally add -Wno-psabi to KBUILD_CFLAGS - IB/hfi1: Close PSM sdma_progress sleep window - 9p/xen: fix check for xenbus_read error in front_probe - 9p: Use a slab for allocating requests - 9p: embed fcall in req to round down buffer allocs - 9p: add a per-client fcall kmem_cache - 9p: rename p9_free_req() function - 9p: Add refcount to p9_req_t - 9p/rdma: do not disconnect on down_interruptible EAGAIN - 9p: Rename req to rreq in trans_fd - 9p: acl: fix uninitialized iattr access - 9p/rdma: remove useless check in cm_event_handler - 9p: p9dirent_read: check network-provided name length - 9p: potential NULL dereference - 9p/trans_fd: abort p9_read_work if req status changed - 9p/trans_fd: put worker reqs on destroy - net/9p: include trans_common.h to fix missing prototype warning. - qmi_wwan: Fix out-of-bounds read - [armhf,arm64] Revert "usb: dwc3: gadget: Clear req->needs_extra_trb flag on cleanup" - [armhf,arm64] usb: dwc3: gadget: combine unaligned and zero flags - [armhf,arm64] usb: dwc3: gadget: track number of TRBs per request - [armhf,arm64] usb: dwc3: gadget: use num_trbs when skipping TRBs on ->dequeue() - [armhf,arm64] usb: dwc3: gadget: extract dwc3_gadget_ep_skip_trbs() - [armhf,arm64] usb: dwc3: gadget: introduce cancelled_list - [armhf,arm64] usb: dwc3: gadget: move requests to cancelled_list - [armhf,arm64] usb: dwc3: gadget: remove wait_end_transfer - [armhf,arm64] usb: dwc3: gadget: Clear req->needs_extra_trb flag on cleanup - fs/proc/array.c: allow reporting eip/esp for all coredumping threads - mm/mempolicy.c: fix an incorrect rebind node in mpol_rebind_nodemask - fs/binfmt_flat.c: make load_flat_shared_library() work - [armhf] clk: socfpga: stratix10: fix divider entry for the emac clocks - mm: soft-offline: return -EBUSY if set_hwpoison_free_buddy_page() fails - mm: hugetlb: soft-offline: dissolve_free_huge_page() return zero on !PageHuge - mm/page_idle.c: fix oops because end_pfn is larger than max_pfn - dm log writes: make sure super sector log updates are written in order - [x86] scsi: vmw_pscsi: Fix use-after-free in pvscsi_queue_lck() - [x86] speculation: Allow guests to use SSBD even if host does not - [x86] microcode: Fix the microcode load on CPU hotplug for real - [x86] resctrl: Prevent possible overrun during bitmap operations - [x86] KVM: mmu: Allocate PAE root array when using SVM's 32-bit NPT - NFS/flexfiles: Use the correct TCP timeout for flexfiles I/O - cpu/speculation: Warn on unsupported mitigations= parameter - SUNRPC: Clean up initialisation of the struct rpc_rqst - [mips*] irqchip/mips-gic: Use the correct local interrupt map registers - eeprom: at24: fix unexpected timeout under high load - af_packet: Block execution of tasks waiting for transmit to complete in AF_PACKET - bonding: Always enable vlan tx offload - ipv4: Use return value of inet_iif() for __raw_v4_lookup in the while loop - net/packet: fix memory leak in packet_set_ring() - net: remove duplicate fetch in sock_getsockopt - [armhf,arm64] net: stmmac: fixed new system time seconds value calculation - [armhf,arm64] net: stmmac: set IC bit when transmitting frames with HW timestamp - sctp: change to hold sk after auth shkey is created successfully - team: Always enable vlan tx offload - tipc: change to use register_pernet_device - tipc: check msg->req data len in tipc_nl_compat_bearer_disable - tun: wake up waitqueues after IFF_UP is set - bpf: simplify definition of BPF_FIB_LOOKUP related flags - bpf: lpm_trie: check left child of last leftmost node for NULL - bpf: fix nested bpf tracepoints with per-cpu data - bpf: fix unconnected udp hooks - bpf: udp: Avoid calling reuseport's bpf_prog from udp_gro - bpf: udp: ipv6: Avoid running reuseport's bpf_prog from __udp6_lib_err - [arm64] futex: Avoid copying out uninitialised stack in failed cmpxchg() - [arm64] bpf: use more scalable stadd over ldxr / stxr loop in xadd - futex: Update comments and docs about return values of arch futex code - RDMA: Directly cast the sockaddr union to sockaddr - tipc: pass tunnel dev as NULL to udp_tunnel(6)_xmit_skb - [armhf,arm64] usb: dwc3: Reset num_trbs after skipping - [arm64] insn: Fix ldadd instruction encoding https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.58 - Bluetooth: Fix faulty expression for minimum encryption key size check - block: Fix a NULL pointer dereference in generic_make_request() - md/raid0: Do not bypass blocking queue entered for raid0 bios - netfilter: nf_flow_table: ignore DF bit setting - netfilter: nft_flow_offload: set liberal tracking mode for tcp - netfilter: nft_flow_offload: don't offload when sequence numbers need adjustment - netfilter: nft_flow_offload: IPCB is only valid for ipv4 family - ASoC: soc-pcm: BE dai needs prepare when pause release after resume - spi: bitbang: Fix NULL pointer dereference in spi_unregister_master - [armhf,arm64] ASoC: max98090: remove 24-bit format support if RJ is 0 - [x86] CPU: Add more Icelake model numbers - ALSA: hdac: fix memory release for SST and SOF drivers - scsi: hpsa: correct ioaccel2 chaining - [x86] drm: panel-orientation-quirks: Add quirk for GPD pocket2 - [x86] drm: panel-orientation-quirks: Add quirk for GPD MicroPC - [x86] platform: asus-wmi: Only Tell EC the OS will handle display hotkeys from asus_nb_wmi - [x86] platform: intel-vbtn: Report switch events when event wakes device - [x86] platform: mlx-platform: Fix parent device in i2c-mux-reg device registration - i2c: pca-platform: Fix GPIO lookup code - cpuset: restore sanity to cpuset_cpus_allowed_fallback() - mm/mlock.c: change count_mm_mlocked_page_nr return type - tracing: avoid build warning with HAVE_NOP_MCOUNT - module: Fix livepatch/ftrace module text permissions race - ftrace: Fix NULL pointer dereference in free_ftrace_func_mapper() - [x86] drm/i915/dmc: protect against reading random memory - crypto: user - prevent operating on larval algorithms - crypto: cryptd - Fix skcipher instance memory leak - ALSA: seq: fix incorrect order of dest_client/dest_ports arguments - ALSA: firewire-lib/fireworks: fix miss detection of received MIDI messages - ALSA: line6: Fix write on zero-sized buffer - ALSA: usb-audio: fix sign unintended sign extension on left shifts - [x86] ALSA: hda/realtek: Add quirks for several Clevo notebook barebones - [x86] ALSA: hda/realtek - Change front mic location for Lenovo M710q - lib/mpi: Fix karactx leak in mpi_powm - fs/userfaultfd.c: disable irqs for fault_pending and event locks - tracing/snapshot: Resize spare buffer if size changed - [armhf] dts: armada-xp-98dx3236: Switch to armada-38x-uart serial node - drm/amd/powerplay: use hardware fan control if no powerplay fan table - drm/amdgpu/gfx9: use reset default for PA_SC_FIFO_SIZE - [armhf] drm/etnaviv: add missing failure path to destroy suballoc - [armhf] drm/imx: notify drm core before sending event during crtc disable - drm/imx: only send event on crtc disable if kept disabled - [x86] ftrace: Remove possible deadlock between register_kprobe() and ftrace_run_update_code() - mm/vmscan.c: prevent useless kswapd loops - btrfs: Ensure replaced device doesn't have pending chunk allocation - tty: rocket: fix incorrect forward declaration of 'rp_init()' - net/smc: move unhash before release of clcsock - drm/fb-helper: generic: Don't take module ref for fbcon - f2fs: don't access node/meta inode mapping after iput - mac80211: mesh: fix missing unlock on error in table_path_del() - scsi: tcmu: fix use after free - [amd64] boot/compressed: Do not corrupt EDX on EFER.LME=1 setting - [arm64] net: hns: Fixes the missing put_device in positive leg for roce reset - ALSA: hda: Initialize power_state field properly - rds: Fix warning. - ip6: fix skb leak in ip6frag_expire_frag_queue() - netfilter: ipv6: nf_defrag: fix leakage of unqueued fragments - [arm64] net: hns: fix unsigned comparison to less than zero - bpf: fix bpf_jit_limit knob for PAGE_SIZE >= 64K - netfilter: ipv6: nf_defrag: accept duplicate fragments again - [x86] KVM: degrade WARN to pr_warn_ratelimited - [x86] KVM: LAPIC: Fix pending interrupt in IRR blocked by software disable LAPIC - nfsd: Fix overflow causing non-working mounts on 1 TB machines - svcrdma: Ignore source port when computing DRC hash - [mips*] Fix bounds check virt_addr_valid - [mips*] Add missing EHB in mtc0 -> mfc0 sequence. - [arm64] dmaengine: qcom: bam_dma: Fix completed descriptors count - [armhf] dmaengine: imx-sdma: remove BD_INTR for channel0 https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.59 - [x86] Input: elantech - enable middle button support on 2 ThinkPads - mac80211: fix rate reporting inside cfg80211_calculate_bitrate_he() - bpf: sockmap, fix use after free from sleep in psock backlog workqueue - mac80211: mesh: fix RCU warning - mac80211: free peer keys before vif down in mesh - iwlwifi: Fix double-free problems in iwl_req_fw_callback() - can: af_can: Fix error path of can_init() - net: phy: rename Asix Electronics PHY driver - [armhf] dts: am335x phytec boards: Fix cd-gpios active level - [s390x] boot: disable address-of-packed-member warning - [x86] drm/vmwgfx: Honor the sg list segment size limitation - [x86] drm/vmwgfx: fix a warning due to missing dma_parms - [armhf] Input: imx_keypad - make sure keyboard can always wake up system - [armhf,arm64] KVM: vgic: Fix kvm_device leak in vgic_its_destroy - mac80211: only warn once on chanctx_conf being NULL - mac80211: do not start any work during reconfigure flow - bpf, devmap: Fix premature entry free on destroying map - bpf, devmap: Add missing bulk queue free - bpf, devmap: Add missing RCU read lock on flush - [amd64] bpf: fix stack layout of JITed bpf code - qmi_wwan: add support for QMAP padding in the RX path - qmi_wwan: avoid RCU stalls on device disconnect when in QMAP mode - qmi_wwan: extend permitted QMAP mux_id value range - mmc: core: complete HS400 before checking status - md: fix for divide error in status_resync - bnx2x: Check if transceiver implements DDM before access - drm: return -EFAULT if copy_to_user() fails - ip6_tunnel: allow not to count pkts on tstats by passing dev as NULL - net: lio_core: fix potential sign-extension overflow on large shift - scsi: qedi: Check targetname while finding boot target information - quota: fix a problem about transfer quota - [armhf,arm64] net: dsa: mv88e6xxx: fix shift of FID bits in mv88e6185_g1_vtu_loadpurge() - NFS4: Only set creation opendata if O_CREAT - net :sunrpc :clnt :Fix xps refcount imbalance on the error path - fscrypt: don't set policy for a dead directory - udf: Fix incorrect final NOT_ALLOCATED (hole) extent length - media: stv0297: fix frequency range limit - ALSA: usb-audio: Fix parse of UAC2 Extension Units - ALSA: hda/realtek - Headphone Mic can't record after S3 - block, bfq: NULL out the bic when it's no longer valid - [arm64] perf pmu: Fix uncore PMU alias list for ARM64 - [x86] ptrace: Fix possible spectre-v1 in ptrace_get_debugreg() - [x86] tls: Fix possible spectre-v1 in do_get_thread_area() - USB: serial: ftdi_sio: add ID for isodebug v1 - USB: serial: option: add support for GosunCn ME3630 RNDIS mode - Revert "serial: 8250: Don't service RX FIFO if interrupts are disabled" - p54usb: Fix race between disconnect and firmware loading - usb: gadget: ether: Fix race between gether_disconnect and rx_submit - [armhf,arm64] usb: dwc2: use a longer AHB idle timeout in dwc2_core_reset() - [x86] drivers/usb/typec/tps6598x.c: fix portinfo width - [x86] drivers/usb/typec/tps6598x.c: fix 4CC cmd write - [i386] staging: comedi: dt282x: fix a null pointer deref on interrupt - [x86] staging: comedi: amplc_pci230: fix null pointer deref on interrupt - HID: Add another