Package "linux-kvm"

 linux-kvm (4.4.0-1085.94) xenial; urgency=medium
 .
   * xenial/linux-kvm: 4.4.0-1085.94 -proposed tracker (LP: #1906044)
 .
   [ Ubuntu: 4.4.0-198.230 ]
 .
   * xenial/linux: 4.4.0-198.230 -proposed tracker (LP: #1906052)
   * Xenial update: v4.4.244 upstream stable release (LP: #1904914)
     - ring-buffer: Fix recursion protection transitions between interrupt context
     - gfs2: Wake up when sd_glock_disposal becomes zero
     - mm: mempolicy: fix potential pte_unmap_unlock pte error
     - time: Prevent undefined behaviour in timespec64_to_ns()
     - btrfs: reschedule when cloning lots of extents
     - net: xfrm: fix a race condition during allocing spi
     - perf tools: Add missing swap for ino_generation
     - ALSA: hda: prevent undefined shift in snd_hdac_ext_bus_get_link()
     - can: dev: can_get_echo_skb(): prevent call to kfree_skb() in hard IRQ
       context
     - can: dev: __can_get_echo_skb(): fix real payload length return value for RTR
       frames
     - can: can_create_echo_skb(): fix echo skb generation: always use skb_clone()
     - can: peak_usb: add range checking in decode operations
     - can: peak_usb: peak_usb_get_ts_time(): fix timestamp wrapping
     - Btrfs: fix missing error return if writeback for extent buffer never started
     - i40e: Wrong truncation from u16 to u8
     - i40e: Fix of memory leak and integer truncation in i40e_virtchnl.c
     - ath9k_htc: Use appropriate rs_datalen type
     - usb: gadget: goku_udc: fix potential crashes in probe
     - gfs2: Free rd_bits later in gfs2_clear_rgrpd to fix use-after-free
     - gfs2: check for live vs. read-only file system in gfs2_fitrim
     - drm/amdgpu: perform srbm soft reset always on SDMA resume
     - mac80211: fix use of skb payload instead of header
     - cfg80211: regulatory: Fix inconsistent format argument
     - iommu/amd: Increase interrupt remapping table limit to 512 entries
     - xfs: fix a missing unlock on error in xfs_fs_map_blocks
     - of/address: Fix of_node memory leak in of_dma_is_coherent
     - cosa: Add missing kfree in error path of cosa_write
     - perf: Fix get_recursion_context()
     - ext4: correctly report "not supported" for {usr,grp}jquota when
       !CONFIG_QUOTA
     - ext4: unlock xattr_sem properly in ext4_inline_data_truncate()
     - usb: cdc-acm: Add DISABLE_ECHO for Renesas USB Download mode
     - mei: protect mei_cl_mtu from null dereference
     - ocfs2: initialize ip_next_orphan
     - don't dump the threads that had been already exiting when zapped.
     - drm/gma500: Fix out-of-bounds access to struct drm_device.vblank[]
     - pinctrl: amd: use higher precision for 512 RtcClk
     - pinctrl: amd: fix incorrect way to disable debounce filter
     - swiotlb: fix "x86: Don't panic if can not alloc buffer for swiotlb"
     - IPv6: Set SIT tunnel hard_header_len to zero
     - net/af_iucv: fix null pointer dereference on shutdown
     - net/x25: Fix null-ptr-deref in x25_connect
     - net: Update window_clamp if SOCK_RCVBUF is set
     - random32: make prandom_u32() output unpredictable
     - x86/speculation: Allow IBPB to be conditionally enabled on CPUs with always-
       on STIBP
     - xen/events: avoid removing an event channel while handling it
     - xen/events: add a proper barrier to 2-level uevent unmasking
     - xen/events: fix race in evtchn_fifo_unmask()
     - xen/events: add a new "late EOI" evtchn framework
     - xen/blkback: use lateeoi irq binding
     - xen/netback: use lateeoi irq binding
     - xen/scsiback: use lateeoi irq binding
     - xen/pciback: use lateeoi irq binding
     - xen/events: switch user event channels to lateeoi model
     - xen/events: use a common cpu hotplug hook for event channels
     - xen/events: defer eoi in case of excessive number of events
     - xen/events: block rogue events for some time
     - Revert "kernel/reboot.c: convert simple_strtoul to kstrtoint"
     - reboot: fix overflow parsing reboot cpu number
     - ext4: fix leaking sysfs kobject after failed mount
     - Convert trailing spaces and periods in path components
     - Linux 4.4.244
   * Xenial update: v4.4.243 upstream stable release (LP: #1904904)
     - Linux 4.4.243
   * Xenial update: v4.4.242 upstream stable release (LP: #1903750)
     - SUNRPC: ECONNREFUSED should cause a rebind.
