Package "linux-hwe-5.19"

 linux-hwe-5.19 (5.19.0-37.38~22.04.1) jammy; urgency=medium
 .
   * jammy/linux-hwe-5.19: 5.19.0-37.38~22.04.1 -proposed tracker (LP: #2008304)
 .
   * Some QHD panels fail to refresh when PSR2 enabled (LP: #2009014)
     - drm/i915/psr: Use full update In case of area calculation fails
     - drm/i915: Ensure damage clip area is within pipe area
     - SAUCE: drm/i915/psr: Use calculated io and fast wake lines
 .
   [ Ubuntu: 5.19.0-37.38 ]
 .
   * kinetic/linux: 5.19.0-37.38 -proposed tracker (LP: #2008305)
   * XPS 9320 screen flicker on UHD panel 3840x2400 (LP: #2007516)
     - SAUCE: drm/i915/display/psr: Disable PSR2 sel fetch on panel SHP 5457
   * Fix speaker mute hotkey doesn't work on Dell G16 series (LP: #2003161)
     - platform/x86: dell-wmi: Add a keymap for KEY_MUTE in type 0x0010 table
   * net:cmsg_ipv6.sh from ubuntu_kernel_selftests failed with K-5.19
     (LP: #2000709)
     - selftest: net: Improve IPV6_TCLASS/IPV6_HOPLIMIT tests apparmor
       compatibility
   * rtcpie in timers from ubuntu_kernel_selftests randomly failing
     (LP: #1814234)
     - SAUCE: selftest: rtcpie: Force passing unreliable subtest
   * CVE-2023-0469
     - io_uring/filetable: fix file reference underflow
   * Improve arp_ndisc_evict_nocarrier.sh test result processing (LP: #2006546)
     - selftests: net: return non-zero for failures reported in
       arp_ndisc_evict_nocarrier
   * Make cm32181 sensor work after system suspend (LP: #1981773)
     - iio: light: cm32181: Add PM support
   * Fix Thunderbolt device hotplug fail when connect via thunderbolt dock
     (LP: #1991366)
     - PCI: Fix used_buses calculation in pci_scan_child_bus_extend()
     - PCI: Pass available buses even if the bridge is already configured
     - PCI: Move pci_assign_unassigned_root_bus_resources()
     - PCI: Fix whitespace and indentation
     - PCI: Fix typo in pci_scan_child_bus_extend()
   * arp_ndisc_evict_nocarrier.sh in net from ubuntu_kernel_selftests failed on
     J-oem-5.17 / K (LP: #1968310)
     - selftests: net: fix cleanup_v6() for arp_ndisc_evict_nocarrier
   * Screen freeze after resuming from suspend (nvme0: I/O timeout)
     (LP: #1996048)
     - PCI: vmd: Disable MSI remapping after suspend
   * RaptorLake: Fix the Screen is shaking by onboard HDMI port in mirror mode
     (LP: #1993561)
     - drm/i915/display: Drop check for doublescan mode in modevalid
     - drm/i915/display: Prune Interlace modes for Display >=12
   * udpgro_frglist.sh in net from ubuntu_kernel_selftests failed with K-5.19
     (Missing nat6to4 helper) (LP: #2000708)
     - selftests/net: mv bpf/nat6to4.c to net folder
   * selftests/.../nat6to4 breaks the selftests build (LP: #1996536)
     - selftests: net: Add cross-compilation support for BPF programs
     - selftests: net: Fix O=dir builds
   * CVE-2023-0266 // CVE-2023-0266 was assigned for this issue.