Primax PIXART OEM mouse quirk - binder: fix memory leak in error path - carl9170: fix misuse of device driver API - [x86] VMCI: Fix integer overflow in VMCI handle arrays - staging: rtl8712: reduce stack usage, again https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.60 - Revert "e1000e: fix cyclic resets at link up with active tx" - e1000e: start network tx queue only when link is up - [x86] Input: synaptics - enable SMBUS on T480 thinkpad trackpad - nilfs2: do not use unexported cpu_to_le32()/le32_to_cpu() in uapi header - drivers: base: cacheinfo: Ensure cpu hotplug work is done before Intel RDT - firmware: improve LSM/IMA security behaviour - [armhf,arm64] irqchip/gic-v3-its: Fix command queue pointer comparison bug - [armhf] clk: ti: clkctrl: Fix returning uninitialized data - [amd64,arm64] efi/bgrt: Drop BGRT status field reserved bits check - perf/core: Fix perf_sample_regs_user() mm check - [armhf] omap2: remove incorrect __init annotation - afs: Fix uninitialised spinlock afs_volume::cb_break_lock - [x86] apic: Fix integer overflow on 10 bit left shift of cpu_khz - be2net: fix link failure after ethtool offline test - ppp: mppe: Add softdep to arc4 - sis900: fix TX completion - [armhf] dts: imx6ul: fix PWM[1-4] interrupts - [armhf] pinctrl: mcp23s08: Fix add_data and irqchip_add_nested call order - dm table: don't copy from a NULL pointer in realloc_argv() - dm verity: use message limit for data block corruption message - [amd64] boot: Fix crash if kernel image crosses page table boundary - [amd64] boot: Add missing fixup_pointer() for next_early_pgt access - HID: chicony: add another quirk for PixArt mouse - HID: multitouch: Add pointstick support for ALPS Touchpad - cpu/hotplug: Fix out-of-bounds read when setting fail state - linux/kernel.h: fix overflow for DIV_ROUND_UP_ULL - genirq: Delay deactivation in free_irq() - genirq: Fix misleading synchronize_irq() documentation - genirq: Add optional hardware synchronization for shutdown - [x86] ioapic: Implement irq_get_irqchip_state() callback - [x86] irq: Handle spurious interrupt after shutdown gracefully - [x86] irq: Seperate unused system vectors from spurious entry again - [s390x] fix stfle zero padding - [s390x] qdio: (re-)initialize tiqdio list entries - [s390x] qdio: don't touch the dsci in tiqdio_add_input_queues() - regmap-irq: do not write mask register if mask_base is zero - drm/udl: introduce a macro to convert dev to udl. - drm/udl: Replace drm_dev_unref with drm_dev_put - drm/udl: move to embedding drm device inside udl device. - [i386] entry: Fix ENDPROC of common_spurious https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.61 - [arm64] efi: Mark __efistub_stext_offset as an absolute symbol explicitly - scsi: iscsi: set auth_protocol back to NULL if CHAP_A value is not supported - [armhf] dmaengine: imx-sdma: fix use-after-free on probe error path - wil6210: fix potential out-of-bounds read - ath10k: Do not send probe response template for mesh - ath9k: Check for errors when reading SREV register - ath6kl: add some bounds checking - ath10k: add peer id check in ath10k_peer_find_by_id - wil6210: fix spurious interrupts in 3-msi - ath: DFS JP domain W56 fixed pulse type 3 RADAR detection - regmap: debugfs: Fix memory leak in regmap_debugfs_init - batman-adv: fix for leaked TVLV handler. - media: dvb: usb: fix use after free in dvb_usb_device_exit - media: marvell-ccic: fix DMA s/g desc number calculation - media: media_device_enum_links32: clean a reserved field - [armhf,arm64] net: stmmac: dwmac1000: Clear unused address entries - [armhf,arm64] net: stmmac: dwmac4/5: Clear unused address entries - qed: Set the doorbell address correctly - signal/pid_namespace: Fix reboot_pid_ns to use send_sig not force_sig - af_key: fix leaks in key_pol_get_resp and dump_sp. - xfrm: Fix xfrm sel prefix length validation - fscrypt: clean up some BUG_ON()s in block encryption/decryption - perf annotate TUI browser: Do not use member from variable within its own initialization - media: mc-device.c: don't memset __user pointer contents - media: saa7164: fix remove_proc_entry warning - net: phy: Check against net_device being NULL - tua6100: Avoid build warnings. - batman-adv: Fix duplicated OGMs on NETDEV_UP - [armhf] media: wl128x: Fix some error handling in fm_v4l2_init_video_device() - [arm64] net: hns3: set ops to null when unregister ad_dev - cpupower : frequency-set -r option misses the last cpu in related cpu list - [armhf,arm64] net: stmmac: dwmac4: fix flow control issue - [armhf,arm64] net: stmmac: modify default value of tx-frames - [arm64] crypto: inside-secure - do not rely on the hardware last bit for result descriptors - [s390x] qdio: handle PENDING state for QEBSM devices - net: sfp: add mutex to prevent concurrent state checks - ipset: Fix memory accounting for hash types on resize - perf cs-etm: Properly set the value of 'old' and 'head' in snapshot mode - [s390x] perf report: Fix OOM error in TUI mode on s390 - [arm64] irqchip/meson-gpio: Add support for Meson-G12A SoC - media: uvcvideo: Fix access to uninitialized fields on probe error - iommu: Fix a leak in iommu_insert_resv_region - [armhf] gpio: omap: fix lack of irqstatus_raw0 for OMAP4 - [armhf] gpio: omap: ensure irq is enabled before wakeup - regmap: fix bulk writes on paged registers - bpf: silence warning messages in core - selinux: fix empty write to keycreate file - [x86] cpu: Add Ice Lake NNPI to Intel family - [arm64] ASoC: meson: axg-tdm: fix sample clock inversion - rcu: Force inlining of rcu_read_lock() - [x86] cpufeatures: Add FDP_EXCPTN_ONLY and ZERO_FCS_FDS - qed: iWARP - Fix tc for MPA ll2 connection - [arm64] net: hns3: fix for skb leak when doing selftest - block: null_blk: fix race condition for null_del_dev - blkcg, writeback: dead memcgs shouldn't contribute to writeback ownership arbitration - xfrm: fix sa selector validation - sched/core: Add __sched tag for io_schedule() - sched/fair: Fix "runnable_avg_yN_inv" not used warnings - [x86] perf/intel/uncore: Handle invalid event coding for free-running counter - [x86] atomic: Fix smp_mb__{before,after}_atomic() - perf evsel: Make perf_evsel__name() accept a NULL argument - vhost_net: disable zerocopy by default - ipoib: correcly show a VF hardware address - [x86] cacheinfo: Fix a -Wtype-limits warning - blk-iolatency: only account submitted bios - ACPICA: Clear status of GPEs on first direct enable - EDAC/sysfs: Fix memory leak when creating a csrow object - nvme: fix possible io failures when removing multipathed ns - nvme-pci: properly report state change failure in nvme_reset_work - nvme-pci: set the errno on ctrl state change error - lightnvm: pblk: fix freeing of merged pages - [arm64] Do not enable IRQs for ct_user_exit - ipsec: select crypto ciphers for xfrm_algo - ipvs: defer hook registration to avoid leaks - media: i2c: fix warning same module names - ntp: Limit TAI-UTC offset - timer_list: Guard procfs specific code - [arm64] acpi: ignore 5.1 FADTs that are reported as 5.0 - media: hdpvr: fix locking and a missing msleep - [armhf] net: stmmac: sun8i: force select external PHY when no internal one - rtlwifi: rtl8192cu: fix error handle when usb probe failed - mt7601u: do not schedule rx_tasklet when the device has been disconnected - mt7601u: fix possible memory leak when the device is disconnected - ipvs: fix tinfo memory leak in start_sync_thread - ath10k: add missing error handling - ath10k: fix PCIE device wake up failed - perf tools: Increase MAX_NR_CPUS and MAX_CACHES - [x86] ASoC: Intel: hdac_hdmi: Set ops to NULL on remove - libata: don't request sense data on !ZAC ATA devices - [armhf] clocksource/drivers/exynos_mct: Increase priority over ARM arch timer - xsk: Properly terminate assignment in xskq_produce_flush_desc - rslib: Fix decoding of shortened codes - rslib: Fix handling of of caller provided syndrome - ixgbe: Check DDM existence in transceiver before access - crypto: serpent - mark __serpent_setkey_sbox noinline - wil6210: drop old event after wmi_call timeout - EDAC: Fix global-out-of-bounds write when setting edac_mc_poll_msec - bcache: check CACHE_SET_IO_DISABLE in allocator code - bcache: check CACHE_SET_IO_DISABLE bit in bch_journal() - bcache: acquire bch_register_lock later in cached_dev_free() - bcache: check c->gc_thread by IS_ERR_OR_NULL in cache_set_flush() - bcache: fix potential deadlock in cached_def_free() - [arm64] net: hns3: fix a -Wformat-nonliteral compile warning - [arm64] net: hns3: add some error checking in hclge_tm module - ath10k: destroy sdio workqueue while remove sdio module - [armhf,arm64] net: mvpp2: prs: Don't override the sign bit in SRAM parser shift - igb: clear out skb->tstamp after reading the txtime - iwlwifi: mvm: Drop large non sta frames - perf stat: Make metric event lookup more robust - perf stat: Fix group lookup for metric group - bnx2x: Prevent ptp_task to be rescheduled indefinitely - net: usb: asix: init MAC address buffers - rxrpc: Fix oops in tracepoint - bpf, libbpf, smatch: Fix potential NULL pointer dereference - bonding: validate ip header before check IPPROTO_IGMP - gpiolib: Fix references to gpiod_[gs]et_*value_cansleep() variants - [ppc64el] tools: bpftool: Fix json dump crash on powerpc - Bluetooth: hci_bcsp: Fix memory leak in rx_skb - Bluetooth: Add new 13d3:3491 QCA_ROME device - Bluetooth: Add new 13d3:3501 QCA_ROME device - Bluetooth: 6lowpan: search for destination address in all peers - [ppc64el] perf tests: Fix record+probe_libc_inet_pton.sh for powerpc64 - Bluetooth: Check state in l2cap_disconnect_rsp - gtp: add missing gtp_encap_disable_sock() in gtp_encap_enable() - Bluetooth: validate BLE connection interval updates - gtp: fix suspicious RCU usage - gtp: fix Illegal context switch in RCU read-side critical section. - gtp: fix use-after-free in gtp_encap_destroy() - gtp: fix use-after-free in gtp_newlink() - [armel/marvell,armhf] net: mvmdio: defer probe of orion-mdio if a clock is not ready - iavf: fix dereference of null rx_buffer pointer - floppy: fix out-of-bounds read in next_valid_format - floppy: fix invalid pointer dereference in drive_name - xen: let alloc_xenballooned_pages() fail if not enough memory free - scsi: core: Fix race on creating sense cache - scsi: megaraid_sas: Fix calculation of target ID - crypto: ghash - fix unaligned memory access in ghash_setkey() - [x86] crypto: ccp - Validate the the error value used to index error messages - [arm64] crypto: sha1-ce - correct digest for empty data in finup - [arm64] crypto: sha2-ce - correct digest for empty data in finup - crypto: chacha20poly1305 - fix atomic sleep when using async algorithm - [x86] crypto: ccp - memset structure fields to zero before reuse - [x86] crypto: ccp/gcm - use const time tag comparison. - Revert "bcache: set CACHE_SET_IO_DISABLE in bch_cached_dev_error()" - bcache: Revert "bcache: fix high CPU occupancy during journal" - bcache: Revert "bcache: free heap cache_set->flush_btree in bch_journal_free" - bcache: ignore read-ahead request failure on backing device - bcache: fix mistaken sysfs entry for io_error counter - bcache: destroy dc->writeback_write_wq if failed to create dc->writeback_thread - Input: alps - don't handle ALPS cs19 trackpoint-only device - [x86] Input: synaptics - whitelist Lenovo T580 SMBus intertouch - Input: alps - fix a mismatch between a condition check and its comment - [armhf] regulator: s2mps11: Fix buck7 and buck8 wrong voltages - [arm64] tegra: Update Jetson TX1 GPU regulator timings - iwlwifi: pcie: don't service an interrupt that was masked - iwlwifi: pcie: fix ALIVE interrupt handling for gen2 devices