     - scripts/setlocalversion: make git describe output more reliable
     - ravb: Fix bit fields checking in ravb_hwtstamp_get()
     - tipc: fix memory leak caused by tipc_buf_append()
     - mtd: lpddr: Fix bad logic in print_drs_error
     - ata: sata_rcar: Fix DMA boundary mask
     - fscrypt: return -EXDEV for incompatible rename or link into encrypted dir
     - f2fs crypto: avoid unneeded memory allocation in ->readdir
     - powerpc/powernv/smp: Fix spurious DBG() warning
     - sparc64: remove mm_cpumask clearing to fix kthread_use_mm race
     - f2fs: fix to check segment boundary during SIT page readahead
     - um: change sigio_spinlock to a mutex
     - xfs: fix realtime bitmap/summary file truncation when growing rt volume
     - video: fbdev: pvr2fb: initialize variables
     - ath10k: fix VHT NSS calculation when STBC is enabled
     - mmc: via-sdmmc: Fix data race bug
     - printk: reduce LOG_BUF_SHIFT range for H8300
     - kgdb: Make "kgdbcon" work properly with "kgdb_earlycon"
     - USB: adutux: fix debugging
     - drivers/net/wan/hdlc_fr: Correctly handle special skb->protocol values
     - power: supply: test_power: add missing newlines when printing parameters by
       sysfs
     - md/bitmap: md_bitmap_get_counter returns wrong blocks
     - clk: ti: clockdomain: fix static checker warning
     - net: 9p: initialize sun_server.sun_path to have addr's value only when addr
       is valid
     - drivers: watchdog: rdc321x_wdt: Fix race condition bugs
     - ext4: Detect already used quota file early
     - gfs2: add validation checks for size of superblock
     - memory: emif: Remove bogus debugfs error ha

 linux-kvm (4.4.0-1084.93) xenial; urgency=medium
 .
   * xenial/linux-kvm: 4.4.0-1084.93 -proposed tracker (LP: #1905657)
 .
   * CONFIG options for (ipip, sit) should not be built-in to the KVM kernels
     (LP: #1899832)
     - [config] Set CONFIG_NET_IPIP and CONIG_IPV6_SIT =m
 .

 linux-kvm (4.4.0-1083.92) xenial; urgency=medium
 .
   * xenial/linux-kvm: 4.4.0-1083.92 -proposed tracker (LP: #1903099)
 .
   [ Ubuntu: 4.4.0-195.227 ]
 .
   * xenial/linux: 4.4.0-195.227 -proposed tracker (LP: #1903107)
   * Update kernel packaging to support forward porting kernels (LP: #1902957)
     - [Debian] Update for leader included in BACKPORT_SUFFIX
   * Avoid double newline when running insertchanges (LP: #1903293)
     - [Packaging] insertchanges: avoid double newline
   * EFI: Fails when BootCurrent entry does not exist (LP: #1899993)
     - efivarfs: Replace invalid slashes with exclamation marks in dentries.
   * CVE-2020-14351
     - perf/core: Fix race in the perf_mmap_close() function
   * CVE-2020-25645
     - geneve: add transport ports in route lookup for geneve
   * Xenial update: v4.4.241 upstream stable release (LP: #1902097)
     - ibmveth: Identify ingress large send packets.
     - tipc: fix the skb_unshare() in tipc_buf_append()
     - net/ipv4: always honour route mtu during forwarding
     - r8169: fix data corruption issue on RTL8402
     - ALSA: bebob: potential info leak in hwdep_read()
     - mm/kasan: print name of mem[set,cpy,move]() caller in report
     - mm/kasan: add API to check memory regions
     - compiler.h, kasan: Avoid duplicating __read_once_size_nocheck()
     - compiler.h: Add read_word_at_a_time() function.