     - ALSA: pcm: Move rwsem lock inside snd_ctl_elem_read to prevent UAF
   * CVE-2022-4382
     - USB: gadgetfs: Fix race between mounting and unmounting
   * CVE-2022-2196
     - KVM: VMX: Execute IBPB on emulated VM-exit when guest has IBRS
   * ubuntu_kernel_selftests: net:udpgso_bench.sh failed (LP: #1951447)
     - selftests: net: udpgso_bench: Fix racing bug between the rx/tx programs
   * Kinetic update: upstream stable patchset 2023-02-02 (LP: #2004602)
     - clk: generalize devm_clk_get() a bit
     - clk: Provide new devm_clk helpers for prepared and enabled clocks
     - mmc: mtk-sd: Fix missing clk_disable_unprepare in msdc_of_clock_parse()
     - arm64: dts: rockchip: keep I2S1 disabled for GPIO function on ROCK Pi 4
       series
     - arm: dts: rockchip: fix node name for hym8563 rtc
     - arm: dts: rockchip: remove clock-frequency from rtc
     - ARM: dts: rockchip: fix ir-receiver node names
     - arm64: dts: rockchip: fix ir-receiver node names
     - ARM: dts: rockchip: rk3188: fix lcdc1-rgb24 node name
     - fs: use acquire ordering in __fget_light()
     - ARM: 9251/1: perf: Fix stacktraces for tracepoint events in THUMB2 kernels
     - ARM: 9266/1: mm: fix no-MMU ZERO_PAGE() implementation
     - ASoC: wm8962: Wait for updated value of WM8962_CLOCKING1 register
     - spi: mediatek: Fix DEVAPC Violation at KO Remove
     - ARM: dts: rockchip: disable arm_global_timer on rk3066 and rk3188
     - ASoC: rt711-sdca: fix the latency time of clock stop prepare state machine
       transitions
     - 9p/fd: Use P9_HDRSZ for header size
     - regulator: slg51000: Wait after asserting CS pin
     - ALSA: seq: Fix function prototype mismatch in snd_seq_expand_var_event
     - btrfs: send: avoid unaligned encoded writes when attempting to clone range
     - ASoC: soc-pcm: Add NULL check in BE reparenting
     - regulator: twl6030: fix get status of twl6032 regulators
     - fbcon: Use kzalloc() in fbcon_prepare_logo()
     - usb: dwc3: gadget: Disable GUSB2PHYCFG.SUSPHY for End Transfer
     - 9p/xen: check logical size for buffer size
     - net: usb: qmi_wwan: add u-blox 0x1342 composition
     - mm/khugepaged: take the right locks for page table retraction
     - mm/khugepaged: fix GUP-fast interaction by sending IPI
     - mm/khugepaged: invoke MMU notifiers in shmem/file collapse paths
     - cifs: fix use-after-free caused by invalid pointer `hostname`
     - xen/netback: do some code cleanup
     - xen/netback: don't call kfree_skb() with interrupts disabled
     - media: videobuf2-core: take mmap_lock in vb2_get_unmapped_area()
     - soundwire: intel: Initialize clock stop timeout
     - media: v4l2-dv-timings.c: fix too strict blanking sanity checks
     - memcg: fix possible use-after-free in memcg_write_event_control()
     - mm/gup: fix gup_pud_range() for dax
     - Bluetooth: btusb: Add debug message for CSR controllers
     - Bluetooth: Fix crash when replugging CSR fake controllers
     - net: mana: Fix race on per-CQ variable napi work_done
     - KVM: s390: vsie: Fix the initialization of the epoch extension (epdx) field

 linux-hwe-5.19 (5.19.0-35.36~22.04.1) jammy; urgency=medium
 .
   * jammy/linux-hwe-5.19: 5.19.0-35.36~22.04.1 -proposed tracker (LP: #2004298)
 .
   [ Ubuntu: 5.19.0-35.36 ]
 .
   * kinetic/linux: 5.19.0-35.36 -proposed tracker (LP: #2004652)
   * CVE-2023-0461
     - SAUCE: Fix inet_csk_listen_start after CVE-2023-0461
 .
   [ Ubuntu: 5.19.0-34.35 ]
 .
   * kinetic/linux: 5.19.0-34.35 -proposed tracker (LP: #2004299)
   * LXD containers using shiftfs on ZFS or TMPFS broken on 5.15.0-48.54
     (LP: #1990849)
     - [SAUCE] shiftfs: fix -EOVERFLOW inside the container
   * Kinetic update: upstream stable patchset 2023-01-27 (LP: #2004051)
     - ASoC: fsl_sai: use local device pointer
     - serial: Add rs485_supported to uart_port
     - serial: fsl_lpuart: Fill in rs485_supported
     - x86/sgx: Create utility to validate user provided offset and length
     - x86/sgx: Add overflow check in sgx_validate_offset_length()
     - binder: validate alloc->mm in ->mmap() handler
     - ceph: Use kcalloc for allocating multiple elements
     - ceph: fix NULL pointer dereference for req->r_session
     - wifi: mac80211: fix memory free error when registering wiphy fail
     - wifi: mac80211_hwsim: fix debugfs attribute ps with rc table support
     - riscv: dts: sifive unleashed: Add PWM controlled LEDs
     - audit: fix undefined behavior in bit shift for AUDIT_BIT
     - wifi: airo: do not assign -1 to unsigned char
     - wifi: mac80211: Fix ack frame idr leak when mesh has no route
     - wifi: ath11k: Fix QCN9074 firmware boot on x86
     - spi: stm32: fix stm32_spi_prepare_mbr() that halves spi clk for every run
     - selftests/bpf: Add verifier test for release_reference()
     - Revert "net: macsec: report real_dev features when HW offloading is enabled"
     - platform/x86: ideapad-laptop: Disable touchpad_switch
     - platform/x86: touchscreen_dmi: Add info for the RCA Cambio W101 v2 2-in-1
     - platform/x86/intel/pmt: Sapphire Rapids PMT errata fix
     - scsi: ibmvfc: Avoid path failures during live migration
     - scsi: scsi_debug: Make the READ CAPACITY response compliant with ZBC
     - drm: panel-orientation-quirks: Add quirk for Acer Switch V 10 (SW5-017)
     - block, bfq: fix null pointer dereference in bfq_bio_bfqg()
     - arm64/syscall: Include asm/ptrace.h in syscall_wrapper header.
