1. Forum
  2. Usenet
  3. LINUX.DEBIAN.CHANGES

  • Accepted linux 6.1.119-1 (source) into proposed-updates

    From Debian FTP Masters@21:1/5 to All on Mon Nov 25 11:50:01 2024
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    Format: 1.8
    Date: Fri, 22 Nov 2024 23:27:23 +0100
    Source: linux
    Architecture: source
    Version: 6.1.119-1
    Distribution: bookworm-security
    Urgency: high
    Maintainer: Debian Kernel Team <debian-kernel@lists.debian.org>
    Changed-By: Salvatore Bonaccorso <carnil@debian.org>
    Closes: 1062421 1085762 1086447 1087602
    Changes:
    linux (6.1.119-1) bookworm-security; urgency=high
    .
    * New upstream stable update:
    https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.116
    - cpufreq: Generalize of_perf_domain_get_sharing_cpumask phandle format
    - cpufreq: Avoid a bad reference count on CPU node (CVE-2024-50012)
    - mm: remove kern_addr_valid() completely
    - fs/proc/kcore: avoid bounce buffer for ktext data
    - fs/proc/kcore: convert read_kcore() to read_kcore_iter()
    - fs/proc/kcore: reinstate bounce buffer for KCORE_TEXT regions
    - fs/proc/kcore.c: allow translation of physical memory addresses
    - cgroup: Fix potential overflow issue when checking max_depth
    - wifi: iwlegacy: Fix "field-spanning write" warning in il_enqueue_hcmd()
    (Closes: #1062421)
    - mac80211: MAC80211_MESSAGE_TRACING should depend on TRACING
    - wifi: mac80211: skip non-uploaded keys in ieee80211_iter_keys
    - wifi: ath11k: Fix invalid ring usage in full monitor mode
    - wifi: brcm80211: BRCM_TRACING should depend on TRACING
    - RDMA/cxgb4: Dump vendor specific QP details
    - RDMA/mlx5: Round max_rd_atomic/max_dest_rd_atomic up instead of down
    - RDMA/bnxt_re: synchronize the qp-handle table array
    - wifi: iwlwifi: mvm: disconnect station vifs if recovery failed
    - wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd()
    (CVE-2024-53059)
    - [armel,armhf] ASoC: cs42l51: Fix some error handling paths in
    cs42l51_probe()
    - macsec: Fix use-after-free while sending the offloading packet
    (CVE-2024-50261)
    - net: stmmac: TSO: Fix unbalanced DMA map/unmap for non-paged SKB data
    (CVE-2024-53058)
    - ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_init_flow()
    (CVE-2024-53042)
    - gtp: allow -1 to be specified as file description from userspace
    - net/sched: stop qdisc_tree_reduce_backlog on TC_H_ROOT (CVE-2024-53057)
    - netdevsim: Add trailing zero to terminate the string in
    nsim_nexthop_bucket_activity_write() (CVE-2024-50259)
    - bpf: Fix out-of-bounds write in trie_get_next_key() (CVE-2024-50262)
    - netfilter: Fix use-after-free in get_info() (CVE-2024-50257)
    - netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()
    (CVE-2024-50256)
    - Bluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs
    (CVE-2024-50255)
    - net: skip offload for NETIF_F_IPV6_CSUM if ipv6 header contains extension
    - netfilter: nft_payload: sanitize offset and length before calling
    skb_checksum() (CVE-2024-50251)
    - iomap: convert iomap_unshare_iter to use large folios
    - iomap: improve shared block detection in iomap_unshare_iter
    - iomap: don't bother unsharing delalloc extents
    - iomap: share iomap_unshare_iter predicate code with fsdax
    - fsdax: remove zeroing code from dax_unshare_iter
    - fsdax: dax_unshare_iter needs to copy entire blocks (CVE-2024-50250)
    - iomap: turn iomap_want_unshare_iter into an inline function
    - compiler-gcc: be consistent with underscores use for `no_sanitize`
