Package "linux-nvidia-tegra-tools-host"

  linux-nvidia-tegra (5.15.0-1025.25) jammy; urgency=medium

  * jammy/linux-nvidia-tegra: 5.15.0-1025.25 -proposed tracker (LP: #2063258)

  * apply NVIDIA patches April 6-16, 2024 (LP: #2061900)
    - NVIDIA: SAUCE: phy: xusb: Disable USB2 tracking for T234
    - NVIDIA: SAUCE: enable handling of macronix block protection
    - PCI: dwc: Restore MSI Receiver mask during resume

  * apply NVIDIA patches Mar 22 - April 5, 2024 (LP: #2060337)
    - NVIDIA: SAUCE: arm64: configs: enable hidraw
    - NVIDIA: SAUCE: PCI: tegra194: Fix probe path for Endpoint mode
    - NVIDIA: SAUCE: arm64: defconfig: Enable DMATEST
    - NVIDIA: SAUCE: arm64: configs: Enable CONFIG_CRYPTO_USER_API_* as module
    - NVIDIA: SAUCE: soc/tegra: fuse: Update Tegra234 nvmem keepout list
    - NVIDIA: SAUCE: soc/tegra: fuse: Remove security_mode fuse from keepout list
    - [Config] Enable DMATEST

 -- Jacob Martin <email address hidden> Tue, 23 Apr 2024 15:45:58 -0500

  linux-nvidia-tegra (5.15.0-1022.22) jammy; urgency=medium

  * jammy/linux-nvidia-tegra: 5.15.0-1022.22 -proposed tracker (LP: #2053284)

  * Packaging resync (LP: #1786013)
    - debian/dkms-versions -- update from kernel-versions (main/s2024.01.08)

  * apply nvidia-tegra patches 2024 Jan 16-Feb 5 (LP: #2052479)
    - NVIDIA: SAUCE: arm64: configs: enable CONFIG_IP_NF_TARGET_REDIRECT
    - NVIDIA: SAUCE: arm64: configs: Enable userspace I/O driver
    - NVIDIA: SAUCE: usb: gadget: tegra-xudc: Fix USB3 PHY retrieval logic
    - NVIDIA: SAUCE: arm64: configs: additional kubernetes related configs

  [ Ubuntu: 5.15.0-1055.62 ]

  * jammy/linux-realtime: 5.15.0-1055.62 -proposed tracker (LP: #2052611)
  * jammy/linux: 5.15.0-97.107 -proposed tracker (LP: #2052600)
  * Packaging resync (LP: #1786013)
    - [Packaging] update annotations scripts
  * partproke is broken on empty loopback device (LP: #2049689)
    - block: Move checking GENHD_FL_NO_PART to bdev_add_partition()
  * CVE-2023-51781
    - appletalk: Fix Use-After-Free in atalk_ioctl
  * CVE-2023-51780
    - atm: Fix Use-After-Free in do_vcc_ioctl
  * CVE-2023-6915
    - ida: Fix crash in ida_free when the bitmap is empty
  * CVE-2024-0565
    - smb: client: fix OOB in receive_encrypted_standard()
  * CVE-2024-0646
    - net: tls, update curr on splice as well

  [ Ubuntu: 5.15.0-1054.60 ]