w/o MSI-X - iwlwifi: don't WARN when calling iwl_get_shared_mem_conf with RF-Kill - iwlwifi: fix RF-Kill interrupt while FW load for gen2 devices - NFSv4: Handle the special Linux file open access mode - pnfs/flexfiles: Fix PTR_ERR() dereferences in ff_layout_track_ds_error - pNFS: Fix a typo in pnfs_update_layout - pnfs: Fix a problem where we gratuitously start doing I/O through the MDS - lib/scatterlist: Fix mapping iterator when sg->offset is greater than PAGE_SIZE - ASoC: dapm: Adapt for debugfs API change - raid5-cache: Need to do start() part job after adding journal device - ALSA: seq: Break too long mutex context in the write loop - [x86] ALSA: hda/realtek - Fixed Headphone Mic can't record on Dell platform - [x86] ALSA: hda/realtek: apply ALC891 headset fixup to one Dell machine - media: v4l2: Test type instead of cfg->type in v4l2_ctrl_new_custom() - media: videobuf2-core: Prevent size alignment wrapping buffer size to 0 - media: videobuf2-dma-sg: Prevent size from overflowing - [x86] KVM: vPMU: refine kvm_pmu err msg when event creation failed - [arm64] tegra: Fix AGIC register range - fs/proc/proc_sysctl.c: fix the default values of i_uid/i_gid on /proc/sys inodes. - kconfig: fix missing choice values in auto.conf - drm/nouveau/i2c: Enable i2c pads & busses during preinit - padata: use smp_mb in padata_reorder to avoid orphaned padata jobs - dm zoned: fix zone state management race - xen/events: fix binding user event channels to cpus - 9p/xen: Add cleanup path in p9_trans_xen_init - 9p/virtio: Add cleanup path in p9_virtio_init - [x86] boot: Fix memory leak in default_get_smp_config() - [x86] perf/intel: Fix spurious NMI on fixed counter - [x86] perf/amd/uncore: Do not set 'ThreadMask' and 'SliceMask' for non-L3 PMCs - [x86] perf/amd/uncore: Set the thread mask for F17h L3 PMCs - drm/edid: parse CEA blocks embedded in DisplayID - [x86] intel_th: pci: Add Ice Lake NNPI support - [x86] PCI: hv: Fix a use-after-free bug in hv_eject_device_work() - PCI: Do not poll for PME if the device is in D3cold - [arm64] PCI: qcom: Ensure that PERST is asserted for at least 100 ms - Btrfs: fix data loss after inode eviction, renaming it, and fsync it - Btrfs: fix fsync not persisting dentry deletions due to inode evictions - Btrfs: add missing inode version, ctime and mtime updates when punching hole - IB/mlx5: Report correctly tag matching rendezvous capability - HID: wacom: generic: only switch the mode on devices with LEDs - HID: wacom: generic: Correct pad syncing - HID: wacom: correct touch resolution x/y typo - libnvdimm/pfn: fix fsdax-mode namespace info-block zero-fields - coda: pass the host file in vma->vm_file on mmap - include/asm-generic/bug.h: fix "cut here" for WARN_ON for __WARN_TAINT architectures - xfs: fix pagecache truncation prior to reflink - xfs: flush removing page cache in xfs_reflink_remap_prep - xfs: don't overflow xattr listent buffer - xfs: rename m_inotbt_nores to m_finobt_nores - xfs: don't ever put nlink > 0 inodes on the unlinked list - xfs: reserve blocks for ifree transaction during log recovery - xfs: fix reporting supported extra file attributes for statx() - xfs: serialize unaligned dio writes against all other dio writes - xfs: abort unaligned nowait directio early - [ppc64el] watchpoint: Restore NV GPRs while returning from exception - [ppc64el] powernv/npu: Fix reference leak - [ppc64el] pseries: Fix oops in hotplug memory notifier - [arm64] mmc: sdhci-msm: fix mutex while in spinlock - eCryptfs: fix a couple type promotion bugs - [x86] intel_th: msu: Fix single mode with disabled IOMMU - Bluetooth: Add SMP workaround Microsoft Surface Precision Mouse bug - usb: Handle USB3 remote wakeup for LPM enabled devices correctly - blk-throttle: fix zero wait time for iops throttled group - blk-iolatency: clear use_delay when io.latency is set to zero - blkcg: update blkcg_print_stat() to handle larger outputs - [armel/marvell,armhf] net: mvmdio: allow up to four clocks to be specified for orion-mdio - dm bufio: fix deadlock with loop device https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.62 - bnx2x: Prevent load reordering in tx completion processing - [x86] hv_netvsc: Fix extra rcu_read_unlock in netvsc_recv_callback() - igmp: fix memory leak in igmpv3_del_delrec() - ipv4: don't set IPv6 only flags to IPv4 addresses - ipv6: rt6_check should return NULL if 'from' is NULL - ipv6: Unlink sibling route in case of failure - [armhf,arm64] net: dsa: mv88e6xxx: wait after reset deactivation - net: make skb_dst_force return true when dst is refcounted - net: neigh: fix multiple neigh timer scheduling - net: openvswitch: fix csum updates for MPLS actions - net: phy: sfp: hwmon: Fix scaling of RX power - [armhf,arm64] net: stmmac: Re-work the queue selection for TSO packets - nfc: fix potential illegal memory access - r8169: fix issue with confused RX unit after PHY power-down on RTL8411b - rxrpc: Fix send on a connected, but unbound socket - sctp: fix error handling on stream scheduler initialization - [x86] sky2: Disable MSI on ASUS P6T - tcp: be more careful in tcp_fragment() - tcp: fix tcp_set_congestion_control() use from bpf hook - tcp: Reset bytes_acked and bytes_received when disconnecting - vrf: make sure skb->data contains ip header to make routing - net/mlx5e: IPoIB, Add error path in mlx5_rdma_setup_rn - macsec: fix use-after-free of skb during RX - macsec: fix checksumming after decryption - netrom: fix a memory leak in nr_rx_frame() - netrom: hold sock when setting skb->destructor - net_sched: unset TCQ_F_CAN_BYPASS when adding filters - sctp: not bind the socket in sctp_connect - net: bridge: mcast: fix stale nsrcs pointer in igmp3/mld2 report handling - net: bridge: mcast: fix stale ipv6 hdr pointer when handling v6 query - net: bridge: don't cache ether dest pointer on input - net: bridge: stp: don't cache eth dest pointer before skb pull - dma-buf: balance refcount inbalance - dma-buf: Discard old fence_excl on retrying get_fences_rcu for realloc - perf/core: Fix exclusive events' grouping - perf/core: Fix race between close() and fork() - ext4: don't allow any modifications to an immutable file - ext4: enforce the immutable flag on open files - mm: add filemap_fdatawait_range_keep_errors() - jbd2: introduce jbd2_inode dirty range scoping - ext4: use jbd2_inode dirty range scoping - ext4: allow directory holes - [x86] KVM: nVMX: do not use dangling shadow VMCS after guest reset - [x86] KVM: nVMX: Clear pending KVM_REQ_GET_VMCS12_PAGES when leaving nested - mm: vmscan: scan anonymous pages on file refaults - net: sched: verify that q!=NULL before setting q->flags https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.63 - [x86] hvsock: fix epollout hang from race condition - [armhf,arm64] drm/panel: simple: Fix panel_simple_dsi_probe - [x86] staging: vt6656: use meaningful error code during buffer allocation - usb: core: hub: Disable hub-initiated U1/U2 - [armhf,arm64] pinctrl: rockchip: fix leaked of_node references - drm/amd/display: Fill prescale_params->scale for RGB565 - drm/amdgpu/sriov: Need to initialize the HDP_NONSURFACE_BAStE - drm/amd/display: Disable ABM before destroy ABM struct - drm/amdkfd: Fix a potential memory leak - drm/amdkfd: Fix sdma queue map issue - drm/edid: Fix a missing-check bug in drm_load_edid_firmware() - PCI: Return error if cannot probe VF - [armhf,arm64] gpu: host1x: Increase maximum DMA segment size - drm/crc-debugfs: User irqsafe spinlock in drm_crtc_add_crc_entry - drm/crc-debugfs: Also sprinkle irqrestore over early exits - memstick: Fix error cleanup path of memstick_init - [arm64] tty: serial: msm_serial: avoid system lockup condition - serial: 8250: Fix TX interrupt handling condition - drm/amd/display: Always allocate initial connector state state - drm/virtio: Add memory barriers for capset cache. - drm/amd/display: fix compilation error - [ppc64el] pseries/mobility: prevent cpu hotplug during DT update - [armhf,arm64] drm/rockchip: Properly adjust to a true clock in adjusted_mode - [armhf] serial: imx: fix locking in set_termios() - tty: serial_core: Set port active bit in uart_port_activate - usb: gadget: Zero ffs_io_data - mmc: sdhci: sdhci-pci-o2micro: Check if controller supports 8-bit width - [ppc64el] pci/of: Fix OF flags parsing for 64bit BARs - [arm64] drm/msm: Depopulate platform on probe failure - [arm64] PCI: xilinx-nwl: Fix Multi MSI data programming - iio: iio-utils: Fix possible incorrect mask calculation - [ppc64el] cacheflush: fix variable set but not used - [ppc64el] xmon: Fix disabling tracing while in xmon - [ppc64el] recordmcount: Fix spurious mcount entries on powerpc - mfd: core: Set fwnode for created devices - [arm64] mfd: hi655x-pmic: Fix missing return value check for devm_regmap_init_mmio_clk - mm/swap: fix release_pages() when releasing devmap pages - RDMA/i40iw: Set queue pair state when being queried - IB/mlx5: Fixed reporting counters on 2nd port for Dual port RoCE - [ppc64el] mm: Handle page table allocation failures - IB/ipoib: Add child to parent list only if device initialized - [arm64] assembler: Switch ESB-instruction with a vanilla nop if !ARM64_HAS_RAS - perf stat: Fix use-after-freed pointer detected by the smatch tool - perf top: Fix potential NULL pointer dereference detected by the smatch tool - perf session: Fix potential NULL pointer dereference found by the smatch tool - perf annotate: Fix dereferencing freed memory found by the smatch tool - perf hists browser: Fix potential NULL pointer dereference found by the smatch tool - RDMA/rxe: Fill in wc byte_len with IB_WC_RECV_RDMA_WITH_IMM - [armhf] PCI: dwc: pci-dra7xx: Fix compilation when !CONFIG_GPIOLIB - [ppc64el] boot: add {get, put}_unaligned_be32 to xz_config.h - block: init flush rq ref count to 1 - f2fs: avoid out-of-range memory access - mailbox: handle failed named mailbox channel request - dlm: check if workqueues are NULL before flushing/destroying - [ppc64el] eeh: Handle hugepages in ioremap space - block/bio-integrity: fix a memory leak bug - 9p: pass the correct prototype to read_cache_page - mm/gup.c: mark undo_dev_pagemap as __maybe_unused - mm/gup.c: remove some BUG_ONs from get_gate_page() - memcg, fsnotify: no oom-kill for remote memcg charging - mm/mmu_notifier: use hlist_add_head_rcu() - proc: use down_read_killable mmap_sem for /proc/pid/smaps_rollup - proc: use down_read_killable mmap_sem for /proc/pid/pagemap - proc: use down_read_killable mmap_sem for /proc/pid/clear_refs - proc: use down_read_killable mmap_sem for /proc/pid/map_files - cxgb4: reduce kernel stack usage in cudbg_collect_mem_region() - proc: use down_read_killable mmap_sem for /proc/pid/maps - locking/lockdep: Fix lock used or unused stats error - mm: use down_read_killable for locking mmap_sem in access_remote_vm - locking/lockdep: Hide unused 'class' variable - usb: wusbcore: fix unbalanced get/put cluster_id - [x86] usb: pci-quirks: Correct AMD PLL quirk detection - btrfs: inode: Don't compress if NODATASUM or NODATACOW set - [x86] sysfb_efi: Add quirks for some devices with swapped width and height - [x86] speculation/mds: Apply more accurate check on hypervisor platform - binder: prevent transactions to context manager from its own process. - fpga-manager: altera-ps-spi: Fix build error - [x86] mei: me: add mule creek canyon (EHL) device ids - [x86] hpet: Fix division by zero in hpet_time_div() - ALSA: ac97: Fix double free of ac97_codec_device - ALSA: line6: Fix wrong altsetting for LINE6_PODHD500_1 - ALSA: hda - Add a conexant codec entry to let mute led work - [ppc64el] xive: Fix loop exit-condition in xive_find_target_in_mask() - libnvdimm/bus: Stop holding nvdimm_bus_list_mutex over __nd_ioctl() - access: avoid the RCU grace period for the temporary subjective credentials https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.64 - [x86] hv_sock: Add support for delayed close - vsock: correct removal of socket from the list - NFS: Fix dentry revalidation on NFSv4 lookup - NFS: Refactor nfs_lookup_revalidate() - NFSv4: Fix lookup revalidate of regular files - [armhf,arm64] usb: dwc2: Disable all EP's on disconnect - [armhf,arm64] usb: dwc2: Fix disable all EP's on disconnect - [arm64] compat: Provide definition for COMPAT_SIGMINSTKSZ (Closes: #904385). - binder: fix possible UAF when freeing buffer - ISDN: hfcsusb: checking idx of ep configuration - media: au0828: fix null dereference in error path - ath10k: Change the warning message string - media: cpia2_usb: first wake up, then free in disconnect - media: pvrusb2: use a different format for warnings - NFS: Cleanup if nfs_match_client is interrupted - media: radio-raremono: change devm_k*alloc to k*alloc - [x86] iommu/vt-d: Don't queue_iova() if there is no flush queue - vhost: introduce vhost_exceeds_weight() - vhost_net: fix possible infinite loop (CVE-2019-3900) - vhost: vsock: add weight support - vhost: scsi: add weight support (CVE-2019-3900) - sched/fair: Don't free p->numa_faults with concurrent readers - sched/fair: Use RCU accessors consistently for ->numa_group - /proc//cmdline: remove all the special cases - /proc//cmdline: add back the setproctitle() special case - drivers/pps/pps.c: clear offset flags in PPS_SETPARAMS ioctl - Fix allyesconfig output. - ceph: hold i_ceph_lock when removing caps for freeing inode - block, scsi: Change the preempt-only flag into a counter - scsi: core: Avoid that a kernel warning appears during system resume - ip_tunnel: allow not to count pkts on tstats by setting skb's dev to NULL https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.65 - [armhf] dts: rockchip: Make rk3288-veyron-minnie run at hs200 - [armhf] dts: rockchip: Make rk3288-veyron-mickey's emmc work again - [armhf] dts: rockchip: Mark that the rk3288 timer might stop in suspend - ftrace: Enable trampoline when rec count returns back to one - [armhf,arm64] dmaengine: tegra-apb: Error out if DMA_PREP_INTERRUPT flag is unset - [arm64] dts: rockchip: fix isp iommu clocks and power domain - kernel/module.c: Only return -EEXIST for modules that have finished loading - [arm64] clk: tegra210: fix PLLU and PLLU_OUT1 - fs/adfs: super: fix use-after-free bug - btrfs: fix minimum number of chunk errors for DUP - btrfs: qgroup: Don't hold qgroup_ioctl_lock in btrfs_qgroup_inherit() - cifs: Fix a race condition with cifs_echo_request - ceph: fix improper use of smp_mb__before_atomic() - ceph: return -ERANGE if virtual xattr value didn't fit in buffer - ACPI: blacklist: fix clang warning for unused DMI table - [s390x] scsi: zfcp: fix GCC compiler warning emitted with -Wmaybe-uninitialized - perf version: Fix segfault due to missing OPT_END() - [x86] kvm: avoid constant-conversion warning - ACPI: fix false-positive -Wuninitialized warning - be2net: Signal that the device cannot transmit during reconfiguration - [x86] apic: Silence -Wtype-limits compiler warnings - mm/cma.c: fail if fixed declaration can't be honored - lib/test_overflow.c: avoid tainting the kernel and fix wrap size - lib/test_string.c: avoid masking memset16/32/64 failures - coda: add error handling for fget - coda: fix build using bare-metal toolchain - uapi linux/coda_psdev.h: move upc_req definition from uapi to kernel side headers - drivers/rapidio/devices/rio_mport_cdev.c: NUL terminate some strings - ipc/mqueue.c: only perform resource calculation if user valid - [x86] xen/pv: Fix a boot up hang revealed by int3 self test - [x86] kvm: Don't call kvm_spurious_fault() from .fixup - [x86] paravirt: Fix callee-saved function ELF sizes - [x86] boot: Remove multiple copy of static function sanitize_boot_params() - drm/nouveau: fix memory leak in nouveau_conn_reset() - kconfig: Clear "written" flag to avoid data loss - Btrfs: fix incremental send failure after deduplication - Btrfs: fix race leading to fs corruption after transaction abort - [armhf,arm64] mmc: dw_mmc: Fix occasional hang after tuning on eMMC - [arm64] mmc: meson-mx-sdio: Fix misuse of GENMASK macro - gpiolib: fix incorrect IRQ requesting of an active-low lineevent - IB/hfi1: Fix Spectre v1 vulnerability - mtd: rawnand: micron: handle on-die "ECC-off" devices correctly - selinux: fix memory leak in policydb_init() - ALSA: hda: Fix 1-minute detection delay when i915 module is not available (Closes: #931507) - mm: vmscan: check if mem cgroup is disabled or not before calling memcg slab shrinker - [s390x] dasd: fix endless loop after read unit address configuration - [arm*] drivers/perf: arm_pmu: Fix failure path in PM notifier - [arm64] compat: Allow single-byte watchpoints on all addresses - [arm64] cpufeature: Fix feature comparison for CTR_EL0.{CWG,ERG} - nbd: replace kill_bdev() with __invalidate_device() again - xen/swiotlb: fix condition for calling xen_destroy_contiguous_region() - IB/mlx5: Fix unreg_umr to ignore the mkey state - IB/mlx5: Use direct mkey destroy command upon UMR unreg failure - IB/mlx5: Move MRs to a kernel PD when freeing them to the MR cache - IB/mlx5: Fix clean_mr() to work in the expected order - IB/mlx5: Fix RSS Toeplitz setup to be aligned with the HW specification - IB/hfi1: Check for error on call to alloc_rsm_map_table - [x86] drm/i915/gvt: fix incorrect cache entry for guest page mapping - eeprom: at24: make spd world-readable again - objtool: Support GCC 9 cold subfunction naming scheme - gcc-9: properly declare the {pv,hv}clock_page storage - [x86] vdso: Prevent segfaults due to hoisted vclock reads - scsi: mpt3sas: Use 63-bit DMA addressing on SAS35 HBA https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.66 - scsi: fcoe: Embed fc_rport_priv in fcoe_rport structure - gcc-9: don't warn about uninitialized variable - driver core: Establish order of operations for device_add and device_del via bitflag - drivers/base: Introduce kill_device() - libnvdimm/bus: Prevent duplicate device_unregister() calls - libnvdimm/region: Register badblocks before namespaces - libnvdimm/bus: Prepare the nd_ioctl() path to be re-entrant - libnvdimm/bus: Fix wait_nvdimm_bus_probe_idle() ABBA deadlock - HID: wacom: fix bit shift for Cintiq Companion 2 - HID: Add quirk for HP X1200 PIXART OEM mouse - IB: directly cast the sockaddr union to aockaddr - atm: iphase: Fix Spectre v1 vulnerability - bnx2x: Disable multi-cos feature. - ife: error out when nla attributes are empty - ip6_gre: reload ipv6h in prepare_ip6gre_xmit_ipv6 - ip6_tunnel: fix possible use-after-free on xmit - ipip: validate header length in ipip_tunnel_xmit - [armhf,arm64] mvpp2: fix panic on module removal - [armhf,arm64] mvpp2: refactor MTU change code - net: bridge: delete local fdb on device init failure - net: bridge: mcast: don't delete permanent entries when fast leave is enabled - net: fix ifindex collision during namespace removal - net/mlx5e: always initialize frag->last_in_page - net/mlx5: Use reversed order when unregister devices - net: phylink: Fix flow control for fixed-link - net: sched: Fix a possible null-pointer dereference in dequeue_func() - net sched: update vlan action for batched events operations - net: sched: use temporary variable for actions indexes - net/smc: do not schedule tx_work in SMC_CLOSED state - tipc: compat: allow tipc commands without arguments - tun: mark small packets as owned by the tap sock - net/mlx5: Fix modify_cq_in alignment - net/mlx5e: Prevent encap flow counter update async to user query - r8169: don't use MSI before RTL8168d - compat_ioctl: pppoe: fix PPPOEIOCSFWD handling - cgroup: Call cgroup_release() before __exit_signal() - cgroup: Implement css_task_iter_skip() - cgroup: Include dying leaders with live threads in PROCS iterations - cgroup: css_task_iter_skip()'d iterators must be advanced before accessed - cgroup: Fix css_task_iter_advance_css_set() cset skip condition - [arm*] spi: bcm2835: Fix 3-wire mode if DMA is enabled https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.67 - [x86] crypto: ccp - Fix oops by properly managing allocated structures - [x86] crypto: ccp - Add support for valid authsize values less than 16 - [x86] crypto: ccp - Ignore tag length when decrypting GCM ciphertext - usb: usbfs: fix double-free of usb memory upon submiturb error - usb: iowarrior: fix deadlock on disconnect - sound: fix a memory leak bug - [arm64,mips*/octeon] mmc: cavium: Set the correct dma max segment size for mmc_host - [arm64,mips*/octeon] mmc: cavium: Add the missing dma unmap when the dma has finished. - loop: set PF_MEMALLOC_NOIO for the worker thread - Input: usbtouchscreen - initialize PM mutex before using it - [x86] Input: elantech - enable SMBus on new (2018+) systems - [x86] Input: synaptics - enable RMI mode for HP Spectre X360 - [x86] mm: Check for pfn instead of page in vmalloc_sync_one() - [x86] mm: Sync also unmappings in vmalloc_sync_all() - mm/vmalloc: Sync unmappings in __purge_vmap_area_lazy() - [s390x] perf annotate: Fix s390 gap between kernel end and module start - perf db-export: Fix thread__exec_comm() - [s390x] perf record: Fix module size on s390 - [x86] purgatory: Use CFLAGS_REMOVE rather than reset KBUILD_CFLAGS - gfs2: gfs2_walk_metadata fix - usb: yurex: Fix use-after-free in yurex_delete - [x86] usb: typec: tcpm: free log buf memory when remove debug file - [x86] usb: typec: tcpm: remove tcpm dir if no children - [x86] usb: typec: tcpm: Add NULL check before dereferencing config - [x86] usb: typec: tcpm: Ignore unsupported/unknown alternate mode requests - can: peak_usb: fix potential double kfree_skb() - netfilter: nfnetlink: avoid deadlock due to synchronous request_module - [s390x] vfio-ccw: Set pa_nr to 0 if memory allocation fails for pa_iova_pfn - netfilter: Fix rpfilter dropping vrf packets by mistake - netfilter: conntrack: always store window size un-scaled - netfilter: nft_hash: fix symhash with modulus one - drm/amd/display: Wait for backlight programming completion in set backlight level - drm/amd/display: use encoder's engine id to find matched free audio device - drm/amd/display: Fix dc_create failure handling and 666 color depths - drm/amd/display: Only enable audio if speaker allocation exists - drm/amd/display: Increase size of audios array - [x86] iscsi_ibft: make ISCSI_IBFT dependson ACPI instead of ISCSI_IBFT_FIND - nl80211: fix NL80211_HE_MAX_CAPABILITY_LEN - mac80211: don't warn about CW params when not using them - allocate_flower_entry: should check for null deref - hwmon: (nct6775) Fix register address and added missed tolerance for nct6106 - drm: silence variable 'conn' set but not used - [s390x] qdio: add sanity checks to the fast-requeue path - ALSA: compress: Fix regression on compressed capture streams - ALSA: compress: Prevent bypasses of set_params - ALSA: compress: Don't allow paritial drain operations on capture streams - ALSA: compress: Be more restrictive about when a drain is allowed - perf tools: Fix proper buffer size for feature processing - perf probe: Avoid calling freeing routine multiple times for same pointer - drbd: dynamically allocate shash descriptor - ACPI/IORT: Fix off-by-one check in iort_dev_find_its_id() - nvme: fix multipath crash when ANA is deactivated - scsi: megaraid_sas: fix panic on loading firmware crashdump - [ppc64el] scsi: ibmvfc: fix WARN_ON during event pool release - scsi: scsi_dh_alua: always use a 2 second delay before retrying RTPG - test_firmware: fix a memory leak bug - tty/ldsem, locking/rwsem: Add missing ACQUIRE to read_failed sleep loop - perf/core: Fix creating kernel counters for PMUs that override event->cpu - [s390x] dma: provide proper ARCH_ZONE_DMA_BITS value - HID: sony: Fix race condition between rumble and device remove. - [x86] purgatory: Do not use __builtin_memcpy and __builtin_memset - ALSA: usb-audio: fix a memory leak bug - can: peak_usb: pcan_usb_pro: Fix info-leaks to USB devices - can: peak_usb: pcan_usb_fd: Fix info-leaks to USB devices - hwmon: (nct7802) Fix wrong detection of in4 presence - [x86] drm/i915: Fix wrong escape clock divisor init for GLK - ALSA: firewire: fix a memory leak bug - ALSA: hiface: fix multiple memory leak bugs - ALSA: hda - Don't override global PCM hw info flag - [x86] ALSA: hda - Workaround for crackled sound on AMD controller (1022:1457) - mac80211: don't WARN on short WMM parameters from AP - dax: dax_layout_busy_page() should not unmap cow pages - SMB3: Fix deadlock in validate negotiate hits reconnect - smb3: send CAP_DFS capability during session setup - NFSv4: Fix an Oops in nfs4_do_setattr - [x86] KVM: Fix leak vCPU's VMCS value into other pCPU - mwifiex: fix 802.11n/WPA detection - iwlwifi: don't unmap as page memory that was mapped as single - iwlwifi: mvm: fix an out-of-bound access - iwlwifi: mvm: don't send GEO_TX_POWER_LIMIT on version < 41 - iwlwifi: mvm: fix version check for GEO_TX_POWER_LIMIT support . [ Steve McIntyre ] * [arm64] Improve support for the Huawei TaiShan server platform (Closes: #930554): - Enable the HNS/ROCE Infiniband driver - Backport fixes from 4.20 and 4.21 for HNS3 networking, hisi_sas SAS and HNS/ROCE Infiniband - Add module:drivers/scsi/hisi_sas/* to the ABI ignore list . [ Uwe Kleine-König ] * [armhf] Add support for all i.MX6 variants. * rtc-s35390a: backport fix to make hwclock able to read the time (Closes: #932845) . [ Ben Hutchings ] * [rt] Update to 4.19.59-rt24: - Fix build failure after "genirq: Prevent use-after-free and work list corruption": + Update "genirq: Do not invoke the affinity callback via a workqueue on RT" + kthread: add a global worker thread. + genirq: Do not invoke the affinity callback via a workqueue on RT + genirq: Handle missing work_struct in irq_set_affinity_notifier() - Update "irqwork: push most work into softirq context" to resolve conflict with "irq_work: Do not raise an IPI when queueing work on the local CPU" - Drop "random: avoid preempt_disable()ed section" - arm: imx6: cpuidle: Use raw_spinlock_t - rcu: Don't allow to change rcu_normal_after_boot on RT - sched/core: Drop a preempt_disable_rt() statement - timers: Redo the notification of canceling timers on -RT - Fix futex regression in 4.19.21: + Revert "futex: Ensure lock/unlock symetry versus pi_lock and hash bucket lock" + Revert "futex: Fix bug on when a requeued RT task times out" + Revert "rtmutex: Handle the various new futex race conditions" + Revert "futex: workaround migrate_disable/enable in different context" + futex: Make the futex_hash_bucket lock raw + futex: Delay deallocation of pi_state - mm/zswap: Do not disable preemption in zswap_frontswap_store() * Bump ABI to 6 linux-signed-i386 (4.19.37+6) unstable; urgency=high . * Sign kernel from linux 4.19.37-6 . [ John Paul Adrian Glaubitz ] * [sh4]: Check for kprobe trap number before trying to handle a kprobe trap . [ Salvatore Bonaccorso ] * tcp: refine memory limit test in tcp_fragment() (Closes: #930904) * ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME (CVE-2019-13272) . [ Steve McIntyre ] * [arm64] Improve support for the Huawei TaiShan server platform (Closes: #930554): - Enable the HNS/ROCE Infiniband driver - Backport fixes from 4.20 and 4.21 for HNS3 networking, hisi_sas SAS and HNS/ROCE Infiniband - Add module:drivers/scsi/hisi_sas/* to the ABI ignore list . [ Cyril Brulebois ] * [arm] Backport DTB support for Rasperry Pi Compute Module 3. * [arm64] Backport DTB support for Rasperry Pi Compute Module 3. linux-signed-i386 (4.19.37+5+deb10u2) buster-security; urgency=high . * Sign kernel from linux 4.19.37-5+deb10u2 . [ Romain Perier ] * [x86] x86/insn-eval: Fix use-after-free access to LDT entry (CVE-2019-13233) * [powerpc*] mm/64s/hash: Reallocate context ids on fork (CVE-2019-12817) * nfc: Ensure presence of required attributes in the deactivate_target handler (CVE-2019-12984) * binder: fix race between munmap() and direct reclaim (CVE-2019-1999) * scsi: libsas: fix a race condition when smp task timeout (CVE-2018-20836) * Input: gtco - bounds check collection indent level (CVE-2019-13631) * floppy: fix out-of-bounds read in copy_buffer (CVE-2019-14283) * inet: switch IP ID generator to siphash (CVE-2019-10638) * floppy: fix div-by-zero in setup_format_params (CVE-2019-14284) * Bluetooth: hci_uart: check for missing tty operations (CVE-2019-10207) * [powerpc/tm] Fix oops on sigreturn on systems without TM (CVE-2019-13648) . [ Salvatore Bonaccorso ] * [x86] cpufeatures: Carve out CQM features retrieval * [x86] cpufeatures: Combine word 11 and 12 into a new scattered features word * [x86] speculation: Prepare entry code for Spectre v1 swapgs mitigations * [x86] speculation: Enable Spectre v1 swapgs mitigations (CVE-2019-1125) * [amd64] entry: Use JMP instead of JMPQ * [x86] speculation/swapgs: Exclude ATOMs from speculation through SWAPGS * Documentation: Add section about CPU vulnerabilities for Spectre * Documentation: Add swapgs description to the Spectre v1 documentation . [ Ben Hutchings ] * [x86] cpufeatures: Avoid ABI change for swapgs mitigations: - Move swapgs feature bits to existing scattered words - Revert "x86/cpufeatures: Combine word 11 and 12 into a new scattered features word" * inet: Avoid ABI change for IP ID hash change linux-signed-i386 (4.19.37+5+deb10u2~bpo9+1) stretch-backports; urgency=medium . * Sign kernel from linux 4.19.37-5+deb10u2~bpo9+1 . * Rebuild for stretch-backports; no further changes required linux-signed-i386 (4.19.37+5+deb10u1) buster-security; urgency=high . * Sign kernel from linux 4.19.37-5+deb10u1 . * tcp: refine memory limit test in tcp_fragment() (Closes: #930904) * ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME (CVE-2019-13272) mapproxy (1.11.0-3+deb10u1) buster; urgency=medium . * Update branch in gbp.conf & Vcs-Git URL. * Add upstream patch to fix WMS Capabilties with Python 3.7. (closes: #935887) mariadb-10.3 (1:10.3.17-0+deb10u1) buster; urgency=high . * SECURITY UPDATE: New upstream version 10.3.17. Includes fixes for the following security vulnerabilities: - CVE-2019-2737 - CVE-2019-2739 - CVE-2019-2740 - CVE-2019-2758 - CVE-2019-2805 * Upstream release 10.3.16 fixed segfaults when database 'information_schema' is accessed (Closes: #931801) * Multiple Gitlab-CI/Salsa-CI improvements * Update libmariadb3 symbols to match MariaDB Connector C 3.1 API * Add Lintian override for new test binary wsrep_check_version * Make libzstd dependency versioned as RocksDB need at least 1.3.3 * Rename 'mariadbcheck' to 'mariadb-check' as upstream is doing in 10.4 * Improve cross building (Closes: #930314) - Perform a native build of import_executables first. - cross.patch: Fix missing include in cmake/systemd.cmake. - Build-Depends: libreadline-gplv2-dev:native for the native pass. - Forward IMPORT_EXECUTABLES to the cross build pass. mariadb-10.3 (1:10.3.16-1) unstable; urgency=medium . [ Otto Kekäläinen ] * New upstream version 10.3.16 * Make libzstd dependency versioned as RocksDB need at least 1.3.3. This fixes build errors across different build environments. * Update Gitlab CI for better quality control and long-term maintenance. . [ Helmut Grohne ] * Improve cross building (Closes: #930314) mariadb-10.3 (1:10.3.15-2) unstable; urgency=medium . [ Julien Muchembled ] * Fixup RocksDB test on s390x, not available there . [ Otto Kekäläinen ] * Purge deleted translations from debian/po * Rename 'mariadbcheck' to 'mariadb-check' as upstream is doing in 10.4 musescore (2.3.2+dfsg2-7~deb10u1) buster; urgency=high . * Rebuild 2.3.2+dfsg2-7 for buster-updates (cf. #931040) . musescore (2.3.2+dfsg2-7) unstable; urgency=high . * Disable webkit functionality (Closes: #931021) ncbi-tools6 (6.1.20170106+dfsg1-0+deb10u2) buster; urgency=medium . * debian/ncbi-data.NEWS: Note UniVec removal, which turned out to have a bigger impact than anticipated. * debian/tests/run-unit-test: Explicitly point vecscreen at UniVec_Core. (See #935424.) . ncbi-tools6 (6.1.20170106+dfsg1-0+deb10u1) buster; urgency=medium . * Belatedly repackage without data/UniVec.*, some portions of which turned out to be non-free (with copyright held by Invitrogen Corporation, which requires a license for commercial use thereof). * debian/copyright: - Cover previously overlooked third-party code (all DFSG-free). - Update authors and dates for debian/*. - Set Files-Excluded to reflect repackaging. * debian/rules: Introduce NCBI_VERSION_SHLIB, with +dfsg1 stripped off. * debian/test/run-unit-test: Substitute UniVec_Core for UniVec. * debian/watch: Reflect usage of +dfsg1. * make/makeshlb.unx: NCBI_VERSION -> NCBI_VERSION_SHLIB. * Temporarily revert ncbi-cn3d splitout to expedite the above fixes. ncbi-tools6 (6.1.20170106+dfsg1-0+deb10u1) buster; urgency=medium . * Belatedly repackage without data/UniVec.*, some portions of which turned out to be non-free (with copyright held by Invitrogen Corporation, which requires a license for commercial use thereof). * debian/copyright: - Cover previously overlooked third-party code (all DFSG-free). - Update authors and dates for debian/*. - Set Files-Excluded to reflect repackaging. * debian/rules: Introduce NCBI_VERSION_SHLIB, with +dfsg1 stripped off. * debian/test/run-unit-test: Substitute UniVec_Core for UniVec. * debian/watch: Reflect usage of +dfsg1. * make/makeshlb.unx: NCBI_VERSION -> NCBI_VERSION_SHLIB. * Temporarily revert ncbi-cn3d splitout to expedite the above fixes. ncbi-tools6 (6.1.20170106+dfsg1-0+deb9u1) stretch; urgency=medium . * Belatedly repackage without data/UniVec.