    - compiler-gcc: remove attribute support check for `__no_sanitize_address__`
    - afs: Automatically generate trace tag enums
    - afs: Fix missing subdir edit when renamed between parent dirs
    - ACPI: CPPC: Make rmw_lock a raw_spin_lock (CVE-2024-50249)
    - fs/ntfs3: Check if more than chunk-size bytes are written (CVE-2024-50247)
    - fs/ntfs3: Fix warning possible deadlock in ntfs_set_state
    - fs/ntfs3: Stale inode instead of bad
    - fs/ntfs3: Fix possible deadlock in mi_read (CVE-2024-50245)
    - fs/ntfs3: Additional check in ni_clear() (CVE-2024-50244)
    - scsi: scsi_transport_fc: Allow setting rport state to current state
    - net: amd: mvme147: Fix probe banner message
    - NFS: remove revoked delegation from server's delegation list
    - misc: sgi-gru: Don't disable preemption in GRU driver
    - usb: gadget: dummy_hcd: Switch to hrtimer transfer scheduler
    - usb: gadget: dummy_hcd: Set transfer interval to 1 microframe
    - usb: gadget: dummy_hcd: execute hrtimer callback in softirq context
    - USB: gadget: dummy-hcd: Fix "task hung" problem
    - ALSA: usb-audio: Add quirks for Dell WD19 dock
    - usbip: tools: Fix detach_port() invalid port error path
    - usb: phy: Fix API devm_usb_put_phy() can not release the phy
    - usb: typec: fix unreleased fwnode_handle in typec_port_register_altmodes()
    - xhci: Fix Link TRB DMA in command ring stopped completion event
    - xhci: Use pm_runtime_get to prevent RPM on unsupported systems
    - Revert "driver core: Fix uevent_show() vs driver detach race"
    - wifi: mac80211: do not pass a stopped vif to the driver in .get_txpower
    (CVE-2024-50237)
    - wifi: ath10k: Fix memory leak in management tx (CVE-2024-50236)
    - wifi: cfg80211: clear wdev->cqm_config pointer on free (CVE-2024-50235)
    - wifi: iwlegacy: Clear stale interrupts before resuming device
    (CVE-2024-50234)
    - iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr()
    (CVE-2024-50232)
    - iio: light: veml6030: fix microlux value calculation
    - nilfs2: fix potential deadlock with newly created symlinks
    (CVE-2024-50229)
    - block: fix sanity checks in blk_rq_map_user_bvec
    - cgroup/bpf: use a dedicated workqueue for cgroup bpf destruction
    (CVE-2024-53054)
    - ALSA: hda/realtek: Limit internal Mic boost on Dell platform
    - cxl/acpi: Move rescan to the workqueue
    - cxl/port: Fix cxl_bus_rescan() vs bus_rescan_devices()
    - mm/page_alloc: rename ALLOC_HIGH to ALLOC_MIN_RESERVE
    - mm/page_alloc: treat RT tasks similar to __GFP_HIGH
    - mm/page_alloc: explicitly record high-order atomic allocations in
    alloc_flags
    - mm/page_alloc: explicitly define what alloc flags deplete min reserves
    - mm/page_alloc: explicitly define how __GFP_HIGH non-blocking allocations
    accesses reserves
    - mm/page_alloc: let GFP_ATOMIC order-0 allocs access highatomic reserves
    - ocfs2: pass u64 to ocfs2_truncate_inline maybe overflow (CVE-2024-50218)
    - mctp i2c: handle NULL header address (CVE-2024-53043)
    - ALSA: hda/realtek: Fix headset mic on TUXEDO Stellaris 16 Gen6 mb1
    - nvmet-auth: assign dh_key to NULL after kfree_sensitive (CVE-2024-50215)
    - io_uring: rename kiocb_end_write() local helper
    - fs: create kiocb_{start,end}_write() helpers
    - io_uring: use kiocb_{start,end}_write() helpers
    - io_uring/rw: fix missing NOWAIT check for O_DIRECT start write
    (CVE-2024-53052)
    - mm: migrate: try again if THP split is failed due to page refcnt
    - migrate: convert unmap_and_move() to use folios
    - migrate: convert migrate_pages() to use folios
    - mm/migrate.c: stop using 0 as NULL pointer