  * jammy/linux-realtime: 5.15.0-1054.60 -proposed tracker (LP: #2048310)
  * Jammy real-time patch set update: v5.15.145-rt73 (LP: #2049522)
    - rcu/tree: Protect rcu_rdp_is_offloaded() invocations on RT
    - sched: Introduce migratable()
    - arm64: mm: Make arch_faults_on_old_pte() check for migratability
    - printk: rename printk cpulock API and always disable interrupts
    - console: add write_atomic interface
    - kdb: only use atomic consoles for output mirroring
    - serial: 8250: implement write_atomic
    - printk: relocate printk_delay()
    - printk: call boot_delay_msec() in printk_delay()
    - printk: use seqcount_latch for console_seq
    - printk: introduce kernel sync mode
    - printk: move console printing to kthreads
    - printk: add console handover
    - printk: add pr_flush()
    - printk: Enhance the condition check of msleep in pr_flush()
    - sched: Switch wait_task_inactive to HRTIMER_MODE_REL_HARD
    - kthread: Move prio/affinite change into the newly created thread
    - genirq: Move prio assignment into the newly created thread
    - genirq: Disable irqfixup/poll on PREEMPT_RT.
    - efi: Allow efi=runtime
    - mm: Disable zsmalloc on PREEMPT_RT
    - net/core: disable NET_RX_BUSY_POLL on PREEMPT_RT
    - samples/kfifo: Rename read_lock/write_lock
    - crypto: testmgr - Only disable migration in crypto_disable_simd_for_test()
    - mm: Allow only SLUB on PREEMPT_RT
    - mm: page_alloc: Use migrate_disable() in drain_local_pages_wq()
    - mm/scatterlist: Replace the !preemptible warning in sg_miter_stop()
    - mm: Disable NUMA_BALANCING_DEFAULT_ENABLED and TRANSPARENT_HUGEPAGE on
      PREEMPT_RT
    - x86/softirq: Disable softirq stacks on PREEMPT_RT
    - Documentation/kcov: Include types.h in the example.
    - Documentation/kcov: Define `ip' in the example.
    - kcov: Allocate per-CPU memory on the relevant node.
    - kcov: Avoid enable+disable interrupts if !in_task().
    - kcov: Replace local_irq_save() with a local_lock_t.
    - net/sched: sch_ets: properly init all active DRR list handles
    - gen_stats: Add instead Set the value in __gnet_stats_copy_basic().
    - gen_stats: Add gnet_stats_add_queue().
    - mq, mqprio: Use gnet_stats_add_queue().
    - gen_stats: Move remaining users to gnet_stats_add_queue().
    - u64_stats: Introduce u64_stats_set()
    - net: sched: Protect Qdisc::bstats with u64_stats
    - net: sched: Use _bstats_update/set() instead of raw writes
    - net: sched: Merge Qdisc::bstats and Qdisc::cpu_bstats data types
    - net: sched: Remove Qdisc::running sequence counter
    - net: sched: Allow statistics reads from softirq.
    - net: sched: fix logic error in qdisc_run_begin()
    - net: sched: remove one pair of atomic operations
    - net: stats: Read the statistics in ___gnet_stats_copy_basic() instead of
      adding.
    - net: sched: gred: dynamically allocate tc_gred_qopt_offload
    - sched/rt: Annotate the RT balancing logic irqwork as IRQ_WORK_HARD_IRQ
    - irq_work: Allow irq_work_sync() to sleep if irq_work() no IRQ support.
    - irq_work: Handle some irq_work in a per-CPU thread on PREEMPT_RT
    - irq_work: Also rcuwait for !IRQ_WORK_HARD_IRQ on PREEMPT_RT
    - irq_poll: Use raise_softirq_irqoff() in cpu_dead notifier
    - smp: Wake ksoftirqd on PREEMPT_RT instead do_softirq().
    - fs/namespace: Boost the mount_lock.lock owner instead of spinning on
      PREEMPT_RT.
    - fscache: Use only one fscache_object_cong_wait.
    - sched: Clean up the might_sleep() underscore zoo
    - sched: Make cond_resched_*lock() variants consistent vs. might_sleep()
    - sched: Remove preempt_offset argument from __might_sleep()
    - sched: Cleanup might_sleep() printks
    - sched: Make might_sleep() output less confusing
    - sched: Make RCU nest depth distinct in __might_resched()
    - sched: Make cond_resched_lock() variants RT aware
    - locking/rt: Take RCU nesting into account for __might_resched()
    - sched: Limit the number of task migrations per batch on RT
    - sched: Disable TTWU_QUEUE on RT
    - sched: Move kprobes cleanup out of finish_task_switch()
    - sched: Delay task stack freeing on RT
    - sched: Move mmdrop to RCU on RT
    - cgroup: use irqsave in cgroup_rstat_flush_locked()
    - mm: workingset: replace IRQ-off check with a lockdep assert.
    - jump-label: disable if stop_machine() is used
    - locking: Remove rt_rwlock_is_contended()
    - lockdep/selftests: Avoid using local_lock_{acquire|release}().
    - sched: Trigger warning if ->migration_disabled counter underflows.
    - rtmutex: Add a special case for ww-

  linux-nvidia-tegra (5.15.0-1021.21) jammy; urgency=medium

  * jammy/linux-nvidia-tegra: 5.15.0-1021.21 -proposed tracker (LP: #2049525)