     - lib/strscpy: Shut up KASAN false-positives in strscpy()
     - x86/mm/ptdump: Fix soft lockup in page table walker
     - net: hdlc: In hdlc_rcv, check to make sure dev is an HDLC device
     - net: hdlc_raw_eth: Clear the IFF_TX_SKB_SHARING flag after calling
       ether_setup
     - nfc: Ensure presence of NFC_ATTR_FIRMWARE_NAME attribute in
       nfc_genl_fw_download()
     - tcp: fix to update snd_wl1 in bulk receiver fast path
     - icmp: randomize the global rate limiter
     - cifs: remove bogus debug code
     - ima: Don't ignore errors from crypto_shash_update()
     - EDAC/i5100: Fix error handling order in i5100_init_one()
     - crypto: ixp4xx - Fix the size used in a 'dma_free_coherent()' call
     - media: Revert "media: exynos4-is: Add missed check for
       pinctrl_lookup_state()"
     - media: m5mols: Check function pointer in m5mols_sensor_power
     - media: omap3isp: Fix memleak in isp_probe
     - crypto: omap-sham - fix digcnt register handling with export/import
     - media: tc358743: initialize variable
     - media: ti-vpe: Fix a missing check and reference count leak
     - ath6kl: prevent potential array overflow in ath6kl_add_new_sta()
     - ath9k: Fix potential out of bounds in ath9k_htc_txcompletion_cb()
     - wcn36xx: Fix reported 802.11n rx_highest rate wcn3660/wcn3680
     - mwifiex: Do not use GFP_KERNEL in atomic context
     - drm/gma500: fix error check
     - scsi: qla4xxx: Fix an error handling path in 'qla4xxx_get_host_stats()'
     - scsi: csiostor: Fix wrong return value in csio_hw_prep_fw()
     - backlight: sky81452-backlight: Fix refcount imbalance on error
     - VMCI: check return value of get_user_pages_fast() for errors
     - tty: serial: earlycon dependency
     - pty: do tty_flip_buffer_push without port->lock in pty_write
     - drivers/virt/fsl_hypervisor: Fix error handling path
     - video: fbdev: vga16fb: fix setting of pixclock because a pass-by-value error
     - video: fbdev: sis: fix null ptr dereference
     - HID: roccat: add bounds checking in kone_sysfs_write_settings()
     - ath6kl: wmi: prevent a shift wrapping bug in ath6kl_wmi_delete_pstream_cmd()
     - misc: mic: scif: Fix error handling path
     - ALSA: seq: oss: Avoid mutex lock for a long-time ioctl
     - quota: clear padding in v2r1_mem2diskdqb()
     - net: enic: Cure the enic api locking trainwreck
     - mfd: sm501: Fix leaks in probe()
     - usb: gadget: u_ether: enable qmult on SuperSpeed Plus as well
     - nl80211: fix non-split wiphy information
     - mwifiex: fix double free
     - net: korina: fix kfree of rx/tx descriptor array
     - IB/mlx4: Adjust delayed work when a dup is observed
     - powerpc/pseries: Fix missing of_node_put() in rng_init()
     - powerpc/icp-hv: Fix missing of_node_put() in success path
     - mtd: lpddr: fix excessive stack usage with clang
     - mtd: mtdoops: Don't write panic data twice
     - ARM: 9007/1: l2c: fix prefetch bits init in L2X0_AUX_CTRL using DT values
     - powerpc/tau: Use appropriate temperature sample interval
     - powerpc/tau: Remove duplicated set_thresholds() call
     - powerpc/tau: Disable TAU between measurements
     - perf intel-pt: Fix "context_switch event has no tid" error
     - kdb: Fix pager search for multi-line strings
     - powerpc/perf/hv-gpci: Fix starting index value
     - cpufreq: powernv: Fix frame-size-overflow in powernv_cpufreq_reboot_notifier
     - lib/crc32.c: fix trivial typo in preprocessor condition
     - vfio/pci: Clear token on bypass registration failure
     - Input: imx6ul_tsc - clean up some errors in imx6ul_tsc_resume()
     - Input: ep93xx_keypad - fix handling of platform_get_irq() error
     - Input: omap4-keypad - fix handling of platform_get_irq() error
     - Input: sun4i-ps2 - fix handling of platform_get_irq() error
     - KVM: x86: emulating RDPID failure shall return #UD rather than #GP
     - memory: omap-gpmc: Fix a couple off by ones
     - memory: fsl-corenet-cf: Fix handling of platform_get_irq() error
     - arm64: dts: zynqmp: Remove additional compatible string for i2c IPs
     - powerpc/powernv/opal-dump : Use IRQ_HANDLED instead of numbers in interrupt
       handler
     - powerpc/powernv/dump: Fix race while processing OPAL dump
     - media: firewire: fix memory leak
     - media: ati_remote: sanity check for both endpoints
     - media: exynos4-is: Fix several reference count leaks due to
       pm_runtime_get_sync
     - media: exynos4-is: Fix a reference count leak due to pm_runtime_get_sync
     - media: exynos4-is: Fix a reference count leak
     - media: b

 linux-kvm (4.4.0-1081.89) xenial; urgency=medium
 .