    - migrate_pages: organize stats with struct migrate_pages_stats
    - migrate_pages: separate hugetlb folios migration
    - migrate_pages: restrict number of pages to migrate in batch
    - migrate_pages: split unmap_and_move() to _unmap() and _move()
    - vmscan,migrate: fix page count imbalance on node stats when demoting pages
    - io_uring: always lock __io_cqring_overflow_flush (Closes: #1087602)
    - [x86] bugs: Use code segment selector for VERW operand (CVE-2024-50072)
    - wifi: mac80211: fix NULL dereference at band check in starting tx ba
    session (CVE-2024-43911)
    - nilfs2: fix kernel bug due to missing clearing of checked flag
    (CVE-2024-50230)
    - wifi: iwlwifi: mvm: fix 6 GHz scan construction (CVE-2024-53055)
    - mm: shmem: fix data-race in shmem_getattr() (CVE-2024-50228)
    - mtd: spi-nor: winbond: fix w25q128 regression
    - drm/amd/display: Add null checks for 'stream' and 'plane' before
    dereferencing (CVE-2024-43904)
    - drm/amd/display: Skip on writeback when it's not applicable
    (CVE-2024-36914)
    - vt: prevent kernel-infoleak in con_font_get()
    - mm: avoid gcc complaint about pointer casting
    - migrate_pages_batch: fix statistics for longterm pin retry
    https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.117
    - [arm64] dts: rockchip: Fix rt5651 compatible value on rk3399-eaidk-610
    - [arm64] dts: rockchip: Fix rt5651 compatible value on
    rk3399-sapphire-excavator
    - [arm64] dts: rockchip: Remove hdmi's 2nd interrupt on rk3328
    - [arm64] dts: rockchip: Fix wakeup prop names on PineNote BT node
    - [arm64] dts: rockchip: Fix bluetooth properties on Rock960 boards
    - [arm64] dts: rockchip: Remove #cooling-cells from fan on Theobroma lion
    - [arm64] dts: rockchip: Fix LED triggers on rk3308-roc-cc
    - [arm64] dts: imx8qm: Fix VPU core alias name
    - [arm64] dts: imx8qxp: Add VPU subsystem file
    - [arm64] dts: imx8-ss-vpu: Fix imx8qm VPU IRQs
    - [arm64] dts: imx8mp: correct sdhc ipg clk
    - [armhf] ARM: dts: rockchip: Fix the realtek audio codec on rk3036-kylin
    - HID: core: zero-initialize the report buffer (CVE-2024-50302)
    - [x86] platform/x86/amd/pmc: Detect when STB is not available
    (CVE-2024-53072)
    - sunrpc: handle -ENOTCONN in xs_tcp_setup_socket()
    - NFSv3: only use NFS timeout for MOUNT when protocols are compatible
    - NFSv3: handle out-of-order write replies.
    - nfs: avoid i_lock contention in nfs_clear_invalid_mapping
    - security/keys: fix slab-out-of-bounds in key_task_permission
    (CVE-2024-50301)
    - [arm64] net: enetc: set MAC address to the VF net_device
    - sctp: properly validate chunk size in sctp_sf_ootb() (CVE-2024-50299)
    - can: c_can: fix {rx,tx}_errors statistics
    - ice: change q_index variable type to s16 to store -1 value
    - i40e: fix race condition by adding filter's intermediate sync state
    (CVE-2024-53088)
    - [arm64] net: hns3: fix kernel crash when uninstalling driver
    (CVE-2024-50296)
    - net: phy: ti: add PHY_RST_AFTER_CLK_EN flag
    - net: stmmac: Fix unbalanced IRQ wake disable warning on single irq case
    - virtio_net: Add hash_key_length check (CVE-2024-53082)
    - Revert "ALSA: hda/conexant: Mute speakers at suspend / shutdown"
    - media: stb0899_algo: initialize cfr before using it
    - media: dvbdev: prevent the risk of out of memory access (CVE-2024-53063)
    - media: dvb_frontend: don't play tricks with underflow values
    - media: adv7604: prevent underflow condition when reporting colorspace
    - scsi: sd_zbc: Use kvzalloc() to allocate REPORT ZONES buffer