  * apply nvidia-tegra patches 2024 Jan 1-15 (LP: #2049536)
    - NVIDIA: SAUCE: mmc: host: restrict min clk rate to 20MHz
    - NVIDIA: SAUCE: arm64: configs: enable PCIe ethernet
    - NVIDIA: SAUCE: mmc: sdhci-tegra: do not set padpipe_clk_override
    - NVIDIA: SAUCE: arm64: configs: Sanitize defconfig
    - NVIDIA: SAUCE: clocksource/drivers/timer-tegra186: add WDIOC_GETTIMELEFT
      support
    - NVIDIA: SAUCE: clocksource/drivers/timer-tegra186: fix watchdog self-
      pinging.
    - NVIDIA: SAUCE: arm64: configs: enable CONFIG_DMI
    - NVIDIA: SAUCE: mmc: sdhci-tegra: Enable wake on SD card event
    - NVIDIA: SAUCE: mmc: core: Update bus status on sd card removal
    - [Config] Re-enable CONFIG_DMI

  * apply nvidia igx patches for Nov 29 - Dec 8 2023 (LP: #2046011)
    - NVIDIA: SAUCE: arm64: configs: disable pps debug config
    - NVIDIA: SAUCE: net: phy: aquantia: Poll for valid FW ID.

  * apply nvidia igx patches for Oct 19 - Nov 28 2023 (LP: #2045080)
    - NVIDIA: SAUCE: arm64: configs: Sanitize arm64 defconfig
    - NVIDIA: SAUCE: arm64: configs: enable cfs bandwidth for k8s
    - NVIDIA: SAUCE: arm64: config: Disable DMI config

  * apply nvidia igx patches for Sep 20-29 (LP: #2038165)
    - drm/format-helper: Add drm_fb_xrgb8888_to_rgb332()
    - drm/format-helper: Add drm_fb_xrgb8888_to_rgb888()
    - drm/gud: Add GUD_PIXEL_FORMAT_R8
    - drm/gud: Add GUD_PIXEL_FORMAT_RGB332
    - drm/gud: Add GUD_PIXEL_FORMAT_RGB888
    - drm/format-helper: Export drm_fb_clip_offset()
    - drm/format-helper: Rework format-helper memcpy functions
    - drm/format-helper: Add destination-buffer pitch to drm_fb_swab()
    - drm/format-helper: Rework format-helper conversion functions
    - drm/format-helper: Streamline blit-helper interface
    - drm/simpledrm: Enable FB_DAMAGE_CLIPS property
    - drm/simpledrm: Support virtual screen sizes
    - drm/format-helper: Add drm_fb_xrgb8888_to_xrgb2101010_toio()
    - drm/simpledrm: Add [AX]RGB2101010 formats
    - drm/simpledrm: Request memory region in driver
    - drm/format-helper: Add drm_fb_xrgb8888_to_gray8_line()
    - drm/format-helper: Add drm_fb_xrgb8888_to_mono_reversed()
    - drm/repaper: Use format helper for xrgb8888 to monochrome conversion
    - drm/simpledrm: Use fbdev defaults for shadow buffering
    - drm/format-helper: Rename drm_fb_xrgb8888_to_mono_reversed()
    - drm/format-helper: Fix XRGB888 to monochrome conversion
    - drm/format_helper: fix a kernel-doc typo
    - drm/format-helper: Print warning on missing format conversion
    - drm/format-helper: Add RGB888-to-XRGB8888 conversion
    - drm/format-helper: Add RGB565-to-XRGB8888 conversion
    - drm/format-helper: Implement drm_fb_swab() with per-line helpers
    - drm/format-helper: Remove optional byte-swap from line convertion
    - drm/format-helper: Unify the parameters of all per-line conversion helpers
    - drm/format-helper: Share implementation among conversion helpers
    - drm/atomic-helper: Add helper drm_atomic_helper_check_crtc_state()
    - drm/fourcc: Add drm_format_info_bpp() helper
    - drm/format-helper: Fix endianness in drm_fb_*_to_*() conversion helpers
    - drm/simpledrm: Remove mem field from device structure
    - drm/simpledrm: Inline device-init helpers
    - drm/simpledrm: Remove pdev field from device structure
    - drm/simpledrm: Compute framebuffer stride if not set
    - drm/simpledrm: Convert to atomic helpers
    - drm/format-helper: Provide drm_fb_blit()
    - drm/format-helper: Add drm_fb_build_fourcc_list() helper
    - drm/simpledrm: Compute linestride with drm_format_info_min_pitch()
    - drm/simpledrm: Use drm_atomic_get_new_plane_state()
    - drm/simpledrm: Remove !fb check from atomic_update
    - drm/simpledrm: Iterate over damage clips
    - drm/simpledrm: Synchronize access to GEM BOs
    - drm/simpledrm: Set preferred depth from format of scanout buffer
    - drm/simpledrm: Use struct iosys_map consistently
    - drm/simpledrm: Add support for system memory framebuffers
    - drm/simpledrm: Fix an NULL vs IS_ERR() bug

