Package "linux"

 linux (6.5.0-39.39) mantic; urgency=medium
 .
   * mantic/linux: 6.5.0-39.39 -proposed tracker (LP: #2063709)
 .
   * RTL8852BE fw security fail then lost WIFI function during suspend/resume
     cycle (LP: #2063096)
     - wifi: rtw89: download firmware with five times retry
 .
   * Fix bluetooth connections with 3.0 device (LP: #2063067)
     - Bluetooth: hci_event: Fix handling of HCI_EV_IO_CAPA_REQUEST
 .
   * cifs: Copying file to same directory results in page fault (LP: #2060919)
     - SAUCE: Revert "cifs: fix flushing folio regression for 6.1 backport"
 .
   * USB stick can't be detected (LP: #2040948)
     - usb: Disable USB3 LPM at shutdown
 .
   * CVE-2024-26733
     - arp: Prevent overflow in arp_req_get().
 .
   * CVE-2024-26736
     - afs: Increase buffer size in afs_update_volume_status()
 .
   * CVE-2024-26801
     - Bluetooth: Avoid potential use-after-free in hci_error_reset
 .
   * CVE-2024-26805
     - netlink: Fix kernel-infoleak-after-free in __skb_datagram_iter
 .
   * CVE-2024-26809
     - netfilter: nft_set_pipapo: release elements in clone only from destroy path
 .
   * CVE-2024-26792
     - btrfs: fix double free of anonymous device after snapshot creation failure
 .
   * CVE-2024-26782
     - mptcp: fix double-free on socket dismantle
 .
   * CVE-2024-26748
     - usb: cdns3: fix memory double free when handle zero packet
 .
   * CVE-2024-26735
     - ipv6: sr: fix possible use-after-free and null-ptr-deref
 .
   * CVE-2024-26789
     - crypto: arm64/neonbs - fix out-of-bounds access on short input
 .
   * CVE-2024-26734
     - devlink: fix possible use-after-free and memory leaks in devlink_init()
 .
   * The keyboard does not work after latest kernel update (LP: #2060727)
     - Input: atkbd - do not skip atkbd_deactivate() when skipping ATKBD_CMD_GETID
 .
   * proc_sched_rt01 from ubuntu_ltp failed (LP: #2057734)
     - sched/rt: sysctl_sched_rr_timeslice show default timeslice after reset
     - sched/rt: Disallow writing invalid values to sched_rt_period_us
 .
   * Avoid creating non-working backlight sysfs knob from ASUS board
     (LP: #2060422)
     - platform/x86: asus-wmi: Consider device is absent when the read is ~0
 .
   * [Ubuntu 22.04.4/linux-image-6.5.0-26-generic] Kernel output "UBSAN: array-
     index-out-of-bounds in /build/linux-hwe-6.5-34pCLi/linux-
     hwe-6.5-6.5.0/drivers/net/hyperv/netvsc.c:1445:41" multiple times,
     especially during boot. (LP: #2058477)
     - hv: hyperv.h: Replace one-element array with flexible-array member
 .
   * Fix acpi_power_meter accessing IPMI region before it's ready (LP: #2059263)
     - ACPI: IPMI: Add helper to wait for when SMI is selected
     - hwmon: (acpi_power_meter) Ensure IPMI space handler is ready on Dell systems
 .
   * Include cifs.ko in linux-modules package (LP: #2042546)
     - [Packaging] Replace fs/cifs with fs/smb/client in inclusion list
 .