    - ALSA: firewire-lib: fix return value on fail in amdtp_tscm_init()
    - [armhf] ASoC: stm32: spdifrx: fix dma channel release in
    stm32_spdifrx_remove
    - media: ar0521: don't overflow when checking PLL values (CVE-2024-53081)
    - media: s5p-jpeg: prevent buffer overflows (CVE-2024-53061)
    - media: cx24116: prevent overflows on SNR calculus (CVE-2024-50290)
    - media: pulse8-cec: fix data timestamp at pulse8_setup()
    - media: v4l2-tpg: prevent the risk of a division by zero (CVE-2024-50287)
    - media: v4l2-ctrls-api: fix error handling for v4l2_g_ctrl()
    - can: mcp251xfd: mcp251xfd_get_tef_len(): fix length calculation
    - can: mcp251xfd: mcp251xfd_ring_alloc(): fix coalescing configuration when
    switching CAN modes
    - ksmbd: fix slab-use-after-free in ksmbd_smb2_session_create
    (CVE-2024-50286)
    - ksmbd: Fix the missing xa_store error check (CVE-2024-50284)
    - ksmbd: fix slab-use-after-free in smb3_preauth_hash_rsp (CVE-2024-50283)
    - pwm: imx-tpm: Use correct MODULO value for EPWM mode
    - drm/amdgpu: Adjust debugfs eviction and IB access permissions
    - drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read()
    (CVE-2024-50282)
    - drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported
    (CVE-2024-53060)
    - thermal/drivers/qcom/lmh: Remove false lockdep backtrace
    - dm cache: correct the number of origin blocks to match the target length
    - dm cache: fix flushing uninitialized delayed_work on cache_ctr error
    (CVE-2024-50280)
    - dm cache: fix out-of-bounds access to the dirty bitset when resizing
    (CVE-2024-50279)
    - dm cache: optimize dirty bit checking with find_next_bit when resizing
    - dm cache: fix potential out-of-bounds access on the first resume
    (CVE-2024-50278)
    - dm-unstriped: cast an operand to sector_t to prevent potential uint32_t
    overflow
    - ALSA: usb-audio: Add quirk for HP 320 FHD Webcam
    - ALSA: hda/realtek: Fix headset mic on TUXEDO Gemini 17 Gen3
    - posix-cpu-timers: Clear TICK_DEP_BIT_POSIX_TIMER on clone
    - nfs: Fix KMSAN warning in decode_getfattr_attrs() (CVE-2024-53066)
    - net: wwan: t7xx: Fix off-by-one error in t7xx_dpmaif_rx_buf_alloc()
    - net: vertexcom: mse102x: Fix possible double free of TX skb
    (CVE-2024-50276)
    - mptcp: use sock_kfree_s instead of kfree
    - btrfs: reinitialize delayed ref list after deleting it from the list
    (CVE-2024-50273)
    - bnxt_re: avoid shift undefined behavior in bnxt_qplib_alloc_init_hwq
    (CVE-2024-38540)
    - Revert "wifi: mac80211: fix RCU list iterations"
    - net: do not delay dst_entries_add() in dst_release() (CVE-2024-50036)
    - media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in
    uvc_parse_format
    - filemap: Fix bounds checking in filemap_read() (CVE-2024-50272)
    - fs/proc: fix compile warning about variable 'vmcore_mmap_ops'
    - signal: restore the override_rlimit logic (CVE-2024-50271)
    - usb: musb: sunxi: Fix accessing an released usb phy (CVE-2024-50269)
    - usb: dwc3: fix fault at system suspend if device was already runtime
    suspended
    - usb: typec: fix potential out of bounds in
    ucsi_ccg_update_set_new_cam_cmd()
    - USB: serial: io_edgeport: fix use after free in debug printk
    (CVE-2024-50267)
    - USB: serial: qcserial: add support for Sierra Wireless EM86xx
    - USB: serial: option: add Fibocom FG132 0x0112 composition
    - USB: serial: option: add Quectel RG650V
    - irqchip/gic-v3: Force propagation of the active state with a read-back
    - ocfs2: remove entry once instead of null-ptr-dereference in
    ocfs2_xa_remove()