   * xenial/linux-kvm: 4.4.0-1081.89 -proposed tracker (LP: #1896059)
 .
   [ Ubuntu: 4.4.0-191.221 ]
 .
   * xenial/linux: 4.4.0-191.221 -proposed tracker (LP: #1896067)
   * Novalink (mkvterm command failure) (LP: #1892546)
     - tty: hvcs: Don't NULL tty->driver_data until hvcs_cleanup()
   * Xenial update: v4.4.236 upstream stable release (LP: #1895891)
     - HID: core: Correctly handle ReportSize being zero
     - HID: core: Sanitize event code and type when mapping input
     - perf record/stat: Explicitly call out event modifiers in the documentation
     - mm, page_alloc: remove unnecessary variable from free_pcppages_bulk
     - hwmon: (applesmc) check status earlier.
     - ceph: don't allow setlease on cephfs
     - s390: don't trace preemption in percpu macros
     - xen/xenbus: Fix granting of vmalloc'd memory
     - dmaengine: of-dma: Fix of_dma_router_xlate's of_dma_xlate handling
     - batman-adv: Avoid uninitialized chaddr when handling DHCP
     - batman-adv: bla: use netif_rx_ni when not in interrupt context
     - dmaengine: at_hdmac: check return value of of_find_device_by_node() in
       at_dma_xlate()
     - netfilter: nf_tables: incorrect enum nft_list_attributes definition
     - netfilter: nf_tables: fix destination register zeroing
     - dmaengine: pl330: Fix burst length if burst size is smaller than bus width
     - bnxt_en: Check for zero dir entries in NVRAM.
     - fix regression in "epoll: Keep a reference on files added to the check list"
     - tg3: Fix soft lockup when tg3_reset_task() fails.
     - iommu/vt-d: Serialize IOMMU GCMD register modifications
     - thermal: ti-soc-thermal: Fix bogus thermal shutdowns for omap4430
     - include/linux/log2.h: add missing () around n in roundup_pow_of_two()
     - btrfs: drop path before adding new uuid tree entry
     - btrfs: Remove redundant extent_buffer_get in get_old_root
     - btrfs: Remove extraneous extent_buffer_get from tree_mod_log_rewind
     - btrfs: set the lockdep class for log tree extent buffers
     - uaccess: Add non-pagefault user-space read functions
     - uaccess: Add non-pagefault user-space write function
     - btrfs: fix potential deadlock in the search ioctl
     - net: qmi_wwan: MDM9x30 specific power management
     - net: qmi_wwan: support "raw IP" mode
     - net: qmi_wwan: should hold RTNL while changing netdev type
     - net: qmi_wwan: ignore bogus CDC Union descriptors
     - Add Dell Wireless 5809e Gobi 4G HSPA+ Mobile Broadband Card (rev3) to
       qmi_wwan
     - qmi_wwan: Added support for Gemalto's Cinterion PHxx WWAN interface
     - qmi_wwan: add support for Quectel EC21 and EC25
     - NET: usb: qmi_wwan: add support for Telit LE922A PID 0x1040
     - drivers: net: usb: qmi_wwan: add QMI_QUIRK_SET_DTR for Telit PID 0x1201
     - usb: qmi_wwan: add D-Link DWM-222 A2 device ID
     - net: usb: qmi_wwan: add Telit ME910 support
     - net: usb: qmi_wwan: add Telit 0x1050 composition
     - ALSA: ca0106: fix error code handling
     - ALSA: pcm: oss: Remove superfluous WARN_ON() for mulaw sanity check
     - dm cache metadata: Avoid returning cmd->bm wild pointer on error
     - dm thin metadata: Avoid returning cmd->bm wild pointer on error
     - net: refactor bind_bucket fastreuse into helper
     - net: initialize fastreuse on inet_inherit_port
     - checkpatch: fix the usage of capture group ( ... )
     - mm/hugetlb: fix a race between hugetlb sysctl handlers
     - cfg80211: regulatory: reject invalid hints
     - net: usb: Fix uninit-was-stored issue in asix_read_phy_addr()
     - ALSA: firewire-digi00x: add support for console models of Digi00x series
     - ALSA: firewire-digi00x: exclude Avid Adrenaline from detection
     - ALSA; firewire-tascam: exclude Tascam FE-8 from detection
     - fs/affs: use octal for permissions
     - affs: fix basic permission bits to actually work
     - ravb: Fixed to be able to unload modules
     - net: ethernet: mlx4: Fix memory allocation in mlx4_buddy_init()
     - bnxt_en: Failure to update PHY is not fatal condition.