   * Mantic update: upstream stable patchset 2024-04-16 (LP: #2061814)
     - btrfs: add and use helper to check if block group is used
     - btrfs: do not delete unused block group if it may be used soon
     - btrfs: forbid creating subvol qgroups
     - btrfs: forbid deleting live subvol qgroup
     - btrfs: send: return EOPNOTSUPP on unknown flags
     - btrfs: don't reserve space for checksums when writing to nocow files
     - btrfs: reject encoded write if inode has nodatasum flag set
     - btrfs: don't drop extent_map for free space inode on write error
     - driver core: Fix device_link_flag_is_sync_state_only()
     - of: unittest: Fix compile in the non-dynamic case
     - KVM: selftests: Fix a semaphore imbalance in the dirty ring logging test
     - wifi: iwlwifi: Fix some error codes
     - wifi: iwlwifi: uninitialized variable in iwl_acpi_get_ppag_table()
     - of: property: Improve finding the supplier of a remote-endpoint property
     - net: openvswitch: limit the number of recursions from action sets
     - lan966x: Fix crash when adding interface under a lag
     - spi: ppc4xx: Drop write-only variable
     - ASoC: rt5645: Fix deadlock in rt5645_jack_detect_work()
     - net: sysfs: Fix /sys/class/net/ path for statistics
     - nouveau/svm: fix kvcalloc() argument order
     - MIPS: Add 'memory' clobber to csum_ipv6_magic() inline assembler
     - i40e: Do not allow untrusted VF to remove administratively set MAC
     - i40e: Fix waiting for queues of all VSIs to be disabled
     - scs: add CONFIG_MMU dependency for vfree_atomic()
     - tracing/trigger: Fix to return error if failed to alloc snapshot
     - mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again
     - scsi: storvsc: Fix ring buffer size calculation
     - dm-crypt, dm-verity: disable tasklets
     - ASoC: amd: yc: Add DMI quirk for MSI Bravo 15 C7VF
     - parisc: Prevent hung tasks when printing inventory on serial console
     - ALSA: hda/realtek: Fix the external mic not being recognised for Acer Swift
       1 SF114-32
     - ALSA: hda/realtek: Enable Mute LED on HP Laptop 14-fq0xxx
     - HID: i2c-hid-of: fix NULL-deref on failed power up
     - HID: wacom: generic: Avoid reporting a serial of '0' to userspace
     - HID: wacom: Do not register input devices until after hid_hw_start
     - iio: hid-sensor-als: Return 0 for HID_USAGE_SENSOR_TIME_TIMESTAMP
     - usb: ucsi: Add missing ppm_lock
     - usb: ulpi: Fix debugfs directory leak
     - usb: ucsi_acpi: Fix command completion handling
     - USB: hub: check for alternate port before enabling A_ALT_HNP_SUPPORT
     - usb: f_mass_storage: forbid async queue when shutdown happen
     - usb: dwc3: gadget: Fix NULL pointer dereference in dwc3_gadget_suspend
     - interconnect: qcom: sc8180x: Mark CO0 BCM keepalive
     - media: ir_toy: fix a memleak in irtoy_tx
     - driver core: fw_devlink: Improve detection of overlapping cycles
     - cifs: fix underflow in parse_server_interfaces()
     - i2c: qcom-geni: Correct I2C TRE sequence
     - irqchip/loongson-eiointc: Use correct

 linux (6.5.0-34.34) mantic; urgency=medium
 .
   * mantic/linux: 6.5.0-34.34 -proposed tracker (LP: #2061443)
 .
   * CVE-2024-2201
     - x86/bugs: Change commas to semicolons in 'spectre_v2' sysfs file
     - x86/syscall: Don't force use of indirect calls for system calls
     - x86/bhi: Add support for clearing branch history at syscall entry
     - x86/bhi: Define SPEC_CTRL_BHI_DIS_S
     - x86/bhi: Enumerate Branch History Injection (BHI) bug
     - x86/bhi: Add BHI mitigation knob
     - x86/bhi: Mitigate KVM by default
     - KVM: x86: Add BHI_NO
     - [Config] Set CONFIG_BHI to enabled (auto)
 .

 linux (6.5.0-33.33) mantic; urgency=medium
 .
   * mantic/linux: 6.5.0-33.33 -proposed tracker (LP: #2060448)
 .
   * [Mantic] Compile broken on armhf (cc1 out of memory) (LP: #2060446)
     - Revert "minmax: relax check to allow comparison between unsigned arguments
       and signed constants"
     - Revert "minmax: allow comparisons of 'int' against 'unsigned char/short'"
     - Revert "minmax: allow min()/max()/clamp() if the arguments have the same
       signedness."
     - Revert "minmax: add umin(a, b) and umax(a, b)"
 .

 linux (6.5.0-32.32) mantic; urgency=medium
 .
   * mantic/linux: 6.5.0-32.32 -proposed tracker (LP: #2059443)
 .
   * Packaging resync (LP: #1786013)
     - [Packaging] drop getabis data
 .
   * Drop fips-checks script from trees (LP: #2055083)
     - [Packaging] Remove fips-checks script
 .
   * alsa/realtek: adjust max output valume for headphone on 2 LG machines
     (LP: #2058573)
     - ALSA: hda/realtek: fix the hp playback volume issue for LG machines
 .