    - ucounts: fix counter leak in inc_rlimit_get_ucounts()
    - [x86] ASoC: amd: yc: fix internal mic on Xiaomi Book Pro 14 2022
    - net: sched: use RCU read-side critical section in taprio_dump()
    (CVE-2024-50126)
    - hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer
    - vsock/virtio: Initialization of the dangling pointer occurring in
    vsk->trans
    - media: amphion: Fix VPU core alias name
    https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.118
    - Revert "Bluetooth: fix use-after-free in accessing skb after sending it"
    - Revert "Bluetooth: hci_sync: Fix overwriting request callback"
    - Revert "Bluetooth: af_bluetooth: Fix deadlock"
    - Revert "Bluetooth: hci_core: Fix possible buffer overflow"
    - Revert "Bluetooth: hci_conn: Consolidate code for aborting connections"
    (Closes: #1086447)
    - 9p: Avoid creating multiple slab caches with the same name
    - nvme: tcp: avoid race between queue_lock lock and destroy
    - block: Fix elevator_get_default() checking for NULL q->tag_set
    - HID: multitouch: Add support for B2402FVA track point
    - HID: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad
    - nvme: disable CC.CRIME (NVME_CC_CRIME)
    - bpf: use kvzmalloc to allocate BPF verifier environment
    - crypto: api - Fix liveliness check in crypto_alg_tested
    - [arm*] crypto: marvell/cesa - Disable hash algorithms
    - sound: Make CONFIG_SND depend on INDIRECT_IOMEM instead of UML
    - drm/vmwgfx: Limit display layout ioctl array size to
    VMWGFX_NUM_DISPLAY_UNITS
    - nvme-multipath: defer partition scanning (CVE-2024-53093)
    - [powerpc*] powernv: Free name on error in opal_event_init()
    - nvme: make keep-alive synchronous operation
    - bpf: Fix mismatched RCU unlock flavour in bpf_out_neigh_v6
    - fs: Fix uninitialized value issue in from_kuid and from_kgid
    - HID: multitouch: Add quirk for Logitech Bolt receiver w/ Casa touchpad
    - HID: lenovo: Add support for Thinkpad X1 Tablet Gen 3 keyboard
    - net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition
    - md/raid10: improve code of mrdev in raid10_sync_request
    - io_uring: fix possible deadlock in io_register_iowq_max_workers()
    (CVE-2024-41080)
    - uprobes: encapsulate preparation of uprobe args buffer
    - uprobe: avoid out-of-bounds memory access of fetching args
    (CVE-2024-50067)
    - drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer (CVE-2024-49991)
    - ext4: fix timer use-after-free on failed mount (CVE-2024-49960)
    - Bluetooth: L2CAP: Fix uaf in l2cap_connect (CVE-2024-49950)
    - mm: krealloc: Fix MTE false alarm in __do_krealloc
    - [x86] platform/x86: x86-android-tablets: Fix use after free on
    platform_device_register() errors (CVE-2024-49986)
    - fs/ntfs3: Fix general protection fault in run_is_mapped_full
    (CVE-2024-50243)
    - 9p: fix slab cache name creation for real
    https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.119
    - netlink: terminate outstanding dump on socket close
    - [arm64,armhf] drm/rockchip: vop: Fix a dereferenced before check warning
    - mptcp: error out earlier on disconnect
    - net/mlx5: fs, lock FTE when checking if active
    - net/mlx5e: kTLS, Fix incorrect page refcounting
    - net/mlx5e: CT: Fix null-ptr-deref in add rule err flow
    - virtio/vsock: Fix accept_queue memory leak
    - Bluetooth: hci_event: Remove code to removed CONFIG_BT_HS
    - Bluetooth: hci_core: Fix calling mgmt_device_connected
    - net/sched: cls_u32: replace int refcounts with proper refcounts
    - net: sched: cls_u32: Fix u32's systematic failure to free IDR entries for
    hnodes.