     - nvmet: fix memory leak in nvmet_subsys_attr_model_store_locked
     - Revert "drm/amdgpu: Revert "drm/amdgpu: getting fan speed pwm for vega10
       properly""
     - ALSA: usb-audio: add quirk to fix Hamedal C20 disconnect issue
     - RISC-V: vdso: Do not add missing symbols to version section in linker script
     - MIPS: pic32: treat port as signed integer
     - xfrm: fix "disable_policy" on ipv4 early demux
     - xfrm: replay: Fix ESN wrap around for GSO
     - af_key: Fix send_acquire race with pfkey_register
     - ARM: dts: am335x-pcm-953: Define fixed regulators in root node
     - ASoC: hdac_hda: fix hda pcm buffer overflow issue
     - ASoC: sgtl5000: Reset the CHIP_CLK_CTRL reg on remove
     - ASoC: soc-pcm: Don't zero TDM masks in __soc_pcm_open()
     - x86/hyperv: Restore VP assist page after cpu offlining/onlining
     - scsi: storvsc: Fix handling of srb_status and capacity change events
     - ASoC: max98373: Add checks for devm_kcalloc
     - regulator: core: fix kobject release warning and memory leak in
       regulator_register()
     - spi: dw-dma: decrease reference count in dw_spi_dma_init_mfld()
     - regulator: core: fix UAF in destroy_regulator()
     - bus: sunxi-rsb: Remove the shutdown callback
     - bus: sunxi-rsb: Support atomic transfers
     - tee: optee: fix possible memory leak in optee_register_device()
     - ARM: dts: at91: sam9g20ek: enable udc vbus gpio pinctrl
     - selftests: mptcp: fix mibit vs mbit mix up
     - net: liquidio: simplify if expression
     - rxrpc: Fix race between conn bundle lookup and bundle removal [ZDI-
       CAN-15975]
     - net: dsa: sja1105: disallow C45 transactions on the BASE-TX MDIO bus
     - nfc/nci: fix race with opening and closing
     - net: pch_gbe: fix potential memleak in pch_gbe_tx_queue()
     - 9p/fd: fix issue of list_del corruption in p9_fd_cancel()
     - netfilter: conntrack: Fix data-races around ct mark
     - netfilter: nf_tables: do not set up extensions for end interval
     - iavf: Fix a crash during reset task
     - iavf: Do not restart Tx queues after reset task failure
     - iavf: Fix race condition between iavf_shutdown and iavf_remove
     - ARM: mxs: fix memory leak in mxs_machine_init()
     - ARM: dts: imx6q-prti6q: Fix ref/tcxo-clock-frequency properties
     - net: ethernet: mtk_eth_soc: fix error handling in mtk_open()
     - net/mlx4: Check retval of mlx4_bitmap_init
     - net: mvpp2: fix possible invalid pointer dereference
     - net/qla3xxx: fix potential memleak in ql3xxx_send()
     - octeontx2-af: debugsfs: fix pci device refcount leak
     - net: pch_gbe: fix pci device refcount leak while module exiting
     - nfp: fill splittable of devlink_port_attrs correctly
     - nfp: add port from netdev validation for EEPROM access
     - macsec: Fix invalid error code set
     - Drivers: hv: vmbus: fix double free in the error path of
       vmbus_add_channel_work()
     - Drivers: hv: vmbus: fix possible memory leak in vmbus_device_register()
     - netfilter: ipset: regression in ip_set_hash_ip.c
     - net/mlx5: Do not query pci info while pci disabled
     - net/mlx5: Fix FW tracer timestamp calculation
     - net/mlx5: Fix handling of entry refcount when command is not issued to FW
     - tipc: set con sock in tipc_conn_alloc
     - tipc: add an extra conn_get in tipc_conn_alloc
     - tipc: check skb_linearize() return value in tipc_disc_rcv()
     - xfrm: Fix oops in __xfrm_state_delete()
     - xfrm: Fix ignored return value in xfrm6_init()
     - net: wwan: iosm: use ACPI_FREE() but not kfree() in ipc_pcie_read_bios_cfg()
     - sfc: fix potenti

 linux-hwe-5.19 (5.19.0-32.33~22.04.1) jammy; urgency=medium
 .