   * Remove getabis scripts (LP: #2059143)
     - [Packaging] Remove getabis
 .
   * Mantic update: upstream stable patchset 2024-03-27 (LP: #2059284)
     - asm-generic: make sparse happy with odd-sized put_unaligned_*()
     - powerpc/mm: Fix null-pointer dereference in pgtable_cache_add
     - arm64: irq: set the correct node for VMAP stack
     - drivers/perf: pmuv3: don't expose SW_INCR event in sysfs
     - powerpc: Fix build error due to is_valid_bugaddr()
     - powerpc/mm: Fix build failures due to arch_reserved_kernel_pages()
     - powerpc/64s: Fix CONFIG_NUMA=n build due to create_section_mapping()
     - x86/boot: Ignore NMIs during very early boot
     - powerpc: pmd_move_must_withdraw() is only needed for
       CONFIG_TRANSPARENT_HUGEPAGE
     - powerpc/lib: Validate size for vector operations
     - x86/mce: Mark fatal MCE's page as poison to avoid panic in the kdump kernel
     - perf/core: Fix narrow startup race when creating the perf nr_addr_filters
       sysfs file
     - debugobjects: Stop accessing objects after releasing hash bucket lock
     - regulator: core: Only increment use_count when enable_count changes
     - audit: Send netlink ACK before setting connection in auditd_set
     - ACPI: video: Add quirk for the Colorful X15 AT 23 Laptop
     - PNP: ACPI: fix fortify warning
     - ACPI: extlog: fix NULL pointer dereference check
     - ACPI: NUMA: Fix the logic of getting the fake_pxm value
     - PM / devfreq: Synchronize devfreq_monitor_[start/stop]
     - ACPI: APEI: set memory failure flags as MF_ACTION_REQUIRED on synchronous
       events
     - FS:JFS:UBSAN:array-index-out-of-bounds in dbAdjTree
     - jfs: fix slab-out-of-bounds Read in dtSearch
     - jfs: fix array-index-out-of-bounds in dbAdjTree
     - pstore/ram: Fix crash when setting number of cpus to an odd number
     - crypto: octeontx2 - Fix cptvf driver cleanup
     - erofs: fix ztailpacking for subpage compressed blocks
     - crypto: stm32/crc32 - fix parsing list of devices
     - afs: fix the usage of read_seqbegin_or_lock() in afs_lookup_volume_rcu()
     - afs: fix the usage of read_seqbegin_or_lock() in afs_find_server*()
     - rxrpc_find_service_conn_rcu: fix the usage of read_seqbegin_or_lock()
     - jfs: fix array-index-out-of-bounds in diNewExt
     - arch: consolidate arch_irq_work_raise prototypes
     - s390/vfio-ap: fix sysfs status attribute for AP queue devices
     - s390/ptrace: handle setting of fpc register correctly
     - KVM: s390: fix setting of fpc register
     - SUNRPC: Fix a suspicious RCU usage warning
     - ecryptfs: Reject casefold directory inodes
     - ext4: fix inconsistent between segment fstrim and full fstrim
     - ext4: unify the type of flexbg_size to unsigned int
     - ext4: remove unnecessary check from alloc_flex_gd()
     - ext4: avoid online resizing failures due to oversized flex bg
     - wifi: rt2x00: restart beacon queue when hardware reset
     - selftests/bpf: satisfy compiler by having explicit return in btf test
     - selftests/bpf: Fix pyperf180 compilation failure with clang18
     - wifi: rt2x00: correct wrong BBP register in RxDCOC calibration
     - selftests/bpf: Fix issues in setup_classid_environment()
     - soc: xilinx: Fix for call trace due to the usage of smp_processor_id()
     - soc: xilinx: fix unhandled SGI warning message
     - scsi: lpfc: Fix possible file string name overflow when updating firmware
     - PCI: Add no PM reset quirk for NVIDIA Spectrum devices
     - bonding: return -ENOMEM instead of BUG in alb_upper_dev_walk
     - net: usb: ax88179_178a: avoid two consecutive device resets
     - scsi: arcmsr: Support new PCI device IDs 1883 and 1886
     - ARM: dts: imx7d: Fix coresight funnel ports
     - ARM: dts: imx7s: Fix lcdif compatible
     - ARM: dts: imx7s: Fix nand-controller #size-cells