    - bonding: add ns target multicast address to slave device
    - [armel,armhf] 9419/1: mm: Fix kernel memory mapping for xip kernels
    - [x86] mm: Fix a kdump kernel failure on SME system when CONFIG_IMA_KEXEC=y
    - mm: fix NULL pointer dereference in alloc_pages_bulk_noprof
    - ocfs2: uncache inode which has failed entering the group
    - vdpa/mlx5: Fix PA offset with unaligned starting iotlb map
    - ima: fix buffer overrun in ima_eventdigest_init_common
    - [x86] KVM: nVMX: Treat vpid01 as current if L2 is active, but with VPID
    disabled
    - [x86] KVM: x86: Unconditionally set irr_pending when updating APICv state
    - [x86] KVM: VMX: Bury Intel PT virtualization (guest/host mode) behind
    CONFIG_BROKEN
    - nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint
    - ALSA: hda/realtek - Fixed Clevo platform headset Mic issue
    - ALSA: hda/realtek: fix mute/micmute LEDs for a HP EliteBook 645 G10
    - ocfs2: fix UBSAN warning in ocfs2_verify_volume()
    - nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint
    - Revert "mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K"
    - mmc: sunxi-mmc: Fix A100 compatible description
    - drm/bridge: tc358768: Fix DSI command tx
    - drm/amd: Fix initialization mistake for NBIO 7.7.0
    - staging: vchiq_arm: Get the rid off struct vchiq_2835_state
    - staging: vchiq_arm: Use devm_kzalloc() for vchiq_arm_state allocation
    - fs/ntfs3: Additional check in ntfs_file_release (CVE-2024-50242)
    - Bluetooth: ISO: Fix not validating setsockopt user input (CVE-2024-35964)
    - lib/buildid: Fix build ID parsing logic
    - cxl/pci: fix error code in __cxl_hdm_decode_init()
    - media: dvbdev: fix the logic when DVB_DYNAMIC_MINORS is not set
    - NFSD: initialize copy->cp_clp early in nfsd4_copy for use by trace point
    - NFSD: Async COPY result needs to return a write verifier
    - NFSD: Limit the number of concurrent async COPY operations
    (CVE-2024-49974)
    - NFSD: Initialize struct nfsd4_copy earlier
    - NFSD: Never decrement pending_async_copies on error
    - mptcp: cope racing subflow creation in mptcp_rcv_space_adjust
    - mptcp: define more local variables sk
    - mptcp: add userspace_pm_lookup_addr_by_id helper
    - mptcp: update local address flags when setting it
    - mptcp: hold pm lock when deleting entry
    - mptcp: drop lookup_by_id in lookup_addr
    - mptcp: pm: use _rcu variant under rcu_read_lock
    - ksmbd: fix slab-out-of-bounds in smb_strndup_from_utf16() (CVE-2024-26954)
    - ksmbd: fix potencial out-of-bounds when buffer offset is invalid
    (CVE-2024-26952)
    - net: add copy_safe_from_sockptr() helper
    - nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies
    - fs/9p: fix uninitialized values during inode evict (CVE-2024-36923)
    - ipvs: properly dereference pe in ip_vs_add_service (CVE-2024-42322)
    - net/sched: taprio: extend minimum interval restriction to entire cycle too
    (CVE-2024-36244)
    - net: fec: remove .ndo_poll_controller to avoid deadlocks (CVE-2024-38553)
    - mm: revert "mm: shmem: fix data-race in shmem_getattr()"
    - mm: avoid unsafe VMA hook invocation when error arises on mmap hook
    - mm: unconditionally close VMAs on error
    - mm: refactor arch_calc_vm_flag_bits() and arm64 MTE handling
    - mm: resolve faulty mmap_region() error path behaviour
    - drm/amd: check num of link levels when update pcie param (CVE-2023-52812)
    - char: xillybus: Prevent use-after-free due to race condition
    (CVE-2022-45888)
    - null_blk: Remove usage of the deprecated ida_simple_xx() API
    - null_blk: fix null-ptr-dereference while configuring 'power' and
    'submit_queues' (CVE-2024-36478)
    - null_blk: Fix return value of nullb_device_power_store()
    - parisc: fix a possible DMA corruption (CVE-2024-44949)
    - char: xillybus: Fix trivial bug with mutex
    - net: Make copy_safe_from_sockptr() match documentation
    .