   * jammy/linux-hwe-5.19: 5.19.0-32.33~22.04.1 -proposed tracker (LP: #2004157)
 .
   * Packaging resync (LP: #1786013)
     - [Packaging] update variants
     - debian/dkms-versions -- update from kernel-versions (main/2023.01.02)
 .

 linux-hwe-5.19 (5.19.0-31.32~22.04.1) jammy; urgency=medium
 .
   * jammy/linux-hwe-5.19: 5.19.0-31.32~22.04.1 -proposed tracker (LP: #2003422)
 .
   [ Ubuntu: 5.19.0-31.32 ]
 .
   * kinetic/linux: 5.19.0-31.32 -proposed tracker (LP: #2003423)
   * amdgpu: framebuffer is destroyed and the screen freezes with unsupported IP
     blocks (LP: #2003524)
     - drm/amd: Delay removal of the firmware framebuffer
   * Revoke & rotate to new signing key (LP: #2002812)
     - [Packaging] Revoke and rotate to new signing key
 .

 linux-hwe-5.19 (5.19.0-30.31~22.04.1) jammy; urgency=medium
 .
   * jammy/linux-hwe-5.19: 5.19.0-30.31~22.04.1 -proposed tracker (LP: #2001755)
 .
   * Packaging resync (LP: #1786013)
     - debian/dkms-versions -- update from kernel-versions (main/2023.01.02)
 .
   * Unset versioned gcc-12 for hwe-5.19 build (LP: #2002679)
     - Revert "UBUNTU: [Packaging] use versioned gcc-12"
     - [Packaging] update annotations for gcc version downgrade
 .
   [ Ubuntu: 5.19.0-30.31 ]
 .
   * kinetic/linux: 5.19.0-30.31 -proposed tracker (LP: #2001756)
   * Packaging resync (LP: #1786013)
     - [Packaging] update helper scripts
     - debian/dkms-versions -- update from kernel-versions (main/2023.01.02)
   * Add some ACPI device IDs for Intel HID device (LP: #1995453)
     - platform/x86/intel/hid: Add some ACPI device IDs
   * Fix iosm: WWAN cannot build the connection (DW5823e) (LP: #1998115)
     - net: wwan: iosm: fix driver not working with INTEL_IOMMU disabled
     - [Config] CONFIG_IOSM update annotations on arm64 armhf ppc64el s390x riscv64
   * BPF_[AND|OR|XOR|FETCH|XCHG|CMPXCHG] in net:test_bpf.sh from
     ubuntu_kernel_selftests failed on K-5.19 P9 (LP: #2001618)
     - powerpc/bpf/64: add support for BPF_ATOMIC bitwise operations
     - powerpc/bpf/64: add support for atomic fetch operations
     - powerpc/bpf/64: Add instructions for atomic_[cmp]xchg
   * [DEP-8] Run ADT regression suite for lowlatency kernels Jammy and later
     (LP: #1999528)
     - [DEP-8] Fix regression suite to run on lowlatency
   * Kinetic update: upstream stable patchset 2022-12-15 (LP: #1999828)
     - serial: ar933x: Deassert Transmit Enable on ->rs485_config()
     - KVM: x86: Trace re-injected exceptions
     - RDMA/cma: Use output interface for net_dev check
     - IB/hfi1: Correctly move list in sc_disable()
     - RDMA/hns: Disable local invalidate operation
     - NFSv4: Fix a potential state reclaim deadlock
     - NFSv4.1: Handle RECLAIM_COMPLETE trunking errors
     - NFSv4.1: We must always send RECLAIM_COMPLETE after a reboot
     - SUNRPC: Fix null-ptr-deref when xps sysfs alloc failed
     - NFSv4.2: Fixup CLONE dest file size for zero-length count
     - nfs4: Fix kmemleak when allocate slot failed
     - net: dsa: Fix possible memory leaks in dsa_loop_init()
     - RDMA/core: Fix null-ptr-deref in ib_core_cleanup()
     - RDMA/qedr: clean up work queue on failure in qedr_alloc_resources()
     - net: dsa: fall back to default tagger if we can't load the one from DT
     - nfc: fdp: Fix potential memory leak in fdp_nci_send()
     - nfc: nxp-nci: Fix potential memory leak in nxp_nci_send()