*, some portions of which turned out to be non-free (with copyright held by Invitrogen Corporation, which requires a license for commercial use thereof). * debian/copyright: - Cover previously overlooked third-party code (all DFSG-free). - Update authors and dates for debian/*. - Set Files-Excluded to reflect repackaging. * debian/rules: Introduce NCBI_VERSION_SHLIB, with +dfsg1 stripped off. * debian/watch: Reflect usage of +dfsg1. * make/makeshlb.unx: NCBI_VERSION -> NCBI_VERSION_SHLIB. * Temporarily revert ncbi-cn3d splitout to expedite the above fixes. ncurses (6.1+20181013-2+deb10u1) buster; urgency=medium . * Drop "rep" from xterm-new and derived terminfo descriptions (Closes: #933053). netdata (1.12.0-1+deb10u1) buster; urgency=medium . [ Lennart Weller ] * Add patch to remove Google Analytics from generated docs . [ Daniel Baumann ] * Removing currently usless depends on bash as it's still an essential package. * Adding missing GPL-3-only license stanza in copyright file. * Opting out by default from sending anonymous statistics (phone home). * Downgrading nodejs depends in netdata-plugins-nodejs to recommends as not all architectures have nodejs at the moment. . [ Federico Ceratto ] * Add patch to remove Sign In button newsboat (2.13-1+deb10u1) buster; urgency=medium . [ Nikos Tsipinakis ] * Patch use after free in itemlist (Closes: #898559) nextcloud-desktop (2.5.1-3+deb10u1) buster; urgency=medium . * Make nextcloud-desktop-cmd depend on nextcloud-desktop-common. Thanks to Calogero Lo Leggio (Closes: #932108) nginx (1.14.2-2+deb10u1) buster-security; urgency=high . * Backport upstream fixes for 3 CVEs (Closes: #935037) Those fixes affect Nginx HTTP/2 implementation, which might cause excessive memory consumption and CPU usage. (CVE-2019-9511, CVE-2019-9513, CVE-2019-9516). node-lodash (4.17.11+dfsg-2+deb10u1) buster; urgency=medium . * Team upload * Fix prototype pollution (Closes: #933079, CVE-2019-10744) node-mixin-deep (1.1.3-3+deb10u1) buster; urgency=medium . * Team upload * Fix prototype pollution (Closes: #932500, CVE-2019-10746) nss (2:3.42.1-1+deb10u1) buster; urgency=medium . * Fixes for CVE-2019-11719, CVE-2019-11727 and CVE-2019-11729 (in unstable these were addressed via the 2:3.45-1 upload to unstable) nx-libs (2:3.5.99.19-3+deb10u1) buster; urgency=medium . * Patch backport of upstream's memleak-hunt... * debian/patches: + Add 0012_xkb-initialize-tsyms.patch + Add 0013_Screen.c-correctly-free-stuff-in-nxagentCloseScreen.patch + Add 0014_Screen.c-Fix-make-sure-RRCloseScreen-is-being-called.patch + Add 0015_Keyboard.c-nullify-freed-pointers.patch + Add 0017_Fix-memleaks-Free-devPrivates-of-devices-on-shutdown.patch + Add 0018_Screen.c-fix-another-memory-leak.patch + Add 0019_mi-miinitext.c-fix-memleaks-remove-double-glx-initia.patch + Add 0023_glxext.c-fix-another-memory-leak.patch + Add 0026_glyph.c-fix-a-read-beyond-end-of-heap-buffer.patch + Add 0027_Keyboard.c-fix-three-memory-leaks.patch + Add 0028_Quarks.c-add-missing.patch + Add 0029_dix-dispatch-fix-a-small-memory-leak.patch + Add 0030_fb-fix-memory-leak-in-fbOverlayFinishScreenInit.patch + Add 0031_render-Propagate-allocation-failure-from-createSourc.patch + Add 0032_NXrender-fix-another-memleak.patch + Add 0033_Screen.c-fix-two-memleaks.patch + Add 0034_Screen.c-fix-two-more-memleaks-of-visuals.patch + Add 0036_os-access.c-add-missing.patch + Add 0038_NXdixfonts.c-fix-index-out-of-bounds.patch + Add 0041_compext-Png.c-Nullify-after-free.patch + Add 0042_mi-miexpose.c-add-missing-free.patch + Add 0049_xkb-fix-what-looks-to-be-a-copy-paste-error-with-fir.patch + Add 0050_Keyboard.c-fix-another-cppcheck-finding.patch open-infrastructure-compute-tools (20190301-lts2-1~deb10u1) buster; urgency=medium . * Uploading to buster. * Merging upstream version 20190301-lts2: - Fix start of container by altering the systemd service file. This fix workarounds a missing/wrong condition in the start script which leads to systemd-nspawn beeing called twice. The seconds call to systemd-nspawn fails because the container is already running. Systemd then killed the container. open-vm-tools (2:10.3.10-1+deb10u1) buster; urgency=medium . * [efb4df1] Fix guest OS reporting for Debian/Buster. Without this fix, open-vm-tools report other4xLinux64Guest instead of Debian/Buster. Reason is the output of lsb_release, which outputs: $ lsb_release -sd Debian GNU/Linux 10 (buster) But the code in open-vm-tools expects '10.'. Thanks to Oliver Kurth (Closes: #934005) * [2308b74] Updating gbp.conf for buster. openjdk-11 (11.0.4+11-1~deb10u1) buster-security; urgency=medium . * Rebuild for Buster openjdk-11 (11.0.4+11-1~bpo9+1) stretch-backports; urgency=medium . * Rebuild for stretch-backports. openjdk-11 (11.0.4+10-1) unstable; urgency=medium . * OpenJDK 11.0.4+10 build (early access). * Add riscv64 support for zero (Ed Nevill). * Fix build dependencies for Ubuntu precise builds. * Fix dependency generation on the libjpeg runtime. Closes: #927965. * Drop dependency on transitional libgl1-mesa-glx package. Closes: #930611. openjdk-11 (11.0.4+9-1) unstable; urgency=medium . * OpenJDK 11.0.4+9 build (early access). * Add another break for libequinox-osgi-java (<< 3.9.1). Closes: #931115. openjdk-11 (11.0.4+8-1) unstable; urgency=medium . * OpenJDK 11.0.4+8 build (early access). * Apply patch for JDK-8225716. openjdk-11 (11.0.4+6-1) experimental; urgency=medium . * OpenJDK 11.0.4+6 build (early access). openjdk-11 (11.0.4+4+really11.0.3+7-2) unstable; urgency=medium . * Team upload. * Refresh and rework the following patches to address FTBFS on i386: - hotspot-disable-exec-shield-workaround - workaround_expand_exec_shield_cs_limit openjdk-11 (11.0.4+4+really11.0.3+7-1) unstable; urgency=medium . * Team upload. * Revert upstream sources to GA release 11.0.3+7. * Disable workaround_expand_exec_shield_cs_limit.diff and hotspot-disable-exec-shield-workaround.diff patches * No longer try to install jspawnhelper. openjdk-11 (11.0.4+4-1) unstable; urgency=medium . * OpenJDK 11.0.4+4 build (early access). * Configure with --with-version-pre='ea' for upstream tags which are not upstream releases (has to be set manually). Not enabled during the buster freeze. * Allow to skip the bootcycle build (DEB_BUILD_OPTIONS=nobootcycle). * Add a watch file (Paul Wise). * Print some information about the host configuration before starting the build. openjdk-11 (11.0.4+2-1) unstable; urgency=medium . * OpenJDK 11.0.4+2 build. * Fix src.zip symlink. Closes: #928369. * Tighten dependency on ca-certificates-java. Closes: #914860. * Refresh patches. openjdk-11 (11.0.4+1-1) unstable; urgency=medium . * OpenJDK 11.0.4+1 build. openldap (2.4.47+dfsg-3+deb10u1) buster; urgency=medium . * Fix slapd to restrict rootDN proxyauthz to its own databases (CVE-2019-13057) (ITS#9038) (Closes: #932997) * Fix slapd to enforce sasl_ssf ACL statement on every connection (CVE-2019-13565) (ITS#9052) (Closes: #932998) * Fix slapo-rwm to not free original filter when rewritten filter is invalid (ITS#8964) (Closes: #934277, LP: #1838370) openldap (2.4.47+dfsg-3+deb10u1~bpo9+1) stretch-backports; urgency=medium . * Rebuild for stretch-backports. * Revert "Fix build with Heimdal 7.2.0" as stretch contains a lower version of heimdal. . openldap (2.4.47+dfsg-3+deb10u1) buster; urgency=medium . * Fix slapd to restrict rootDN proxyauthz to its own databases (CVE-2019-13057) (ITS#9038) (Closes: #932997) * Fix slapd to enforce sasl_ssf ACL statement on every connection (CVE-2019-13565) (ITS#9052) (Closes: #932998) * Fix slapo-rwm to not free original filter when rewritten filter is invalid (ITS#8964) (Closes: #934277, LP: #1838370) osinfo-db (0.20181120-1+deb10u1) buster; urgency=medium . * debian/patches/debian9-update.patch: Fix the URL's to download the iso files and point to the latest point release (9.9.0) * debian/patches/debian10-Add-info.patch: Add information about the debian buster/10 release (Closes: #935551) * d/p/debian-preseed-Fix-typo-in-config-s-name.patch: Fix the name of the parameter used to set the fullname when generating a preseed file, the documentation explicitly talks about "user-realname" but the profile was using "user-fullname" (the debconf parameter name) by mistake osmpbf (1.3.3-11+deb10u1) buster; urgency=medium . * Update branch in gbp.conf & Vcs-Git URL. * Rebuild with protobuf 3.6.1. (closes: #935990) pam-u2f (1.0.7-1+deb10u1) buster; urgency=high . * Backport multiple security fixes + Fix insecure debug file handling CVE-2019-12209. (Closes: #930021) + Fix debug file descriptor leak CVE-2019-12210. (Closes: #930023) + Fix a non-critical buffer out-of-bounds access. (Closes: #930047) . * Backport a reliability fix pam-u2f could previously segfault following a failure to allocate a buffer. pango1.0 (1.42.4-7~deb10u1) buster-security; urgency=medium . * Team upload * Rebuild for buster-security * d/gbp.conf: Set upstream branch to upstream/1.42.x * d/gbp.conf: Set packaging branch to debian/buster . pango1.0 (1.42.4-7) unstable; urgency=medium . * Team upload * d/p/bidi-Be-safer-against-bad-input.patch: Fix heap overflow when acting on malformed UTF-8. (Closes: #933860; CVE-2019-1010238) passwordsafe (1.06+dfsg-1+deb10u1) buster; urgency=medium . * Don't install localization files under an extra subdirectory. Closes: 932626 patch (2.7.6-3+deb10u1) buster-security; urgency=high . * Fix CVE-2019-13636: mishandled following of symlinks (closes: #932401). * Fix CVE-2019-13638: shell command injection. * Fix CVE-2018-1000156 regression, temporary file leak on failed ed-style patches (closes: #933140). piuparts (1.0.0+deb10u1) buster; urgency=medium . * Happy 26th birthday, Debian! And many thanks to all the contributors! . [ Andreas Beckmann ] * piuparts.py: - Add '--max-command-output-size' option to allow overriding the default of 8 MB for debugging runs. - Run pre_remove scripts before computing packages to be removed. - Fix spurious failure to remove packages with names ending with '+'. * piuparts-slave.py: - Generate separate tarball names for --merged-usr chroots. * detect_well_known_errors.py: - process untestable logs. * Makefile: use gzip -n for reproducibility. * piuparts.conf, distros.conf: Update for buster release. * custom-scripts: some updates for buster. If custom-scripts are used, it's probably better to use piuparts from bpo. . [ Holger Levsen ] * Cherry-picking the above. postgresql-11 (11.5-1+deb10u1) buster-security; urgency=high . * New upstream security release. + Fixes regression in ALTER TABLE on multiple columns. (Closes: #932247) . + No longer picks "UCT" as timezone spelling. (Closes: #929953) . + Require schema qualification to cast to a temporary type when using functional cast syntax (Noah Misch) . We have long required invocations of temporary functions to explicitly specify the temporary schema, that is pg_temp.func_name(args). Require this as well for casting to temporary types using functional notation, for example pg_temp.type_name(arg). Otherwise it's possible to capture a function call using a temporary object, allowing privilege escalation in much the same ways that we blocked in CVE-2007-2138. (CVE-2019-10208) . + Fix execution of hashed subplans that require cross-type comparison (Tom Lane, Andreas Seltenreich) . Hashed subplans used the outer query's original comparison operator to compare entries of the hash table. This is the wrong thing if that operator is cross-type, since all the hash table entries will be of the subquery's output type. For the set of hashable cross-type operators in core PostgreSQL, this mistake seems nearly harmless on 64-bit machines, but it can result in crashes or perhaps unauthorized disclosure of server memory on 32-bit machines. Extensions might provide hashable cross-type operators that create larger risks. (CVE-2019-10209) postgresql-11 (11.5-1) unstable; urgency=medium . * New upstream version. . + Fixes regression in ALTER TABLE on multiple columns. (Closes: #932247) . + No longer picks "UCT" as timezone spelling. (Closes: #929953) . + Require schema qualification to cast to a temporary type when using functional cast syntax (Noah Misch) . We have long required invocations of temporary functions to explicitly specify the temporary schema, that is pg_temp.func_name(args). Require this as well for casting to temporary types using functional notation, for example pg_temp.type_name(arg). Otherwise it's possible to capture a function call using a temporary object, allowing privilege escalation in much the same ways that we blocked in CVE-2007-2138. (CVE-2019-10208) . + Fix execution of hashed subplans that require cross-type comparison (Tom Lane, Andreas Seltenreich) . Hashed subplans used the outer query's original comparison operator to compare entries of the hash table. This is the wrong thing if that operator is cross-type, since all the hash table entries will be of the subquery's output type. For the set of hashable cross-type operators in core PostgreSQL, this mistake seems nearly harmless on 64-bit machines, but it can result in crashes or perhaps unauthorized disclosure of server memory on 32-bit machines. Extensions might provide hashable cross-type operators that create larger risks. (CVE-2019-10209) . * debian/pycompat: Obsolete, remove. * debian/patches: Add missing patch documentation. * debian/rules: Use /usr/share/dpkg/pkg-info.mk and vendor.mk for --with-extra-version. * debian/*.symbols: Add Build-Depends-Package information. * debian/tests: Also run regression tests. * debian/tests/control: Add fakeroot to dependencies. postgresql-common (200+deb10u2) buster; urgency=high . DATA LOSS WARNING: pg_upgradecluster from postgresql-common 200, 200+deb10u1, 201, and 202 will corrupt the data_directory setting when used *twice* to upgrade a cluster (e.g. 9.6 -> 10 -> 11). This update fixes the original problem, and also heals affected clusters on the next upgrade. No additional steps are required. . https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=931635 . * pg_upgradecluster: Don't accidentally set (the wrong!) data_directory in postgresql.auto.conf. (Closes: #931635) * PgCommon.pm: Ignore data_directory when set in postgresql.auto.conf. * pg_upgradecluster: Delete data_directory from postgresql.auto.conf in new cluster. proftpd-dfsg (1.3.6-4+deb10u1) buster-security; urgency=medium . * Add patch from upstream to address Bug#932453: CVE-2019-12815. pulseaudio (12.2-4+deb10u1) buster; urgency=medium . * Pick upstream patch fixing mute state restoring (Closes: #913102) * Add gbp config for buster branch puppet-module-cinder (13.1.0-3+deb10u1) buster; urgency=medium . * Add missing Ceph patch: Do_not_attempt_to_write_in_etc_init.patch. python-autobahn (17.10.1+dfsg1-3+deb10u1) buster; urgency=medium . * Fix (build-)dependency on pyqrcode instead of qrcode (Closes: #931612). python-django (1:1.11.23-1~deb10u1) buster-security; urgency=high . * New upstream security release. . - CVE-2019-14232: Denial-of-service possibility in django.utils.text.Truncator . If django.utils.text.Truncator's chars() and words() methods were passed the html=True argument, they were extremely slow to evaluate certain inputs due to a catastrophic backtracking vulnerability in a regular expression. The chars() and words() methods are used to implement the truncatechars_html and truncatewords_html template filters, which were thus vulnerable. . The regular expressions used by Truncator have been simplified in order to avoid potential backtracking issues. As a consequence, trailing punctuation may now at times be included in the truncated output. . - CVE-2019-14233: Denial-of-service possibility in strip_tags() . Due to the behavior of the underlying HTMLParser, django.utils.html.strip_tags() would be extremely slow to evaluate certain inputs containing large sequences of nested incomplete HTML entities. The strip_tags() method is used to implement the corresponding striptags template filter, which was thus also vulnerable. . strip_tags() now avoids recursive calls to HTMLParser when progress removing tags, but necessarily incomplete HTML entities, stops being made. . Remember that absolutely NO guarantee is provided about the results of strip_tags() being HTML safe. So NEVER mark safe the result of a strip_tags() call without escaping it first, for example with django.utils.html.escape(). . - CVE-2019-14234: SQL injection possibility in key and index lookups for JSONField/HStoreField . Key and index lookups for django.contrib.postgres.fields.JSONField and key lookups for django.contrib.postgres.fields.HStoreField were subject to SQL injection, using a suitably crafted dictionary, with dictionary expansion, as the **kwargs passed to QuerySet.filter(). . - CVE-2019-14235: Potential memory exhaustion in django.utils.encoding.uri_to_iri() . If passed certain inputs, django.utils.encoding.uri_to_iri could lead to significant memory usage due to excessive recursion when re-percent-encoding invalid UTF-8 octet sequences. . uri_to_iri() now avoids recursion when re-percent-encoding invalid UTF-8 octet sequences. python-django (1:1.11.22-1) unstable; urgency=medium . * New upstream security release. (Closes: #931316) python-django (1:1.11.22-1~deb10u1) buster-security; urgency=high . * No-change update for buster-security. * Update debian/gbp.conf for new debian/buster branch. raspi3-firmware (1.20190215-1+deb10u1) buster; urgency=medium . * Add support for bcm2837-rpi-cm3-io3.dtb (as generated by the Linux kernel build system) aka. bcm2710-rpi-cm3.dtb (as expected by the bootloader), designed to work for: - Raspberry Pi Compute Module 3 (CM3); - Raspberry Pi Compute Module 3 Lite (CM3L); - Raspberry Pi Compute Module IO Board V3. With many thanks to Charles Fendt for the tests (Closes: #932158). * The DTB addition in the linux source package is tracked in #932157. redis (5:5.0.3-4+deb10u1) buster-security; urgency=high . * CVE-2019-10192: Fix two heap buffer overflows in the Hyperloglog functionality. (Closes: #931625) * CVE-2019-10193: Fix a stack buffer overflow vulnerability in the Hyperloglog functionality. (Closes: #931625) reportbug (7.5.3~deb10u1) buster; urgency=medium . * Non-maintainer upload. * Re-enable submitting stretch-pu requests. * Rebuild for buster. . reportbug (7.5.3) unstable; urgency=medium . * debian/control - replace emacs* Suggests with emacs-bin-common; Closes: #925422 - bump Standards-Version to 4.4.0 (no changes needed) - add sensible-utils dep, patch by Nis Martensen * reportbug/debbugs.py - when handling ftp.d.o, dont look up package information if the package doesnt exist, fixing a crash; Closes: #923631 - fix a crash with stable version lookup, patch by Nis Martensen; Closes: #935602 * bin/reportbug - remove debug code when handling list-cc-me, patch by Josh Triplett * reportbug/utils.py - update release names, following Buster releases, patch by Nicolas Braud-Santoni; Closes: #932524, #931609 - recognize versioned Provides; patch by Nis Martensen; Closes: #934472 * man/reportbug.1 - add default for --draftpath; patch by laokz ruby-airbrussh (1.3.1-2+deb10u1) buster; urgency=medium . * d/p/utf8-encoding.patch: don't throw exception on invalid UTF-8 SSH output ruby-mini-magick (4.9.2-1+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Don't allow remote shell execution (CVE-2019-13574) (Closes: #931932) sdl-image1.2 (1.2.12-10+deb10u1) buster; urgency=medium . * Non-maintainer upload. * CVE-2019-5058: Fix CVE-2018-3977.patch from previous upload: check should be done for y, not ty (Closes: #932755). * CVE-2019-5052: integer overflow and subsequent buffer overflow in IMG_pcx.c. * CVE-2019-7635: heap buffer overflow in Blit1to4 (IMG_bmp.c). * CVE-2019-12216, CVE-2019-12217, CVE-2019-12218, CVE-2019-12219, CVE-2019-12220, CVE-2019-12221, CVE-2019-12222, CVE-2019-5051: OOB R/W in IMG_LoadPCX_RW (IMG_pcx.c). sendmail (8.15.2-14~deb10u1) buster; urgency=medium . * QA upload. * Rebuild for buster. . sendmail (8.15.2-14) unstable; urgency=medium . * QA upload. * sendmail-bin.prerm: Stop sendmail before removing the alternatives. * sendmail-bin.postinst: Let start-stop-daemon match on pidfile and executable. (Closes: #932598) . sendmail (8.15.2-13) unstable; urgency=medium . * QA upload. * initscript: Let start-stop-daemon match on pidfile and executable. (Closes: #932598, LP: #1822866) sendmail (8.15.2-13) unstable; urgency=medium . * QA upload. * initscript: Let start-stop-daemon match on pidfile and executable. (Closes: #932598, LP: #1822866) slirp4netns (0.2.3-1) buster; urgency=medium . * New upstream releases: - 0.2.2: check sscanf result when emulating ident, CVE-2019-9824 - 0.2.3: Fixes heap overflow in included libslirp, Closes: #933742, CVE-2019-14378 squid (4.6-1+deb10u1) buster-security; urgency=high . * Non-maintainer upload by the Security Team. * Denial of Service issue in cachemgr.cgi (CVE-2019-12854) * Denial of Service issue in HTTP Basic Authentication processing (CVE-2019-12529) * Denial of Service issue in HTTP Digest Authentication processing (CVE-2019-12525) * Heap Overflow issue in HTTP Basic Authentication processing (CVE-2019-12527) * Multiple Cross-Site Scripting issues in cachemgr.cgi (CVE-2019-13345) (Closes: #931478) subversion (1.10.4-1+deb10u1) buster-security; urgency=high . * Backport security fixes from upstream: + CVE-2018-11782: Remotely triggerable DoS vulnerability in svnserve 'get-deleted-rev'. + CVE-2018-0203: Remote unauthenticated denial-of-service in Subversion svnserve. systemd (241-7~deb10u1) buster; urgency=medium . * Rebuild for buster . systemd (241-7) unstable; urgency=medium . [ Michael Biebl ] * network: Fix failure to bring up interface with Linux kernel 5.2. Backport two patches from systemd master in order to fix a bug with 5.2 kernels where the network interface fails to come up with the following error: "enp3s0: Could not bring up interface: Invalid argument" (Closes: #931636) * Use /usr/sbin/nologin as nologin shell. In Debian the nologin shell is installed in /usr/sbin, not /sbin. (Closes: #931850) . [ Mert Dirik ] * 40-systemd: Don't fail if SysV init script uses set -u and $1 is unset (Closes: #931719) . systemd (241-6) unstable; urgency=medium . * ask-password: Prevent buffer overflow when reading from keyring. Fixes a possible memory corruption that causes systemd-cryptsetup to crash either when a single large password is used or when multiple passwords have already been pushed to the keyring. (Closes: #929726) * Clarify documentation regarding %h/%u/%U specifiers. Make it clear, that setting "User=" has no effect on those specifiers. Also ensure that "%h" is actually resolved to "/root" for the system manager instance as documented in the systemd.unit man page. (Closes: #927911) * network: Behave more gracefully when IPv6 has been disabled. Ignore any configured IPv6 settings when IPv6 has been disabled in the kernel via sysctl. Instead of failing completely, continue and log a warning instead. (Closes: #929469) systemd (241-6) unstable; urgency=medium . * ask-password: Prevent buffer overflow when reading from keyring. Fixes a possible memory corruption that causes systemd-cryptsetup to crash either when a single large password is used or when multiple passwords have already been pushed to the keyring. (Closes: #929726) * Clarify documentation regarding %h/%u/%U specifiers. Make it clear, that setting "User=" has no effect on those specifiers. Also ensure that "%h" is actually resolved to "/root" for the system manager instance as documented in the systemd.unit man page. (Closes: #927911) * network: Behave more gracefully when IPv6 has been disabled. Ignore any configured IPv6 settings when IPv6 has been disabled in the kernel via sysctl. Instead of failing completely, continue and log a warning instead. (Closes: #929469) thunderbird (1:60.8.0-1~deb10u1) buster-security; urgency=medium . [ Carsten Schoenert ] * Rebuild for buster-security thunderbird (1:60.8.0-1~deb9u1) stretch-security; urgency=medium . [ Carsten Schoenert ] * Rebuild for stretch-security tzdata (2019b-0+deb10u1) buster; urgency=medium . * New upstream version, affecting the following past and future timestamps: - Brazil has canceled DST and will stay on standard time indefinitely. - Predictions for Morocco now go through 2087 instead of 2037. - Palestine's 2019 spring transition was 03-29 at 00:00, not 03-30 at 01:00. Guess future transitions to be March's last Friday at 00:00. - Many corrections to historical Hong Kong transitions from 1941 to 1947. tzdata (2019b-0+deb9u1) stretch; urgency=medium . * New upstream version, affecting the following past and future timestamps: - Brazil has canceled DST and will stay on standard time indefinitely. - Predictions for Morocco now go through 2087 instead of 2037. - Palestine's 2019 spring transition was 03-29 at 00:00, not 03-30 at 01:00. Guess future transitions to be March's last Friday