     - bnxt: don't enable NAPI until rings are ready
     - net: usb: dm9601: Add USB ID of Keenetic Plus DSL
     - sctp: not disable bh in the whole sctp_get_port_local()
     - net: disable netpoll on fresh napis
     - Linux 4.4.236
   * clock: overriding the clocksource should select the requested clocksource
     (LP: #1894591)
     - clocksource: Defer override invalidation unless clock is unstable
   * alsa/hdmi: the hdmi audio stops working from Ubuntu-4.4.0-155.182
     (LP: #1895603)
     - ALSA: hda/hdmi - Read the pin sense from register when repolling
     - SAUCE: ALSA: hda/hdmi - Check pin_eld->monitor_present
   * Xenial update: v4.4.235 upstream stable release (LP: #1895031)
     - net: Fix potential wrong skb->protocol in skb_vlan_untag()
     - tipc: fix uninit skb->data in tipc_nl_compat_dumpit()
     - ipvlan: fix device features
     - bonding: show saner speed for broadcast mode
     - bonding: fix a potential double-unregister
     - powerpc/pseries: Do not initiate shutdown when system is running on UPS
     - ALSA: pci: delete repeated words in comments
     - ASoC: tegra: Fix reference count leaks.
     - media: pci: ttpci: av7110: fix possible buffer overflow caused by bad DMA
       value in debiirq()
     - scsi: target: tcmu: Fix crash on ARM during cmd completion
     - drm/amdkfd: Fix reference count leaks.
     - drm/radeon: fix multiple reference count leak
     - drm/amdgpu: fix ref count leak in amdgpu_driver_open_kms
     - drm/amd/display: fix ref count leak in amdgpu_drm_ioctl
     - drm/amdgpu: fix ref count leak in amdgpu_display_crtc_set_config
     - drm/amdgpu/display: fix ref count leak when pm_runtime_get_sync fails
     - scsi: lpfc: Fix shost refcount mismatch when deleting vport
     - selftests/powerpc: Purge extra count_pmc() calls of ebb selftests
     - PCI: Fix pci_create_s

 linux-kvm (4.4.0-1080.87) xenial; urgency=medium
 .
   * xenial/linux-kvm: 4.4.0-1080.87 -proposed tracker (LP: #1893423)
 .
   [ Ubuntu: 4.4.0-190.220 ]
 .
   * xenial/linux: 4.4.0-190.220 -proposed tracker (LP: #1893431)
   * Packaging resync (LP: #1786013)
     - [Packaging] update helper scripts
   * [Hyper-V] VSS and File Copy daemons intermittently fails to start
     (LP: #1891224)
     - [Packaging] Bind hv_vss_daemon startup to hv_vss device
     - [Packaging] bind hv_fcopy_daemon startup to hv_fcopy device
   * CVE-2019-20811
     - net-sysfs: call dev_hold if kobject_init_and_add success
   * CVE-2020-0067
     - f2fs: fix to avoid memory leakage in f2fs_listxattr
   * CVE-2019-9453
     - f2fs: fix to avoid accessing xattr across the boundary
   * Xenial update: 4.4.233 upstream stable release (LP: #1892822)
     - media: rc: prevent memory leak in cx23888_ir_probe
     - ath9k_htc: release allocated buffer if timed out
     - ath9k: release allocated buffer if timed out
     - nfs: Move call to security_inode_listsecurity into nfs_listxattr
     - PCI/ASPM: Disable ASPM on ASMedia ASM1083/1085 PCIe-to-PCI bridge
     - drm/amdgpu: Prevent kernel-infoleak in amdgpu_info_ioctl()
     - drm: hold gem reference until object is no longer accessed
     - f2fs: check memory boundary by insane namelen
     - f2fs: check if file namelen exceeds max value
     - ARM: 8986/1: hw_breakpoint: Don't invoke overflow handler on uaccess
       watchpoints
     - fbdev: Detect integer underflow at "struct fbcon_ops"->clear_margins.