  * apply nvidia igx patches for Aug 29 - Sep 19 (LP: #2036672)
    - NVIDIA: SAUCE: arm64: configs: Sanitize arm64 defconfig
    - NVIDIA: SAUCE: arch: arm64: enable FB_SIMPLE config
    - NVIDIA: SAUCE: (no-up) mm: mprotect: Avoid write-fault handler for dirty
      written PTEs

  * Apply 2023-07-20 + 2023-07-31 IGX PRs from NVIDIA (LP: #2029295)
    - SAUCE: arm64: defconfig: enable CONFIG_ISO9660_FS

  * apply nvidia-tegra patches for Jan 16 (LP: #2049530)
    - NVIDIA: SAUCE: tegra-epl: Set handshake retry count to 20
    - NVIDIA: SAUCE: tegra-epl: publish kernel pm state to FSI
    - NVIDIA: SAUCE: tegra-epl: Set default handshake retry count to 25
    - NVIDIA: SAUCE: arm64: configs: enable pps client configs
    - NVIDIA: SAUCE: arm64: configs: enable NTFS fs
    - NVIDIA: SAUCE: Revert "mmc: host: Apply post auto-tuning correction"

  [ Ubuntu: 5.15.0-1053.59 ]

  * jammy/linux-realtime: 5.15.0-1053.59 -proposed tracker (LP: #2048594)
  * Packaging resync (LP: #1786013)
    - [Packaging] remove helper scripts
  * jammy/linux: 5.15.0-92.102 -proposed tracker (LP: #2048614)
  * Packaging resync (LP: #1786013)
    - [Packaging] resync git-ubuntu-log
  * CVE-2024-0193
    - netfilter: nf_tables: skip set commit for deleted/destroyed sets
  * CVE-2023-6040
    - netfilter: nf_tables: Reject tables of unsupported family
  * CVE-2023-6606
    - smb: client: fix OOB in smbCalcSize()
  * CVE-2023-6817
    - netfilter: nft_set_pipapo: skip inactive elements during set walk
  * CVE-2023-6932
    - ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet
  * CVE-2023-6931
    - perf/core: Add a new read format to get a number of lost samples
    - perf: Fix perf_event_validate_size()
    - perf: Fix perf_event_validate_size() lockdep splat

 -

  linux-nvidia-tegra (5.15.0-1020.20) jammy; urgency=medium

  * jammy/linux-nvidia-tegra: 5.15.0-1020.20 -proposed tracker (LP: #2045981)

  * NVIDIA pull request 1018-002v1, 1018-003v1, 1018-004v1 (LP: #2042935)
    - NVIDIA: SAUCE: arm64: config: Enable BRCMFMAC driver
    - NVIDIA: SAUCE: memory: tegra: Add client for RCE in Tegra234
    - NVIDIA: SAUCE: phy: xusb-tegra186: No redundant pad control
    - usb: typec: ucsi: don't print PPM init deferred errors
    - NVIDIA: SAUCE: arm64: configs: enable NTFS fs
    - NVIDIA: SAUCE: Remove support for summation channel control
    - NVIDIA: SAUCE: hwmon: ina3221: Add support for channel summation disable
    - mmc: sdhci-tegra: Add runtime PM and OPP support
    - [Config] linux-nvidia-tegra: set CONFIG_NTFS_FS as built-in
    - NVIDIA: SAUCE: aquantia: issue PHY reset during phy init
    - NVIDIA: SAUCE: arm: configs: enable QFMT_V2 for quota
    - NVIDIA: SAUCE: arm64: configs: disable LOGO
    - NVIDIA: SAUCE: arm64: config: Disable DMI config
    - NVIDIA: SAUCE: platform: tegra: Add new config TEGRA_PROD_LEGACY
    - NVIDIA: SAUCE: configs: defconfig: enable TPM configs
    - [Config] linux-nvidia-tegra: Integrate config changes
    - NVIDIA: SAUCE: arm64: configs: Sanitize arm64 defconfig
    - NVIDIA: SAUCE: arm64: configs: Enable NFS server support
    - NVIDIA: SAUCE: arm64: configs: Enable dm_multipath driver
    - NVIDIA: SAUCE: arm64: configs: enable few matches for netfliter
    - NVIDIA: SAUCE: pinctrl: tegra: Set SFIO mode to Mux Register
    - Revert "pinctrl: tegra: Add support to display pin function"
    - pinctrl: tegra: Display pin function in pinconf-groups
    - [Packaging] linux-nvidia-tegra: remove dmi-sysfs and surface_gpe