at 00:00. - Many corrections to historical Hong Kong transitions from 1941 to 1947. unzip (6.0-23+deb10u1) buster; urgency=medium . * Apply three patches by Mark Adler to fix CVE-2019-13232. - Fix bug in undefer_input() that misplaced the input state. - Detect and reject a zip bomb using overlapped entries. Bug discovered by David Fifield. Closes: #931433. - Do not raise a zip bomb alert for a misplaced central directory. Reported by Peter Green. Closes: #932404. usb.ids (2019.07.27-0+deb10u1) buster; urgency=medium . * New upstream version. vlc (3.0.8-0+deb10u1) buster-security; urgency=high . * New upstream release. - Fix a buffer overflow in the MKV demuxer (CVE-2019-14970) - Fix a read buffer overflow in the avcodec decoder (CVE-2019-13962) - Fix a read buffer overflow in the OGG demuxer (CVE-2019-14437, CVE-2019-14438) - Fix a read buffer overflow in the ASF demuxer (CVE-2019-14776) - Fix a use after free in the MKV demuxer (CVE-2019-14777, CVE-2019-14778) - Fix a use after free in the ASF demuxer (CVE-2019-14533) - Fix a couple of integer underflows in the MP4 demuxer (CVE-2019-13602) (Closes: #932131) - Fix a null dereference in the ASF demuxer (CVE-2019-14534) - Fix a division by zero in the CAF demuxer (CVE-2019-14498) - Fix a division by zero in the ASF demuxer (CVE-2019-14535) - Fix a division by zero when playing DVDs. (Closes: #929491, #923017, #932182) * debian/control: Bump libebml-dev B-D according to configure check changes. * debian/patches: Revert modplug version bump. We use the libopenmpt compat layer anyway. vlc (3.0.8-0+deb9u1) stretch-security; urgency=high . * New upstream release. - Fix a buffer overflow in the MKV demuxer (CVE-2019-14970) - Fix a read buffer overflow in the avcodec decoder (CVE-2019-13962) - Fix a read buffer overflow in the OGG demuxer (CVE-2019-14437, CVE-2019-14438) - Fix a read buffer overflow in the ASF demuxer (CVE-2019-14776) - Fix a use after free in the MKV demuxer (CVE-2019-14777, CVE-2019-14778) - Fix a use after free in the ASF demuxer (CVE-2019-14533) - Fix a couple of integer underflows in the MP4 demuxer (CVE-2019-13602) (Closes: #932131) - Fix a null dereference in the ASF demuxer (CVE-2019-14534) - Fix a division by zero in the CAF demuxer (CVE-2019-14498) - Fix a division by zero in the ASF demuxer (CVE-2019-14535) - Fix a division by zero when playing DVDs. (Closes: #929491, #923017, #932182) * debian/patches: - Revert modplug version bump. We use the libopenmpt compat layer anyway. - Revert libebml version bump. libebml has been fixed separately. vlc (3.0.7.1-3) unstable; urgency=medium . * debian/patches: Apply upstream patch to fix SIGFPE when playing DVDs. (Closes: #929491, #923017, #932182) vlc (3.0.7.1-2) unstable; urgency=medium . * debian/: Remove obsolete maintscripts. * debian/control: - Remove obsolete transitional package. - Remove obsolete Breaks+Replaces. - Bump Standards-Version. * debian/patches: Apply upstream patches to - unbreak rendering in subsvtt. - fix integer underflows in mp4. (CVE-2019-13602) (Closes: #932131) vlc (3.0.7.1-1) unstable; urgency=medium . * New upstream release. warzone2100 (3.2.1-3+deb10u1) buster; urgency=medium . * Team upload. * Move the package to salsa.debian.org. * Fix segmentation fault upon multiplayer "Start Hosting Game" Thanks to Phil Morrell for the report and Bernhard Übelacker for the patch. (Closes: #930942) webkit2gtk (2.24.3-1~deb10u1) buster; urgency=medium . * Rebuild for buster. . webkit2gtk (2.24.3-1) unstable; urgency=medium . * New upstream release (Closes: #929749). * debian/control: + Recommend gstreamer1.0-libav. This package allows the user to play most internet videos (Closes: #870814). . webkit2gtk (2.24.2-2) unstable; urgency=high . * The WebKitGTK security advisory WSA-2019-0003 lists the following security fixes in the latest versions of WebKitGTK+: + CVE-2019-8571, CVE-2019-8583, CVE-2019-8586, CVE-2019-8594, CVE-2019-8609, CVE-2019-8611, CVE-2019-8622 and CVE-2019-8623 (fixed in 2.24.0). + CVE-2019-6237, CVE-2019-8584, CVE-2019-8587, CVE-2019-8596, CVE-2019-8597, CVE-2019-8601, CVE-2019-8608, CVE-2019-8610 and CVE-2019-8619 (fixed in 2.24.1). + CVE-2019-8595, CVE-2019-8607 and CVE-2019-8615 (fixed in 2.24.2). * Use the CLoop Javascript interpreter in i386 and stop telling gcc to use SSE2 instructions (Closes: #930935). + debian/rules: - Build with -DENABLE_JIT=OFF -DENABLE_C_LOOP=ON and stop using -msse2 -mfpmath=sse. + debian/patches/dont-detect-sse2.patch: - Don't check for SSE2 support. + debian/NEWS: - Remove item about the requirement to have an SSE2-capable CPU. webkit2gtk (2.24.3-1~bpo10+1) buster-backports; urgency=medium . * Rebuild for buster-backports. . webkit2gtk (2.24.3-1) unstable; urgency=medium . * New upstream release (Closes: #929749). * debian/control: + Recommend gstreamer1.0-libav. This package allows the user to play most internet videos (Closes: #870814). . webkit2gtk (2.24.2-2) unstable; urgency=high . * The WebKitGTK security advisory WSA-2019-0003 lists the following security fixes in the latest versions of WebKitGTK+: + CVE-2019-8571, CVE-2019-8583, CVE-2019-8586, CVE-2019-8594, CVE-2019-8609, CVE-2019-8611, CVE-2019-8622 and CVE-2019-8623 (fixed in 2.24.0). + CVE-2019-6237, CVE-2019-8584, CVE-2019-8587, CVE-2019-8596, CVE-2019-8597, CVE-2019-8601, CVE-2019-8608, CVE-2019-8610 and CVE-2019-8619 (fixed in 2.24.1). + CVE-2019-8595, CVE-2019-8607 and CVE-2019-8615 (fixed in 2.24.2). * Use the CLoop Javascript interpreter in i386 and stop telling gcc to use SSE2 instructions (Closes: #930935). + debian/rules: - Build with -DENABLE_JIT=OFF -DENABLE_C_LOOP=ON and stop using -msse2 -mfpmath=sse. + debian/patches/dont-detect-sse2.patch: - Don't check for SSE2 support. + debian/NEWS: - Remove item about the requirement to have an SSE2-capable CPU. webkit2gtk (2.24.3-1~bpo9+1) stretch-backports-sloppy; urgency=medium . * Rebuild for stretch-backports-sloppy. * debian/control: + Versions of GStreamer < 1.13 had GStreamerGL in the "bad" set, so depend on libgstreamer-plugins-bad1.0-dev and don't require GStreamer 1.13. Don't install libgstreamer-plugins-bad1.0-dev in armel or armhf: the usage of two different GL implementations causes a build failure (see WebKit bug #175127). + Remove build dependency on libwoff-dev, this is not available in this Debian release. + Don't recommend gstreamer1.0-gl, that package is not available in this Debian release. + Don't depend on libopenjp2-7-dev. * debian/rules: + Build with -DENABLE_MEDIA_SOURCE=OFF. This feature requires a more recent version of GStreamer. + Build with -DUSE_OPENJPEG=OFF. This feature requires a more recent version of libopenjp2-7-dev. . webkit2gtk (2.24.3-1) unstable; urgency=medium . * New upstream release (Closes: #929749). * debian/control: + Recommend gstreamer1.0-libav. This package allows the user to play most internet videos (Closes: #870814). . webkit2gtk (2.24.2-2) unstable; urgency=high . * The WebKitGTK security advisory WSA-2019-0003 lists the following security fixes in the latest versions of WebKitGTK+: + CVE-2019-8571, CVE-2019-8583, CVE-2019-8586, CVE-2019-8594, CVE-2019-8609, CVE-2019-8611, CVE-2019-8622 and CVE-2019-8623 (fixed in 2.24.0). + CVE-2019-6237, CVE-2019-8584, CVE-2019-8587, CVE-2019-8596, CVE-2019-8597, CVE-2019-8601, CVE-2019-8608, CVE-2019-8610 and CVE-2019-8619 (fixed in 2.24.1). + CVE-2019-8595, CVE-2019-8607 and CVE-2019-8615 (fixed in 2.24.2). * Use the CLoop Javascript interpreter in i386 and stop telling gcc to use SSE2 instructions (Closes: #930935). + debian/rules: - Build with -DENABLE_JIT=OFF -DENABLE_C_LOOP=ON and stop using -msse2 -mfpmath=sse. + debian/patches/dont-detect-sse2.patch: - Don't check for SSE2 support. + debian/NEWS: - Remove item about the requirement to have an SSE2-capable CPU. webkit2gtk (2.24.2-2) unstable; urgency=high . * The WebKitGTK security advisory WSA-2019-0003 lists the following security fixes in the latest versions of WebKitGTK+: + CVE-2019-8571, CVE-2019-8583, CVE-2019-8586, CVE-2019-8594, CVE-2019-8609, CVE-2019-8611, CVE-2019-8622 and CVE-2019-8623 (fixed in 2.24.0). + CVE-2019-6237, CVE-2019-8584, CVE-2019-8587, CVE-2019-8596, CVE-2019-8597, CVE-2019-8601, CVE-2019-8608, CVE-2019-8610 and CVE-2019-8619 (fixed in 2.24.1). + CVE-2019-8595, CVE-2019-8607 and CVE-2019-8615 (fixed in 2.24.2). * Use the CLoop Javascript interpreter in i386 and stop telling gcc to use SSE2 instructions (Closes: #930935). + debian/rules: - Build with -DENABLE_JIT=OFF -DENABLE_C_LOOP=ON and stop using -msse2 -mfpmath=sse. + debian/patches/dont-detect-sse2.patch: - Don't check for SSE2 support. + debian/NEWS: - Remove item about the requirement to have an SSE2-capable CPU. win32-loader (0.9.4+deb10u2) buster; urgency=medium . * Fix stable FTBFS through enforcing LC_ALL=POSIX . win32-loader (0.9.4+deb10u1) buster; urgency=medium . * Rebuild in stable to embed the latest debian-archive-keyring (Closes: #933829) win32-loader (0.9.4+deb10u1) buster; urgency=medium . * Rebuild in stable to embed the latest debian-archive-keyring (Closes: #933829) xymon (4.3.28-5+deb10u1) buster; urgency=high . * Apply minimal upstream security patch to fix several (server-only) vulnerabilities reported upstream by Graham Rymer: + CVE-2019-13451: service overflows histlogfn in history.c. + CVE-2019-13452: service overflows histlogfn in reportlog.c. + CVE-2019-13273: srdb overflows dbfn in csvinfo.c. + CVE-2019-13274: reflected XSS in csvinfo.c. + CVE-2019-13455: htmlquoted(hostname) overflows msgline in acknowledge.c. + CVE-2019-13484: htmlquoted(xymondreq) overflows errtxt appfeed.c. + CVE-2019-13485: hostname overflows selfurl in history.c. + CVE-2019-13486: htmlquoted(xymondreq) overflows errtxt in svcstatus.c. + Closes: #935470 * Include hostname validation regression fixes from 4.3.30, too. yubikey-personalization (1.19.3-3+deb10u1) buster; urgency=medium . * Backport security improvements from v1.20.0 * debian/control: Add missing Break+Replaces on libyubikey-udev Closes: #931081 z3 (4.4.1-1~deb10u1) buster; urgency=medium . * Non-maintainer upload. * Rebuild for buster. . z3 (4.4.1-1) unstable; urgency=medium . [ Gianfranco Costamagna ] * Team Upload * Upload to unstable . [ Andreas Beckmann ] * Do not set the SONAME of libz3java.so to libz3.so.4. (Closes: #842892) . z3 (4.4.1-0.5~exp1) experimental; urgency=medium . * Package moved to salsa (Closes: #926939) * Standards-Version updated to 4.2.1 * Fix priority-extra-is-replaced-by-priority-optional warning * Moved under the llvm umbrella z3 (4.4.1-1~deb9u1) stretch; urgency=medium . * Non-maintainer upload. * Rebuild for stretch. . z3 (4.4.1-1~deb10u1) buster; urgency=medium . * Non-maintainer upload. * Rebuild for buster. . z3 (4.4.1-1) unstable; urgency=medium . [ Gianfranco Costamagna ] * Team Upload * Upload to unstable . [ Andreas Beckmann ] * Do not set the SONAME of libz3java.so to libz3.so.4. (Closes: #842892) . z3 (4.4.1-0.5~exp1) experimental; urgency=medium . * Package moved to salsa (Closes: #926939) * Standards-Version updated to 4.2.1 * Fix priority-extra-is-replaced-by-priority-optional warning * Moved under the llvm umbrella z3 (4.4.1-0.5~exp1) experimental; urgency=medium . * Package moved to salsa (Closes: #926939) * Standards-Version updated to 4.2.1 * Fix priority-extra-is-replaced-by-priority-optional warning * Moved under the llvm umbrella zeromq3 (4.3.1-4+deb10u1) buster-security; urgency=high . [ Luca Boccassi ] * Fix CVE-2019-13132: application metadata not parsed correctly when using CURVE. ========================================= Sat, 06 Jul 2019 - Debian 10.0 released =========================================