     - wifi: ath9k: Fix potential array-index-out-of-bounds read in
       ath9k_htc_txstatus()
     - wifi: ath11k: fix race due to setting ATH11K_FLAG_EXT_IRQ_ENABLED too early
     - bpf: Check rcu_read_lock_trace_held() before calling bpf map helpers
     - scsi: libfc: Don't schedule abort twice
     - scsi: libfc: Fix up timeout error in fc_fcp_rec_error()
     - bpf: Set uattr->batch.count as zero before batched update or deletion
     - wifi: wfx: fix possible NULL pointer dereference in wfx_set_mfp_ap()
     - ARM: dts: rockchip: fix rk3036 hdmi ports node
     - ARM: dts: imx25/27-eukrea: Fix RTC node name
     - ARM: dts: imx: Use flash@0,0 pattern
     - ARM: dts: imx27: Fix sram node
     - ARM: dts: imx1: Fix sram node
     - net: phy: at803x: fix passing the wrong reference for config_intr
     - ionic: pass opcode to devcmd_wait
     - ionic: bypass firmware cmds when stuck in reset
     - block/rnbd-srv: Check for unlikely string overflow
     - ARM: dts: imx25: Fix the iim compatible string
     - ARM: dts: imx25/27: Pass timing0
     - ARM: dts: imx27-apf27dev: Fix LED name
     - ARM: dts: imx23-sansa: Use preferred i2c-gpios properties
     - ARM: dts: imx23/28: Fix the DMA controller node name
     - scsi: hisi_sas: Set .phy_attached before notifing phyup event
       HISI_PHYE_PHY_UP_PM
     - ice: fix ICE_AQ_VSI_Q_OPT_RSS_* register values
     - net: atlantic: eliminate double free in error handling logic
     - net: dsa: mv88e6xxx: Fix mv88e6352_serdes_get_stats error path
     - block: prevent an integer overflow in bvec_try_merge_hw_page
     - md: Whenassemble the array, consult the superblock of the freshest device
   

 linux (6.5.0-27.28) mantic; urgency=medium
 .
   * mantic/linux: 6.5.0-27.28 -proposed tracker (LP: #2055584)
 .
   * Packaging resync (LP: #1786013)
     - [Packaging] drop ABI data
     - [Packaging] update annotations scripts
     - debian.master/dkms-versions -- update from kernel-versions (main/2024.03.04)
 .
   * CVE-2024-26597
     - net: qualcomm: rmnet: fix global oob in rmnet_policy
 .
   * CVE-2024-26599
     - pwm: Fix out-of-bounds access in of_pwm_single_xlate()
 .
   * Drop ABI checks from kernel build (LP: #2055686)
     - [Packaging] Remove in-tree abi checks
 .
   * Cranky update-dkms-versions rollout (LP: #2055685)
     - [Packaging] remove update-dkms-versions
     - Move debian/dkms-versions to debian.master/dkms-versions
     - [Packaging] Replace debian/dkms-versions with $(DEBIAN)/dkms-versions
 .
   * linux: please move erofs.ko (CONFIG_EROFS for EROFS support) from linux-
     modules-extra to linux-modules (LP: #2054809)
     - UBUNTU [Packaging]: Include erofs in linux-modules instead of linux-modules-
       extra
 .
   * performance: Scheduler: ratelimit updating of load_avg (LP: #2053251)
     - sched/fair: Ratelimit update to tg->load_avg
 .
   * IB peer memory feature regressed in 6.5 (LP: #2055082)
     - SAUCE: RDMA/core: Introduce peer memory interface
 .
   * linux-tools-common: man page of usbip[d] is misplaced (LP: #2054094)
     - [Packaging] rules: Put usbip manpages in the correct directory
 .
   * CVE-2024-23851
     - dm: limit the number of targets and parameter size area
 .
   * CVE-2024-23850
     - btrfs: do not ASSERT() if the newly created subvolume already got read
 .
   * x86: performance: tsc: Extend watchdog check exemption to 4-Sockets platform
     (LP: #2054699)
     - x86/tsc: Extend watchdog check exemption to 4-Sockets platform
 .
   * linux: please move dmi-sysfs.ko (CONFIG_DMI_SYSFS for SMBIOS support) from
     linux-modules-extra to linux-modules (LP: #2045561)
     - [Packaging] Move dmi-sysfs.ko into linux-modules
 .
   * Fix AMD brightness issue on AUO panel (LP: #2054773)
     - drm/amdgpu: make damage clips support configurable
 .