     - rds: Prevent kernel-infoleak in rds_notify_queue_get()
     - net/x25: Fix x25_neigh refcnt leak when x25 disconnect
     - net/x25: Fix null-ptr-deref in x25_disconnect
     - sh: Fix validation of system call number
     - net: lan78xx: add missing endpoint sanity check
     - net: lan78xx: fix transfer-buffer memory leak
     - mlxsw: core: Increase scope of RCU read-side critical section
     - mac80211: mesh: Free ie data when leaving mesh
     - nfc: s3fwrn5: add missing release on skb in s3fwrn5_recv_frame
     - net: ethernet: ravb: exit if re-initialization fails in tx timeout
     - Revert "i2c: cadence: Fix the hold bit setting"
     - xen-netfront: fix potential deadlock in xennet_remove()
     - x86/i8259: Use printk_deferred() to prevent deadlock
     - random32: update the net random state on interrupt and activity
     - ARM: percpu.h: fix build error
     - random: fix circular include dependency on arm64 after addition of percpu.h
     - random32: remove net_rand_state from the latent entropy gcc plugin
     - random32: move the pseudo-random 32-bit definitions to prandom.h
     - ext4: fix direct I/O read error
     - USB: serial: qcserial: add EM7305 QDL product ID
     - ALSA: seq: oss: Serialize ioctls
     - Bluetooth: Fix slab-out-of-bounds read in hci_extended_inquiry_result_evt()
     - Bluetooth: Prevent out-of-bounds read in hci_inquiry_result_evt()
     - Bluetooth: Prevent out-of-bounds read in hci_inquiry_result_with_rssi_evt()
     - vgacon: Fix for missing check in scrollback handling
     - mtd: properly check all write ioctls for permissions
     - net/9p: validate fds in p9_fd_open
     - drm/nouveau/fbcon: fix module unload when fbcon init has failed for some
       reason
     - cfg80211: check vendor command doit pointer before use
     - igb: reinit_locked() should be called with rtnl_lock
     - atm: fix atm_dev refcnt leaks in atmtcp_remove_persistent
     - tools lib traceevent: Fix memory leak in process_dynamic_array_len
     - binder: Prevent context manager from incrementing ref 0
     - ipv4: Silence suspicious RCU usage warning
     - ipv6: fix memory leaks on IPV6_ADDRFORM path
     - Revert "vxlan: fix tos value before xmit"
     - net: lan78xx: replace bogus endpoint lookup
     - usb: hso: check for return value in hso_serial_common_create()
     - vxlan: Ensure FDB dump is performed under RCU
     - Smack: fix use-after-free in smk_write_relabel_self()
     - tracepoint: Mark __tracepoint_string's __used
     - udp: drop corrupt packets earlier to avoid data corruption
     - gpio: fix oops resulting from calling of_get_named_gpio(NULL, ...)
     - EDAC: Fix reference count leaks
     - m68k: mac: Don't send IOP message until channel is idle
     - m68k: mac: Fix IOP status/control register writes
     - ARM: at91: pm: add missing put_device() call in at91_pm_sram_init()
     - ARM: socfpga: PM: add missing put_device() call in
       socfpga_setup_ocram_self_refresh()
     - drm/tilcdc: fix leak & null ref in panel_connector_get_modes
     - Bluetooth: add a mutex lock to avoid UAF in do_enale_set
     - fs/btrfs: Add cond_resched() for try_release_extent_mapping() stalls
     - drm/radeon: Fix reference count leaks caused by pm_runtime_get_sync
     - video: fbdev: neofb: fix memory leak in neo_scan_monitor()
     - drm/nouveau: fix multiple instances of reference count leaks
     - drm/debugfs: fix plain echo to connector "force" attribute
     - mm/mmap.c: Add cond_resched() for exit_mmap() CPU stalls
     - brcmfmac: To fix Bss Info flag definition Bug
     - iwlegacy: Check the return value of pcie_capability_read_*()
     - usb: gadget: net2280: fix memory leak on probe error handling paths
     - bdc: Fix bug causing crash after multiple disconnects
     - dyndbg: fix a BUG_ON in ddebug_describe_flags
     - bcache: fix super block seq numbers comparision in register_cache_set()
     - ACPICA: Do not increment operation_region reference counts for field units
     - agp/intel: Fix a memory leak on module initialisation failure
     - video: fbdev: sm712fb: fix an issue about iounmap for a wrong address
     - console: newport_con: fix an issue about leak related system resources
     - iio: improve IIO_CONCENTRATION channel type description
     - leds: lm355x: avoid enum conversion warning
     - media: omap3isp: Add missed v4l2_ctrl_handler_free() for
       preview_init_entities()