     - nfc: s3fwrn5: Fix potential memory leak in s3fwrn5_nci_send()
     - nfc: nfcmrvl: Fix potential memory leak in nfcmrvl_i2c_nci_send()
     - net: fec: fix improper use of NETDEV_TX_BUSY
     - ata: pata_legacy: fix pdc20230_set_piomode()
     - net: sched: Fix use after free in red_enqueue()
     - net: tun: fix bugs for oversize packet when napi frags enabled
     - netfilter: nf_tables: netlink notifier might race to release objects
     - netfilter: nf_tables: release flow rule object from commit path
     - ipvs: use explicitly signed chars
     - ipvs: fix WARNING in __ip_vs_cleanup_batch()
     - ipvs: fix WARNING in ip_vs_app_net_cleanup()
     - rose: Fix NULL pointer dereference in rose_send_frame()
     - mISDN: fix possible memory leak in mISDN_register_device()
     - isdn: mISDN: netjet: fix wrong check of device registration
     - btrfs: fix inode list leak during backref walking at resolve_indirect_refs()
     - btrfs: fix inode list leak during backref walking at find_parent_nodes()
     - btrfs: fix ulist leaks in error paths of qgroup self tests
     - netfilter: ipset: enforce documented limit to prevent allocating huge memory
     - Bluetooth: virtio_bt: Use skb_put to set length
     - Bluetooth: L2CAP: fix use-after-free in l2cap_conn_del()
     - Bluetooth: L2CAP: Fix memory leak in vhci_write
     - net: mdio: fix undefined behavior in bit shift for __mdiobus_register
     - ibmvnic: Free rwi on reset success
     - stmmac: dwmac-loongson: fix invalid mdio_node
     - net/smc: Fix possible leaked pernet namespace in smc_init()
     - net, neigh: Fix null-ptr-deref in neigh_table_clear()
     - ipv6: fix WARNING in ip6_route_net_exit_late()
     - vsock: fix possible infinite sleep in vsock_connectible_wait_data()
     - media: rkisp1: Don't pass the quantization to rkisp1_csm_config()
     - media: rkisp1: Initialize color space on resizer sink and source pads
     - media: rkisp1: Use correct macro for gradient registers
     - media: rkisp1: Zero v4l2_subdev_format fields in when validating links
     - media: s5p_cec: limit msg.len to CEC_MAX_MSG_SIZE
     - media: cros-ec-cec: limit msg.len to CEC_MAX_MSG_SIZE
     - media: dvb-frontends/drxk: initialize err to 0
     - media: meson: vdec: fix possible refcount leak in vdec_probe()
     - media: v4l: subdev: Fail graciously when getting try data for NULL state
     - ACPI: APEI: Fix integer overflow in ghes_estatus_pool_init()
     - scsi: core: Restrict legal sdev_state transitions via sysfs
     - HID: saitek: add madcatz variant of MMO7 mouse device ID
     - drm/amdgpu: set vm_update_mode=0 as default for Sienna Cichlid in SRIOV case
     - i2c: xiic: Add platform module alias
     - efi/tpm: Pass correct address to memblock_reserve
     - clk: qcom: Update the force mem core bit for GPU clocks
     - ARM: dts: imx6qdl-gw59{10,13}: fix user pushbutton GPIO offset
     - arm64: dts: imx8: correct clock order
     - arm64: dts: lx2160a: specify clock frequencies for the MDIO controllers
     - arm64: dts: ls1088a: specify clock frequencies for the MDIO controllers
     - arm64: dts: ls208xa: specify clock frequencies for the MDIO controllers
     - block: Fix possible memory leak for rq_wb on add_disk failure
     - firmware: arm_scmi: Suppress the driver's bind attributes
     - firmware: arm_scmi: Make Rx chan_set