   * Mantic update: upstream stable patchset 2024-02-28 (LP: #2055199)
     - f2fs: explicitly null-terminate the xattr list
     - pinctrl: lochnagar: Don't build on MIPS
     - ALSA: hda - Fix speaker and headset mic pin config for CHUWI CoreBook XPro
     - mptcp: fix uninit-value in mptcp_incoming_options
     - wifi: cfg80211: lock wiphy mutex for rfkill poll
     - wifi: avoid offset calculation on NULL pointer
     - wifi: mac80211: handle 320 MHz in ieee80211_ht_cap_ie_to_sta_ht_cap
     - debugfs: fix automount d_fsdata usage
     - nvme-core: fix a memory leak in nvme_ns_info_from_identify()
     - drm/amd/display: update dcn315 lpddr pstate latency
     - drm/amdgpu: Fix cat debugfs amdgpu_regs_didt causes kernel null pointer
     - smb: client, common: fix fortify warnings
     - blk-mq: don't count completed flush data request as inflight in case of
       quiesce
     - nvme-core: check for too small lba shift
     - hwtracing: hisi_ptt: Handle the interrupt in hardirq context
     - hwtracing: hisi_ptt: Don't try to attach a task
     - ASoC: wm8974: Correct boost mixer inputs
     - arm64: dts: rockchip: fix rk356x pcie msg interrupt name
     - ASoC: Intel: Skylake: Fix mem leak in few functions
     - ASoC: nau8822: Fix incorrect type in assignment and cast to restricted
       __be16
     - ASoC: Intel: Skylake: mem leak in skl register function
     - ASoC: cs43130: Fix the position of const qualifier
     - ASoC: cs43130: Fix incorrect frame delay configuration
     - ASoC: rt5650: add mutex to avoid the jack detection failure
     - ASoC: Intel: skl_hda_dsp_generic: Drop HDMI routes when HDMI is not
       available
     - nouveau/tu102: flush all pdbs on vmm flush
     - ASoC: amd: yc: Add DMI entry to support System76 Pangolin 13
     - ASoC: hdac_hda: Conditionally register dais for HDMI and Analog
     - net/tg3: fix race condition in tg3_reset_task()
     - ASoC: da7219: Support low DC impedance headset
     - nvme: introduce helper function to get ctrl state
     - nvme: prevent potential spectre v1 gadget
     - arm64: dts: rockchip: Fix PCI node addresses on rk3399-gru
     - drm/amdgpu: Add NULL checks for function pointers
     - drm/exynos: fix a potential error pointer dereference
     - drm/exynos: fix a wrong error checking
     - hwmon: (corsair-psu) Fix probe when built-in
     - LoongArch: Preserve syscall nr across execve()
     - clk: rockchip: rk3568: Add PLL rate for 292.5MHz
     - clk: rockchip: rk3128: Fix HCLK_OTG gate register
     - jbd2: correct the printing of write_flags in jbd2_write_superblock()
     - jbd2: increase the journal IO's priority
     - drm/crtc: Fix uninit-value bug in drm_mode_setcrtc
     - neighbour: Don't let neigh_forced_gc() disable preemption for long
     - platform/x86: intel-vbtn: Fix missing tablet-mode-switch events
     - jbd2: fix soft lockup in journal_finish_inode_data_buffers()
     - tracing: Have large events show up as '[LINE TOO BIG]' instead of nothing
     - tracing: Add size check when printing trace_marker output
     - stmmac: dwmac-loongson: drop useless check for compatible fallback
     - MIPS: dts: loongson: drop incorrect dwmac fallback compatible
     - tracing: Fix uaf issue when open the hist or hist_debug file
     - ring-buffer: Do not record in NMI if the arch does not support cmpxchg in
       NMI
     - Input: psmouse - enable Synaptics InterTouch for ThinkPad L14 G1
     - reset: hisilicon: hi6220: fix Wvoid-pointer-to-enum-cast warning
     - Input: atkbd - skip ATKBD_CMD_GETID in translated mode
     - Input: i8042 - add nomux quirk for Acer P459-G2-M
     - s390/scm: fix virtual vs physical address confusion
     - ARC: fix spare error
     - wifi: iwlwifi: pcie: avoid a NULL pointer dereference
     - Input: xpad - add Razer Wolverine V2 support
     - kselftest: alsa: fixed a pr