  * usbip: error: failed to open /usr/share/hwdata//usb.ids (LP: #2039439)
    - [Packaging] Make linux-tools-common depend on hwdata

  * Packaging resync (LP: #1786013)
    - [Packaging] remove helper scripts

  [ Ubuntu: 5.15.0-1052.58 ]

  * jammy/linux-realtime: 5.15.0-1052.58 -proposed tracker (LP: #2041583)
  * usbip: error: failed to open /usr/share/hwdata//usb.ids (LP: #2039439)
    - [Packaging] Make linux-tools-common depend on hwdata
  * Packaging resync (LP: #1786013)
    - [Packaging] resync git-ubuntu-log
    - [Packaging] resync update-dkms-versions helper
  * jammy/linux: 5.15.0-91.101 -proposed tracker (LP: #2043452)
  * USB bus error after upgrading to proposed kernel on lunar and jammy
    (LP: #2043197)
    - USB: core: Fix oversight in SuperSpeed initialization
  * jammy/linux: 5.15.0-90.100 -proposed tracker (LP: #2041603)
  * CVE-2023-25775
    - RDMA/irdma: Remove irdma_uk_mw_bind()
    - RDMA/irdma: Remove irdma_sc_send_lsmm_nostag()
    - RDMA/irdma: Remove irdma_cqp_up_map_cmd()
    - RDMA/irdma: Remove irdma_get_hw_addr()
    - RDMA/irdma: Make irdma_uk_cq_init() return a void
    - RDMA/irdma: optimize rx path by removing unnecessary copy
    - RDMA/irdma: Remove enum irdma_status_code
    - RDMA/irdma: Remove excess error variables
    - RDMA/irdma: Prevent zero-length STAG registration
  * CVE-2023-39189
    - netfilter: nfnetlink_osf: avoid OOB read
  * SMC stats: Wrong bucket calculation for payload of exactly 4096 bytes
    (LP: #2039575)
    - net/smc: Fix pos miscalculation in statistics
  * CVE-2023-45871
    - igb: set max size RX buffer when store bad packet is enabled
  * CVE-2023-39193
    - netfilter: xt_sctp: validate the flag_info count
  * CVE-2023-39192
    - netfilter: xt_u32: validate user space input
  * CVE-2023-31085
    - ubi: Refuse attaching if mtd's erasesize is 0
  * CVE-2023-5717
    - perf: Disallow mis-matched inherited group reads
  * CVE-2023-5178
    - nvmet-tcp: Fix a possible UAF in queue intialization setup
  * CVE-2023-5158
    - vringh: don't use vringh_kiov_advance() in vringh_iov_xfer()
  * [SRU][J/L/M] UBUNTU: [Packaging] Make WWAN driver a loadable module
    (LP: #2033406)
    - [Packaging] Make WWAN driver loadable modules
  * HP ProBook 450 G8 Notebook fail to wifi test (LP: #2037513)
    - iwlwifi: mvm: Don't fail if PPAG isn't supported
    - wifi: iwlwifi: fw: skip PPAG for JF
  * usbip: error: failed to open /usr/share/hwdata//usb.ids (LP: #2039439)
    - [Packaging] Make linux-tools-common depend on hwdata
  * scripts/pahole-flags.sh change return to exit 0 (LP: #2035123)
    - SAUCE: scripts/pahole-flags.sh change return to exit 0
  * Unable to use nvme drive to install Ubuntu 23.10 (LP: #2040157)
    - misc: rtsx: Fix some platforms can not boot and move the l1ss judgment to
      probe
  * Jammy update: v5.15.131 upstream stable release (LP: #2039610)
    - erofs: ensure that the post-EOF tails are all zeroed
    - ksmbd: fix wrong DataOffset validation of create context
    - ksmbd: replace one-element array with flex-array member in struct
      smb2_ea_info
    - ARM: pxa: remove use of symbol_get()
    - mmc: au1xmmc: force non-modular build and remove symbol_get usage
    - net: enetc: use EXPORT_SYMBOL_GPL for enetc_phc_index
    - rtc: ds1685: use EXPORT_SYMBOL_GPL for ds1685_rtc_poweroff
    - modules: only allow symbol_get of EXPORT_SYMBOL_GPL modules
    - USB: serial: option: add Quectel EM05G variant (0x030e)
    - USB: serial: option: add FOXCONN T99W368/T99W373 product
    - ALSA: usb-audio: Fix init call orders for UAC1
    - usb: dwc3: meson-g12a: do post init to fix broken usb after resumption
    - usb: chipidea: imx: improve logic if samsung,picophy-* parameter is 0
    - HID: wacom: remove the battery when the EKR is off
    - staging: rtl8712: fix race condition
    - Bluetooth: btsdio: fix use after free bug in btsdio_remove due to race
      condition
    - wifi: mt76: mt7921: do not support one stream on secondary antenna only
    - serial: qcom-geni: fix opp vote on shutdown
    - serial: sc16is7xx: fix broken port 0 uart init
    - serial: sc16is7xx: fix bug when first setting GPIO direction
    - firmware: stratix10-svc: Fix an NULL vs IS_ERR() bug in probe
    - fsi: master-ast-cf:

  linux-nvidia-tegra (5.15.0-1019.19) jammy; urgency=medium

  * jammy/linux-nvidia-tegra: 5.15.0-1019.19 -proposed tracker (LP: #2041991)

  * NVIDIA pull requests 1017-001v3 (LP: #2034622)
    - NVIDIA: SAUCE: thermal: tegra-bpmp: Check if BPMP supports trip points
    - NVIDIA: SAUCE: simplefb: add support to parse fb-memory from DT
    - NVIDIA: SAUCE: memory: tegra: Add bpmp_id and type for nvdla
    - NVIDIA: SAUCE: memory: tegra: Add clients for VI in Tegra234
    - NVIDIA: SAUCE: mailbox: tegra-hsp: Add support for virtualization
    - NVIDIA: SAUCE: memory: tegra: Fix SID override
    - dma-buf: Update obsoluted comments on dma_buf_vmap/vunmap()
    - dma-buf-map: Rename to iosys-map
    - of: Move simple-framebuffer device handling from simplefb to of
    - iosys-map: Add offset to iosys_map_memcpy_to()
    - iosys-map: Add a few more helpers
    - NVIDIA: SAUCE: mtd: spi-nor: support for GD
    - NVIDIA: SAUCE: mmc: host: Apply post auto-tuning correction
    - NVIDIA: SAUCE: fs: eventpoll: Add smp_mb() before waitqueue_active
    - NVIDIA: SAUCE: crypto: tegra: Add Kconfig to support Tegra SE
    - drm/vgem: use shmem helpers
    - NVIDIA: SAUCE: dma-buf-map: Fix-up iosys-map integration
    - NVIDIA: SAUCE: arm64: configs: enable cifs
    - [Config] linux-nvidia-tegra: set CONFIG_CRYPTO_DEV_TEGRA=m

  * CVE-2023-42755
    - [Config] remove NET_CLS_RSVP and NET_CLS_RSVP6

  [ Ubuntu: 5.15.0-1050.56 ]