    [ Salvatore Bonaccorso ]
    * Bump ABI to 28
    * [x86] Revert "x86: Increase brk randomness entropy for 64-bit systems"
    (Closes: #1085762)
    Checksums-Sha1:
    e215a34b3972cbccd6b19af51fd7ae55d6e194a7 290930 linux_6.1.119-1.dsc
    637745720659db870da3f9934375be1563e2e3f2 137707144 linux_6.1.119.orig.tar.xz
    b536d58f0bebd603fc256f7cd91f3eb912fde92c 1696788 linux_6.1.119-1.debian.tar.xz
    d2fe19e4ed37de381a7976fbb7f389d9de33de46 7602 linux_6.1.119-1_source.buildinfo Checksums-Sha256:
    c13e92aa9821c3f3300c5524f35f2e0da7def1313803547a6c7d41c150fb1714 290930 linux_6.1.119-1.dsc
    59e74f3e07779dc13de2ddf10ee6652d373373248caa0517ba7871846985c847 137707144 linux_6.1.119.orig.tar.xz
    6f99efa9463c35b875fc7138f1acb72186e283d49cbad5f59c62d35808fb5ae2 1696788 linux_6.1.119-1.debian.tar.xz
    ccb1fd576bc940f968c0e9d27b13c6ae9b25874cb6fec8ec96fbd006755d3c7e 7602 linux_6.1.119-1_source.buildinfo
    Files:
    344b09c723f1ac7510bff98f4760a2b0 290930 kernel optional linux_6.1.119-1.dsc
    883ee8e4156ed707dbb835a490cfe546 137707144 kernel optional linux_6.1.119.orig.tar.xz
    879af74209a93e1cdafa2dfc3e4cf36d 1696788 kernel optional linux_6.1.119-1.debian.tar.xz
    6c3faf1a1f5310eea4d446efcef730ef 7602 kernel optional linux_6.1.119-1_source.buildinfo
    -----BEGIN PGP SIGNATURE-----

    iQKmBAEBCgCQFiEERkRAmAjBceBVMd3uBUy48xNDz0QFAmdBBxBfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQSHGNhcm5pbEBk ZWJpYW4ub3JnAAoJEAVMuPMTQ89ER7QP/REiQVkOwhywQkCVAx5PlTqcBkRRwsi9 /5RH6q4azq7h6eYsiCOSCVf5lq00XmcH9ME2sHls66sN4FY0AxBLHmgzYf1ccGR3 /CCRK2AVrVZsZtPISZf8kPNCNcGAmyNcS1yLX+6UzaYx/6ajb+AeTG/xhcfPNa0v FZhzBqeawkEt/KYmsSExKnygovqpkffzsAaf4QE3uUYo84vlybxBFLNmwkzcSIeZ a/n/KFcLT6E2Z0GYJdpp5mLzkKFpPu7bzq2Tm0/o2ruL7Qgu4ElpSnr4XR+xM55i Mq9ELem3P1dQzAEmFEgCeGvv7Na4lam3GsCWWN8MNcMgrmzSixxwdDThPw9Km1bX s+aq044FoubG77W1h4S7OFzViO+Vv6nGbCcaH507Z9BDfOBXGvOck9Zq9ZXsPPCF CQIj958dYWsPzDu03LQnn7TqIL3Kos4oWVvI48GbBu4x4CSxmcTqY6l1OTbjtJxz N2DqzhvFvrddHR5WTnWU+znnuHyQFysAi3q1i+nNDwNcQLbNrAWzg7smhe/frXjV hBSjgpOV6VR9mVh8ISiycAUJdL/VnzroOH2KtSgXw/x5ydBv9bQHu5dOwrz6KsBw MkREe2uRbLdnPUP73PKWuk/4N6Gk6rGAihLJyRe+HbbNAUVfpMBdXe3ktyOPiibm
    nSKuwJCDfrKR
    =sj+m
    -----END PGP SIGNATURE-----


    --==============r59542634703615538=Content-Type: application/pgp-signature

    -----BEGIN PGP SIGNATURE-----

    iHUEABYIAB0WIQTziqJOuF8J+ZI8pJSb9qggYcy5IQUCZ0RVrQAKCRCb9qggYcy5 IccjAQCSRfVUrZtq6djPAUlXbsw3fx01F46uFxVNkVwxDE7oawD+KKg39d5cZQU9 xQRl73u9/desWnbLCWPsfXHlBZrtaAU=ao9g
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)