  * jammy/linux-realtime: 5.15.0-1050.56 -proposed tracker (LP: #2038035)
  * jammy/linux: 5.15.0-88.98 -proposed tracker (LP: #2038055)
  * CVE-2023-4244
    - netfilter: nf_tables: don't skip expired elements during walk
    - netfilter: nf_tables: adapt set backend to use GC transaction API
    - netfilter: nft_set_hash: mark set element as dead when deleting from packet
      path
    - netfilter: nf_tables: GC transaction API to avoid race with control plane
    - netfilter: nf_tables: remove busy mark and gc batch API
    - netfilter: nf_tables: don't fail inserts if duplicate has expired
    - netfilter: nf_tables: fix kdoc warnings after gc rework
    - netfilter: nf_tables: fix GC transaction races with netns and netlink event
      exit path
    - netfilter: nf_tables: GC transaction race with netns dismantle
    - netfilter: nf_tables: GC transaction race with abort path
    - netfilter: nf_tables: use correct lock to protect gc_list
    - netfilter: nf_tables: defer gc run if previous batch is still pending
    - netfilter: nft_dynset: disallow object maps
    - netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction
  * CVE-2023-42756
    - netfilter: ipset: Fix race between IPSET_CMD_CREATE and IPSET_CMD_SWAP
  * CVE-2023-4623
    - net/sched: sch_hfsc: Ensure inner classes have fsc curve
  * PCI BARs larger than 128GB are disabled (LP: #2037403)
    - PCI: Support BAR sizes up to 8TB
  * Fix unstable audio at low levels on Thinkpad P1G4 (LP: #2037077)
    - ALSA: hda/realtek - ALC287 I2S speaker platform support
  * Check for changes relevant for security certifications (LP: #1945989)
    - [Packaging] Add a new fips-checks script
  * Jammy update: v5.15.126 upstream stable release (LP: #2037593)
    - io_uring: gate iowait schedule on having pending requests
    - perf: Fix function pointer case
    - net/mlx5: Free irqs only on shutdown callback
    - arm64: errata: Add workaround for TSB flush failures
    - arm64: errata: Add detection for TRBE write to out-of-range
    - [Config] updateconfigs for ARM64_ERRATUM_ and
      ARM64_WORKAROUND_TSB_FLUSH_FAILURE
    - iommu/arm-smmu-v3: Work around MMU-600 erratum 1076982
    - iommu/arm-smmu-v3: Document MMU-700 erratum 2812531
    - iommu/arm-smmu-v3: Add explicit feature for nesting
    - iommu/arm-smmu-v3: Document nesting-related errata
    - arm64: dts: imx8mn-var-som: add missing pull-up for onboard PHY reset pinmux
    - word-at-a-time: use the same return type for has_zero regardless of
      endianness
    - KVM: s390: fix sthyi error handling
    - wifi: cfg80211: Fix return value in scan logic
    - net/mlx5: DR, fix memory leak in mlx5dr_cmd_create_reformat_ctx
    - net/mlx5e: fix return value check in mlx5e_ipsec_remove_trailer()
    - bpf: Add length check for SK_DIAG_BPF_STORAGE_REQ_MAP_FD parsing
    - rtnetlink: let rtnl_bridge_setlink checks IFLA_BRIDGE_MODE length
    - net: dsa: fix value check in bcm_sf2_sw_probe()
    - perf test uprobe_from_different_cu: Skip if there is no gcc
    - net: sched: cls_u32: Fix match key mis-addressing
    - mISDN: hfcpci: Fix potential deadlock on &hc->lock
    - qed: Fix kernel-doc warnings
    - qed: Fix scheduling in a tasklet while getting stats
    - net: annotate data-races around sk->sk_max_pacing_rate
    - net: add missing READ_ONCE(sk->sk_rcvlowat) annotation
    - net: add missing READ_ONCE(sk->sk_sndbuf) annotation
    - net: add missing READ_ONCE(sk->sk_rcvbuf) annotation
    - net: add missing data-race annotations around sk->sk_peek_off
    - net: add missing data-race annotation for sk_ll_usec
    - net/sched: taprio: Limit TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME to INT_MAX.
    - bpf, cpumap: Handle skb as well when clean up ptr_ring
    - bpf: sockmap: Remove preempt_disable in sock_map_sk_acquire
    - net: ll_temac: Switch to use dev_err_probe() helper
    - net: ll_temac: fix error checking of irq_of_parse_and_map()
    - net: korina: handle clk prepare error in korina_probe()
    - net: netsec: Ignore 'phy-mode' on SynQuacer in DT mode
    - net: dcb: choose correct policy to parse DCB_ATTR_BCN
    - s390/qeth: Don't call dev_close/dev_open (DOWN/UP)
    - ip6mr: Fix skb_under_panic in ip6mr_cache_report()
    - vxlan: Fix nexthop hash size
    - net/mlx5: fs_core: Make find_closest_ft more generic
    - net/mlx5: fs_core: Skip the FTs in the same FS_TYPE_PRIO_CHAINS fs_prio
    - prestera: fix fallback to previous version on same major version
    - tcp_metrics: fix addr_same() helper
    - tcp_metric